IN CLASS EXERCISES

Windows 2000 Professional Chapter 1

This is a new term and there are new addresses addressed to everyone. Know this

information, and keep it available, for pinging! To view these properties, right click on

Network Neighborhood, and to into TCP/IP Properties.

MY IP ADDRESS: 10. 10. 1. 4 (4 is my computer number)

MY SUBNET MASK: 255. 255. 0. 0

MY DEFAULT GATEWAY: 0. 0. 0. 0 (internet not assigned yet)

OTHER IP ADDRESSES:

10. 10. 10. 6 (Warren)

10. 10. 10. 3 (Raja)

10. 10. 1. 200 (Instructor 9, or Mr. E.)

10. 10. 1. 100 (Server, Corp301)

To check your current IP Address and configuration on your machine, type in the following

at the DOS Prompt:

Ipconfig (enter)

OTHER IMPORTANT NETWORK INFORMATION:

· Instructor 301

Class 301
Corp 301
Group created = Student (no password)

If you want to install 2000 Professional you must have a 2000 account on the server, so Mr. E.

created a Student account on the server.

=====================================================================

winpro1.html PAGE 2 2001/12/06

Troubleshooting Problem:

my computer which now only currently is running NT Server and Windows 98. That is

why my machine does not show up on the Network Neighborhood.

IN CLASS EXERCISE:

Question:

Create a new folder on an NTFS Partition called LAB

Permissions with Domain User Account = R on all files in the folder and

modify or delete files that does not belong to them.

Users should be able to put files in this folder, users should also be allowed

to modify or delete files that they put, in. HINT: The Creator Owner Theory.

How to:

Logon as Administrator on Windows NT Server.

Right Click on My Computer.

E: (formatted with NTFS), must format, right click Network Neighborhood

and format E with NTFS, only takes a few minutes.

Make a folder called Lab on the Root of E and share it.

Permissions:

Everyone = FC

Bob = R

Alex = R

Wesley = R

View and open Alexandras file. Able to change, but why was he able to

Delete???

=====================================================================

winpro1.html PAGE 2 2001/12/06

not work Everyone with FC overrides.

Also, add the CREATOR OWNER group to access.

It is necessary to change the Everyone in two different areas:

Sharing and Security

Now Works, when I removed the Everyone = FC, cannot open file,

delete or modify the file, if it is created and owned by another user.

Mr. E.s Answer:

Administrator = FC

Creator Owner group = FC (global group)

Domain Users = Add and Read (local Group)

Test: Login as Wesley, cannot delete the file, and cannot display, ACCESS DENIED, it Works.

NOTE: When a file shows this:

Read (RX) (RX)

Folder File

=====================================================================

winpro1.html PAGE 4 2001/12/06

CLEAR THE DRIVE TO INSTALL WINDOWS 2000P

C: = 2GB

Ext.: = 5GB

D: = 2GB

What to do:

delpart, to totally erase the NTFS partitioning.
fdisk, to wipe the disk clean.
install the client software from the diskettes at the start of term 1.

How to:

Boot to Windows 98 by using the boot up diskette in drive a.
The computer will boot up to the C or Command prompt, and type:

delpart (enter)

This will give a warning, and delete all partitions, press Alt/F and

Exit, when done.

Next, at the Command Prompt, type:

fdisk (enter)

You are prompted through the process, and say N to Large Block

Addressing.

1 (enter), create the Primary DOS Parition.

C: 1 Primary (Active)

D: 2047 41% (not partitioned)

E: 2047 41% (not partitioned)

7. C: 1 2047 (primary)

2 5005 (extended)

8. Reboot with a:WIN98 bootup diskette, and will give you the C prompt.

format^c:/s (enter), this will transfer the system files using the S, and

transfers all the system files to C.

Proceed = Y (enter), takes 2 minutes to format.

=====================================================================

winpro1.html PAGE 5 2001/12/06

Format^ d: (enter) also format D for later, but do not use/s for system files.

Reboot the machine, remove any diskettes from Drive a, if all goes well the computer

should boot up to C drive.

Insert the Client Boot-up diskette into Drive a.

Find the setup.exe file on the diskette, it may be hidden in a directory, and type:

setup (enter)

C:\Net (just press enter key)

*Network Adapter not shown on list below (choose this one, at the top)

At the prompt type:

A:\ndis2\dos

D-Link DFE-538TX 100/100 adapter (enter)

NetBEUI (add)

NWLink (remove)

At the Command Prompt, type the following:

netview (enter)

If all went well with the setup, you should see \\instructor 9 as a response.

22. Cannot logon? Delete the student.pw1 (enter)

=====================================================================

winpro1.html PAGE 6 2001/12/06

STARTING THE INSTALLATION FOR 2000 Professional

1. At drive D: type the following:

net^use^p:^\\instructor9\win2kPro (enter)

P: (enter)

xcopy^*.*^d:\win2kPro^/e (enter)

2. Press D for Directory (enter), all system files fill be transferred to C.

3. The At command prompt type:

D:>Win2Kpro (enter)

4. Insert 98 Boot-up diskette in a: and copy the following files to the root

Of D:

Smartdrv.exe

Himem.sys

5. Edit himem.sys, type in at the last line:

Device =c:\himem.sys

NOTE: You can change on Root D and A also.

6. Reboot (no diskette in a)

7. C:> type smartdrv (enter)

No response or reply, and that is okay.

8. Type smartdrv (enter) again and should see write cache C and D = Yes. This is normal.

9. Record CD Key and will need it later. At DOS use the Find file

Cdkey.txt. Type in the following in DOS:

Type^cdkey.txt (to view the file)

10. Install Windows 2000 Professional onto the Root of C:, but must convert

To NTFS (will do this later on).

=====================================================================

winpro1.html PAGE 7 2001/12/06

11. CD^I386 (folder and press the enter key)

12. At the Command Prompt type:

Winnt (enter key)

This sill start the Windows 2000 Professional Install. NOTE: Same

As for Windows Workstation and Windows Server. Takes a while to

Install.

13. Shows Path = D:\Winnt\I386 (enter Key). Wait it takes a while

14. Press enter and the system will reboot, remove all diskettes.

15. Continues with the setup.

16. Converts C to NTFS and detects it is FAT and does it automatically.

17. Reboots again, on its own.

18. Reboots again with 2000 Professional logo. Now says NTFS. Takes up to 5 minutes.

19. “Wizard” finished the install and installs drivers (do not use mouse, it is

automated, just sit back and watch).

20. Enter Information:

Name: Patti

Organization: Westervelt College

CD Key: R8CK7-CXFK2-QKPRF-76PDF-KJMGQ

Computer Name = computer4 (4 is my workstation in the class)

Password = g00dluck+! (all lower case, and the o’s are zeros)

21. Finish the Install – just sit and watch.

A. Install start menu

B. Registers components

C. Saves Settings

D. Remove any temporary files used, usually means install

Worked if the temporary files are removed.

22. Fix the boot.ini file on the root of C:

Note: may be hidden file, take out last line WIN98 when boot up. It is

Unnecessary at this point, we do not have Windows 98 installed.

23. Load the drivers, Local area connection.

24. Logon, but do not enter the password.

25. Obtain the IP address automatically do not change. Go into the command prompt, type:

Ipconfig (enter key)

Current IP address:= 169.254.22.192

Subnet = 255.255.0.0

=====================================================================

winpro1.html PAGE 8 2001/12/06

Look at the setupact.log (reviews install process)

Setuperr.log (hopefully should be empty)

NOTE: Use search command VS Find command.

Type in at the command prompt: ipconfig^/renew, and get 10.10.1.2
Type in at the command prompt: ipconfig^/all
Mine = 10.10.1.2 (but I am computer4, for computer name)
Warren = 10.10.1.1.
Raja = 10.10.1.4
Server = 10.10.1.100
Server = 10.10.1.200

**** Install done ****

Try some of the Ping commands:

At the command prompt: ping^computer13 (enter key)

Ping^instructor9 (enter key), ping^instructor301.corp.com. It all works.

NOTE: Use the arrow keys up and down OR F3 brings up previous types in command from the

keyboard.

EXERCISE:

Create a Batch file which will copy a text file from the root of C to the Root of D.

Worked!! The file you need to create must have the extension of .bat. Also type in

xcopy^abc.txt^ c:\data^d:\abc.txt, or something similar to that, and try it out.

Features about Windows 2000 Professional:

Win 2000P supports FAT 16/32 or NTFS file systems. You can have several options for an installation:

You can load the CD on the Server and share out the folder.
Do an unattended install and run to 200 machines like an idiot!!! The source files are 320Mg in size.
RISC does not work on Windows 2000P only Windows NT Server and

Workstation 4.0.

=====================================================================

winpro1.html PAGE 9 2001/12/06

Why would you make a Windows NT Server to FAT:

Simply make it as FAT and convert it to NTFS later for security purposes.

If in Windows NT Server 4.0:

This is a good type of system design, suggested by Mr. E.

C: FAT 16 is 500Mg - boot sector

- boot.ini

If this area gets corrupted, it will be easier to fix up, because it is small, and it is FAT. Ensure

you have an up-to-date boot-up diskette, and recovery diskettes.

NOTE: In Windows NT 4.0 NTFS you cannot recover if a driver is missing. You cannot have

access to command prompt. Also, the boot diskette will not help you! Reinstall if the kernel is

broken.

What is on a Repair Disk:

Diagnostics
Registry
Can restore the Administrator password if you lost the password! But with a note of caution,
only if you kept you repair diskettes up-to-date.

Creating a Custom Console or (mmc):

Copy^c:\data^d:\data\\instructor9\student (enter key)

Mycopy.bat

Patti.msc

Instructor301 (in mmc)

At the run command, type mmc (enter key)
console (Add\Remove)
Options
Start/programs/administrative tools/computer management
Go into \\instructor301\mmc\patti.

=====================================================================

winpro1.html PAGE 10 2001/12/06

REVIEW:

For NT bootup diskette, you need to format in NTFS on an NTFS computer.
Win98 does not recognize NTFS locally!
Client Services for Netware added to WIN98 as Redirector.
If Win98 on a server, you add file and print sharing.
“Server Services” in Windows 2000 Professional or Windows NT Workstation 4.0

is a Service that makes that workstation work as a server!

“Workstation Services”—Client OR Server can do both. Works well depending on

what you want to do.

“Browser Services” broadcasts Services, and shows all machines in the system.

Customize your Desktop:

Start/Run/mmc (enter Key)/ add/remove snapin/add disk management

Diskmmg – save in desktop (enter key)

Try file options, good to alter for Power Users.

Scheduled Tasks:

Start/Settings/Control Panel, Schedule a file to run when not there, use the Wizard and setup

Paint to display every time you log on. Mspaint.exe at the run command.

EXERCISES:

My computer/Tools (will hide or /options/hide unhide extensions of the files. Also look at the

type of icon, there are many different types depending on if it is a word file, excel file or batch

file.

Check the Compatibility for Hardware:

Run the following program to check if there are any incompatibilities with the hardware:

At the d:\win2Kpro\I386 folder, type winnt32 (enter)

NOTE: Know what symmetric and asymmetric are.

=====================================================================

winpro1.html PAGE 11 2001/12/06

Windows 2000P uses true multi-tasking. With 2000P if you encrypt, even if you have FC

you can take ownership.

With Windows 2000P there is no promoting of the BDC, and there is no BDC at all. Any Server can

authenticate a user logon, but no promoting and demoting goes on. But, there is lots of redundancy so

the servers have the databases.

Chatham London

10. 10. 0. 0 10. 10. 0. 1

255. 255. 0. 0. 255. 255. 0. 0

Network Host Same

Portion Portion Subnet

255 = 11111111 (8 ones in binary = 255)

10. 10. 1. 2 10. 10. 1. 2

10. 10. 1. 2 10. 11. 1. 2

These above ones are a different subnet area, look at the first two parts of the address. The

domain controller grabs the closest subnet.

If a new Hard Drive:

Boot from CR ROM, fdisk is unnecessary, you can setup the partition during the setup to

5GB. If I install 2000P at home I can set it up the same way.

HOW to set up the Disk:

FAT if < 2GB
NTFS if local file/folder security, EFS file encryption. New Disk Quota limits the users space!
Server, can change but not other direction! 50/server licence, go by how many servers you have.
WIN2000P Domain, must have DNS!

EXERCISE:

Right Click on Desktop/Properties/New ID

Ping^computer4.corp.com

=====================================================================

winpro1.html PAGE 12 2001/12/06

CHAPTER 1

INTRODUCTION TO WINDOWS 2000

Lesson 1:

Windows 2000 Professional has family of products:

· Windows 2000 Professional

· Windows 2000 Server

· Windows 2000 Advanced Server

· Windows 2000 Datacenter Server.

WINDOWS 2000 OVERVIEW:

Windows 2000 is a multipurpose operating system with integrated support for client/server and

peer-to-peer networks. It incorporated technologies that reduces the total cost of ownership

(TCO) and provides for scalability from small network to a large enterprise network. Total

cost of ownership is the total amount of money and time associated with purchasing computer

hardware and software, and deploying, configuring and maintaining the hardware and software.

One other major factor in TCO is lost productivity. Lost productivity can occur because of

many factors, errors, hardware problems or software upgrades and retraining.

The Windows 2000 platform consists of the following four versions:

Windows 2000 Professional. This product is high-performance, secure-network client

computer and corporate desktop operating system that includes the best features of

Microsoft Windows 98.

Windows 2000 Server. This product is a file, print and application server, as well as a

Web-server platform. It is ideal for small to medium sized enterprise application deployments.

Windows 2000 Advanced Server (formerly Windows NT Server 5 Enterprise Edition).

It is a more powerful departmental and application server, and it also provides a rich network

operating system (NOS) and Internet Services.

Windows 2000 Datacenter Server. This a new product is the most powerful and functional

server operating system ever offered by Microsoft. Optimized for large warehouses,

econometric analysis, large-scale simulations in science and engineering, and server consolidation projects.

=====================================================================

winpro1.html PAGE 13 2001/12/06

Lesson 2:

Windows 2000 Professional improves the capabilities of earlier versions of Windows in these areas:

ease of use, simplified management, increased hardware support, enhanced file management, and

enhanced security features.

Ease of Use and Enhancements:

Customized Start Menu. Personalized Menus can be activated to keep track of the programs you

use and to update the Programs menu so that it presents only the programs that you use most often.

Log on and Shut Down dialog boxes. The Log on and Shut Down dialog boxes are easier to use

with fewer, better organized choices.

Task Scheduler. The enhanced Tasks Scheduler allows users to schedule scripts and programs to

run at specific times.

NOTE: Windows 2000 P supports the latest laptop technologies based on Advanced Power

Management (APM) and Advanced Configuration and Power Interface (ACPI), which turns off

power to the display and hard disks after a period of inactivity, and allows you to change or remove

devices without turning off the computer. ACPI also lengthens the battery life.

Features in WINDOWS 2000 P for Mobile Users:

Network Connection Wizard. Consolidates all of the processes for creating network

connections. Users can now set up the following networking features from one wizard:

dial-up connections to a private network or to the Internet, virtual private network (VPN)

connections through the Internet to a private network, incoming calls, and direct

connections to another computer.

Virtual Private Network Support. Secure access to corporate networks from off-site

locations by using a local Internet service provider (ISP) rather than using a long distance,

dial-up connection.

Offline Folders. Allows you to copy documents that are stored on the network to

your local computer, making it easier to access data when you aren’t connected to

the network

Synchronization Manager. Compares items on the network to items that you opened

or updated while working offline. Synchronization occurs when you log on, and any

changes made offline to the files and folders.

Printing Support:

Printing in Windows 2000 P has been improved to assist you in providing a more flexible

network of printers. It includes the following features:

=====================================================================

winpro1.html PAGE 14 2001/12/06

· Internet Printing Protocol (IPP). Allows users to send documents to any printer on a

Microsoft Windows 2000 network that is connected to the Internet. Internet printing

enable users to the following:

1. Print to a Uniform Resource Locator (URL) over an intranet or the Internet.

2. View printer and job-related information in Hypertext Markup Language (HTML)

format from any browser.

3. Download and install printer drivers over the Internet.

· Add Printer Wizard. Simplifies the process of connecting to local and network printers

from within a program.

· Image Color Management (ICM) 2. Allows you to send high-quality color documents to

a printer or another computer with greater speed and reliability then ever before. ICM 2 is

an operating system API that helps ensure that the colors you see on your monitor match

those on your scanner and printer.

Simplifies Management

Windows 2000 P has the following enhancements:

Add/Remove Programs wizard. Simplifies the process of installing and removing

programs. Users can install applications by pointing directly to a location on the

corporate network or Internet.

Windows Installer Service. Manages application installation, modification, repairs,

and removal.

Troubleshooting Tools:

Windows 2000 P includes diagnostic and troubleshooting tools that make it easier to support

the operating system. There are:

Compatibility Tool. Detects and warns the user about whether certain installed applications or

components will cause an upgrade to fail, or whether the components won’t work after an

upgrade is complete.

/checkupgradeonly

Troubleshooters. Online help as troubleshooting wizards that can be used to solve many

common computer problems.

=====================================================================

winpro1.html PAGE 15 2001/12/06

Increased Hardware Support

Windows 2000 P supports 7,000 hardware devices, such as infrared devices, scanners, digital

cameras, and advanced multimedia devices that Windows NT Workstation 4 did not support.

They are:

Add/Remove Hardware Wizard. Add, remove and troubleshoot, and upgrade computer

peripherals.

Win32 Driver Model (WDM). Provides a common model for device drivers across Windows

98 and Windows 2000. Drivers that are written to the WDM will work in both Windows 98

and Windows 2000.

Plug and Play support. Enhances previous Plug and Play functionality and allows automatic and

dynamic reconfiguration, loading of appropriate drivers, registration for device notification

events, and changeable and removable devices.

Power Options. Prevents unnecessary power drains on your system and allows two modes,

standby, where your monitor is turned off, and hibernation, turns off your monitor and hard

disk, saves everything in memory and turns off your computer. When you restart your

computer, your desktop is restored exactly as you left it.

Symmetric Multiprocessing

Windows 2000 is a multiprocessing operating system capable of running on computers containing

more than one processor. Windows 2000 P provides symmetric multiprocessing (SMP) system

capabilities and supports two processors.

The design of Windows 2000 also supports processor affinity, whereby a process or thread can

specify that it is to run on a particular set of processors.

Windows 2000 uses the same rules for scheduling on a multiprocessor system as it does on a

single-processor system. Therefore, at any given time, the threads that are ready and have the

highest priorities are actually running.

Asymmetric Multiprocessing

Processors are different. They might address different physical memory spaces, or they

might have other discrepancies. These operating systems run only certain processes on

certain processors.

=====================================================================

winpro1.html PAGE 16 2001/12/06

Enhanced File Management:

There are several enhancements to Windows 2000 P, and they are:

NTFS File system. Supports file encryption and enables you to add disk space to an NTFS

volume without having to restart the computer.

FAT32 file system. Supports FAT32 file system for compatibility with Windows 95 OEM

Service Release (OSR) 2 systems and later. FAT32 is an enhanced version of the FAT file

system for use on disk volumes larger than 2GB.

Disk Defragmenter Utility. Rearranges files, programs and unused space on your computer’s

hard disk to that programs run faster and files open more quickly.

Backup Utility. Helps to protect data from accidental loss because of hardware or storage

media failure. You can backup to tape drives, external hard disk, zip disks, recordable

CD-ROMs and logical drives.

Volume mount points. Allows you to connect or mount a local drive at any empty folder

on a local NTFS-formatted volume.

Enhanced Security Features:

Windows 2000 Professional is the most secure Windows Desktop operating system for either

a stand-alone computer or any type of public or private network.

Kerberos 5. Supports single logon, allowing faster authentication and faster network response.

Kerberos 5 is the primary security protocol for domains in Windows 2000.

Encrypting File System (EFS). Strengthens security by encrypting files on your hard disk so

that no one can access them.

Internet Protocol Security IPSec. Encrypts Transmission Control Protocol/Internet Protocol

TCP/IP traffic to secure communications within an intranet and provides the highest level of

security for VPN traffic across the Internet.

Smart card support. Enable portability of credential and other private information between

computers at work, home or on the road.

=====================================================================

winpro1.html PAGE 17 2001/12/06

Lesson Summary:

Windows 2000 P improves in 5 main areas: ease of use, simplifies management, increased

hardware support, enhanced file management, and enhanced security features.

Windows 2000 P includes support for the latest laptop technologies based on APM and
ACPI, and provides a Network Connection wizard and VPN support.
Uses HTML format from any browser.
The setup Manager wizard guides you through the process of creating answer files for

unattended installation scripts.

More than 7,000 hardware devices can be supported.
Windows 2000P also supports symmetric multiprocessing, which means it is capable

of running on computers containing more than one processor.

Windows 2000 P is the most secure Windows desktop operating system for either a

stand-alone computer or any type of public or private network, and uses encryption.

Lesson 3: Workgroups and domains:

Windows for Workgroups

A Windows 2000 workgroup is a logical grouping of networked computers that share resources,

such as files and printers. A workgroup is referred to as a peer-to-peer network because all

computer in the workgroup can share resources as equals, or as peers, without a dedicated

server.

A local security database is a list of user accounts and resource security information for the

computer the database is on. Therefore, when on a workgroup, security is decentralized.

Because workgroups have decentralized administration and security:

A user must have a user account on each computer to which he or she wants to gain access.
You must make any changes to user accounts, such as changing a user’s password or adding

a new user account on each computer in the workgroup.

A Windows 2000 workgroup provides the following advantages:

It doesn’t require a computer running Windows 2000 Server to hold centralized security

information or SAM.

It’s simple to design and implement.
Its convenient for less then 10 users.

NOTE: In a workgroup, a computer running Windows 2000 Server is called a stand-alone server.

Windows 2000 Domains:

=====================================================================

winpro1.html PAGE 18 2001/12/06

A windows 200 domain is a logical grouping of network computers that share a central directory

database. A directory database contains user accounts and security information for the domain.

This directory database is known as the Directory and is the database portion of Active Directory

directory services, which is the Windows 2000 directory services.

NOTE: You can designate only a computer running Windows 2000 Server, windows 2000

Advanced Server, or Windows 2000 Datacenter as a domain controller. If all computers on

the network are running Windows 2000 Professional, the only type of network available is a

workgroup.

Benefits of a domain are as follows:

Provides centralized administration.
Provides a single logon process for users to gain access to network resources, such as a file,

print, and application.

Provides scalability, so that you can create large networks.

A typical Windows 2000 domain has the following types of computers:

Domain Controllers running Windows 2000 Server. Each domain controller stores and maintains

a copy of the Directory.

Member Servers running Windows 2000 Server. A member server is a server that isn’t configured

as a domain controller. A member server doesn’t store Directory information and can’t

authenticate users.

Client computers running Windows 2000 Professional. Client computers run a user’s desktop

environment and allow the user to gain access to resources in the domain.

Lesson 4: Logging on to Windows 2000

This is a mandatory process, and ensures that only valid uses can gain access to resources

and data on a computer or the network.

Log on Locally:

Windows 2000 authenticates users who either log on locally to the computer at which they

are seated or log on to a domain.

=====================================================================

winpro1.html PAGE 19 2001/12/06

A user can log on to either of the following:

A computer that is a member of a workgroup.
A computer that is a member of a domain but is not a domain controller.

The user selects the computer name in the Log on to Box in the enter Password dialog box.

NOTE: Domain controllers don’t maintain a local security database. Therefore, local user

accounts aren’t available on domain controllers, and a user can’t log on locally to a domain

controller.

Windows 2000 Authentication Process:

When logging on locally, follow these steps:

The users logs on with a User Name and Password

The Windows 2000 compares the logon information with the user information that is in the local

security database.

If the information matches and the user account is valid, Windows 2000 creates an access token

for the user. The access token contains the users security settings.

Lesson Summary:

When a user logs on, he or she can log on to the local computer, or if the computer is a member

of a domain, the user can log on to the domain. The authentication process for logging on locally

and logging on to the domain is similar. However, when a user logs on locally, the local computer

performs the authentication, and when a users logs on to a domain, a domain controller must

perform the authentication.

Lesson 5: The Window Security Dialog Box ** KNOW THIS**

You access the Windows Security dialog box by pressing Ctrl+Alt+Delete. You can lock

you computer (if away for lunch), change your password, to log off your computer, shut

down and access Task Manager, and Cancel as a way out.

Lock Computer
Log Off
Shut Down
Task manager
Cancel
Change Password.