2019 - 2020

Practicing
Windows Server & UNIX Operating Systems

Mazen Nehme
Table of Contents

Microsoft Windows OS

Chapter 1- Introduction to Microsoft Windows ------- Page 1

Chapter 2- Administrative Tasks --------------------------- Page 13
Chapter 3- Resources Management ------------------------ Page 26
- Disk Management and File Systems
- Folder and File Permissions
Chapter 4- Backups and Restore --------------------------- Page 49
Chapter 5- Sharing Resources on a Network ---------- Page 59
Chapter 6- MS Windows Server ----------------------------- Page 79
Chapter 7- Domain Accounts on Windows Server --- Page 90
Chapter 8- Network Printing -------------------------------- Page 102
Practical Questions /Final LAB ---------------------------- Page 115

UNIX / Linux OS

Chapter 1- Introduction to UNIX OS ---------------------- Page 119

Chapter 2- Basic Commands --------------------------------- Page 124
Chapter 3- Advanced Commands --------------------------- Page 137
Chapter 4- Users/Groups Accounts and Permissions Page 149
Chapter 5- Shell Scripts --------------------------------------- Page 157
UNIX LAB - TP Samples ---------------------------------------- Page 163
Operating Systems

Mazen Nehme
2019-2020
TS- Windows Client and Windows Server OS – M@zen Nehme

Operating Systems Practices

Chapter 1- Introduction to Microsoft Windows

1.1- What is MS Windows?

MS Windows is an operating system designed by Microsoft. It is the most popular
operating system in the world. An operating system allows you to run your computer, to
manage hardware and software and to perform essential tasks such as word processing,
browsing the Internet, editing digital photos, listening to music, playing games, and much
more.

Microsoft released the first version of Windows in the mid-1980s. There have been many
versions of Windows since then, but the most recent ones include Windows 8 (released in
2012), Windows 7 (2009), Windows Vista (2007), Windows server 2003, and Windows
XP (2001).

1.2- MS Windows 7:
Windows 7 is an operating system that Microsoft has produced in 2009 for use on
personal computers. It is the follow-up to the Windows Vista Operating System, which
was released in 2006.

Microsoft is promoting that it has simplified the PC experience by making many

functions easier to use, such as better previewing on the Task Bar, instant searching
for files or media, and easy sharing via Home Group networking. Home Group allows
you to connect two or more PCs on a home network to easily share and access files and
printers. In addition, Windows 7 is designed to sleep and resume faster, use less
memory, recognize USB devices faster and provides touch-screen capabilities.

Page. 1 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Windows 7 Editions or Versions:

Windows 7 is available in 5 editions. Four of these editions have both 32 and 64-bit
versions. That takes the total to 9 versions.

1) Windows 7 Starter Edition: It’s a limited version that is made for Notebooks with too
many missing features to keep the pricing on the lower side. It doesn’t let you change your
desktop background wallpaper; it does not allow automatic network based backups …

2) Windows 7 Home Basic: This version is aimed at regions where the price of a full- OS
would be expensive. The feature set is limited but better than the Starter edition.

3) Windows 7 Home Premium: This is the most popular version of Windows 7 and will
likely suit the needs of most users. It comes preinstalled on your new computer. It includes
all the new features in Windows 7, however there are a couple of features missing. You
don’t get the Remote desktop Connection option with this edition. Another feature missing
is the automatic backups of your computer over the network.

4) Windows 7 Professional: This version of Windows 7 includes everything in Home

Premium plus the ability to back up your computer over a network and Remote desktop
connection. Other important feature included is “Encryption File System & BitLocker”.
That’s why it is suitable to owners of small to medium-sized businesses.

5) Windows 7 Enterprise/Ultimate: These two versions are the same, with different
names. If it’s used in corporate environment, it’s called the Enterprise edition and on
personal computers it called Ultimate.

The Ultimate version is the most powerful version that includes all the features of
Windows 7 editions described above with added security features like Bitlocker and the
flexibility of use in 35 languages. Also, it provides the ability to use a VHD (virtual hard
drive).

 Windows 7 Requirements:

In order to run Windows 7, your PC must have the following:

- 1 gigahertz (GHz) or faster 32-bit (x86) or 64-bit (x64) processor.

- 1 gigabyte (GB) RAM (32-bit) or 2 GB RAM (64-bit).
- 16 GB available hard disk space (32-bit) or 20 GB (64-bit).
- DirectX 9 graphics device.

Page. 2 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 32 bits vs. 64 bits Processors:

The two main categories of processors are 32-bit and 64-bit.

 32-bit processor: The 32-bit processor was the primary processor used in all
computers until the early 1990s. The Operating System and software on a computer
with a 32-bit processor is also 32-bit based, in that they work with data units that
are 32 bits wide. Windows 95, 98, and standard XP are all 32-bit operating systems
that were common on computers with 32-bit processors.

 64-bit processor: The 64-bit processor can handle larger amounts of

information and increase the performance of the computer. Microsoft released
a 64-bit version of Windows XP to be used on computers with a 64-bit processor.
Windows Vista, Windows 7, and Windows 8 also come in 64-bit versions.

 Notes:

- A computer with a 32-bit processor cannot have a 64-bit operating system

installed. It can only have a 32-bit version of an operating system installed.

- A computer with a 64-bit processor can have a 64-bit or 32-bit operating

system installed. However, with a 32-bit operating system, the 64-bit processor
would not run at its full capability.

- Many 32-bit programs will work with a 64-bit processor and operating
system, but some older 32-bit programs may not function properly, or at all,
due to limited or no compatibility.

Page. 3 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Main differences between a 32-bit and 64-bit CPU:

1) A big difference between 32-bit processors and 64-bit processors is the number
of calculations per second they can perform. 64-bit processors can increase the
processing power and help make a computer run faster.

2) Another big difference between 32-bit processors and 64-bit processors is the
maximum amount of memory (RAM) that is supported. 32-bit computers
support a maximum of 3 - 4GB of memory, whereas a 64-bit computer can support
memory amounts over 4 GB.

 Frequently Asked Questions: 32 bit - 64 bit

1) What is the difference between 32-bit and 64-bit versions of Windows?

The terms 32-bit and 64-bit refer to the way a computer's processor (CPU), handles
information. The 64-bit version of Windows handles larger amounts of random access
memory (RAM) than a 32-bit system.

2) How can I tell if my computer is running a 32-bit or a 64-bit Windows?

Open System by clicking the Start button, right-clicking Computer, and then
clicking Properties. Under System, you can view the system type:

Page. 4 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3) How do I tell if my computer can run a 64-bit version of Windows?

To run a 64-bit version of Windows, your computer must have a 64-bit-capable

processor. To find out if your processor is 64-bit-capable in Windows 7 or Windows
Vista, do the following:

1. Go to Control Panel, in the search box, type and locate Performance

Information and Tools:

2. In Windows 7, click View and print detailed performance and system

information.

In the System section, you can see what type of operating system you're
currently running under System type, and whether or not you can run a 64-bit
version of Windows under 64-bit capable. (If your computer is already running
a 64-bit version of Windows, you won't see the 64-bit capable listing.)

4) Can I upgrade from a 32-bit version of Windows to a 64-bit version of

Windows7 or from a 64-bit version of Windows7 to a 32-bit version of
Windows?

 You can use the Upgrade option during Windows 7 installation, which
preserves your files, settings, and programs, only if you're currently running a
32-bit version of Windows Vista and you want to upgrade to the 32-bit version
of Windows 7.

 Similarly, if you are running a 64-bit version of Windows Vista, you can only
perform an upgrade to a 64-bit version of Windows 7.

 If you want to move from a 32-bit version of Windows to a 64-bit version of

Windows 7 or vice versa, you'll need to back up your files and choose the
Custom option during Windows 7 installation. Then, you'll need to restore your
files and reinstall your programs.

 To install a 64-bit version of Windows 7 on a computer running a 32-bit version

of Windows, you'll need to start, or boot, your computer using a 64-bit Windows
7 installation disc or files.

Page. 5 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

5) Can I run 32-bit programs on a 64-bit computer?

 Most programs designed for the 32-bit version of Windows will work on the 64-
bit version of Windows. But there are notable exceptions such as many antivirus
programs.

 Device drivers designed for the 32-bit version of Windows don't work on
computers running a 64-bit version of Windows.

6) Can I run 64-bit programs on a 32-bit computer?

 If the program is specifically designed for the 64-bit version of Windows, it

won't work on the 32-bit version of Windows.

 Device drivers designed for the 64-bit version of Windows don't work on
computers running a 32-bit version of Windows.

1.3- Windows OS Functions:

1. Hardware management: The operating system enables the computer to

communicate with peripheral devices, such as a printer or a mouse.

2. Software management: The operating system provides a mechanism for initiating

processes that include programs, such as Microsoft Word and Microsoft
PowerPoint.

3. Memory management: The operating system allocates memory to each

application, without affecting the memory used by other applications.

4. Data management: The operating system manages files stored on hard disks and
other mass storage devices. The operating system enables applications to create and
open files, transfer data between devices, and perform such file management tasks
as renaming and deleting.

5. Coordinating the activities of the various devices on the network to ensure that
communication takes place as and when required. Providing clients with access to
network resources, including files and such peripheral devices as printers and fax
machines.

6. Ensuring the security of data and devices on the network.

Page. 6 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

1.4- Windows OS Features:

The Windows operating system provides many
enhanced features for its users:

1. Multitasking: Multitasking enables users to

run multiple applications simultaneously on
the same system. Windows and UNIX are
multitasking, while DOS is single tasking.

2. Memory Support: Nowadays, Windows provides support for large RAM size (4
Gb, 6 GB, 8 GB --- 64 GB and UP), in order to support large and multiple
applications running simultaneously

3. Symmetric multiprocessing (SMP) Scalability: is a technology that allows an

operating system to use multiple processors simultaneously to improve
performance.

4. Plug and Play: With Windows, it is easy to install a Plug and Play device. This is
a device that you plug in and use immediately without having to perform a
complicated setup process.

5. Clustering: Advanced versions of Windows server provides the ability to group

independent computers together (as clusters) to run a common set of applications.
This arrangement of computers avoids a single point of failure. If one computer
fails, another computer in the cluster provides the same services in its place.

Page. 7 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

6. Terminal Services: Terminal Services provides remote access to a server desktop

through a terminal emulator (application).

7. Remote Installation Services (RIS): enables an administrator to deploy an

operating system throughout the organization, without needing to physically visit
each client computer.

1.5- The File System:

A file system is used to organize the storage in memory disks (hard disk, floppy disk, flash
memory…). Each Operating system has its own file system that defines the minimum and
maximum size of disk partitions; how data will be stored or deleted from the disk; and the
security features of files...

For example: in MS Windows the file systems FAT (File Allocation Table) and NTFS
(New Technology File System) are used.

Page. 8 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Comparison
FAT 16 - FAT 32 NTFS
File Allocation Table New Technology File System

No security feature Security feature

Limited partition size (FAT 16 only 2GB, Large partition size.

FAT 32 only 32GB – 128 GB)

Supported by win98, win2000, win XP Supported by win2000, XP, win7

and up

No Disk Quota feature Disk Quota feature

No Encrypting File System (EFS) Encrypting File System (EFS)

Page. 9 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 You can convert your hard disk partition from FAT32 to NTFS (so you won’t lose
your data like in FORMAT operation):

 On the other hand, you cannot convert from FAT to NTFS, unless you format the
partition!

1.6- Windows Client vs. Windows Server:

Computers in a network function as either clients or servers.

 Client computer: Client computers (such as the users’ computers) make requests
for services or data on the network from computers referred to as servers.

 Server Computer: Servers are computers that provide services and data to client
computers.

 File and print servers: provide file and printer resources from a centralized
location.

 Mail servers: Mail servers manage the e-mail services for the network.

 Database servers: can store large amounts of data in a centralized location

and make this data available to users so that they do not need to download
the entire database.

 Directory services servers: provide

a central location to store information
about the network, including the
identity of the users accessing the
network and the names of the
resources available in the network.
This enables network security to be
administered centrally.

Page. 10 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

1.7- Peer to Peer vs. Client/Server Networks:

Based on how the computers in a network are configured and how they access information,
networks are classified into two types: peer-to-peer and client-server.

 Peer to Peer:

In a peer-to-peer network, there are no dedicated servers. All computers are equal and
therefore are known as peers. Each computer functions as both a client and a server.
Security is provided by the local directory database on each computer. The user at each
computer determines what data on that computer is shared on the network.

Peer-to-peer networks are also called workgroups. The term workgroup describes a small
group of individuals, typically 10 or fewer, who work together. Peer-to-peer networks are
good choices for environments where:

- There are 10 or fewer users.

- Users share resources and printers, but no

specialized servers exist.

- Security is not an issue.

- The organization and the network will experience

only limited growth within the foreseeable future.

 Client/Server Network:

As a network grows, and the demand on shared

resources increases, most networks needs a
dedicated servers. The configuration of these
servers is optimized to process requests from
network clients. Client/server networks have
become standard models for networking.

As networks increase in size and distance, more

than one server is usually needed. Distributing the
network tasks among several servers ensures that
each task is performed as efficiently as possible.

Page. 11 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 LAB 1– Identifying Computers on a Network

1. Identify which operating system is running on your computer.

2. Identify the name of your computer.

3. Determine whether your computer is located in a workgroup or domain.

4. Identify/Change the IP Address of your computer.

5. Identify the MAC Address.

6. Using Windows Help.

7. Using the Task Manager.

8. Comprehension Questions:

A. All the employees in your organization have access to individual

hardware and software resources. Lately, the number of employees
has increased. What can you do to ensure that several employees can
share the existing hardware and software simultaneously?

B. When installing a network, you want to ensure that an administrator

can maintain the network with minimal effort. What type of network
enables this and also ensures that each computer functions as both a
client and a server?

C. Your company’s network has increased in size due to an increase in

the number of connected computers and in the physical distance and
traffic between them. Which network type is most suitable for use in
this situation?

D. In a workgroup, where are the user accounts located?

Page. 12 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 2- Administrative Tasks

2.1- Working with Administrative Tools:

A network administrator performs different administrative tasks in one of the following
areas:

Once you go through Control Panel, you can see a shortcut to Administrative Tools
located in the System and Security group that takes you to the list of shortcuts.

 You can also, open Administrative Tools by clicking the Start button , and then
clicking Control Panel. In the search box, type administrative tools, and then click
Administrative Tools.

Some common administrative tools in this folder include:

 Computer Management. Manage

local or remote computers. Using
Computer Management, you can
perform many tasks, such as
monitoring system events, configuring
hard disks, and managing system
performance.

Page. 13 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Event Viewer. View information about significant events, such as a program

starting or stopping, or a security error, which are recorded in event logs.

 Performance Monitor. View advanced system information about the central

processing unit (CPU), memory, hard disk, and network performance.

 Device Manager:

 Shared Folders:

Page. 14 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Disk Management. With Disk Management you can manage hard disks and their
volumes and partitions. There are a wide variety of options at your disposal. For
example, you can initialize disks, create volumes, and format volumes with the
FAT, FAT32, or NTFS file systems.

One of the most common tasks performed in Disk Management is to create a

partition (volume) on a hard disk. In order to accomplish this, you need to be logged
in as an administrator and there has to be either unallocated disk space or free space
within an extended partition on the hard disk.

If you find that you don’t have any unallocated disk space, you can create some in
various ways. You can shrink an existing partition, delete a partition, or add an extra
hard drive to the system.

 Local Security Policy. View and edit Group Policy security settings. If you want
to create password policies, account lockout policies, and other settings on your
Windows 7 standalone systems. This is the place to do that.

 Services. Manage the different services that run in the background on your
computer.

Page. 15 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

2.2- Local User Accounts:

Windows 7 is a multiuser operating system. Every person using Windows 7 must log in
with an account, and each account has a personalized desktop, Start menu, documents
folder, history, favorites, and other customizations.
All of that stuff resides in the Users folder on the root of the system drive, where each
account has a subfolder named after it.

 Account Types: Standard vs. administrator accounts

Before you start creating new users on your Windows 7 computer, you should understand
the difference between the two main account types.

 Standard: Standard accounts are permitted to log on to the computer, run

programs, customize their accounts, and save files in their user folders. Users
are restricted from making system wide changes.

 Administrator: Administrators have full control over the system. They can
install software programs and hardware drivers, and they can create and
modify new users and groups. Additionally, they can reset passwords and set
policies. Every computer will have at least one Administrator account.

 The First User:

When Windows first installs, it asks you for a user name and password, which it then uses
to create your first account. This account joins the Administrators group, which has the
highest set of privileges. From this account you can create and manage all other user
accounts.

 If You Accidentally Delete Your Last Administrator Account:

Windows 7 has a built-in Administrator account that has no password and is hidden by
default. Like all other administrator accounts, it has full control of the system; for you to
use it, however, it must be the only remaining administrator account, and you must start
the computer in Safe Mode.

Page. 16 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 The Guest account: Windows 7 includes an account named Guest, which has a
bare minimum of permissions and is disabled by default. If you want to use this
account, click Local Users and Groups, expand Users, double-click on the Guest
account, and clear the Account is disabled check box.

 To view, create or edit user accounts:

1. Go to the Control Panel from the Start Menu.

2. Click Add or remove user accounts.

3. The Manage Accounts pane will appear. You will see all of the user
accounts here, and you can add more accounts or manage existing ones.

Page. 17 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 To create a new account:

1. From the Manage Accounts pane, click Create a new account.

2. Type an account name.
3. Select Standard user or Administrator.
4. Click Create Account.

By default, Windows assigns no password; you can make one by clicking on that user's
icon and selecting Create a password. Alternatively, you can leave it blank to allow the
user to set a password when they first log on.

 Edit/Changing an account's settings:

Once you've created a new account, you may want to add a password or make other
changes to the account's settings.

 To create a password:

1. From the Manage Accounts pane, click the account name or picture.
2. Type a password in the New password field, and retype it in the
Confirm new password field.
3. Type a password hint to help you remember your password.
4. Click Create password.

Page. 18 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Account passwords are case sensitive, which means capital and lowercase
letters are treated as different characters. For example, aBc1 is not the same as
abc1.

 Changing Your Password:

The simplest way to change your password when you are logged in is to press Ctrl-
Alt-Del and click Change a Password. In this window, you simply type in your old
password and your new one, and then confirm it. Administrators may also overwrite
the user name and change the password for another user.

 Changing Your Picture

Windows 7 allows you to choose a picture to associate with your account. This is the image
you click to log on to the computer. To change it, open Control Panel and choose Users
Accounts. Under Users, click Change your Account Picture. You can select from a
number of built-in images, or you can browse to one of your own images.

Page. 19 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Using the 'Local Users and Groups' Tool:

Some people prefer to use the legacy tool, called 'Local Users and Groups' to deal with
users and groups accounts. To access it, right-click Computer on the Start menu, and
select Manage. This will open Computer Management. From there, expand Local Users
and Groups.

 Creating a new user: Right-click on Users, select New User, and then enter the
user name. Optionally you may supply a full name, description, and password. Click
Create to make the account.

 Modifying users: In 'Local Users and Groups', expand Users and double-click on
the appropriate user name. On the General tab, you may modify the following
settings by checking the appropriate box:

 User must change password at next logon

 User cannot change password
 Password never expires
 Account is disabled
 Account is locked out (disabled).

 A note about disabling user accounts: A common administrative practice is to

disable an account rather than delete it when an employee leaves. That way, if
another user replaces that staffer, you can simply rename and re-enable the account,
and the new employee will have all the same settings as the previous one.

Page. 20 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

2.3- Local Groups Accounts:

Windows 7 also provides local groups, which you use to grant permissions to similar
types of users and to simplify account administration. If a user is a member of a group
that has access to a resource, that user has access to the same resource. You can give a user
access to various work-related resources just by making the user a member of the correct
group.

A local group is a group that is stored on the local computer's accounts database. Every
user account is a member of at least one group. There are built-in special groups
(predefined groups) that the Windows 7 system handles automatically:

 Administrators: Members of this group are local administrators and have full
permissions and privileges to the workstation. They can create accounts, modify
group membership, install printers, manage shared resources, and more. Because
this account has complete access, you should be very careful about which users you
add to this group. By default, the Administrator account, which is disabled by
default, and the initial user account are members of the Administrators local group.

Members of the Administrators group can perform the following tasks:

- Install the operating system.

- Install and configure hardware device drivers.
- Install system services.
- Install service packs, hot fixes, and Windows updates.
- Upgrade the operating system.
- Repair the operating system.
- Install applications that modify the Windows system files.
- Configure password policies.
- Configure audit policies.
- Manage security logs.
- Create administrative accounts.
- Modify groups and accounts that have been created by other users.
- Stop or start any service.
- Configure services.
- Increase and manage disk quotas.
- Increase and manage execution priorities.
- Remotely shut down the system.
- Assign and manage user rights.
- Reenable locked-out and disabled accounts.
- Manage disk properties, including formatting hard drives.
- Access any data on the computer.
- Backup and restore all data.

Page. 21 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Power Users: In earlier versions of Windows, this group is used to grant additional
privileges, such as the capability to modify computer settings and install programs.
In Windows 7, this group is maintained only for compatibility with legacy
applications.

 Guests: Guests are users with very limited privileges. Members can access the
system and its resources remotely, but they can’t perform most other tasks.

 Backup Operators: Members of this group can back up and restore files and
directories on the workstation. They can back up files regardless of whether the
members have read/write access to the files. However, they can’t change access
permissions on the files or perform other administrative tasks.

 Replicator: Members can manage the replication of files for the local machine. File
replication is primarily used with Active Directory domains and Windows servers.

 Users: Users are people who do most of their work on a single Windows 7
workstation. Members of the Users group have more restrictions than privileges.
They can log on to a Windows 7 workstation locally, keep a local profile, lock the
workstation, and shut down the workstation.

 Cryptographic Operators: Members can manage the configuration of encryption,

IP Security (IPSec), digital IDs, and certificates.

 Event Log Readers: Members can view the event logs on the local computer.

 Network Configuration Operators: Members can manage network settings on the

workstation. They can also configure TCP/IP settings and perform other general
network configuration tasks.

 Remote Desktop Users: Members can log on to the workstation remotely using
Terminal Services and Remote Desktop.

Page. 22 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Creating a new group: Right-click on Groups in the 'Local Users and Groups'
tool, and select New Group. Specify a name and description, and click Add to add
the members. Finally, click Create.

 Managing User Accounts for Domain Members

Each computer is a member of either a workgroup or a domain. Computers that are part
of a domain usually have a network administrator who manages user accounts. These
accounts are not located on individual computers, but in a central database called Active
Directory. A workgroup is more of a peer to peer network where each computer is
managed separately. Only computers running Windows 7 Professional or greater have the
option of joining a domain.

When a PC joins a domain, the user-management options change a bit. Parental controls
are unavailable, and you may create local users only through the 'Local Users and Groups'
management tool.

 Adding a domain user to a local group: In the Control Panel, open User
Accounts, and click on Give other users access to this computer. From there, type
in the person's user name and the domain (or click Browse to select it from Active
Directory), click Next to add them to a group, and then click Finish.

Page. 23 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

2.4- Parental Controls:

Windows 7's parental controls offer parents a way to keep their children's Web surfing or
gaming in check. To arrange parental controls, go to Control Panel and select User
Accounts and Family Safety, Set up parental controls for any user. Click on the user for
which you want to set controls.

 Look the following example: At 10 p.m., Windows will log Jeffrey off
automatically if he is still on the computer. Turn on parental controls by selecting
On, enforce current settings, and then modify each setting as appropriate.

- Time limits: If you want Windows to boot your child off the computer after, say,
10 p.m., this is where you can explicitly permit or deny computer usage by time
and by the day of the week.
- Games: Here you can define whether the account is permitted to play games. You
may also allow or block particular games.
- Allow and block specific programs: If you want to limit your child's computer
use to certain applications, this is where you choose them.

Page. 24 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 LAB 2– Working with Local Users and Groups:

1. Logon as administrator.
2. Create a local user accounts named “Taline” using Control Panel.
3. Give Taline the password: 123456
4. Change the picture for Taline.
5. Change the account type for Taline from Standard to Administrator.
6. Use MMC to add a snap in for Local Users and Groups in computer
management.
7. Use the Local Users and Groups Tool to create a new local user account with the
following properties:
- User Name: Hussein
- Full Name: Mrad
- Description: Best Teacher
- Password: 123456 Password Properties: Never Expire.
8. Reset/Change the password for Taline.
9. Rename Taline to Talia.
10. Create a new local group named “INFO”.
11. Add Talia and Hussein to INFO.
12. Grant Hussein the administrator rights.
13. Disable the user Talia.
14. Enable the user Talia.
15. Can Talia change its password?
16. When a user cannot change its password?
17. How can Talia change its password?
18. Logoff. Logon as Talia and change its password to: 123
19. Logon as administrator and set Parental Control for Talia: Time, Games and
Programs.
20. Delete all users and groups created in this LAB.

Page. 25 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 3- Resources Management

- Disk Management and File Systems
- Folder and File Permissions

3.1- Disk Management and File Systems:

Disk Management is used to manage the drives installed in a computer - like hard disk
drives (internal and external), optical disk drives, and flash…
 Partitions:

Partitions divide and segment your disks. You can have a disk with either a single partition
or multiple partitions. Having multiple partitions helps you separate your OS files,
application files and data files. You may also need multiple partitions to run a multi-boot
system. This would especially be the case if different OSes used different file systems.
Here are some common things that you can do in Disk Management:

 Partition a Drive
 Format a Drive
 Change a Drive's Letter
 Shrink a Partition
 Delete a Partition
 Change a Drive's File System (convert)

 To Resize a volume: You can either extend (to add a deleted partition) or shrink a
volume (split an existing partition) by taking the following steps:

1. Open the Disk Management MMC snap-in.

2. Right-click on the volume to be extended. Select Extend Volume.
3. The Extend Volume wizard appears. Click Next.
4. The Select Disks screen appears. You can choose to extend the volume on
the current disk or extend it to another disk.
5. Click Next. Then, click Finish. The volume is extended and maintains the
same file system as the original volume.

Page. 26 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 To Shrink a volume:

1. Open the Disk Management MMC snap-in.

2. Right-click on the volume to be shrunk. Select Shrink Volume.
3. When the Shrink Volume window appears, enter the amount of space by
which you would like to shrink the volume.
4. Click Shrink. The volume is shrunk and the freed-up space is seen as
unallocated space.

 To Delete a volume:

1. Open the Disk Management MMC snap-in.

2. Right-click on the volume to be deleted and select Delete Volume. You’ll
receive a warning that all your data will be erased.
3. Click Yes to continue. The volume will be deleted and the freed disk space
will be returned to unallocated space.

Page. 27 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Windows File Systems in details:

The File System determines how this information is
organized and stored on your disks. If you're
installing a new hard disk in your computer, you need
to Format it using a file system before you can use
it.
In Windows 7, there are three file system options you
can choose from: NTFS, FAT32, and the older and
rarely-used FAT (known as FAT16).

 NTFS:

NTFS is the preferred file system for Windows 7. It

has many benefits over the earlier FAT32 file system,
including:

1. File system recovery: The ability to recover

from some disk-related errors automatically.

2. Improved support for larger hard disks.

3. Better security because you can use permissions and encryption to restrict access
to specific files for certain users.

4. Disk quotas.

 You can usually convert a partition to NTFS from a different type of file system:

 On the other hand, Converting a hard disk partition or volume from NTFS to
FAT32 requires that you reformat the partition, which deletes any data on it.

Page. 28 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 FAT32:

FAT32 was used in some earlier versions of Windows, and is currently used for most USB
flash drives. FAT32 doesn't have the same security-related features as NTFS, so if you
have a FAT32 hard disk or partition in Windows 7, anyone who has access to your
computer can read any file on it.

FAT32 also has size limitations. You can't create a FAT32 partition greater than 32
gigabytes (GB), and you can't store a single file that's larger than 4 GB on a FAT32
partition.

The main reason to format a hard disk or partition with FAT32 is if you will sometimes
want to run Windows 95, Windows 98, or Windows Millennium Edition on your
computer. This type of configuration is known as a multiboot configuration.

If you want to set up a multiboot configuration like this, you'll need to install the earlier
operating system on a FAT32 (or FAT) partition and ensure that it's a primary partition
(one that can host an operating system).

 Changing Drive letter:

Page. 29 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 How to Format a partition:

Page. 30 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3.2- Permissions and Access Control:

Permissions are rules associated with objects on a computer or network, such as files and
folders. Permissions determine whether you can access an object and what you can do with
it. For example, you might have a read permission to a file but you might not have
permissions to make changes to it.
Permissions (Read, Write, Modify, Full Control…) can be assigned on an object by
administrators, Object creators (owner) or Users having full permissions feature on
that object. Each assignment of permissions to a user or group is represented in the system
as an entry in an access control list (ACL).

Page. 31 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Explicit vs. Inherited permissions:

There are two types of permissions:

 Explicit permissions: are those that are set by default on non-child objects (e.g.
folders) when the object is created, or by user action on non-child, parent, or child
objects (e.g. files).

 Inherited permissions: are those that are propagated to an object from a parent
object.
By default, objects within a container inherit the permissions from that container when
the objects are created. For example, when you create a folder called MyFolder, all
subfolders and files created within MyFolder automatically inherit the permissions from
that folder. Therefore, MyFolder has explicit permissions, while all subfolders and files
within it have inherited permissions.

 File and Folder Permissions:

The following table lists the permission levels that are typically available for files and
folders:

Permissions Description

Full Control Permits the user to:

 View file name and subfolders

 Open subfolders and files (read)
 Change the folder's files (modify, write)
 Delete the folder and its files
 Change permissions
 Take ownership of the folder and its files

Modify Permits the user to:

 View file name and subfolders

 Open subfolders and files (read)
 Change the folder's files (modify, write)
 Delete the folder and its files

Page. 32 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Read & Execute Permits the user(s) to:

 View file names and subfolder names

 Navigate to subfolders
 View data in the folder's files
 Run applications

List Folder Contents Permits the user(s) to:

<<Applicable only to folders>>  View the file names and subfolder names
 Navigate to subfolders
 View folders
 Does not permit access to the folder's files

Read Permits the user(s) to:

 View the file names and subfolder names

 Navigate to subfolders
 Open files
 Copy and view data in the folder's files

Write The Read permissions, plus permits the user(s) to:

 Create folders
 Add new files
 Delete files

Page. 33 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 How to Set/Change File Permissions on Windows 7?

 Steps:

1. Right click on the object (file, folder…)

and select Properties.

2. Select the Security tab.

Page. 34 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3. Click Edit. The security tab opens in a new window.

4. Click Add. The Select Users, Computers, or Groups dialog box appears.

Page. 35 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

5. In the Enter the object names to select text box, type the name of the user or group
that will have access to the folder.You may type the beginning of the name and then
click Check Names. The name will either be resolved or a list of users beginning
with those characters will display for you to select from.

6. Click OK. The Properties dialog box reappears.

7. Click OK on the Security window.

8. Continue with Setting Permissions:

Once you have granted a group or individual user access to a folder, you will need to
set permissions for the new user(s). When you set permissions, you are specifying what
level of access a user(s) has to the folder and the files within it. Be careful about
checking Deny for any permissions, as the Deny permission overrides any other related
to Allow permissions.

Folder permissions can be changed only by the owner of the folder (i.e., the creator)
or by someone who has been granted permission by the owner. If you are not the owner
of the folder or have not been granted permission by the owner, all checkboxes will be
gray. Therefore, you will not be able to make any changes until the owner grants you
permission.

Page. 36 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Now, click Edit:

1. In the Group or user name section, select the user(s) you wish to set permissions
for.

2. In the Permissions section, use the checkboxes to select the appropriate permission
level.

3. Click Apply.

4. Click Okay. The new permissions are added to the file or folder.

Page. 37 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Advanced Folder Level Permissions:

When you set permissions, you specify what users are allowed to do within that folder,
such as save and delete files or create a new folder. You are not limited to choosing one
of the standard permissions settings (Full Control, Modify, Read & Execute, List Folder
Contents, Read, or Write).

Instead of choosing one of these settings, you may set your own unique permissions based
on what you would like users to be able to do.

 Steps:

1. Access the Properties dialog box.

2. Select the Security tab.

3. Near the bottom right of the Properties dialog box, click Advanced.
The Advanced Security Settings dialog box appears.

Page. 38 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

4. Optional: If you do not want the new folder to have the same permissions as the
"parent" (original) folder and wish to set unique permissions for the new folder,
click the Change Permission button near the bottom. This will bring up a similar
window.

a. Uncheck the Include inheritable permissions from this object's parent

checkbox. A Windows Security warning dialog box will appear.

b. Click Remove if you want to remove someone from permission all together.

5. Click the Change Permissions button if you haven't done so already.

6. Select the appropriate user OR click Add and enter the name of the user or group
that will have access to the folder.

Page. 39 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

7. Click Edit. The Permissions Entry dialog box appears.

8. In the Permissions section, use the checkboxes to set the appropriate permissions.
Note: If you are not the owner of the folder or have not been granted permission by
the owner, all checkboxes will be gray.

9. From the Apply to: pull-down list, select what level you wish to apply these
permissions to. Then, Click OK.

10. In the Advanced Security Setting dialog box, click OK.

11. Click OK from the duplicate Advanced Security Settings.

12. In the Properties dialog box, click OK. The new folder permissions are added for
your specified user(s).

Page. 40 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 How permissions are handled when you copy and move files and
folders?

 Copying Files and Folders

1. When copying a folder or file within same NTFS partition, the copy of the folder
or file inherits the destination folder permissions  Permissions change with
copy.

2. When copying a folder or file between different NTFS partitions, the copy of the
folder or file inherits the destination folder permissions Permissions change
with copy.

Page. 41 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Moving Files and Folders:

1. When moving a file to a folder within the same NTFS partition, the folder or file
will retains its original permissions  No change in permissions.

2. When moving a folder or file between different NTFS partitions, the file or folder
will inherit the destination folder permissions.  Permissions change.

Notes:

1. To copy folders and files within same NTFS partition or between NTFS partitions,
you must have read permissions for the source folders and for the destination
folder you should have write permission.

2. To move folders and files within an NTFS partitions, for the destination folder you
should have write permission and modify permissions for source folder to
configure the options.

3. When copying or moving folders or files to non NTFS partitions such as File
Allocation Table (FAT), the files or folders will lose their all NTFS permissions 
Permissions are lost.

Page. 42 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 How to Take the Ownership of a File or Folder?

In Windows 7, there are some files and folders that are meant only for administrators to
access, if you are not an administrator then you cannot access it and will instead get Access
Denied error. Also, to enhance security, Microsoft has even denied Administrators access
to some folders.

The way to fix this error is to give yourself permission to access the file or folder. By
giving all permission to your account, you will be able to get complete control of a folder.

But in some cases only the owner can assign the permission for various users. Let’s see
how to change Ownership.

Changing Ownership:

To change ownership, right-click the file or the folder, select Properties, and go to Security
tab. Now click the advanced button:

Next, you need to go to Owner tab and hit the Edit button. Then in the new dialog window
choose the new owner and then click OK.

Page. 43 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Disk Quotas:

Disk quotas let you specify a limit to the amount of disk space for users to use. This is
useful if you have limited amount of disk space available. You can control how much disk
space everyone uses. You can configure disk quotas on the various disk volumes within
your system. You can actually have two volumes on the same disk with different quotas.

 How to configure disk quotas?

1. In the Disk Management MMC snap-in or Windows Explorer, right-click the volume
for which you want to enable quotas and select Properties.

2. Go to the Quota tab.

3. Check the box for Enable quota management. Once you’ve enabled quota
management, there are several possible configuration options:

 Deny disk space to users exceeding quota limit: If you select this option, once a
user exceeds his quota, he will no longer be able to write to the disk. This will help
prevent a user from going over his quota, but it can cause applications to perform
improperly.

Page. 44 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Limit disk space to: By default, disk space is unlimited. You can specify the limit
for the amount of disk space the user can use.
 Set warning level to: Once you set a disk space limitation, you can also set a warning
level. This lets you specify at what level of disk usage the user will begin receiving
disk-space warnings.
 Log event when a user exceeds their quota limit: This specifies whether an event
will be logged to the system log when the user exceeds his amount of allocated disk
space.
 Log event when a user exceeds their warning level: This specifies whether an event
will be logged to the system log when a user exceeds the amount of disk space usage
designated at the warning level.
 Quota entries: This lets you specify quota options for different users and groups.

Page. 45 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 LAB 3– Disk Management and Permissions

1. Log on as: administrator.

2. What is the file system used for your hard disk? Justify.

3. What are the drives installed on your computer? Justify.

4. Show me how you can format a partition of your hard disk.

5. Show me how you can change the drive letter of your D: partition.

6. Create the following Local User accounts:

 User name: Mahmoud

 Description: Engineer
 Password :
 Password Properties: Permanent password.

 User name : Doha

 Description : Doctor
 Password :
 Password Properties: password never expires.

7. Create two new local groups accounts named : engineering , medicine

8. Add the user Mahmoud to the group: engineering

9. Add the user Doha to the group: medicine

10. Create a new folder named LAB3 on your C: drive.

11. Create a new text file Test.txt inside the LAB3 folder.

12. Configure the NTFS permissions of the folder LAB3 as the following:

a. Remove everyone group.

b. Mahmoud: Full Control.
c. Engineering : deny Read.
d. Medicine : read only

Page. 46 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

13. Log off administrator and logon as: Mahmoud

14. Try to open the folder LAB3. Justify.

15. Log off Mahmoud and logon as Doha.

16. Open the folder LAB3. Create a new file named: Med. Justify.

17. Can you delete the file: Test.txt ? Justify.

18. Create a new folder named Doctors in C: drive. In Doctors, create the files
Health.txt and Nutrition.txt

19. Configure the NTFS permissions of the folder Doctors as the following:
a. Remove everyone group.
b. Administrators: Deny read.
c. Doha: Full control

20. Log off Doha and Log on as: administrator.

21. Try to Open the folder Doctors. Justify.

22. What can you do as administrator to open and use the folder Doctors... Solve it, then
set the permissions on Doctors only for the administrator.

23. Now, create on the desktop a new file named: convert.txt ; write inside convert.txt
the cmd command to convert from FAT to NTFS.

24. Look at the permissions of the file convert.txt

25. Copy the file convert.txt into the folder Doctors. Now, look at its permissions.
Justify.

26. Move the file convert.txt from Doctors to your desktop. Now, look at its
permissions. Justify.

27. What are the minimum permissions required to copy a file? Explain.

28. What the minimum permissions required to move a file? Explain.

29. Who can set permissions on files and folders?

Page. 47 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

30. Enable quota management.

31. Deny disk space to users exceeding quota limit.

32. Set the default quota limit for new users to 5 GB and set the warning level to 4 GB.

33. Log event when users exceed their quota limit or warning limit.

34. Assign disk quota entry for the user Mahmoud:

 Quota limit 3 GB.

 Warning level 2 GB.

35. Prepare your D: partition for compression to save disk space.

36. Create a new folder named PRIVATE that will contain your private files. Create
any files inside PRIVATE or just copy some files to it.

37. Compress the folder PRIVATE to save disk space.

38. Encrypt the folder Private using EFS (encryption file system).

39. Create a new file file named SECRET and encrypt it.

 Not that you can also encrypt a file by copying it into your encrypted
folder.

 Your encrypted files can be opened only by you.

40. Decrypt the file SECRET.

41. Clean up. Delete all users, groups, folders and files created during this LAB.

Page. 48 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 4- Backups and Restore

4.1- What is Backup and Restore in Windows?

Windows Backup allows you to make copies of data files
on your computer. You can let Windows choose what to
back up or you can select the individual folders, libraries,
and drives that you want to back up.
By default, your backups are created on a regular schedule.
You can change the schedule and you can manually create a
backup at any time. Once you set up Windows Backup,
Windows keeps track of the files and folders that are new or
modified and adds them to your backup.
 Set the Backup:

To set up a backup in Windows 7:

1. Open up Computer, right-click on your local drive and select Properties. Then
click on the Tools tab and click the Back up now button.

2. In the Back up or restore your files window click the link to set up a backup.

Page. 49 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3. Windows will search for a suitable drive to store the backup or you can also
choose a location on your network. If you backup to a network location you might
need the password to the share.

4. You can have Windows choose what to backup or you can choose the files and
directories.

Page. 50 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

5. Select the files and folder to include in the backup. Also notice you can select the
option to create an image of your local drive.

6. Now review the backup job and make sure everything looks correct.

Page. 51 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Here you can also schedule the days and times the backup occurs.

7. Save the backup settings and kick off your first backup and while it runs you can
monitor the progress.

Page. 52 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

8. Click the View Details button to see exactly what is being backup during the
process.

 When the backup is complete you will see the two backup files and image folder if
you created one. I backed up 20GB of data and it took around 15 minutes including
the system image which came to 11GB.

Double click on the backup file and can restore files or manage the size of the
backups folder.

Page. 53 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Restore Files from Backup:

If you need to go back and restore a file from a backup click on Restore my files in the
Backup and Restore Center.

Now you can browse or search the most recent backup for a file or folder your missing.

Next you can restore them back to the original location or choose a different spot then click
Restore.

Page. 54 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Progress of the restoration will vary depending on the size of the data and location it’s
restoring from.

Page. 55 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Manage Backup Size:

Sometimes you may need to recover some disk space and Windows 7 allows you to manage
the size of your backups. In the Backup and Restore section click on the Manage Space
link.

Your given a summary of the backup location and what is taking up space from the backup.

Click on the View backups button to check the different dated backups where you can
delete older ones if needed.

Page. 56 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

You can also change how windows retains older system images.

Page. 57 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 LAB 4– Backup and Restore Practice:

1. Log on as: administrator.

2. Create a new folder named folder4.
3. Take a backup of folder4.
4. Delete the folder4 and empty the recycle bin.
5. Restore the folder4 from the backup.

 System Restore:

System Restore helps you restore your computer's system files to an earlier point in time.
It's a way to undo system changes to your computer without affecting your personal files,
such as e-mail, documents, or photos. System Restore uses a feature called system
protection to regularly create and save restore points on your computer. These restore
points contain information about registry settings and other system information that
Windows uses. You can also create restore points manually.

 System image:

Windows Backup provides you with the ability to create a system image, which is an exact
image of a drive. A system image includes Windows and your system settings, programs,
and files. You can use a system image to restore the contents of your computer if your hard
drive or computer ever stops working.

When you restore your computer from a system image, it is a complete restoration; you
can't choose individual items to restore, and all of your current programs, system settings,
and files are replaced. Although this type of backup includes your personal files, we
recommend that you back up your files regularly using Windows Backup so that you can
restore individual files and folders as needed.

When you set up scheduled file backup, you can choose whether you want to include a
system image. This system image only includes the drives required for Windows to run.
You can manually create a system image if you want to include additional data drives.

 Previous versions:

Previous versions are copies of files and folders that Windows automatically saves as part
of system protection. You can use previous versions to restore files or folders that you
accidentally modified or deleted, or that were damaged. Depending on the type of file or
folder, you can open, save to a different location, or restore a previous version. Previous
versions can be helpful, but should not be considered a backup because the files get
replaced by new versions and will not be available if the drive were to fail.

Page. 58 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 5- Sharing Resources on a Network

5.1- Resource Sharing:

Resource sharing is a feature in Windows that allows to share resources (folders, printers,
disks…) over a network. We can ensure security of our shared data by applying different
sharing permissions.
Historically, when it came to Windows networks, there were 2 basic types to consider:
Company networks typically have a server and a domain environment, while small office
and home networks use a peer-to-peer type network called a workgroup in Windows.
Windows 7 adds Homegroups to make workgroup sharing easier. Let's look at a
description of each type:
 Workgroups:

- All computers are peers which means no computer has control over another
computer. All computers must be on the same local network or subnet.

- Each computer has a set of user accounts. To log on to any computer in the
workgroup, you must have an account on that computer, or know the username and
password of an account on that computer.

- A workgroup is not protected by a password.

 Homegroups:

- Resource sharing can be done through home group feature of Windows 7. Home
group is a new feature for sharing files, folders and printers on a small network.

- Computers on a home or small office network must belong to a workgroup, but they
can also belong to a homegroup. A homegroup makes it easier to share documents
and printers with peers.

- A homegroup is protected with a password, but you only need to type the password
once when adding a computer to the homegroup.

Page. 59 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Domains:

- Must have at least 1 server. Network administrators use servers to control the
security and permissions for all computers on the domain. Domain users must
provide a password or other credentials each time they access the domain.

- If you have a user account on the domain, you can log on to any computer on the
domain without needing a local account on that computer.

- There can be thousands of client computers in a domain.

- The computers can be on different local networks.

- Domain users can join an existing Homegroup, but cannot create one.

- When setting up your computer on a network in the Network and Sharing Center,
you will choose whether your computer is part of a workgroup or a domain.

5.2- Create a Homegroup:

To create a Homegroup, follow these steps:
1. From the Network and Sharing Center, click Choose homegroup and
sharing options.

Page. 60 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

1. Click Create a homegroup. Select the items you wish to share and click Next.

2. On the next screen, Windows will assign a password to your homegroup which can
be changed later. Write down the password which will be needed by others whom
you want to allow access to your group. Click Finish.

Page. 61 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3. After completing the wizard, you will see the Change homegroup settings window.
Here you can change the types of files that are shared, change the password, allow
streaming of shared media, leave the homegroup, and modify advanced settings.

4. Clicking on Change advanced sharing settings will bring up the screen below. Here
you can customize sharing settings for each network profile. This screen can also
be reached by clicking on the Change advanced sharing settings link in the left
pane of the Network and Sharing Center.

Page. 62 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Summary: Joining a homegroup is simple

From the Network and Sharing Center, click on the Homegroup link in the lower left
pane. On the next screen, any available homegroups on your networks will show and
you can click the join now button. You must have the homegroup's password to join
and your computer's network location must be set to Home.

In some cases, you might want to prevent access to certain files or folders within your
shared Libraries. To do that, right-click the folder, and then do one of the following:

 To share the folder with nobody, click Share with, and then click Nobody.

 To share the file or folder with specific people, click Share with in the toolbar, click
Specific people, select each person with whom you want to share with the file or
folder, and then click Add. Click Share to close the File Sharing dialog box. Sharing
with specific people only works if they’ve linked their profiles to an online ID.

 To share the file or folder with the entire homegroup, click Share with in the
toolbar, and then click either HomeGroup (Read) or HomeGroup (Read/Write).

Page. 63 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Shared Folders:
Shared folders allow you to share data stored on your computer with other users on your
network. You can share individual folders by right-clicking the folder you wish to share,
choosing Properties, and then clicking the Share tab of the folder’s properties.

This window provides two different sharing options: Share and Advanced Sharing. You
can use shared folders when you cannot use HomeGroups, such as when you want to share
resources on a Workgroup network.

Clicking Share brings up the File Sharing dialogue box. You can use this window to set
share permissions for local user accounts, the Everyone group, or the HomeGroup.

If you click Advanced Sharing, you can specify the name of the shared folder. To configure
the permissions for the Shared folder, click the Permissions button.

Page. 64 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 65 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Managing Shares:
You can manage all shared folders on a client running Windows 7 in a central location
using the Shared Folders node of the Computer Management console:

- The Shares node, shown below, displays all shared folders on the computer.

- The Sessions node provides details on which remote users currently are connected
to shared folders, where they are connecting from and how long they have been
connected.

- The Open Files node displays the folders and files that remote users are accessing.
You can edit the properties of an existing share by right-clicking it within this
console and selecting properties. You can create a shared folder by right-clicking
the Shares node and then clicking New Share. This starts the Create a Shared Folder
Wizard.

Page. 66 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Hidden (Masked) Share and UNC name:

A hidden share is identified by a dollar sign ($) at the end of the share name. Hidden
shares are not listed when you look through the shares on a computer. By default, Windows
can enable some hidden shares such as the Root partitions or volumes (C$ and D$) and the
PRINT$ share.

In a network, the Universal Naming Convention (UNC) is a way to identify a shared file
in a computer. In Windows operating systems, the UNC name format is:

Run: \\servername\sharename

Page. 67 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

5.3- Sharing Printers:

You can connect a print device (printer or copy machine) directly to your Windows 7
computer with a USB connection, or indirectly through a network. You can then print to
the printer from the locally connected computer, or you can share the printer so that other
users and network applications can print to the printer over the network. When setting up
the printer, you will add either a local printer or a network printer.

 Adding a Printer:
You can connect to a shared printer by going to the Devices and Printers control panel and
clicking Add a Printer. Select Add a network, wireless or Bluetooth printer. A window
comes up showing the available printers on the network.

Note that if the printer or the computer it is connected to is turned off or sleeping,
the printer will not show in the list. If the printer you wish to connect to is not on
the list, click The printer I want isn't listed.

Here you can browse the network for the printer, enter the share name and path to
connect, or enter an IP address or hostname if you have that information.

Page. 68 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Adding a TCP/IP Printer:

1. Click the Start button, type print in the Search programs and files box and click Add a
printer.

2. Choose Add a local printer.

Page. 69 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3. Click the bullet which says Create a new port and use the drop down menu to choose
Standard TCP/IP Port.

4. Click Next.
5. In the Hostname or IP Address field enter the IP Address for the printer you are adding.

Page. 70 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

6. Click Next.
7. Choose the driver that corresponds to your printer model (or click the Have Disk button
to search for downloaded drivers).

 Click Next.
 Click the bullet beside Use the driver that is currently installed (recommended).

 Click Next.

 Make sure the bullet is selected beside Do not share this printer.Click Next.

 Click to put a check mark beside of Set as the default printer (if you do wish to make it
your default printer).

 Click the Print a test page button (if you wish to do so). Click Finish. Your printer
should now be set up and ready to use.

Page. 71 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Connect to a Printer by Using a Web Browser:

With the Internet printing feature of Microsoft Windows, you can use your Web
browser to connect to shared printers on a print server that is running Microsoft
Internet Information Services (IIS).

Printing is implemented by way of the Internet Print Protocol (IPP), which is encapsulated
in the Hypertext Transfer Protocol (HTTP). By typing the Uniform Resource Locator
(URL) of a remote printer in the Address bar of your browser, you can connect to, and
print from the printer in the same way as if it were attached to your own computer.

You can view a Web page on which all printers on a print server are listed. From the Web
page of a specific printer, you can view information about the printer, such as printer model,
location, the number of documents waiting to print, as well as properties, such as print
speed and whether the printer supports color printing. You can pause, resume, and cancel
the printing of any document that you send to the printer. In addition, if you have Manage
Printers permission for the printer, you can also pause or resume operation of the printer.

 To connect to a printer using a Web browser:

1. Start Microsoft Internet Explorer.

2. In the Address bar, do one of the following:

 If you do not know the name of the printer to which you want to connect,
type the following, where PrintServer is the name of the print server:

http://PrintServer/printers/

For example, to view a list of all printers that are located on a print server
named MyPrintServer, type the following:

http://MyPrintServer/printers/

A list of all printers on the print server is displayed in your browser

window. In the list of available printers, click the name of the printer that
you want.
-OR-
 If you know the name of the printer to which you want to connect, type
the URL of the printer by using the following format, where PrintServer
is the name of the print server and Printer is the name the printer:

http://PrintServer/Printer/

Page. 72 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

For example, if you want to go directly the page of a printer that is named Laser that is
shared from a server called MyPrintServer, type the following:

http://MyPrintServer/Laser/

3. In the browser window, a Web page opens in which the printer properties are
displayed. Click the links to view more information about your printer, or
perform a printer or document action.

4. To connect to the printer, click Connect under Printer Actions.

You are connected to the printer, and Windows installs the appropriate printer
driver for your computer. After the installation is complete, the icon for this
printer is added to the Printers and Faxes folder on your computer. You can
then use, monitor, and administer the printer as if it were attached to your
computer.

Note: To connect to an Internet printer, you can also type the URL of the printer in any
window or folder with an Address bar, such as Windows Explorer, My Computer, or the
Printers and Faxes folder.

 Troubleshooting:

When you attempt to connect to a printer, you receive the following message in your
browser: This page cannot be found. This may occur if the URL of the printer is incorrect.

To resolve this issue, verify that you have the correct URL for the printer to which you
want to connect, and that it is typed correctly in the Address bar of your Web browser.

 View the Printers Installed on Your Computer:

To view the printers installed on your computer, click Start, and then click Printers and
Faxes. The printers installed on your computer are displayed in the Printers and Faxes
folder.

 To specify a default printer:

1. Click Start, and then click Printers and Faxes.

2. Right-click the printer that you want to use as the default printer, and then click Set
as Default Printer. A check mark is displayed next to the printer icon.

Page. 73 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Sharing a Printer:
If you wish to share a printer, follow these steps:
1. Click Start and select Devices and Printers.

2. Right click on the printer you wish to share and select Printer Properties.

Page. 74 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3. Next, click on the Sharing tab and check the Share this Printer checkbox. You can
name the share so that others can easily find it.

 If you are in a domain environment, you can also publish the printer in Active
Directory if you choose the List in the directory option.

 Click on the Additional Drivers button to see which drivers are installed. If the users
who will be connecting to this printer are using a different operating system, you
can check the box next to the driver for their OS so they do not have to find and
install the driver when they connect. If the driver does not show here, you can
download additional drivers from the manufacturer or get them off the installation
disk that came with the printer.

Page. 75 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

4. To set permissions for the printer, click on the Security tab.

When you share a printer, the everyone group is assigned the Print permission by default,
as shown in the Figure above. You can assign permissions to allow better printer
management. The available permissions are:

 Print - This permission allows a user to print to the printer and rearrange their own
documents that have been submitted to the printer.

 Manage This Printer - Users with this permission can pause and restart the printer,
change spooler settings, adjust printer permissions, change printer properties, and
share a printer.

 Manage Documents - This permission allows users or groups to pause, resume,

restart, cancel, or reorder the documents submitted by users that are currently in the
print queue.

Page. 76 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

5.4- Sharing Permissions and NTFS Permissions:

When you use shared folder permissions on an NTFS volume, the following rules apply:
1. You can apply NTFS permissions to files and subfolders in the shared folder. You
can apply different NTFS permissions to each file and subfolder that a shared folder
contains.

2. In addition to shared folder permissions, users must have NTFS permissions for the
files and subfolders that shared folders contain to gain access to those files and
subfolders.

3. When you combine shared folder permissions and NTFS permissions, the more
restrictive permission is always the overriding permission.

 LAB 5– Sharing Practice:

1. Log on as: administrator.

2. Create a local user named: snowwolf.

 Password: password.
 Password never expires.

3. Create a new local group: forest

4. Add the user snowwolf to the group forest.

5. Create in C: drive a folder names: mountains

6. Share the folder mountains.

7. Configure share permissions for mountains as follows:

 Everyone: full control.

 Forest: read.
 Snowwolf: deny read.

8. What are the share permissions for snowwolf on mountains?

9. Give a read sharing permission for snowwolf on mountains.

10. Create in C: a hidden shared folder named: private

Page. 77 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

11. Create in C: a new folder named: secret

12. Configure share permissions for secret as follows:

 Remove everyone group.

 Snowwolf: full control

13. Configure NTFS permissions for secret as follows:

 Remove everyone group.

 Administrators: full control.
 Forest: deny read.

14. What are the permissions of snowwolf on secret?

15. Logon As snowwolf:

 Access the folder mountain using UNC method.

 Can you see the folder private? Justify.
 Access the folder private using UNC method.
 Can you access the folder secret? Justify.

Join us on facebook to share knowledge and skills

FB group: snow-wolves

Page. 78 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 6- MS Windows Server

6.1- Windows Server Basics:

Windows Server is a brand name for a group of server operating systems released by
Microsoft. It includes all Windows operating systems that are branded "Windows Server",
but not any other Microsoft product. The first Windows server edition to be released under
that brand was Windows Server 2003. However, the first server edition of Windows
was Windows NT 3.1 Advanced Server, followed by Windows NT
3.5 Server, Windows NT 4.0 Server, and Windows 2000 Server; the latter was the first
server edition to include Active Directory, DNS Server, DHCP Server, Group Policy, SQL
Server, as well as many other popular features used today.
Windows Server operating system releases under the Long Term Servicing Channel are
supported by Microsoft for 10 years, with five years of mainstream support and an
additional five years of extended support. These releases also offer a complete GUI desktop
experience, along with GUI-less setups such as Server Core and Nano Server for releases
that support them.
This channel includes the following operating systems:

 Windows Server 2003 (April 2003)

 Windows Server 2003 R2 (December 2005)
 Windows Server 2008 (February 2008)
 Windows Server 2008 R2 (October 2009)
 Windows Server 2012 (September 2012)
 Windows Server 2012 R2 (October 2013)
 Windows Server 2016 (September 2016)
 Windows Server 2019 (October 2018)

Windows Server introduces many new features and offers significant improvements to
many features found in earlier Windows Server operating systems. Windows server is used
mainly:

- To ensure that network resources such as files, folders, and printers are available to
users.
- To secure the network so that available resources are only accessible to users who
have been granted the proper permissions.

Page. 79 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Windows Server Editions:

Multiple versions of Windows Server exist. Each version is defined to meet the need of a
certain market segment. Versions Include:

 Standard Edition
 Enterprise Edition
 Datacenter Edition
 Web Edition

1. Standard Edition:

The standard edition of Windows Server 2003 provides all of the basic functionality a
server operating system needs. The standard edition is intended to support small- to
medium-sized businesses as a file server, application server platform, or domain controller.

Windows Server 2003 has the following limitations:

 A maximum of four microprocessors may be used.

 No more than 4GB of memory is allowed. Of that 4GB, the operating system always
reserves 2GB for its own use, allowing applications on the server to share the
remaining 2GB.

2. Web Edition:

As the name implies, Windows Web Server is ideal for servers used as Internet or intranet
Web servers. It provides a subset of the overall Windows Server 2003 functionality.

Server edition does not support some advanced services, including:

 Advanced network security features like Internet Authorization Server

 Fax services
 Terminal services
 A maximum of two microprocessors may be used.
 No more than 2GB of memory is allowed.

Page. 80 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

3. Enterprise Edition:

Windows Enterprise Server builds upon the Windows Server 2003 standard edition. It
provides all of the same features and capabilities as the standard edition and adds the
following:

 Support for up to eight microprocessors in a server.

 Expanded memory support that reserves only 1GB of memory for the
 Operating system, allowing applications on the server to share the remaining 3GB.
 The ability to create clusters of two servers.

4. Datacenter Edition:

Windows’ Datacenter Server edition is the most powerful version of the operating system.
Like the Enterprise Server edition, Datacenter Server builds upon the standard Windows
Server 2003 edition and adds the following features and capabilities:

 Support for up to 32 processors in a single server

 Support for up to 64GB of memory
 Support for clusters of up to four servers

Microsoft designed Datacenter Server to be the most stable, reliable, and powerful version
of Windows Server 2003. As such, it is also one of the most expensive. Also, Datacenter
Server is the only version of Windows Server 2003 that you cannot purchase and install
yourself. Datacenter Server is targeted to large businesses that need the most powerful
servers possible, and who also require extremely reliable servers that rarely crash and rarely
need to be rebooted.

LAB Activity 1:

Determining the Windows Server 2003 Edition installed on your server using System
Properties:

• Start  My Computer  Properties  General Tab

Page. 81 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

6.2- Windows Networking Concepts:

Two different security models used in Windows configuration:
 Workgroup:

- Used on peer to peer networks.

 Domain:

- A domain is a logical group of computers

- Characterized by centralized authentication and administration
- Authentication provided through centralized Active Directory
- Active Directory database can be physically distributed across domain controllers
- Requires at least one system configured as a domain Controller

Three roles for a Windows Server 2003 system in a network:

 Stand Alone server

- Works as a local computer

 Member Servers

- A member server
- Has an account in a domain
- Is not configured as a domain controller
- Typically used for file, print, application, and host network services

 Domain Controllers

- Explicitly configured to store a copy of Active Directory

- Service user authentication requests
- Service queries about domain objects

LAB Activity 2:

Determining the Domain or Workgroup Membership of a Windows Server 2003 System:

Start  My Computer  Properties Computer Name tab

- Displays computer name and domain
- Change  OK

Page. 82 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

6.3- Windows Server Installation:

 Pre-installation:
- Determine whether it is a new installation or an upgrade of an existing version.
- Determine the file system format for the partition (FAT, FAT32, or NTFS.

 Partitioning and Format:

Page. 83 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Window Setup:

Page. 84 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

6.4- Active Directory Concepts:

Active Directory is the directory service for Windows Server.
 Features:
- Centralized management
- Hierarchical organization
- Scalability
- Security
- Standard name formats
- Integration with DNS
- Multi-master replication

 Global catalog:
- Stores a full Read-Write replica of all domain object attributes in a global directory.
- Has the ability to search the entire forest, but also keeps the database relatively light.
- Global catalog server is the name of the domain controller that maintains the global
catalog.

Page. 85 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Domain:
- A domain is a group of computers and devices on a network that constitute a single
security boundary within Active Directory, but can span more than one physical
location.

- Domains with contiguous namespaces are members of the same tree.

- A forest is a collection of domains sharing the same schema, configuration, and

global catalog.

- Transitive trust relationships exist among domains in trees and, optionally, in and
across forests.

- Organizational Unit (OU): A container object for organizing objects within a

domain. It can contain users, groups, resources, and other Ou(s). It enables the
delegation of administration to distinct segments of the directory, which provides
more flexibility in managing the objects in a business unit, department, or other
organizational division.

- Namespace are the names used to identify objects.

- Namespace resolution is done through the use of the Domain Name System (DNS),
which is central to the operation of Windows networks.

Page. 86 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 87 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Installing The Active Directory:

 Conditions to install Active Directory:

- Ms Windows Server edition
- NTFS active partition
- Network Connection
- Correct System Timing

 Install/Uninstall Active Directory:

- Using the Active Directory Installation Wizard

- Or Using the Run-command: Dcpromo.exe

Page. 88 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Managing Active Directory Objects:

 Searching for objects: Use the Find Users, Contacts, and Groups dialog box.

 Delegating administrative control: Allows you to delegate complete or partial

administrative control. Use the Delegation of Control Wizard.

 Modifying objects: Allows you to modify objects to meet changing needs. Use the
Properties dialog box.

 Moving objects: Allows you to move objects to meet changing needs. Use the
Move dialog box.

Page. 89 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 7- Domain Accounts on Windows Server

7.1- Introduction to User Accounts:

Page. 90 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

7.2- Domain User Accounts:

 A domain user account is used to log on to a domain and access network resources.

 Use the Active Directory Users and Computers console to create domain user
accounts.

 The domain controller replicates the new user account information to all of the
other domain controllers in the domain. After replication, all domain controllers in
the domain can authenticate the user during logon. All trusting domains allow the
user account to gain access to their resources.

Page. 91 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 92 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 93 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 94 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 95 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 96 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 97 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

7.3- Domain Group Accounts:

Page. 98 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 99 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 100 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 101 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Chapter 8- Network Printing

8.1- Microsoft’s printing terminology:
 Printer: The software interface that delivers the request for service from the
operating system to the physical print device

 Print server: A computer, such as a Windows Server 2003 computer, that is

connected to and sharing one or more print devices; used to print documents and to
manage the printers on a network.

 Printer driver: The software that contains the information used by the operating
system to convert the print commands for a particular model of print device into a
printer language such as Printer Control Language (PCL) or PostScript.

 Spooling: Refers to the process of caching the print request to a hard disk, which
releases the application quicker.

 Spool: A folder where converted print jobs are stored before they can be printed.

 Print queue: A list of print jobs from different workstations that is stored on the
spooler of the print server

8.2- Installing a Network Printer:

1. Install the printer locally on the computer that is to become the print server.
2. Share the printer to make it accessible to users over the network.

Page. 102 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 103 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Adding a TCP/IP printer:

Page. 104 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 105 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

8.3- Controlling Access to Printers:

For security reasons, you may decide to restrict certain types of printer usage to certain
users.
 Printer permissions:
- Restrict who can print to a printer.
- Restrict who can manage a printer.
- Restrict who can manage the documents sent to a printer.
 Types of permissions:
- Print:
 Users can connect to a printer and send it print jobs.
 They can also pause, resume, restart, or cancel their own print jobs.

- Manage Documents:
 Users can pause, resume, restart, and cancel all users’ printing jobs.
 They can connect to a printer and control job settings for all
documents, but they cannot control the status of the printer.

- Manage Printers:
 The highest level of access.
 Grants a user administrative control over a printer.
 Users can pause and restart the printer, share a printer, change printer
permissions, change printer properties, change printer drivers, or
delete a printer.

Page. 106 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 107 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 108 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 109 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 110 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

8.4- Publishing Printers in Active Directory:

 Active Directory publishes a PrintQueue object for each printer you install on a
Windows 2000 Server or Windows Server 2003 print server in the directory by
default.

 The PrintQueue object contains a subset of the information that the print server
stores for a printer.

 If you change the printer configuration on the print server, the change propagates to
Active Directory.

 The PrintQueue object is stored in the computer object for the print server.

 To view the PrintQueue objects and other sub-objects:

- Open the View menu and select the Users, Groups, and Computers as
containers command.

- Open the Computers folder and select any computer to display its sub-
objects.

Page. 111 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

Page. 112 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 LAB 7– MS Windows Server LAB

Domain controller, Active Directory, Network Testing, Organizational Units,
Domain Users, Groups, Permissions, Sharing, Quota, Compression/Encryption,
Printers, MMC, query.

 Domain Network Concept:

 Computers on a network can be part of a workgroup (Computers on home or peer to peer

networks) or a domain (computers on workplace networks).

 In a domain, one of the computers is a “domain controller server”. The administrator

uses the server to manage/control the security and permissions for all computers on the
domain. A domain controller contains a centralized directory service called “Active
Directory”.

 If you have a user account on the domain “domain user account”, you can log on to any
computer on the domain without needing an account on that computer.

 There can be hundreds or thousands of computers. The computers can be on different

local networks. So, we can create “Organizational units - OUs” that provides more
flexibility in managing the network objects (computers, users, groups, printers, and other
OUs) in a business department.

 Domains that share the same namespace form a single tree.

Page. 113 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 When multiple domains are connected by trust relationships and share a common
schema, configuration, and global catalog, but with different namespace they constitute a
forest.

 Installing Active Directory:

 Conditions:

- MS Windows Server edition.

- NTFS system partition.
- Network Connection.
- Correct System Timing.

 Install/Uninstall Active Directory on the Windows Server 2003 using the Active
Directory Installation Wizard or using the Run-command: Dcpromo.exe

Page. 114 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

 Practical Questions:

1. Logon as administrator.
2. Write a cmd command to determine your Host name:
3. Write a cmd command to determine your IP Address:
4. Determine your IP Address and Physical Address (MAC) using one command:
5. The command that verify the connectivity with the server (192.168.0.1):
6. The command that determines the route taken to a destination (the server 192.168.0.1):
7. What is a loopback test?
8. What is nslookup? nslookup is a network command-line tool for querying, testing and
troubleshooting the Domain Name System (DNS) to obtain domain name or IP address
mapping of your DNS server.

9. Change your IP Address to 200.10.1.1

10. How many local user-accounts you can create inside your domain?
11. How many domain-user-accounts you can create inside your domain?
12. Create an Organizational Unit named “your Exam ID”: OU24001
13. Create a domain user account “First letter of your Fname and your Last name”: Mnehme
- Full name (your full name): Mazen Nehme
- Password: Aa123456
- Password Never expires

14. Copy the user Mnehme to create a new domain user account: snowwolf

Page. 115 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

15. Rename the user Mnehme to mazen, Reset its password, Disable the user mazen, Enable
the user mazen.

16. Delete the user account mazen.

17. In OU24001 create a domain local group: G_local
18. In OU24001 create a domain Global group: G_global
19. Make snowwolf a member of G_local, G_global and administrators group.
20. G_global is a member of G_local.
21. Move the user snowwolf to OU24001
22. What is the maximum number of characters for a User name?
23. What is the maximum number of characters for a Group name?
24. What is the maximum number of characters for a password?
25. In an OU we can create:
a) User accounts.
b) Group accounts.
c) Computer accounts.
d) Shared folder.
e) Organizational Units.
f) All above answers.

26. The user snowwolf can logon only to computers: server, pc2
27. The user snowwolf can logon only from: Monday – Friday 8 AM to 3 PM
and Saturday 8 AM to 2 PM

28. Set the expiry date of the user snowwolf to 1/30/201x- (JAN 30).
29. Allow remote access via VPN for snowwolf
30. Delegate control of OU24001 to snowwolf
 Tasks to delegate:
- Create, delete and manage user accounts.
- Modify group membership

 Create custom delegate

- Account objects.
- Computer objects.
 Permission: Full control

31. Use the Microsoft Management Console (MMC) to create a snap in for computer
management and active directory users and computers on the desktop.

Page. 116 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

32. Enable Disk Quota management.

 Deny disk space to users exceeding quota limit.

 Set the default quota limit for new users to 8 GB and set the warning level to 7 GB.
 Log event when users exceed their quota limit or warning limit.

 Assign disk quota entry for the user snowwolf as follows:

- Quota limit 10 GB.
- Warning level 9 GB.

33. Create in C: drive, a new folder named “LAB7”.

34. In “LAB7” create a text file named: “ts2.txt”.
35. Configure the NTFS permissions on “LAB7”as follows:
 Remove everyone group
 snowwolf: read only

36. Logoff and logon as snowwolf.

37. Open folder LAB7 and create a folder named EXAM. If you get an error message, justify.

38. Create in C: drive a new folder named “Myfolder”.

39. Configure the NTFS permissions on “Myfolder”as follows:
 Remove everyone group
 snowwolf: Full Control

40. Logoff snowwolf and logon as administrator.

41. Open the folder “Myfolder” to create a text file and write the cmd command to convert
the File System of your (C: partition) from FAT to NTFS. If you got an error message,
justify.

42. What can you do as administrator to have permission on Myfolder?

43. Take the ownership of Myfolder and execute the question (39).

44. Create a shared folder “LG” as follows:

 Share Name: LG-G3
 Description: My Cell phone files
 Users limits : allow 5 users
 Sharing Permission:
- remove everyone
- snowwolf: change
- administrator: full control

Page. 117 – Windows Client and Windows Server OS – Practice TP

TS- Windows Client and Windows Server OS – M@zen Nehme

45. Which of the following is not a Share permission:

 Read
 Full Control
 Change
 Write
 Modify

46. Who can share?

47. Access the shared folder from a computer on the network using UNC name.
48. Create a hidden (masked) shared folder named “Private” on your desktop.
49. How to access the shared folder “Private” ?
50. Map the folder LG in the OU.
51. Map network drive the folder LG.
52. Compress the folder LG to save disk space.
53. Encrypt the folder LG using EFS (encryption file system).
54. Find the user snowwolf.
55. Search for all users where name starts with “s”.
56. Search for all disabled users (query).

57. Add a new shared local printer: AGFA

 Enable printing pooling from different ports.
 Set priority to 9.
 Printer is available from: 10 Am to 5 PM
 Print directly to the printer.
 Give only snowwolf permissions to use the printer: print, Manage printer …

58. Add a network printer.

59. Add a TCP/IP printer using the IP Address: 10.0.0.1

~ . Be The Change That You Want To See In The World . ~

Page. 118 – Windows Client and Windows Server OS – Practice TP