20411B-ENU-TrainerHandbook
.pdf
14.In the Microsoft: Secured password (EAP-MSCHAP v2) (encryption enabled) list, select MCT Microsoft: Protected EAP (PEAP) (encryption enabled), and then click Properties.
15.Ensure that the Verify the server’s identity by validating the certificate check box is selected.
16.Clear the Connect to these servers check box, and then under Select Authentication Method, USE ensure that Secured password (EAP-MSCHAP v2) is selected.
17.Clear the Enable Fast Reconnect check box, and then select the Enforce Network Access Protection check box.
18.Click OK twice to accept these settings. ONLY
19.In the Network Connections window, right-click the Adatum VPN connection, and then click
Connect/Disconnect.
20.In the Networks list on the right, click Adatum VPN, and then click Connect.
21.In Network Authentication, in the User name box, type Adatum\Administrator.
22.In the Password box, type Pa$$w0rd, and then click OK. .
23.The Windows Security Alert window appears the first time that this VPN connection is used. Click STUDENT
Show certificate details.
24.Click Connect. Wait for the VPN connection to occur. Because LON-CL2 is compliant, it should have unlimited access to the intranet subnet.
25.Pause your mouse in the lower-left of the taskbar, and then click Start.
26.In Start, type cmd.exe, and then press Enter.
27.Type ipconfig /all, and then press Enter. View the IP configuration. System Quarantine State should be Not Restricted.
28.At the command prompt, type ping 172.16.0.10, and then press Enter. This should be successful. The client now meets the requirement for VPN full connectivity.
29.Switch to Network Connections.
30.Right-click Adatum VPN, and then click Connect/Disconnect. USE
31.In the Networks list on the right, click Adatum VPN, and then click Disconnect.
32.Switch to LON-RTR.
33.In Administrative Tools, double-click Network Policy Server.
34.Expand Network Access Protection, expand System Health Validators, expand Windows SecurityPROHIBITED Health Validator, and then click Settings.
35.In the right pane, under Name, double-click Default Configuration.
36.On the Windows 8/Windows 7/Windows Vista tab, select the Restrict access for clients that do not have all available security updates installed check box, and then click OK.
37.Switch to LON-CL2.
38.In the Networks list on the right, click Adatum VPN, and then click Connect.
39.Switch to the command prompt.
40.Type ipconfig /all, and then press Enter. View the IP configuration. System Quarantine State should be Restricted.
41.Switch to Network Connections.
|
|
MCT |
|
|
L10-71 |
||
Module 10: Optimizing File Services |
|
||
Lab A: Configuring Quotas and File |
USE |
||
Screening Using FSRM |
|||
|
|||
Exercise 1: Configuring FSRM Quotas |
|
||
Task 1: Create a quota template |
.ONLY |
||
1. |
Sign in to LON-SVR1 as Adatum\Administrator with the password Pa$$w0rd. |
||
2. |
On the taskbar, click the Server Manager shortcut. |
||
3. |
In Server Manager, click Manage, and then click Add Roles and Features. |
||
4. |
In the Add Roles and Features Wizard, click Next. |
||
5. |
Confirm that role-based or feature-based installation is selected, and then click Next. |
||
6. |
Confirm that LON-SVR1.Adatum.com is selected, and then click Next. |
STUDENT |
|
7. |
On the Select server roles page, expand File and Storage Services (Installed), expand File and |
||
|
SCSI Services, and then select the File Server Resource Manager check box. |
||
8. |
In the pop-up window, click Add Features. |
||
9. |
Click Next twice to confirm the role service and feature selection. |
||
10. |
On the Confirm installation selections page, click Install. |
||
11. |
When the installation completes, click Close. |
||
12. |
In Server Manager, click Tools, and then click File Server Resource Manager. |
||
13. |
In the File Server Resource Manager console, expand Quota Management, and then click Quota |
||
|
Templates. |
||
|
|
||
14. |
Right-click Quota Templates, and then click Create Quota Template. |
|
|
15. |
In the Create Quota Template dialog box, in the Template name field, type 100 MB Limit Log to |
||
|
Event Viewer. |
USE |
|
16. |
Under Notification thresholds, click Add. |
||
17. |
In the Add Threshold dialog box, click the Event log tab. |
|
|
18. |
On the Event log tab, select the Send warning to event log check box, and then click OK. |
|
|
19. |
In the Create Quota Template dialog box, click Add. |
|
|
20. |
In the Add Threshold dialog box, in the Generate notification when the usage reaches (%) field, |
||
|
type 100. |
|
|
21. |
Click the Event Log tab, select the Send warning to event log check box, and then click OK twice. |
||
1. |
In the File Server Resource Manager console, click Quotas. |
PROHIBITED |
|
2. |
Right-click Quotas, and then click Create Quota. |
||
3. |
On the Create Quota dialog box, in the Quota path field, type E:\Labfiles\Mod10\Users. |
||
4. |
Click Auto apply template and create quotas on existing and new subfolders. |
||
|
|
||
L10-72 Optimizing File Services |
|
MCT |
||||||||
|
|
|
|
|
|
|||||
|
|
|
|
|
|
|
|
|||
5. |
In the Derive properties from this quota template (recommended) list, click 100MB Limit Log to |
|||||||||
|
|
|
Event Viewer, and then click Create. |
|
|
|
|
|
|
|
6. |
In the details pane, verify that the E:\Labfiles\Mod10\Users path has been configured with its own |
USE |
||||||||
|
|
|
quota entry. You may have to refresh the Quotas folder to view the changes. |
|||||||
|
|
|
|
|
|
|
|
|||
7. |
From the taskbar, open Windows Explorer. |
|
|
|
|
|
|
|||
8. |
In the Windows Explorer window, click drive E, expand Labfiles, expand Mod10, and then |
|
|
|
|
|
||||
|
|
|
expand Users. |
|
ONLY |
|||||
9. |
In the Users folder, create a new folder named |
Max. |
||||||||
|
|
|
|
|
||||||
|
|
10. In File Server Resource Manager, on the Action menu, click Refresh. |
|
|
|
|
|
|||
|
|
11. In the details pane, notice that the newly created folder now displays in the list. |
|
|
|
|
|
|||
|
|
Task 3: Test that the quota is functional |
|
|
|
|
|
|
||
1. |
On LON-SVR1, on the taskbar, click the Windows PowerShell shortcut. |
. |
||||||||
2. |
In the Windows PowerShell window, type the following commands. Press Enter at the end of |
|||||||||
STUDENT |
||||||||||
|
|
|
each line: |
|
||||||
|
|
|
|
|
|
|
|
|
||
|
|
|
|
|
|
|
|
|
|
|
|
|
|
E: |
|
|
|
|
|
|
|
|
|
|
cd \Labfiles\Mod10\Users\Max |
|
|
|
|
|
|
|
|
|
|
fsutil file createnew file1.txt 89400000 |
|
|
|
|
|
||
|
|
|
|
|
|
|
|
|
||
|
|
|
This creates a file that is over 85 megabytes (MB), which will generate a warning in Event Viewer. |
|
|
|
|
|
||
3. |
On the taskbar, click the Server Manager shortcut. |
|
|
|
|
|
||||
4. |
In Server Manager, click Tools, and then click Event Viewer. |
|
|
|
|
|
||||
5. |
In the Event Viewer console, expand Windows Logs, and then click Application. |
|
|
|
|
|
||||
6. |
In the details pane, note the event with Event ID of 12325. |
|
|
|
|
|
||||
7. |
In the Windows PowerShell window, type the following command, and then press Enter: |
|
USE |
|||||||
|
|
|
|
|
|
|||||
|
|
|
fsutil file createnew file2.txt 16400000 |
|
||||||
|
|
|
|
|
|
|
|
|||
|
|
|
|
|
|
|
|
|
||
|
|
|
Notice that the file cannot be created. The message returned from Windows references disk space, |
|
|
|
|
|
||
|
|
|
but the file creation fails because it would surpass the quota limit. |
|
|
|
|
|
||
8. |
In the Windows PowerShell window, type exit, and then press Enter. |
PROHIBITED |
||||||||
9. |
Close all open windows on LON-SVR1. |
|
||||||||
|
|
|
|
|
|
|||||
|
|
|
|
|
|
|
|
|
|
|
Results: After completing this exercise, you should have configured an FSRM quota.
|
|
Administering Windows Server® 2012 L10-73 |
|
||
Exercise 2: Configuring File Screening and Storage Reports |
MCT |
||||
|
Task 1: Create a file screen |
||||
|
|
||||
1. |
On LON-SVR1, open Server Manager and then from the Tools menu click File Server Resource |
|
|
||
|
|
Manager. |
|
|
|
2. |
In the File Server Resource Manager console tree, expand File Screening Management, and then |
||||
|
|
click File Screens. |
USE |
||
|
|
|
|||
3. |
Right-click File Screens, and then click Create File Screen. |
.ONLY |
|||
4. |
In the Create File Screen window, in the File screen path text box, type E:\Labfiles\Mod10\Users. |
||||
5. |
In the Create File Screen window, click the Derive properties from this file screen template |
||||
|
|
(recommended) drop-down list box, and then click Block Audio and Video Files. |
|||
6. |
Click Create. |
||||
Task 2: Create a file group |
|||||
|
|
|
|||
1. |
On LON-SVR1, right-click File Server Resource Manager (Local), and then click Configure Options. |
||||
2. |
In the File Server Resource Manager Options dialog box, click the File Screen Audit tab. |
|
|
||
3. |
On the File Screen Audit tab, select the Record file screening activity in auditing database check |
||||
|
|
box, and then click OK. |
STUDENT |
||
|
|||||
|
|
|
|||
data |
|||||
4. |
In the File Server Resource Manager console tree, expand File Screening Management, and then |
||||
|
|
click File Groups. |
|||
5. |
Right-click File Groups, and then click Create File Group. |
||||
USE |
|||||
6. |
In the Create File Group Properties window, in the File group name box, type MPx Media Files. |
||||
7. |
In the Files to include box, type *.mp*, and then click Add. |
||||
8. |
In the Files to exclude box, type *.mpp, click Add, and then click OK. |
||||
9. |
In the File Server Resource Manager console tree, expand File Screening Management, and then |
||||
PROHIBITED |
|||||
|
|
click File Screen Templates. |
|||
10. Right-click the Block Audio and Video Files template, and then click Edit Template Properties. |
|||||
11. On the Settings tab, under File groups remove the check box next to Audio and Video Files. |
|||||
12. |
Select the check box next to MPx Media Files. |
||||
13. |
Click OK. Click Yes at the message prompt. |
||||
14. |
Click OK at the message. |
||||
Task 3: Test the file screen |
|||||
1. |
On the taskbar, click the Windows Explorer shortcut. |
||||
2. |
In the Windows Explorer window, in the left pane, click Allfiles (E:). |
||||
3. |
In the right pane, right-click and point to New, and then click Text Document. |
||||
4. |
Rename New Text Document.txt to musicfile.mp3. Click Yes to change the file name extension. |
||||
|
|
|
|||
Administering Windows Server® 2012 |
MCT |
|
L10-75 |
||
Lab B: Implementing DFS |
|
|
1.Switch to LON-SVR1. USE
2.On the taskbar, click Server Manager.
3.In Server Manager, click Manage, and then click Add Roles and Features. ONLY
4.In the Add Roles and Features Wizard, click Next.
5.On the Select installation type page, click Next.
6.On the Select destination server page, click Next.
7.On the Select server roles page, expand File and Storage Services, expand File and iSCSI Services,
and then select the DFS Namespaces check box. .
8.In the Add Roles and Features pop-up window, click Add Features. STUDENT
9.Select the DFS Replication check box, and then click Next.
10.On the Select features page, click Next.
11.On the Confirm installation selections page, click Install.
12.When the installation completes, click Close.
13.Close Server Manager.Exercise 1: Installing the DFS role service
1.Switch to LON-SVR4.
2.In Server Manager, click Manage, and then click Add Roles and Features.
3.In the Add Roles and Features Wizard, click Next. USE
4.On the Select installation type page, click Next.
5.On the Select destination server page, click Next.
6.On the Select server roles page, expand File and Storage Services, expand File and SCSI Services, and then select the DFS Namespaces check box.
7.In the Add Roles and Features pop-up window, click Add Features. PROHIBITED
8.Select the DFS Replication check box, and then click Next.
9.On the Select features page, click Next.
10.On the Confirm installation selections page, click Install.
11.When the installation completes, click Close.
12.Close Server Manager.
L10-76 Optimizing File Services |
MCT |
|||
|
|
|||
|
|
|
||
Exercise 2: Configuring a DFS Namespace |
|
|
||
Task 1: Create the BranchDocs namespace |
USE |
|||
1. |
Switch to LON-SVR1 and then open Server Manager. |
|||
|
|
|||
2. |
In Server Manager, click Tools, and then click DFS Management. |
|
|
|
3. |
In the navigation pane, click Namespaces. |
|
|
|
4. |
Right-click Namespaces, and then click New Namespace. |
.ONLY |
||
5. |
In the New Namespace Wizard, on the Namespace Server page, under Server, type LON-SVR1, and |
|||
|
|
|||
|
then click Next. |
|
|
|
6. |
On the Namespace Name and Settings page, under Name, type BranchDocs, and then click Next. |
|
|
|
7. |
On the Namespace Type page, ensure that Domain-based namespace is selected. Take note that |
|
|
|
|
the namespace will be accessed by \\Adatum.com\BranchDocs. |
|
|
|
8. |
Ensure that the Enable Windows Server 2008 mode check box is selected, and then click Next. |
|
|
|
9. |
On the Review Settings and Create Namespace page, click Create. |
STUDENT |
||
10. On the Confirmation page, ensure that the Create namespace task is successful, and then |
||||
|
click Close. |
|||
11. In the navigation pane, expand Namespaces, and then click \\Adatum.com\BranchDocs. |
||||
12. In the details pane, click the Namespace Servers tab, and ensure that there is one entry that is |
||||
|
enabled for \\LON-SVR1\BranchDocs. |
|||
1. |
In the navigation pane, under Namespaces, right-click \\Adatum.com\BranchDocs, and then |
|||
|
click Properties. |
|||
2. |
In the \\Adatum.com\BranchDocs Properties dialog box, click the Advanced tab. |
|||
3. |
On the Advanced tab, select the Enable access-based enumeration for this namespace check box, |
|||
|
and then click OK. |
USE |
||
|
|
|
||
1. |
In DFS Management, right-click Adatum.com\BranchDocs, and then click New Folder. |
|
|
|
2. |
In the New Folder dialog box, under Name, type ResearchTemplates. |
PROHIBITED |
||
2. |
In the New Folder dialog box, under Name, type DataFiles, and then, click Add. |
|||
3. |
In the New Folder dialog box, click Add. |
|
|
|
4. |
In the Add Folder Target dialog box, type \\LON-SVR4\ResearchTemplates, and then click OK. |
|
|
|
5. |
In the Warning dialog box, click Yes. |
|
|
|
6. |
In the Create Share dialog box, in the Local path of shared folder box, type |
|
|
|
|
C:\BranchDocs\ResearchTemplates. |
|
|
|
7. |
Click All users have read and write permissions, and then click OK. |
|
|
|
8. |
In the Warning dialog box, click Yes. |
|
|
|
9. |
Click OK again to close the New Folder dialog box. |
|
|
|
Task 4: Add the DataFiles folder to the BranchDocs namespace |
|
|
||
1. |
In DFS Management, right-click Adatum.com\BranchDocs, and then click New Folder. |
|
|
|
|
|
Administering Windows Server® 2012 |
MCT |
|||
|
|
L10-77 |
||||
3. |
In the Add Folder Target dialog box, type \\LON-SVR1\DataFiles, and then click OK. |
|
|
|
||
4. |
In the Warning dialog box, click Yes. |
USE |
||||
5. |
In the Create Share dialog box, in the Local path of shared folder box, type |
|||||
|
|
C:\BranchDocs\DataFiles. |
||||
|
|
|
|
|
||
6. |
Click All users have read and write permissions, and then click OK. The permissions will be |
|
|
|
||
|
|
configured later. |
|
|
|
|
7. |
In the Warning dialog box, click Yes. |
|
|
|
||
8. |
Click OK again to close the New Folder dialog box. |
.ONLY |
||||
|
|
Task 5: Verify the BranchDocs namespace |
||||
|
|
|
|
|||
1. |
On LON-SVR1, open Windows Explorer, in the address bar type \\Adatum.com\BranchDocs\, and |
|||||
|
|
then press Enter. |
|
|
|
|
2. |
In the BranchDocs window, verify that both ResearchTemplates and DataFiles display. |
|
|
|
||
3. |
Close the BranchDocs window. |
|
|
|
||
|
|
|
|
|
||
|
|
|
|
|
|
|
1. |
In DFS Management, expand Adatum.com\BranchDocs, and then click DataFiles. |
STUDENT |
||||
2. |
In the details pane, notice that there is currently only one folder target. |
|||||
3. |
Right-click DataFiles, and then click Add Folder Target. |
|||||
|
|
|
||||
4. |
In the New Folder Target dialog box, under Path to folder target, type \\LON-SVR4\DataFiles, |
|||||
|
|
and then click OK. |
|
|
|
|
5. |
In the Warning dialog box, click Yes to create the shared folder on LON-SVR4. |
|
|
|
||
6. |
In the Create Share dialog box, under Local path of shared folder, type C:\BranchDocs\DataFilesUSE. |
|||||
7. |
In the Create Share dialog box, under Shared folder permissions, select All users have read and |
|||||
|
|
write permissions, and then click OK. |
|
|
|
|
8. |
In the Warning dialog box, click Yes to create the folder on LON-SVR4. |
|
|
|
||
9. |
In the Replication dialog box, click Yes. The Replicate Folder Wizard starts. |
|
|
|
||
1. |
In DFS Management, in the Replicate Folder Wizard, on both the Replication Group and Replicated |
|||||
|
|
Folder Name page, accept the default settings, and then click Next. |
PROHIBITED |
|||
2. |
On the Replication Eligibility page, click Next. |
|||||
3. |
On the Primary Member page, select LON-SVR1, and then click Next. |
|||||
4. |
On the Topology Selection page, select No topology, and then click Next. |
|||||
5. |
In the Warning dialog box, click OK. |
|||||
6. |
On the Review Settings and Create Replication Group page, click Create. |
|||||
|
|
|
||||
