Check to make sure all machines are on the same time zone

FS01 Requirements

● hostname = FS01-ina

● Domain = inadomain.local (FQDN = fs01-ina.inadomain.local)

● IP = 10.0.5.8

● Gateway & DNS IP’s

● Join the server to your AD domain, after new OS is configured as previous OS’s

● Connect to new server from ad02 using RSAT and add the File Services Role

● Create a security group

Steps

1. Set network adapter to LAN-ina.fricke

2. Power on

3. Set local admin PW: 32Railroad

Network Settings (IP)

1. set a static IP because it is an important service

2. sconfig

3. select 8 "Network Settings"

4. select 1 "set network adapter address", enter 1

5. select 1 again, enter s for static IP

6. enter ip 10.0.5.8 (255.255.255.0)

7. Default gateway 10.0.5.2

8. Select 2 to set prefered DNS 10.0.5.6

9. select 4 to return to main

10. select 2 to change the name of the computer FS01-INA

11. Restart the computer to secure the name change

12. Enter 1 to add the domain

13. ina

14. ina.fricke-adm , 34Railroad

15. hit esc a few times and log in as the domain adm

ina.fricke-adm

34Railroad

Deliverable/ Check point

sconfig

Use RSAT to Manage FS01 via AD02

1. log in to AD as named admin user ina.fricke-adm 34Railroad

2. Tools

3. Add roles and features

4. Default up to Features

5. complete the install

6. Right click all servers then select add servers

7. under NAME (CN) enter FS01 find now

make sure the computer field populates, add it

OU Structure

1. Tools > AD Users and computers > ina.local > right click add new OU named SYS-255

2. Add OU inside SYS-255 folder for users, computers, groups

3. Add Sales-Users group in the Groups OU

4. Add Alice and Bob (add Alice to the group we just created Groups > Sales- Users> members > add) (PW: 32Railroad)

Use RSAT to add to FS01 and create a Sales Users share

1. right click FS01 > add roles and features

2. Run the following Net Shell (netsh) command on fs01 to open the firewall for managing the File Server

netsh advfirewall firewall set rule group=”Remote File Server Resource Manager Management” new enable=yes

if successful Updated 8 rule(s) Ok.

3. to check select (dashboard > File and storage services > right click on FS01 and select File Server Resource Manager)

4. Go to file and storage services in the server manager > select shares > right click New share...

5. Choose the SMB Quick Share option.

6. Choose the fs01 server, and leave the Select by volume options alone.

8. Name it Sale save the paths

9. Within the wizard alter the permissions

Check Alice's access by typing \\FS01-INA\Sale

Check Alice

Check Bob

Create a Group Policy to Map the S:\ drive to the \FS01\Sales share for all users in the the Sales-Users group, and then document this process in your tech-journal.

1. And in the windows, active directory, navigate to tools > Group policy management > Then under the ina dot local domain. right click and Select create Create a new group policy object in this domain and link it here....

Confirm that it is link enabled.

2. Under the newly created GPO Insecurity filtering add the Sales-Users group. Remove all others I added admin access as a precaution.

3. Once created, right click and select edit.

4. Click User configuration > Preferences > window settings > Right click on Drive Maps > New > Mapped Drives.

https://www.windows-active-directory.com/how-to-map-network-drives-with-group-policy.html

https://activedirectorypro.com/map-network-drives-with-group-policy/

Attempt 2

within the SYS255 folder create a GPO titled Sales Mapped Drive

2. Security filtering

add Sales-Users

remove all others

---

Attempt 3

within the users OU

2. Within new drive properties

Set Action to create

Set the drive path to

Fix APIPA addressing

I added a second network adapter and forgot to delete it