Mcse notes

E:WordMCSE NotesMCSE Practical.doc; RAJA YASSER NAWAZ E-mail: RajaYasser@Hotmail.com, RajaYasser@Yahoo.com Page(s) 1 of 93
MCSE 2003 PRACTICAL
Managing desktop setting & Control Panel
(performance options)
Select windows classic theme.
1. Right-click on Desktop
2. Click Properties
3. Select Windows Classic
4. Click Apply
5. Click OK
Customize start menu items.
1. Right Click on Taskbar
2. Click Properties
3. Uncheck Group similar taskbar buttons
4. Click Start Menu
5. Click Classic Start menu
6. Click Customize
Check following Advance Start menu options:
7. Display Administrative Tools
8. Display Favorites
9. Display Log Off
10. Display Run
11. Enable dragging and dropping
12. Use Personalized Menus
13. Click OK
14. Click Apply
15. Click OK
Customize files, folders and windows.
1. Double-click My Computer
2. Select Icons
3. Tools
4. Folder Options
5. General Tab Select followings:

6. Use Windows classic folders
7. Open each folder in the same window
8. Double-click to open an item
9. View
10. Apply to All Folders
11. Apply
12. Ok
4- Disable Windows Firewall, Automatic Updates and Change Security Center alerts
for enable other PC's to ping i.e ping server.
Start
Settings
Control Panel
Double-click Security Center
Windows Firewall
Select Off (not recommended)
Ok
Automatic Updates
Select Turn off Automatic Updates
Apply
Ok
Resources:
Change the way Security Center Alerts me
Uncheck following Alert Settings:
Firewall
Automatic Updates
Virus Protection
Ok
Disable user switching and enable offline files.
You must have a computer administrator account on a computer that is a member of a
workgroup or is a stand-alone computer to turn on or turn off the User Fast User Switching
feature. Fast User Switching is not available on computers that are members of a network
domain.
Start
Settings
Control Panel
Double-click User Accounts
Change the way users log on or off
Uncheck following options from User Accounts:
Use the Welcome screen
Use Fast User Switching
Apply Options
Offline Files overview
You can make network files available offline by storing shared files on your computer so
they are accessible when you are not connected to the network.

This can be helpful when you use a portable computer to accomplish most of your work,
or if your stand-alone computer is frequently disconnected from the network. You can work with
offline files the same way you work with files when you’re connected to the network.
When you reconnect to the network, any changes that you made to files while working
offline are updated to the network. This process is called synchronization. If you and someone
else on the network made changes to the same file, you can save your version of the file to the
network, keep the other version, or save both.
If you share folders on your computer with others on the network, they can work offline
with those folders. To protect files in your shared folders, you can specify whether other users
can change your documents or just view them. You can also control which shared files users can
access offline.
Enable offline files:
Double-click My Computer
Tools
Folder Options
Offline Files Tab
Check Enable Offline Files
Apply
Ok
6- Sharing and Security settings.
Tools
Folder Options
View
Advance settings:
Uncheck use simple file sharing (Recommended)
Apply
Ok
7- Assigning IP address and display network icon in notification area.
Double-click My Network Places
Right-click
Properties
Right-click on Local Area Connection
Properties
Check following options from General Tab:
Show icon in notification area when connected
Notify me when this connection has limited or no connectivity
Select Internet Protocol (TCP/IP)
Properties
Select use the following IP Address:
IP address: 192.168.0.1
Subnet mask: 255.255.255.0
Ok
8- Set up hardware profiles for different hardware configuration. At startup, you can
choose the profile you want to use.

Hardware profiles provide a way for you to set up and store different hardware
configurations. You can set up hardware profiles for different hardware configurations. At
startup, you can choose the profile you want to use.
Right-click on My Computer
Properties
Hardware Tab
Hardware Profiles
Select Profile 1 (Current) from Available hardware profiles:
Copy
Copy Profile name To: Home
Ok
Ok
9- Select default operating system at system startup "Microsoft Windows XP
Professional" or "Microsoft Windows Server 2003".
Properties
Advance Tab
Startup and Recovery:
Settings
Select Default operating system
Uncheck following from System startup:
Time to display list of operating systems:
Time to display recovery options when needed:
Ok
Ok
10- Delete old operating system support files (AUTOEXEC.BAT, CONFIG.SYS,
IO.SYS, MSDOS.SYS).
Tools
Folder Options…
View
Select Show hidden files and folders
Uncheck following from Advanced settings:
Hide extensions for known file types
Hide protected operating system files (Recommended)
Apply
Ok
Goto C: and delete following files (these files are used for old operating system
software)
AutoExec.bat
Config.sys
IO.sys
MSDOS.sys
11- Enable/Disable hiberfil.sys (this file is use for hibernation i.e when we hibernate
windows it keep all the open windows, files etc in hibernate file and when we start windows
it shows all the files and windows in the same place.

When your computer hibernates, it stores whatever it has in memory on your hard disk
and then shuts down. When your computer comes out of hibernation, it returns to its previous
state.
Start
Settings
Control Panel
Double-click Power Options
Hibernate Tab
Uncheck Enable Hibernation
Apply
Ok
12- Remove pagefile.sys from C: drive or move it to any other drive. Pagefile.sys
support RAM it is by default 1 and half of the RAM size.
Properties
Advanced
Select from Performance:
Settings
Advance Tab
Virtual memory:
Change
Select C: from drive
Custom size:
Initial size (MB): 0
Maximum size (MB): 0
Set
Ok
Apply
Ok
Ok
Restart computer to take effect.
Properties
Advanced
Select from Performance:
Settings
Advance Tab
Virtual memory:
Change
Select D: from drive
Custom size:
Initial size (MB): 100
Maximum size (MB): 300
Set
Ok
Apply
Ok
Ok
Restart computer to take effect. After restart the file will more to drive D:
13 Crate Answering File for XP installation

Insert Bootable CD into CD ROM
Right-click on CR ROM icon
Open
Double-click XP SP2 Support Tools
Double-click Tools
Double-click Deploy.cab file
Extract to E:Unattended Folder
Goto Unattended Folder
Double-click Setupmgr.exe
Welcome to Setup Manager
Next
New or Existing Answer File
๏ Create new
๏ Modify existing
Select Create new
Next
Type of Setup
๏ Unattended setup
๏ Sysprep setup
๏ Remote Installation Services (RIS)
Select Unattended setup
Next
Product
Select Windows XP Professional
Next
User Interaction
Select Fully automated
Next
Distribution Share
Select Set up from a CD
Next
License Agreement
Check I accept the terms of the License Agreement
Next
General Settings
Name and Organization
Name: Raja Yasser
Organization: VS
Next
Display Settings (Use Windows default)
Next
Time Zone
Select (GMT+05:00)
Next
Product Key
QW4HD-DQCRG-HM64M-HM64M-6GJRK-8K83T
Next
Network Settings
Computer Names
Computer name: server
Add

Next
Administrator Password
Password: 123456
Confirm password: 123456
Check encrypt the Administrator password in the answer file
Check when a destination computer starts, automatically log
on as Administrator
Number of times to log on automatically: 5
Networking Components
Select Custom settings
Click Properties…
Internet Protocol (TCP/IP) Properties
Select Use the following IP Address:
IP address: 192.168.0.1
Subnet mask: 255.255.255.0
Ok
Next
Workgroup or Domain
Default selected Workgroup & Next
Advanced Settings
Telephony (nil)
Next
Regional Settings
Default English (United states)
Next
Languages
Select Western Europe and United States
Next
Browser and Shell Settings
Default Next
Installation Folder
Default A folder named Windows
Next
Install Printers
Network printer name:
computernameprintername
Add
Next
Run Once (nil)
Next
Additional Commands (nil)
Finish
Setup Manager
Enter path and file name:
E:Unattendedwinnt.sif
Ok
Completing Setup Manager
Close (X) / Cancel
14. Sysprep: (System Preparation)
It is use for Desktop prepration on all other PC's in network. It is responsible for mini
setup on other PC's in network.

For example: If my company policy to prepare such type of Desktop on all other PC's in network
i.e (1) Windows (2) Office (3) Coral Draw (4) Data Base (5) Firewall (6)
Antivirus (7) Adobe Acrobat (8) Adobe Photoshop
Then Microsoft gives an option for such conditions, the "Sysprep".
Microsoft say take an image of all above 8 options then this image is restore on all other
network PC's (i.e 500 PC's)
Requirement For Sysprep:-
a. PC of same company i.e Dell company
b. Same size & company Hard disk
c. Use only one partition i.e C or D or E
After making Answer file (winnt.sif & winnt.bat) then goto E: drive, open unattended folder
Double-click Sysprep.exe
OK
Select Use mini setup
Reseal
Read a message i.e regenerate SID
OK
Yes
Now, then system is shut down automatically. Now extra hard disk + floopy is needed at this
time and attached with your PC. Then make image of C drive.
To image (from image disk)
Boot from Hard Disk
Now window SP, mini setup is running
Setup wizard of XP start
Next
Accept
Next
Next
Name: Raja Yasser
Organization: VS
Next
Give CD Key
Computer Name: abc
Password: abc
Next
Next
Typical
Next
Next
Finish
Restart system automatically
14. Start "Server" or "XP" by default
1. Right-click My Computer
2. Click Properties
3. Click Advanced

4. Click Settings (Startup an Recovery)
5. Select "Windows Server 2003, Enterprise" Or "Microsoft Windows XP Professional"
6. Uncheck Time to display list of operating systems
7. Uncheck Time to display recovery options when needed
8. Click OK
9. Click OK
To Check IP address of your own PC
1. Goto Start
2. Click Run
3. Type cmd
4. Click OK
5. Type command: ipconfig
6. Press Enter and see the detail.
To display full config: information
7. type command: ipconfig /all (see the details and MAC address)
Sharing Rights
These rights are applicable on "Users" from Server PC (Admin).
For sharing rights first users to be created on Server PC.
We can create users by goto
1. Right-click My Computer
2. Click Manage
3. Double-click Local Usera and Groups
4. Right-click Users
5. Click New User…
6. Enter User name: user1
7. Enter Password: user1
8. Confirm password: user1
9. Uncheck User must change password at next logon
10. Check User cannot change password
11. Password never expires
12. Click Create
Create a new folder named "Sharing" on desktop with file in it and share it b:
1. Right-click on Sharing folder
2. Click Sharing and Security…
3. Click Share this folder
4. Click Permissions
5. Select Everyone
6. Click Allow Full Control
7. Click Apply
8. Click OK

9. Click Apply
10. Click OK
Now access the server by go through on PC8.
11. Goto Start
12. Click Run
13. Type server
14. Click OK
Then all the shared folder including "Sharing" folder of Server is viewed, why, because all
users have same password. It means that Server is accessed through PC8.
Now we want that no use can directly access the Server or other PC of user, but require
password. So we set a password from Server PC. Then no one can access "Sharing" folder
without password.
1. Right-click on My Computer
2. Click Manager
3. Double-click Local User and Groups
4. Click Users
5. Right-click on Administrator
6. Click Set Password…
7. Click Proceed
8. Type New password: 123
9. Confirm password: 123
10. Click OK
Logoff PC8 and again Logon PC8 and access Server Run Server then this time it will need
a username Administrator and password a23. after this all the share folder of Server is again
access able on PC8.
NTFS Rights
These rights are applicable on folders of users from Server PC (Admin). First create 5 users
on Server PC. Now create a “Sharing” folder (full control everyone) and data in it on
Desktop of Server. Now logoff and logon from "user1" on Server PC.
Access it PC3
Then PC3 is accessed through "user1", but shared folder data is not open, because the
permission is not given to "user1". Now logoff and logon from Admin agains.
2. Click Sharing & Security
3. Click Permission
4. Select Everyone

5. Click Remove
6. Click Add
7. Click Advanced…
8. Click Find Now
9. Click user1
10. Click OK
11. Click OK
12. Click Full Control
13. Click Apply
14. Click OK
15. Click Apply
16. Click OK
Now again logoff and logon from "user1". But the folder will not access again. Logoff and
logon from admin.
3. Click Security
Now try to remove the Administrator of PC3, but it will not removed.
4. Click Advanced
5. Uncheck Inherit from parent the permission entries…..
6. Click Remove
7. Click Apply
8. Click OK
Logoff and Logon from "user1". But shared folder will not access again, because we remove
all type of users + admin permission.
Logoff and logon from administrator:
1. Right-click Sharing folder
2. Click Sharing & Security
3. Click Security
4. Click Add..
6. Click Find Now
7. Click user1
8. Click OK
9. Click OK
10. Click Apply
11. Click OK
Now logoff and logon from user1. Sharing folder is accessed, but when we access a file data
in it, then access is denied. Because we add only user1, not added the administrator.
Logoff and logon from Administrator now by following the above steps add the
Administrator too.

Logoff and logon from user1 now shared folder + file in it both are accessed.
Encryption
Specifies that the contents of file or folder be encrypted. Only the user who encrypts the file or
folder can access the content. However, files and folders might be decrypted depending on how
they are moved or copied. Encrypted files and folders cannot be compressed.
If Administrator shared a folder + file on Desktop on Server PC and set permissions to access
this folder + file for any one. Then any user can access this folder + file and user can encrypt
this file.
Logon as a Administrator and create a folder on D: drive and create a file in it. Now share this
folder and set permissions for everyone + add everyone in security tab + check full control for
everyone to access this folder + file to change.
Logoff as a Administrator and logon as a user1 to encrypt file.
1. Right-click file
2. Click Properties
4. Check Encrypt contents to secure data
5. Click OK
6. Click Apply
7. Check Encrypt the file only
8. Click OK
9. Click OK
After encryption of file the color of file will be changed to "Green". It means that file has been
encrypted.
Now logoff as a user and logon as a Administrator and try to open shared folder file. This file
will not be opened because encrypted file can not be opened by administrator. It means that user
work against the policy of Administrator. To block user1:
1. Right-click on shared folder
3. Click Security tab
4. Click Advanced
5. Select user1 (or Everyone)
6. Click Remove
7. Click Apply
8. Click OK
9. Click OK
Now user1 can not access the encrypted shared folder of Administrator.
Logon as a Administrator and add the user1 again
14. Remote Desktop (to access computer remotely from other computer)
With Remote Desktop on Windows XP Professional, you can have access to a Windows
session that is running on your computer when you are at another computer. This means, for
example, that you can connect to your work computer from home and have access to all of your

applications, files, and network resources as though you were in front of your computer at work.
You can leave programs running at work and when you get home, you can see your desktop at
work displayed on your home computer, with the same programs running.
When you connect to your computer at work, Remote Desktop automatically locks that
computer so no one else can access your applications and files while you are gone.
Remote Desktop also allows more than one user to have active sessions on a single computer.
This means that multiple users can leave their applications running and preserve the state of their
Windows session even while others are logged on.
To use Remote Desktop, you need the following:
- A computer running Windows XP Professional ("remote" computer) with a
connection to a Local Area Network or the Internet.
- A second computer ("home" computer) with access to the Local Area Network via
network connection, modem, or Virtual Private Network (VPN) connection. This
computer must have Remote Desktop Connection, formerly called the Terminal
Services client, installed.
- Appropriate user accounts and permissions.
Select Properties
Remote
Remote Desktop
Check Allow users to connect remotely to this computer
(Check this above option on both computers)
Apply
Ok
Goto Start
Programs
Accessories
Communications
Remote Desktop Connections
Computer (name, vs1)
Options>>
User name: Administrator
Password 123
Check Save my password
Optional Local Resources
Check Disk Drives
Check Printers
Serial ports
Connect
Or
Save As….
Save on Desktop
File name PC2.rdp
Save
Close (X) / Cancel
Double-click on PC2.rdp file on Desktop
15. Remote Assistance (remote assistance access systems remotely through live IP on
the internet or computers on LAN

Remote Assistance is a convenient way for a friend in another location to connect to your
computer from another computer running a compatible operating system, such as Microsoft
Windows XP.
After your friend is connected, he will be able to view your computer screen and chat online
with you in real time about what you both see. With your permission, your friend can even use
his or her mouse and keyboard to work with you on your computer.
Notes
- Both you and your assistant must be using either Windows Messenger or a MAPI-
compliant e-mail account such as Microsoft Outlook or Outlook Express.
- You and your assistant need to be connected to the Internet while using Remote
Assistance.
- If Windows Firewall is turned on, Remote Assistance will temporarily open firewall
ports.
- If you are working on a corporate or local area network, firewalls might stop you
from using Remote Assistance. In this case, check with your network administrator
before using Remote Assistance.
Select Properties
Remote
Remote Assistance
Apply
Ok
Goto Start
Programs
Remote Assistance
Click Invite someone to help you
Click Save invitation as a file (Advanced)
Set the invitation to expire
Select 30 from combo box
Select Days from combo box
Continue >
Type password: 123
Confirm password: 123
Click Save Invitation
Select Desktop
File name: PC2.msrcincident
Save
Close Remote Assistance
(Now you can send this file to your remote user or friend through e-mail or any other
way) or
Right-click on Desktop
Select New
Select New Folder
Type folder name PC2
Drag and Drop PC2.msrcincident file into folder named PC2
Right-click on PC2 folder
Sharing and Security…
Sharing Tab
Share this folder

Check Full Control
Security Tab
Add…
Advanced…
Find Now
Select Everyone
Ok
Ok
Check Full Control
Apply
Ok
Goto other PC (Server)
Goto Start
Run
Open : VS1
Ok
Double-click shared folder PC2
Copy PC2.msrcincident
Goto Desktop
Paste PC2.msrcincident file
Double-click PC2.msrcinciden file on Desktop
Type password: 123
Yes
If the other user accepts your invitation by Clicking Yes then you can access his PC or
send messages or files etc to each other.
16. Files and Settings Transfer Wizard (FastWiz)
The Files and Settings Transfer Wizard helps you move your data files and personal
settings from your old computer to your new one, without having to go through much of the
same configuration you did with your old computer. For example, you can take your personal
display properties, folder and taskbar options, and Internet browser and e-mail settings from
your old computer and place them on the new one. The wizard will also move specific files or
entire folders, such as My Documents, My Pictures, and Favorites. Passwords are not moved
with program settings when you use the Files and Settings Transfer Wizard. This is a feature of
the Files and Settings Transfer Wizard that helps to keep your passwords confidential.
We recommend that you install a virus detection program on the new computer before
transferring files over from the old computer. This can help protect your new computer from
viruses that may be contained in the files transferred over from your old computer.
Goto Start
Programs
Accessories
System Tools
Files and Settings Transfer Wizard
Next
Click Old computer
Next
Click Other
Click Browse…
Select Desktop

Ok
Next
Click Both files and settings
Next
Finish
It will create USMT2.UNC folder on Desktop copy this folder to other PC that you want to
deploy settings and follow the following steps:
Goto Start
Programs
Accessories
System Tools
Files and Settings Transfer Wizard
Next
Click New computer
Next
Click I don't need the Wizard Disk. I have already collected my files and settings from my old
computer.
Click Other
Click Browse and give the path of copied folder USMT2.UNC
Next
17. Quota (the amount of disk space available to a user.)
a. Organization Level
b. Group Level
c. User Level
Organization Level
In organization level all users can see data i.e. folders and files of each other.
Logon as Administrator
Create a folder name org in E: drive
Right-Click Org folder
Select Sharing and Security
Click Share this folder
Click Permissions
Check Full Control (for Everyone)
Ok
Click Security Tab
Add…
Advanced…
Find Now
Select Everyone
Ok
Ok
Check Full Control (for Everyone)
Apply
Ok
Right-click on E: drive
Properties
Click on Quota Tab
Check Enable quota management

Check Deny disk space to users exceeding quota limit
Click Limit disk space to 100 MB
Set warning level to 99 MB
Check Log event when a user exceeds their quota limit
Check Log event when a user exceeds their warning level
Apply
Ok
Disk Quota Message Ok
Wait for the green light and Ok
Now create 5 users
a. Right-click on My Computer
b. Manage
c. Local Users and Groups
d. Users
e. Right-click on users
f. Select New User…
g. User name: user1
h. Password: user1
i. Confirm password: user1
j. Uncheck User must change password at next logon
k. User cannot change password
l. Password never expires
m. Click Create
n. Close
(Repeat above a to n step for other 4 users i.e. user2, user3, user4 and user5)
a. Double Click on user1
b. Click Profile tab
c. Click Connect
d. Select Z drive from combo box
e. Set path To: serverorg
f. Apply
g. Ok
(Repeat above a to g step and set the path serverorg for other 4 users i.e. user2, user3, user4
and user5)
After creating 5 users and setting their path Logoff Administrator and Logon as user1
a. Click Start
b. Click My Computer
c. Now you can see Z drive org on 'PC' (Z:)
d. Double-click on Z: drive
e. Right-click
f. Select New
g. Select Folder
h. Rename folder to user1
i. Double-click user1 folder
j. Right-click
k. Select New
l. Select Text Document
m. Rename Text Document to user1
(Logoff user1 and Logon as user2 and repeat above step a to m for user2, user3, user4 & user5)

Group Level
In group level users can see each other data in group but they can't see data of other group.
Double-click E: drive
Double-click Org folder
Create 2 folder named g1 and g1 (for group level)
Right-click My Computer
Manage
Local Users and Groups
Select Users
Double-click user1
Set path To: serverorgg1
Apply
Ok
Double-click user2
Apply
Ok
Double-click user3
Apply
Ok
Double-click user4
Apply
Ok
(user 1 and user 2 are in group 1 and they can see each other data and user3 and user 4 are in
group 2 and they can see each other data. Group 1 and Group 2 can't see data of each other. User
5 can see data of both Groups)
Logoff Administrator and Logon as user1
a. Click Start
c. Double-click on Z: drive
d. Right-click
e. Select New
f. Select Text Document
g. Rename Text Document to user1
(Logoff user1 and Logon as user2 and repeat above step a to m for user3 and users4)
User Level
In user level only the logon user can see data of his own other user can't see.

Double-click E: drive
Double-click Org folder
Create 3 folder named mark, sales & acc
(Marketing, Sales and Account department)
Right-click My Computer
Manager
Local Users and Groups
Users
Double-click user1
Profile
Set path To: serverorgmark%username%
"%username%" name of user. It will create folder named user1 in mark folder.
Apply
Ok
Double-click user2
Profile
Set path To: serverorgsales%username%
Apply
Ok
Double-click user3
Profile
Set path To: serverorgacc%username%
Apply
Ok
Double-click user4
Profile
Set path To: serverorgacc%username%
Apply
Ok
(user1 is working in Marketing department, user2 is working in Sales department, user3 and user
4 are working in Account department)
Logoff Administrator and Logon as user1
a. Click Start
c. Double-click on Z: drive
d. Right-click
e. Select New
f. Select Text Document
g. Rename Text Document to user1
(Logoff user1 and Logon as user2 and repeat above step a to g for user2, user3 and users4)
Resolvers

1. Local Host
2. LM Host
3. NetBIOS
4. WIN Server
5. DNS Server
6. Broadcast
When we ping to any PC on network our request pass through above sequence i.e. (1 to 6) - -
- ping pc3 (when we ping any PC by its name it will gives us IP address of that PC.)
- ping Localhost (when we ping localhost it give us IP of 127.0.0.1. It is used for loopback to
check hardware.
1. Local Host
The host file used to store information on where to find a node on a computer
network. This file maps hostnames to IP address. The hosts file us used as a supplement
to (or instead of) the domain name system on networks of varying sizes. Unlike DNS, the
hosts files us under the control of the local computer's administrator.
The hosts file has no extension and can be edited using most text editors.
Location of Local Host
The hosts file is located in different locations in different operating systems and even in
different Windows versions.
• Windows NT/2000/XP/2003/Vista/7: %SystemRoot%system32driversetchost
is the default location, which may be changed. The actual directory is determined by the
Registry key
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters
DataBasePath.
Double-click host and open in notepad and see 127.0.0.1 Localhost. 127.0.0.1 resolve
FQDN.
• Windows 95/98/Me: %WinDir%
2. LMHOSTS
The LMHOSTS (LAN Manager Hosts) file is used to enable domain name
resolution when other methods, e.g. WINS, fail.
The file, if it exists, is read as the LMHOSTS setting file. A sample file is provided
during Windows installation. The sample file contains documentation for manually
configuring the file.
Local of LMHOSTS
Windows NT 4.0, Windows 2000, Windows XP, Vista and Windows Server 2003
The file is located at C:WINDOWSsystem32driversetc, and a sample file is located at
C:WINDOWSsystem32driversetclmhosts.sam. If a different install directory was
used for the Windows files, the file can be located with the path
%systemroot%system32driversetc.

Open Lmhosts.sam in notepad
Goto last and write your won PC IP address.i.e
192.168.0.2 press tab abc
Close the file, save and rename it as
Lmhosts.sam to lmhost only
Now ping PC2 then its ping and also ping by abc
Ping abc (abc is at LM host)
3. NetBIOS name cache
The NetBIOS name cache contains every NetBIOS name that was recently associated
with an IP address. This local cache helps reduce network traffic by eliminating the need
for broadcasting or WINS queries, it can sampling start communicating with the lost.
1. Right-click on My Network Places
2. Click Properties
3. Right-click Local Area Connection
4. Click Properties
5. Click Internet Protocol (TCP/IP)
6. Click Properties
7. Click obtain an IP address automatically
8. Click OK
9. Click Close
Now "Yellow bar" is running near time bar due to removing IP address of its own PC.
Then ping server or other PC then its again ping, because Microsoft give IP address by
self default i.e. 169.254.29.30
Note: no work can be done without IP address on network.
It means, that if NetBIOS work is done on user own PC or in network then IP address are
given by Microsoft by default.
In network if all PC's are connected through "Cables" only and no IP addresses are given
manually, then Microsoft give IP addresses by self and also give facilities to ping any pc
in network.
The local NetBIOS cache can be viewed with the nbtstat.exe command.
C:>nbtstat –C
Syntax:
Nbtstat [-a RemoteName] [-A IP address] [-c] [-n] [-r] [-R] [-s] [-S] [interval]]
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address
-C (cache) Lists the remote name cache including the IP
addresses
-n (names) Lists local NetBIOS names.
-r (resolved) Lists names resolved by broadcast and via WINS
-R (Reload) Purges and reloads the remote cache name table
-S (Sessions) Lists sessions table with the destination IP addresses
-s (sessions) Lists sessions table converting destination IP

addresses to host names via the hosts file.
RemoteName: Remote host machine name.
IP address: Dotted decimal representation of the IP address.
Interval: Redisplays selected statistics, pausing interval seconds
between each display. Press Ctrl+C to stop redisplaying
statistics.
ICS (Internet Connection Sharing)
Through this we can configure Internet in Net cafe / Net club. Microsoft says that we can give
internet sharing to 253 PC's Minimum. To use ICS 2 NIC cards are must:
- 1 NIC card for WAN connection and
- 1 NIC card for LAN connection
In network (net club), on Sever PC (i.e. PC1)
1. Right-click My Network Places
2. Double-click LAN( Local Area Connection)
3. Click Support
Its IP address will 192.168.0.1 (this "1" must be here) no other PC have such like "1" IP address.
LAN Card
2. Right-click on LAN
3. Click Properties
5. Click Properties
6. Click Obtain an IP address automatically
7. Click Obtain DNS server address automatically
8. Click OK
9. Click Close
Check IP address of WAN Card
2. Double-click WAN
3. Click Support
Its IP address 10.0.0.30
WAN Card

2. Right-click on WAN
3. Click Properties
5. Click Properties
8. Click OK
9. Click Close
To share "WAN":
2. Right-click on WAN
3. Click Properties
4. Click Advanced tab
5. Check Allow other network users to connect through this computer's Internet connection
6. Check Allow other network users to control or disable the shared Internet connection
7. Click OK
There or 2 methods are used to share internet from Server PC (i.e. PC1) to client PC's. One NIC
card is needed for LAN.
Goto Client PC (i.e. PC2):
Method 1:
2. Right-click LAN
3. Click Properties
7. Click OK
8. Click Close
Then browse any site it will be accessed.
Method 2:
2. Right-click LAN
3. Click Properties
5. Click Use the following IP address
6. Enter IP address: 192.168.0.10

7. Enter Subnet mask: 255.255.255.0
8. Enter Default gateway 192.168.0.1
9. Click Use the following DNS server addresses
10. Enter Preferred DNS server: 192.168.0.1
12. Click OK
13. Click Close
Then browse any site it will be accessed.
To create a new forest Domain
1. Click Start, click Run, and then type dcpromo to start the Active Directory Installation
Wizard.
2. Welcome to the Active Directory Installation Wizard page click Next.
3. On the Operating System Compatibility page, read the information and then click
Next.
4. On the Domain Controller Type page, click Domain controller for a new domain,
and then click Next.
5. On the Create New Domain page, click Domain in a new forest, and then click Next.
6. On the New Domain Name page, type the full DNS name for the new domain, and then
click Next. i.e corvit.com.
Note: On 1 Server only 1 Domain can be created.
7. On the NetBIOS Domain Name page, verify the NetBIOS name, and then click Next.
8. On the Database and Log Folders page, type the location in which you want to install
the database and log folders, or click Browse to choose a location, and then click Next.
Note: Change the Database Folder path i.e E:NTDS, because if server
crashdamage then other path is workable.
9. On the Shared System Volume page, type the location in which you want to install the
Sysvol folder, or click Browse to choose a location, and then click Next.
Note: Change the Log Folder path i.e E:SYSVOL, to save policies on other
location incase server crash damage then other path is workable.
10. Optional: on the DNS Registration Diagnostics page, verify if an existing DNS server
will be authoritative for this forest or, if necessary, choose to install and configure DNS
on this server by clicking Install and configure the DNS server on this computer, and
set this computer to use this DNS server as its preferred DNS server, and then click
Next.
11. On the Permissions page, select one of the following:
o Permissions compatible with pre-Windows 2000 server operating systems
o Permissions compatible only with Windows 2000 or Windows Server 2003
operating systems, click Next
12. On the Directory Services Restore Mode Administrator Password page, click Next.
Note: Restore password is not necessary. It is used only when we make a backup.
This password will be different from other passwords.
13. Review the Summary page, and then click Next to begin the installation.

14. On the Completing The Active Directory Installation Wizard, click Finish.
15. You must restart Windows before the changes made by the Active Directory Installation
wizard take effect, click Restart Now to restart the computer.
To demote/remove a domain controller
1. On a domain controller, click Start, and then click Run.
2. In Open, type dcpromo to open the Active Directory Installation Wizard.
Welcome to the Active Directory Installation Wizard click Next.
3. If you remove Active Directory, this computer will become a standalone or domain
member server. Click Next.
Remove Active Directory
Indicate whether this is the last domain controller in the domain.
4. Removing Active Directory converts this domain controller to a member server. Or, if
this is the last domain controller in the domain, it will become a standalone server. Check
This server is the last domain controller in the domain and click Next.
Application directory Partitions
Applications create these partitions for storing and replicating data.
5. If you want the wizard to remove all partitions from this domain controller, click Next.
Confirm Deletion
Removing Active Directory will delete all application apartitions from this domain
controller.
6. Check Delete all application directory partitions on this domain controller. Click
Next.
Administrator Password
Specify an Administrator password. (before deleting Domain Server, first we resolve the
complexity of passward.)
7. New Administrator Password: 123, Confirm password: 123 and click Next.
Summary
Review and confirm the options you selected.
8. To begin the operation, click Next.
(The remove Active Directory from computer process will start.)
9. Finish
10. Restart now
Resolve the complexity of Password

Before creating users on Domain Server, first we resolve the complexity of password i.e if give
error in creating users in Domain PC.
Goto Start
Program
Administrative Tools
Right-click on Domain i.e YASSER.COM
Proprieties
Click Group Policy tab
Select Default Domain Policy
Click edit button
Group Policy Object Editor
Windows Settings
Security Settings
Account Policies
Double-click on Password Policy
Double-click password must meet complexity requirements
Select Disabled
Apply
Ok
Double-click on minimum password length
Add 0 characters
Apply
OK
Close all windows
Goto start
Run
gpupdate
OK
Create User on Domain PC
1. Click Start
2. Programs
3. Administrative Tools
4. Active Directory User and Computers
5. Right-click on Domain name corvit.com
6. Select New
7. Select User
8. First name: Yasser
9. Full name: Raja Yasser Nawaz
10. User logon name: Yasser

11. Click Next
12. Enter Password: 123
13. Confirm password: 123
14. Uncheck User must change password at next logon
15. Check User cannot change password
16. Password never expires
17. Click Next
18. Finish
To check following Roles are present in Domain
1. Schema Master: The schema master domain controller controls all updates and
modifications to the schema. There can be only one schema master in the whole forest.
2. Domain naming master: The domain naming master domain controller controls the
addition or removal of domains in the forest. There can be only one domain naming
master in the whole forest.
3. Infrastructure Master: The infrastructure is responsible for updating references from
objects in its domain to objects in other domains. At any one time, there can be only one
domain controller acting as the infrastructure master in each domain.
4. Relative ID (RID) Master: The RID master is responsible for processing RID pool
requests from all domain controllers in a particular domain. At any one time, there can be
only one domain controller acting as the RID master in the domain.
5. PDC Emulator: The PDC emulator is a domain controller that advertises itself as the
primary domain controller (PDC) to workstations, member servers, and domain
controllers that are running earlier versions of Windows. For example, if the domain
contains computers that are not running Microsoft Windows XP Professional or
Microsoft Windows 2000 client software, or if it contains Microsoft Windows NT
backup domain controllers, the PDC emulator master acts as a Windows NT PDC. It is
also the Domain Master Browser, and it handles password discrepancies. At any one
time, there can be only one domain controller acting as the PDC emulator master in each
domain in the forest.
6. Global Catalog
7. LDAP
1- Schema Master
Run Type MMC & OK
File
Add/Remove Snap-in…

Add
Schema Master
Add
Close
File
Save
Type File name Schema.msc
Close
2- Domain Naming Master
Start
Programs
Active Directory Domains and Trusts
Right-click on domain name (corvit.com)
Proprites
3- Infrastructure Master
4- Relative ID (RID) Master
5- PDC Emulator
Start
Programs
Active Directory Users and Computers
Right-click on Domain (yasser.com)
Operations Masters
(see RID, PDC & Infrastructure)
6- Global Catalog
Start
Programs
Active Directory Sites and Services
Sites
Default-First-Site-Name
Servers
Server (PC1)
Right-click on NTDS Settings
Properties (see Global Catalog)
7- LDAP
Start
Programs
DNS
Server
Forward Lookup Zones
_msdcs.yasser.com
dc
_sites
Default-First-Site-Name

_tcp
_ldap (see LDAP file)
Add client (Window XP) in Domain
Goto PC1 (Client)
Right-click on My Network Places
Right-click on LAN
Select TCP/IP
Click on Properties
Use the Following DNS server addresses:
Preferred DNS server: 192.168.0.1 (Server (main PC) IP address)
OK
OK
Right-click on My Computers
Properties
Computer Name
Change
Select Domain
Enter Domain Name yasser.com
OK
Enter User name: Administrator (Server PC Administrator)
Password: Mcse2003 (Server PC Password)
OK
OK
OK
OK
Restart
Yes
Logon as a member (user) of Domain
User name: user1
Password: user1
Click options
Log on to yasser (domain name)
OK
Quota and Profiling
Right-click on E: drive
Properties
Click on Quota Tab
Check Enable quota management
Check Deny disk space to users exceeding quota limit
Click Limit disk space to 100 MB
Set warning level to 99 MB
Check Log event when a user exceeds their quota limit
Check Log event when a user exceeds their warning level
Apply
Ok

Disk Quota Message Ok
Wait for the green light and Ok
Double-click on E: drive
Create 3 Folders (Home, Roaming & man) in E: drive
Right-click on Home Folder
Properties
Permissions
Check Full Control
Apply
OK
Click Security tab
Advanced
Remove inheritance
Click Add
Add Everyone
OK
Full Control
OK
Apply
OK
Apply
OK
(follow the above steps for Roaming and man Folders to apply permissions and security to
everyone)
Goto Start
Programs
Create 3 Users
Click yasser.com
Right-click on Users
Select New
Select User
First name: user1
Full name: user1
User logon name: user1
Password: user1
Confirm password: user1
Uncheck User must change password at next logon
Check User cannot change password
Check password never expires
Next
Finish
(follow the above steps and create other 2 users i.e user2 and user3)
Assigning Quota, Roaming and Mandatory path to Users
Goto Start
Programs

Click yasser.com
Click on Users
Double-click on user1
Select Profile tab
Profile path: serverRoaming%username%
Select Connect: Z To: serverHome%username% (Home folder is a Data Server)
Apply
Ok
Select Profile tab
Profile path: serverman
Apply
Ok
Select Profile tab
Profile path: serverRoaming%username%
Apply
Ok
To check Profiling
Right-click on My Computers
Select Advanced tab
User Profiles
Click Settings
DNS: Web Server + FTP Server
Installation & Configuration of Web Server
+ FTP Server
Web Server: We require IIS and DNS to configure Web Server.
Enter Server 2003 CD into CD-ROM
1. Goto Start
2. Click Run
3. Type appwiz.cpl
4. Click OK

5. Click Add/Remove Windows Components
6. Select Application Server
7. Click Details…
8. Select Internet Information Services (IIS)
9. Click Details…
10. Check Internet Information Services Manager (IISM)
11. Check World Wide Web Service
12. Click OK
13. Click OK
14. Click Next (Installation of Web Server started.)
15. Click Finish
FTP Server: We require FTP to configure Web Server.
1. Goto Start
2. Click Run
3. Type appwiz.cpl
4. Click OK
6. Select Application Server
7. Click Details…
8. Select Internet Information Services (IIS)
9. Click Details…
10. Check File Transfer Protocol (FTP) Service
11. Check World Wide Web Service
12. Click OK
13. Click OK
14. Click Next (Installation of FTP Server started.)
15. Click Finish
Note: We can install Web Server + FTP Server on same PC or different PC's.
Enable DNS Server
We do so, because to open the website by its real name i.e. corvit.com not by it IP address
1. Goto Start
2. Click Run
3. Type appwiz.cpl
4. Click OK
6. Select Networking Services
7. Click Details…
8. Check Domain Name System (DNS)

9. Click OK
10. Click Next (Installation of DNS Server started.)
11. Click OK (if Insert Disk message appears)
12. Click Browse…
13. Select DNS.EX_
14. Click Open
15. Click OK
16. Click Finish
Configuration of Web Server
First disconnect real WAN connection. We are going to add make new website i.e. corvit.com.
1. Goto Start
2. Point to Programs
3. Point to Administrative Tools
4. Click Internet Information Services (IIS) Manager
5. Right-click on Web Sites
6. Point to New
7. Click Web Site…
Welcome to the Web Site Creation Wizard
8. Click Next
Web Site Description
9. Enter Description corvit.com
10. Click Next
IP Address and Port Settings
11. Enter any IP address: 192.168.0.30
12. Click Next
Web Site Home Directory
13. Click Browse
14. Select D:corvit
15. Click OK
16. Click Next
Web Site Access Permissions
17. Check Read
18. Check Browse
19. Click Next
You have successfully completed the Web Site Creation Wizard.
20. Click Finish
For adding making new website, you must have "Web Server" i.e. where the web server is
placed in your network (other PC) if you have not use your own PC web server, then pick web
server from other PC by Goto.

Now we try to open the same website i.e. corvit.com by its won real name, not by IP address.
To open websites by its name we need / require DNS, that we have already installed.
To open Website by Its Name
1. Goto Start
4. Click DNS
5. Double-click PC2
6. Right-click Forward Lookup Zones
7. Click New Zone...
Welcome to the New Zone Wizard
8. Click Next
Zone Type
9. Click Primary zone
10. Click Next
Zone Name
11. Enter Zone name: corvit.com
12. Click Next
Zone File
13. Click Create a new file with this file name
14. Click Next
Dynamic Update
15. Click Do not allow dynamic updates
16. Click Next
Completing the New Zone Wizard
17. Click Finish
1. Goto Start
4. Click DNS
5. Double-click PC2
6. Double-click Forward Lookup Zones
7. Right-click corvit.com
8. Click New Host (A)…
9. Enter Name: www
11. Click Add Host

12. Click OK (the host record www.corvit.com was successfully created.
13. Click Done
Now open browser and browse www.corvit.com it will be opened successfully by name.
Configuration of FTP Server
FTP is used for downloading.
1. Goto Start
4. Click Internet Information Services (IIS) Manager
5. Double-click PC2 (any pc name)
6. Right-click FTP Sites
7. Point to New
8. Click FTP Site…
Welcome to the FTP Site Creation Wizard
9. Click Next
FTP Site Description
10. Enter Description: corvit.com
11. Click Next
IP Address and Port Settings
12. Enter the IP Address: 192.168.0.30
13. Click Next
FTP User Isolation
14. Click Do not isolate users
15. Click Next
FTP Site Home Directory
16. Click Browse…
17. Select D:corvit
18. Click Next
FTP Site Access Permissions
19. Check Read
20. Click Next
You have successfully completed the FTP Site Creation Wizard
21. Click Finish
Now check it in browser
Open browser and browse FTP:192.168.0.30 or FTP:www.corvit.com
Now all folder shown in D: drive

Alises: It mean that change "www" to any number of wwwwww……. i.e. 10 number of w's.
1. Goto Start
4. Click DNS
5. Double-click PC2
6. Double-click Forward Lookup Zones
7. Right-click corvit.com (domain name)
9. Name wwwwwwwwww.corvit.com (i.e. give 10 w's)
11. Click Add Host
12. Click OK (The host record wwwwwwwwww.corvit.com was successfully created.
13. Click OK
14. Click Done
Now check it in browser
Open browser and browse wwwwwwwwww.corvit.com
It will open successfully, but also open on www.corvit.com. Now if you want to open on only
"10 w's" you must remove cache by go through:
1. Goto Start
2. Click Run
3. Type cmd
4. Click OK
5. C:>ipconfig /flushdns
Now it will open only on "10 w's", not by 3 w's.
Router
For routing, 2 NIC cards are necessary. Therefore we need 2 IP addresses. The router IP address
becomes a gateway address of any network.
Network 1: 172.16.0.0 (i.e. PC7) write in IP address 172.16.0.7
Network 2: 192.168.0.0 (i.e. PC3) write in IP address 192.168.0.3
Run cmd on PC7
Ping 172.16.0.150 But the answer will in such message
"Destination host unreacheable"
The reason is that, no "Gateway" is specified on the PC7 while we assign the IP address.
Therefore we have to enter gateway:
2. Right-click LAN
3. Click Properties

9. Click OK
10. Click Close
Now it will not show error message like "Destination host Unreachable"
Note: when your network is (172).X.X.X then your gate way will also be (172).X.X.X.
Now ping again:
Run cmd on PC7
Ping 172.16.0.150 But the answer will in such message
"Request time out"
It is because that there is "no way" or "router" between 2 networks i.e.
172.16.0.0 and 192.168.0.0
Write on PC7:
2. Right-click LAN
3. Click Properties
9. Click OK
10. Click Close
Write on PC3:
11. Right-click LAN
12. Click Properties
18. Click OK
19. Click Close
Now PC3 and PC7 will ping each other.

To make a Route on PC6
1. Goto Start
3. Point to Administrative
4. Click Routing and Remote Access
5. Right-click on PC6
6. Click Configure and Enable Routing and Remote Access
Welcome to the Routing and Remote Access Server Setup Wizard
7. Click Next
Configuration
8. Click Custom configuration
Custom Configuration
9. Click LAN routing
10. Click Next
Completing the Routing and Remote Access Server Setup Wizard
11. Click Finish
12. Click Yes (The Routing and Remote Access Service has now been installed. Do you
want to start the service?
Now PC6 becomes our Router.
Note: Router IP is the gateway of other network.
WINS Server
WINS Server (Windows Internet Name Services) support / control broadcasting. As we know
that "NetBIOS" make a cache table on each PC, which make each PC in network very heavy.
Now to resolve this problem WINS Server is needed in network to control cache.
Installation of WINS Server
Insert Server 2003 CD into CD-ROM
1. Goto Start
2. Click Run
3. Type appwiz.cpl
4. Click OK
6. Click Networking Services
7. Click Details
8. Check Windows Internet Name Services (WINS)
9. Click OK
10. Click Next
11. Click Finish

Logon as a Administrator
Configuration of WINS Server
To configure WINS Server on PC3, first give IP address of PC 3 (WINS Server PC) on another
PC4.
1. Right-click on My Network Places (PC4)
2. Click Properties
3. Right-click on LAN
4. Click Properties
5. Select Internet Protocol (TCP/IP)
6. Click Properties
8. Click WINS tab
9. Click Add…
10. Enter WINS server: 192.168.0.3
11. Click Add
12. Click OK
13. Click OK
14. Click Close
This process will add PC4 into WINS server PC3
Now ping by name i.e. ping pc4 or ping pc3 not by IP address. Goto PC3 and ping PC4 it will
work.
Check that PC4 is added into PC3 (WINS server PC)
Goto PC3
1. Goto Start
4. Click WINS
5. Double-click PC3[192.168.0.3]
6. Right-click Active Registration
7. Click Display Records…
8. Click Find Now
Now it will show / give the PC4 IP address and also cache of PC4 IP address and also cache of
PC4. as we added like PC4 into WINS server PC3, we can add also other network PC's into
WINS server PC3 and also cache of all. Therefore cache of each PC's will be shown on PC3
(WINS server) but not on his won PC. In other words WINDS server keep record of all PC's
What is DHCP?

Dynamic Host Configuration Protocol (DHCP) is a network protocol that enables a server to
automatically assign an IP address to an individual computer's TCP/IP stack software. DHCP
assigns a number dynamically from a defined range of numbers (i.e., a scope) configured for a
given network.
Almost all wireless access points, many wired Ethernet routers, and computers running Internet
Connection Sharing have built-in DHCP servers. While this makes configuration of a small
network easier, it can cause problems when the DHCP servers are used in larger networks.
Client computers configured to use DHCP for IP assignment do not need to have a statically
assigned IP address. In addition, they generally do not need to have addresses configured for
DNS servers or WINS servers, as these are also set by the DHCP server.
DHCP assigns a TCP/IP address when a system is started. Typically, it works like this:
1. A user turns on a computer with a DHCP client.
2. The client computer sends a broadcast request (called a DISCOVER or
DHCPDISCOVER), looking for a DHCP server to answer.
3. The router directs the DISCOVER packet to the correct DHCP server.
4. The server receives the DISCOVER packet. Based on availability and usage policies set
on the server, the server determines an appropriate address (if any) to give to the client.
The server then temporarily reserves that address for the client and sends back to the
client an OFFER (or DHCPOFFER) packet, with that address information. The server
also configures the client's DNS servers, WINS servers, NTP servers, and sometimes
other services as well.
5. The client sends a REQUEST (or DHCPREQUEST) packet, letting the server know that
it intends to use the address.
6. The server sends an ACK (or DHCPACK) packet, confirming that the client has a been
given a lease on the address for a server-specified period of time.
When a computer uses a static IP address, it means that the computer is manually configured to
use a specific IP address. One problem with static assignment, which can result from user error
or inattention to detail, occurs when two computers are configured with the same IP address.
This creates a conflict that results in loss of service. Using DHCP to dynamically assign IP
addresses minimizes these conflicts. DHCP is the most wanted server.
Installation of DHCP Server (on PC3)
Insert Server 2003 CD into CD-ROM
1. Goto Start
2. Click Run
3. Type appwiz.cpl
5. Select networking Services
6. Click Details…
7. Check Dynamic Host Configuration Protocol (DHCP)
8. Click OK
9. Click Next
10. Click Finish
We can install both DHCP and WINS server on a same PC.

Configuration of DHCP Server
1. Goto Start
4. Click DHCP
5. Right-click on PC3[192.168.0.3]
6. Click New Scope…
Welcome to the New Scope Wizard
7. Click Next
Scope Name (You have to provide an identifying scope name)
8. Type Name: corvit (any name)
9. Click Next
IP Address Range (You define the scope address range by identifying a set of
consecutive IP address, any rage can be specified)
10. Start IP address: 192.168.0.150
11. End IP address: 192.168.0.200
12. Click Next
Add Exclusions (Exclusions are addresses or a range of addresses that are not distributed
by the server.)
13. Start IP address: 192.168.0.150 (150 to 155 Reserve IP's for Server)
14. End IP address: 192.168.0.155
15. Click Next
Lease Duration (The lease duration specifies how long a client can use an IP address
from this scope.
16. Enter Days: 30
17. Click Next
Configure DHCP Options (You have to configure the most common DHCP options
before clients can use the scope.)
18. Click Yes, I want to configure these options now
19. Click Next
Router (Default Gateway) (you can specify the routers, or default gateways, to be
distributed by this scope. From Exclude / Reserved IP's or from above IP's range.)
20. Enter Gateway IP address: 192.168.0.156
21. Click Next
Domain Name and DNS Servers(The DNS maps & translates domain anmes used by
clients on your network.)
22. Enter Parent domain: PC4 (any name)
24. Click Add
25. Click Next
WINS Servers (Computers running Windows can use WINS servers to convert NetBIOS
computer names to IP addresses.)

26. Enter WINS Server name: PC5 (any name)
27. Enter WINS Server IP address: 192.168.0.160
28. Click Add
29. Click Next
Activate Scope (Clients can obtain address leases only if a scope is activated.)
30. Click Yes, I want to activate this scope now
31. Click Next
Completing the New Scope Wizard
32. Click Finish
To check IP our own giving IP address to PC4 as server name and IP address i.e. 192.168.0.157:
Goto PC4
1. Goto Start
2. Click Run
3. Type cmd
4. Click OK
C:>ipconfig /all (it will show all previous type of IP's detail)
C:>ipconfig /release (it will leave all the previous type of IP's detail)
C:>ipconfig /renew (now it will shown our won new assign IP address)
RAS
Child Domain
Create Domain on PC1
Child Domain on PC2 (Member Server)
Domain PC1
Goto Domain (PC1)
Start
Programs
Right-click on yasser.com (Domain name)
Select Properties

Click Group Policy tab
Click Edit button
Group Policy Object Editor
Default Domain Policy [Computer name.yasser.com] Policy
Computer Configuration
Double-click Windows Settings
Double-click Security Settings
Double-click Account Policies
Double-click Password Policies
Double-click Password must meet complexity requirements
Click Disabled
Apply
OK
Double-click Minimum password length
Enter 0 characters
Apply
OK
OK
Close Group Policy Object Editor
Close Active Directory Users and Computers
Goto Start
Run
Enter gpupdate
OK
Child Domain on PC2 (Member Server)
Select properties
Select Properties
Select internet Protocol (TCP/IP)
Click Properties button
Use the following IP address:
IP address: 192.168.0.2
Subnet mask: 255.255.255.0
Use the following DNS server addresses:
Preferred DNS server: 192.168.0.2 (PC2 i.e Child Domain IP address)
Alternate DNS server: 192.168.0.1 (PC1 i.e Domain IP address)
OK
Close
Close
Right-click on My Computer (PC2)
Select Computer Name tab
Click Change button
Select Domain
Enter domain name: yasser.com (Domain name PC1)
OK
Enter the name and password of an account with permission to join the domain.

User name: Administrator (Domain Administrator)
Password: 123 (Domain Administrator Password)
OK
OK
OK
OK
Yes (to restart computer)
Log On to Windows
Enter user name
Enter password
Log on to: YASSER (select domain name)
OK
Goto start (PC2)
Run
Enter dcpromo
OK
Welcome to the Active directory Installation Wizard
Next
Operating System Compatibility
Next
Domain Controller Type
Select Domain controller for a new domain
Next
Create New Domain
Select Child domain in an existing domain tree
Next
Network Credentials
User name: Administrator (Domain, PC1)
Password: 123 (Domain, PC1)
Domain: yasser.com
Next
Child domain installation
Parent domain: yasser.com
Child domain: raja
Next
NetBIOS Domain Name
Domain NetBIOS name: RAJA
Next
Database and Log Folders
Next
Shared System Volume
Next
DNS Registration Diagnostics
Next
Permissions
Select Permissions compatible only with Windows 2000 or Windows Server 2003
Next
Directory Services Restore Mode Administrator Password
Next
If error message:

"The password does not meet the minimum password length requirement of the password policy
on this computer. Enter a longer password." Then resolve the password minimum length on
Domain (PC1) and start create child domain again.
Summary
Next
Installation starts…
Completing the Active Directory Installation Wizard
Finish
Restart Now
Log On to Windows
Enter user name
Enter password
Log on to: RAJA (select child domain name)
OK
ISA (Internet Security Acceleration)
First of all ISA, internet is must. Also 2 NIC cards are too must one live IP is needed for ISA.
ISA work with DSL or other connections only but not for dial up connection.
ISA
Internet
NAT (Network Access Translation)
In NAT by default internet is working.
Proxy Server made up with NAT.
In ISA if internet connect on 1 NIC card. It will run on all other NIC cards automatically.
ISA
Security
Firewall (work as watchman)
Traffic Control (i.e port)
What means by traffic?
In TCP/IP there are 2 types of traffics.
TCP / UOP Total ports: 65535
Registered ports: 1024
Free ports: 64511
Traffic Port
Download FTP 20/21
Website HTTP 80
Mail Send SMTP 25
Mail Received Pop3 110
FQDN DNS 53

Remotely Access Telnet 23
Secure Web HTTPS 443
Dynamic…. DHCP 67
Firewall control all above traffic.
In ISA, if another outer client PC1 make a request for yahoo page, then ISA stop his request in
ISA server, and ISA pick his request itself and bring yahoo page from Web Publishing Server
and give back to client PC1. it means that ISA not allow the outer clients to communicate
directly to other servers in the network.
ISA
Acceleration
Cache
Speed
If client PC2 make a request for google page then ISA server pick his request from internet (i.e
from google.com server) and give / put one copy of google in "cache Database" and another
copy gives to client PC2.
At the same time another client PC1 make request for same page , then this time ISA server pick
from "Cache Database" but not from internet. Through this load on "link" is minimizes.
Installation of ISA
Insert ISA 2000 Enterprise CD into CD-ROM
Double-click on CD-ROM icon
Double-click ISA 2000 Enterprise on
Double-click ISA
Run setup.exe
Message: "ISA 2000 requires Service Pack 1 to function correctly on this version of
Windows." We will install Service Pack 1 after this installation is complete.
Click Continue button
Welcome to the Microsoft ISA Server Installation program.
Continue
Microsoft ISA Server Setup
I Agree
Click Typical Installation
Message: "This computer cannot join an array until is part of a Windows 2000 domain, and
an updated ISA Server schema is installed in Active Directory. If you continue with Setup now,
this computer will be installed as a stand-alone server." Do you want to continue?
Click Yes button
Select the mode for this server.
๏ Firewall mode
๏ Cache mode

๏ Integrated mode
Select Integrated mode
Click Continue
Specify the NTFS drives on which caches should be located and the maximum size of each
cache.
Click E: drive
Enter Cache size (MB): 200
Click Set button
OK
Note: Cache size should be small for efficiency.
Enter the IP address rages that span the internal network address space.
Give IP address From: 192.168.0.1
To: 192.168.0.99
Click Add button
OK
Now installation of ISA server started.
Message: Launch ISA management Tool
OK
Message: Microsoft Internet Security and Acceleration Server Enterpirse Edition Setup was
completed successfully.
OK
Setup Warning Message: "Setup has failed to start one or more services. Please examine the
event log for details." Just ignore warning message.
OK
To Check that ISA Server installed properly.
Goto Start
Programs
Microsoft ISA Server
ISA Management
Click View menu
Select Advance
+ Servers and Arrays
+ PC1
+ Monitoring
+ Services
x PC1 Web proxy
x PC1 Firewall
x PC1 Scheduled content Download
Above 3 services are not in working and stopped, because we installed ISA Server on Windows
Server 2003 not on Windows Server 2000. To activate these services properly we need to install
ISA Services Pack 1 with on Windows Server 2003.

Before installation, check the browser yahoo.com working or not. We see that browser working.
ISA Service Pack 1 Installation
Double-click ISA Plugins
Double-click ISA Service Pack 1
Run isasp1.exe
I Agree
Now installation started.
OK and server restart automatically
Now above 3 services are on and running. Now browser again yahoo.com. it will not browsing,
because we have not defined the "Allow Rule".
Protocol Rule
Goto Start
Programs
ISA Management
– Access Policy
Right-click on Protocol Rules
New >
Select Rule…
Welcome to the new Protocol Rule Wizard
Enter Protocol rule name: Allow
Click Next
Rule Action: Specify how you want the protocol rule respond to client requests.
Check Allow
Click Next
Protocols: Select the protocols to which this rule applies.
Select All IP traffic
Click Next
Schedule: Select a schedule for applying this rule.
Select Always
Click Next
Client Type: you can specify client type by user name, group name or IP address.
Select Any request
Click Next
Completing the new Protocol Rule Wizard
Click Finish
Web proxy Client (on client PC2)
Goto Client (i.e PC2)

Double-click Internet Explorer on Desktop
Click Tools menu
Select Internet Options…
Select Connections tab
Click LAN Settings…
Check use a proxy server for your LAN
Enter IP Address: 192.168.0.100 (i.e IP address of ISA Server)
Enter Port: 8080 (i.e Internet Port)
Check Bypass proxy server for local addresses
OK
OK
Now browse any site it will work.
Secure NAT Client (on client PC2)
To make a secure Nat client follow the under mentioned steps:
Select Properties
Select Properties
Click Properties
Enter IP address: 192.168.0.2 (Client PC2)
Subnet mask: 255.255.255.0
Default gateway: 192.168.0.100 (Server IP)
Preferred DNS server:192.168.0.100 (to access Internet it is must)
Now open browser and browse any site it will not work.
Goto ISA Server
Start
Run enter cmd
OK
Enter command ipconfig /all
See the IP address of WAN i.e 10.0.0.132 live IP address.
Come back to client PC2
Enter preferred DNS server: 10.0.0.132 (live IP address)
Now open the browser and browser any site it will browse.
Note: on ISA Serve we cannot make "Secure Nat", because on server we need another
Gateway.
Firewall Client (on client PC2)
First disable the NIC card changes i.e clear Preferred DNS server + Default gateway. Now
browse any website it will not work. Now for Firewall follow the following steps:
Goto Start
Run server
Double-click mspclnt folder
Run setup.exe

Next
Next
Install
Finish
Now Firewall is installed on client PC2. You can see the Firewall icon in taskbar. Browse any
site it will work.
Web proxy give IP address and port by default. See in Open browser Tools Internet
Option Connections LAN Setting.
To Remove: Firewall icon from taskbar
Double click Firewall icon in taskbar
Uncheck show firewall client icon on taskbar
OK
To Show: Firewall icon on taskbar
Goto Start
Settings
Control panel
Double-click Firewall client
Check show firewall client icon on task bar
OK
Note:- on Server PC, we cannot make "Firewall client", because it slow down the speed of
server.
Note:- If on client PC Windows 95, 98, 200 XP, Or 2003 is installed and access configure
internet, then use "Web proxy" Or "Firewall Client" installation.
But if on client PC Unix, Linnx, or Sun is installed and access Internet, the n we use "Secure
NAT" client installation.
ISA Installation on Window XP
ISA Server is not installed on XP windows. To install on XP we use "Customize
Installation".
Double-click ISA 2000 Enterprise on
Double-click ISA
Run setup.exe
Welcome to the Microsoft ISA Server Installation program.
Continue
Microsoft ISA Server Setup
I Agree
Click Custom Installation
Uncheck ISA Services
Uncheck Add-in servies
Check only Administration tools
Click Continue
Now installation of ISA server started.
Message: Launch ISA management Tool

OK
Message: Microsoft Internet Security and Acceleration Server Enterpirse Edition Setup was
completed successfully.
OK
To Check that ISA Server installed properly.
Goto Start
Programs
ISA Management
Click View menu
Select Advance
Right-click Internet Security and Acceleration Server
Connect to…
Connect to this stand-alone server:
Enter IP address 192.168.0.100 (give ISA Server IP address)
OK
To Check that ISA Server installed properly on Windows XP.
Goto Start
Programs
ISA Management
Click View menu
Select Advance
+ Servers and Arrays
+ PC1
+ Monitoring
+ Services
PC1 Web proxy
PC1 Firewall
PC1 Scheduled content Download
All the 3 services are enabled and working.
To Block Some Sites
To block some sites, there are 2 works to be done on ISA Server.
Policy Element
Access Policy
First we mention those sites to which we want to block in "Policy Element". Or First we set a
destination.
Goto Start
Programs
ISA Management
Double-click Policy Element
Right-Click on Destination Sets
Select New

Select Set…
Enter Name: Block Sites
Click Add
Enter Destination: *.yahoo.com
*.yahoo.*
*.google.com
*.msn.com
*.hotmail.com
*.geo.tv
OK
OK
We have created a list of sites to block. Now we will apply rule on these sites.
Double-click on Access Policy
Right-click on Site and Content Rule
Select New
Select Rule
Welcome to the New Site and content Rule Wizard
Enter name: Block Sites
Click Next
Rule Action: Select the type of action this rule performs.
Select Deny
Click Next
Rule Configuration: This rule cn apply to destinations, schedules , clients or all three.
Select Custom
Click Next
Destination Sets: Select the destination to which this rule applies.
Select Specified destination set
Select Name: Block Sites
Click Next
Select Always
Click Next
Client Type: You can specify client type by user name, group name or IP address.
Select Any request
Click Next
Content Groups: content groups include different file types and MIME types.
Select Any content type
Click Next
Completing the New Site and Content Rule Wizard
Click Finish
On Client PC2
Browse any site from above sites i.e google.com. It will not be opened and give error message.
To Block Internet Access on all PC's

Goto Start
Programs
ISA Management
Select New
Select Set…
Enter Name: Block Internet
Click Add
Enter Destination: * (* means to block a whole internet)
OK
OK
Now we apply a Rule to Block the Internet.
Select New
Select Rule
Enter name: Block Internet
Click Next
Select Deny
Click Next
Select Custom
Click Next
Select Name: Block Internet
Click Next
Select Always
Click Next
Select Any request
Click Next
Click Next
Click Finish
On any PC

Browse any site it will not be opened and give error message.
To Block Internet on some specific PC (PC2)
Goto Start
Programs
ISA Management
Select New
Select Set…
Enter Name: Block Net
Click Add
Enter Destination: * (* means to block a whole internet)
OK
OK
Refresh
Now we apply a Rule to Block the Internet.
Select New
Select Rule
Enter name: Block Internet
Click Next
Select Deny
Click Next
Select Custom
Click Next
Click Next
Select Always
Click Next
Select Specific computers (client address sets)
Click Next
Client Sets: Specify the client sets to which this rule applies.
Click Add…
Click New…
Enter Name: Block Net

Click Add…
Enter IP address range that you want to block.
From: 192.168.0.20
To: 192.168.0.30
OK
OK
OK
Click Next
Click Next
Click Finish
To Block Pictures / Images
Goto Start
Programs
ISA Management
Select New
Select Set…
Enter Name: Block Images
Click Add
Enter Destination: geo.tv (block images of geo.tv)
OK
OK
Now we will apply rule to block images.
Select New
Select Rule
Click Next
Select Deny
Click Next
Select Custom
Click Next
Click Next

Select Always
Click Next
Select Any request
Click Next
Select Only the following content types:
Check images
Click Next
Click Finish
To Block Audio and Video on All Sites
Goto Start
Programs
ISA Management
Select New
Select Set…
Enter Name: Block Audio & Video
Click Add
Enter Destination: *
OK
OK
Now we will apply rule to block Audio & Video.
Select New
Select Rule
Click Next
Select Deny
Click Next
Select Custom
Click Next

Click Next
Select Always
Click Next
Select Any request
Click Next
Select Only the following content types:
Check Audio
Check Video
Click Next
Click Finish
Re-direct to Specific website
When client enter URL of any site. He will redirect to a specific website.
Goto Start
Run cmd
OK
Enter comment: ping www.urdupoint.com i.e IP address 66.116.125.170
Goto Start
Programs
ISA Management
Select New
Select Set…
Enter Name: Route
Click Add
Enter Destination: *
OK
OK
Routing
You can create touting rules, which determine whether a Web Proxy client Request is:
- Retrieved directly from the specified destination
- Sent to an upstream server
- Redirected to an alternate site
Routing rules apply to both incoming Web request and outgoing Web Requests.
Double-click on Network Configuration
Right-click on Routing
Select New…
Select Rule…
Welcome to the New Routing Rule Wizard

Enter name: Route Internet
Click Next
Destination Sets: Select the destinations to which this rule applies.
Select Route
Click Next
Request Action: How should the rule process requests from clients?
Select Redirect to
Hosted site: 66.116.125.170 (IP address of www.urdupoint.com)
Port: 80
SSL Port: 443 (Internet port or STTP Port)
Click Next
Cache Retrieval Configuration: Specify how the rule searches the cache for requested
objects and how requests will be routed if no valid object exists.
Select Any version of the requested object. Never route the request
Click Next
Completing the New Routing Rule Wizard
Click Finish
To Allow Internet in Office Time Only
Goto Start
Programs
ISA Management
Right-Click on Schedules
Select New
Select Schedule…
Enter Name: Office Time
Select time in AM/PM
Select Monday to Saturday
Select 8 AM to 4 PM
Select Active
OK
Now we will apply rule to use internet in office time.
Select New
Select Rule
Enter name: Office Time
Click Next
Select Deny
Click Next

Select Custom
Click Next
Click Next
Select Office Time
Click Next
Select Specific computers (client address sets)
Client Sets: Specify the client sets to which this rule applies.
Click Add…
Click New…
Name: Side A
Add…
From: 192.168.0.10
To: 192.168.0.50
OK
OK
Click New…
Name: Side B
Add…
From: 172.16.0.10
To: 172.16.0.50
OK
OK
OK
Click Next
Click Next
Click Finish
Web Publishing
We use PC2 as a Web Server. Now first we make a client PC i.e. PC2 a "Proxy Client" of ISA
server.
Goto PC2
Open web browser
Tools
Internet Options…
Connections
LAN Settings…
Check Use a proxy server for your LAN

Enter IP Address: 192.168.0.100 ISA Server IP Address
Enter Port: 8080
Check Bypass proxy server for local addresses
OK
OK
Now PC2 become "Proxy Client" of ISA Server. Internet is also working properly.
To Connect to ISA Server
Goto Start
Programs
ISA Management
Right-click on Internet Security and Acceleration Server
Select Connect to…
Enter IP Address: 192.168.0.100 ISA Server IP Address
Now this IP address will connect PC2 client to ISA Server.
OK
Exchange Server 2003
Through Exchange Server. We can send/receive mails organization (LAN) and also outer world
(WAN). But Exchange Server is not installed on "Pirated Server". Or Simply Pirated Server CD
not workable in Exchange Server. Therefore we need original registered Server 2003 CD.
Requirement: Exchange Server 2003 have 4 requirements to work properly:
1- Register Window (Win 2003 Server for Exchange)
2- Registered Domain (Active Directory i.e. corvit.com)
3- 2 register DNS Servers (i.e. corvit.com + cisco.com)
4- Live IP Address
To install Exchange 2003 Server above are our requirements.
Services: For Exchange following services must be on:
1- Internet Information Services (IIS, for web accessing)
2- ASP.Net
3- SMTP (for mail sending)
4- NNTP (Network News Transfer Protocol, for public folder)
5- WWW
6- Common File
To add above 6 windows components:
Insert Server 2003 CD in to CD-ROM
Goto Start
Run enter appwiz.cpl
OK
Click Add/Remove Windows Components
Select Application Server
Click Details…
Select Internet Information Services (IIS)
Click Details…
Check NNTP Service
(It will also check Common Files, Internet Information Services Manager)

Check SMTP Service
Check World Wide Web Service
OK
Check ASP.NET
OK
Click Next
Installation of Exchange Server 2003
For installation of Exchange Server 2 CD's are used.
a) Win2k3 Server b) Exchange Server
(for Exchange)
As we know, that Exchange Server 2003 is not installed on pirated CD Server. So we first
install registered Widows Server i.e. Win2k3 for Exchange on Server Window, which is already
installed on PC2. this will make this installed pirated Server on, become registered Windows
Server.
Enter Win 2003 Server for exchange on Server ope nwindow
Install Active directory also
Install DNS Server
Install Exchange
To install Exchange 2 methods are used.
a) On member Server (no active directory on it)
b) Simple Server.
On Member Server
Enter Exchange CD into CD-ROM
Right-click on CD-ROM
Select Open
Double-click Setup
Double-click I386 folder
Run Setup.exe
Welcome to the Microsoft Exchange Installation Wizard.
Click Next
License Agreement: Read the agreement carefully and click the appropriate option.
Select I agree
Click Next
Component Selection:Select and modify components to fit your custom solution.
Typical
Click Next
Installation Type: Select an installation type.
Create a new Exchange Organization
Click Next
Organization Name: Name the Microsoft Exchange Organization you want to create.
Organization Name: FMT
Click Next
Licensing Agreement:Indicate your agreement to terms of Exchange Server Licensing.

Select I agree that I have read and will be bound by the license agreements for this product
Click Next
Installation Summary
Click Next
(if any message appear click OK)
Completing the Microsoft Exchange Wizard
Click Finish
To Check status of Exchange Server
To check that Exchange Server is installed properly or not. There are two methods are used:
1st
Method:
Goto Start
Run cmd
OK
Type 192.168.0.1 25
Note: 192.168.0.1 is IP address of PC on which Exchange is installed and 25 for mail sending.
If following message appears it means Exchange installed successfully:
"220 server.yasser.com Microsoft ESMTP MAIL Service, Version: 6.0.3790.0 ready at
date and time + time zone (i.e Thu, 30 Apr 2009 21:27:47 +0500)"
Type: ehlo
after ehlo command following message will appear:
250-server.yasser.com Hello [192.168.0.1]
250-TURN
250-SIZE
250-ETRN
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-8bitmime
250-BINARYMIME
250-CHUNKING
250-VRFY
250-X-EXPS GSSAPI NTLM LOGIN
250-X-EXPS=LOGIN
250-AUTH GSSAPI NTLM LOGIN
250-AUTH=LOGIN
250-X-LINK2STATE
250-XEXCH50
250 OK
Note: If 4 X’s appear then Exchange Server installed properly.
To Verify all Service are Running
After installation of Exchange Server check the status of Exchange Server.
Goto Start
Programs

Microsoft Exchange
System Manager
Double-click Tools
Double-click Monitoring and Status
Select Status
Double-click Server (name of pc on which Exchange Server is installed)
Select Default Microsoft Exchange Services
Click Detail… button
Following 6 services will be running:
1- Microsoft Exchange Information Store Running
2- Microsoft Exchange MTA Stacks Running
3- Microsoft Exchange Routing Engine Running
4- Microsoft Exchange System Attendant Running
5- Simple Mail Transfer Protocol (SMTP) Running
6- World Wide Web Publishing Service Running
All services of Exchange are running.
2nd
Method:
Open Browser
Type Address: 192.168.0.1/exchange
Password: 123
OK
If Outlook Web Access appears then Exchange Server installed properly.
To Send / Receive Mail
To send and receive mail from users to Server / Administrator.
Goto PC2
Open Browser
Type Address:192.168.0.1/exchange
Password: 123
OK
Click New tab
To: Administrator@yasser.com
Subject: First Mail
Type any message i.e This is a test message.
Click on Send
Goto PC1
Click Inbox
And mail will appear
What is Exchange Server Do ?
Exchange Server performs 2 works.
a) Mail Administration
b) Save & Manage the Data in mails

There are 2 things in Exchange Server.
(i) Storage Group (4 storage groups in members)
(ii) Mail Box Store (5 mail box store in members)
1- Storage Group
———
———
——— 5 mail box store
———
———
2- Storage Group
———
———
———
———
———
3- Storage Group
———
———
———
———
———
4- Storage Group
———
———
———
———
———
4 storage groups 5 mail box store = 20 mail box store and it have unlimited capacity.
To Check Exchange Server File in PC drive
Double-click C: drive
Double-click Program Files
Double-click Exchsrvr
Double-click MDBDATA
Mail box store: It consist of 2 files
Priv1.edb (for text date, by default size 4mb)
Priv1.stm (for attachments, by default size 4mb)
Public Folder: it consist of 2 files
Pub1.edb (by default size 3mb)
Pub1.stm (by default size 2mb)
Change View of Exchange
Goto Start
Programs
Microsoft Exchange
System Manager
Right-click FMT(Exchange) (FMT organization name)

Select Properties
Check Display administrative groups
Apply
OK
OK
Enable Security Tab
Right-click on FMT (Exchange) and select properties. If security tab does not appear then
perform the following steps:
Goto Start
Run regedit
OK
Double-click HKEY_CUURNT_USER
Double-click Software
Double-click Microsoft
Double-click Exchange
Right-click EXAdmin
New
Select DWORD Value
Enter name: showsecuritypage
Double-click showsecuritypage
Enter Value data: 1
OK
Storage Groups & Stores (Mailbox or Public Stores)
Each Exchange Server contain only 4 storage groups.
Each storage groups contain only 5 mailbox stores or public stores.
By default first storage group is physically store on c:Program FilesExchsrvrmdbdata.
However we can change the location.
Configuring the Exchange Store
The Microsoft Exchange Information Store service manages the Exchange store, where you can
store mailboxes, public folders, documents, files, and applications. The Exchange store uses two
types of databases:
- Mailbox stores
The part of the Exchange store that maintains information in user mailboxes. A mailbox
store consists of a rich-text .edb file, plus a streaming native Internet content .stm file.
- Public folder stores
The part of the Exchange store that maintains information in public folders, a public
folder store consists of a rich-text .edb file, plus a streaming native Internet content .stm file.
Add a Storage Groups
Exchange supports multiple databases contained within a storage group. A storage group
includes one to five databases and one set of transaction log files for all databases in the storage
group.
To add a storage group:
1. Goto Start

2. Programs
3. Microsoft Exchange
4. System Manager
5. Right-click FMT(Exchange) (FMT organization name)
6. Select Properties
7. Check Display administrative groups
8. Apply
9. OK
10. OK
11. Double-click Administrative Groups
12. Double-click First Administrative Group
13. Double-click Servers
14. Right-click PC1 (PC1 PC name on which Exchange
installed)
15. Select New
16. Select Storage Group...
17. Type Name: 1st Storage Group
18. Apply
19. OK
By following the above steps you can create 4 storage groups.
Optional: On the General tab, set the following properties:
- To change the name and location of the transaction logs, use Transaction log
location. To move the logs, use System Manager on the server on which the logs
reside.
- To change the name and location of the system path, use System path location. This
is where temporary (tmp.edb) and recovered (edb.chk) files are stored.
- To clear each 4 KB page of data from the drive at deletion, click Zero out deleted
database pages. This is a security precaution.
! WARNING Enabling this option can slow server performance.
- To reuse the same log file instead of creating a new one when the 5 MB limit is
reached, click Enable circular logging.
! WARNING Enabling this option prevents you from creating a set of log files
and you can restore only from your last backup. Reserve this option for storage
groups that support Network News Transfer Protocol (NNTP) folders (in public
folder stores), which do not require log files.
- To add additional information, on the Details tab, use Administrative note.
Configure Mailbox Stores
Mailboxes are the delivery location for all incoming mail messages for a designated owner.
Information in a user's mailbox is stored in a mailbox store on an Exchange server. A mailbox
can contain received messages, message attachments, folders, documents, and other files.

This section contains the following topics:
• Add a Mailbox Store
• Set Mailbox Store Properties
• Administer a Mailbox Store
• Recover a Mailbox
• Delete a Mailbox
Add a Mailbox Store
The mailbox store is a storage device for a server's mailboxes. Exchange supports multiple
mailbox stores for each server. Each mailbox store is contained in a storage group.
The only properties required to add a mailbox store are a name and a default public folder store.
To add a mailbox store:
1. On the Start menu, point to Programs, point to Microsoft Exchange, and then click
System Manager.
2. Double-click Administrative Groups
3. Double-click First Administrative Group
4 Double-click Servers
5. Double-click PC1
6. Right-click First Storage Group (storage group container to which you want to add
the mailbox store)
7. Select New
8. Select Mailbox Store…
9. Enter name: 1-Mailbox Store
10. Apply
11. OK
12. Yes
13. The Store was successfully mounted. Click OK
Set Mailbox Store Properties
You can change the properties of mailbox stores (and the mailboxes they contain) with System
Manager.
Note The Limits tab displays the default limits of the mailboxes in the mailbox store. Once you
create a mailbox, you can change its limits with Active Directory Users and Computers.
To set mailbox properties:
System Manager.
12. Administrative Groups

First Administrative Group
SERVER
First Storage Group
1-Mailbox Store
13. Right-click 1-Mailbox Store
14. Select Properties
15. On the General tab, set the following properties to specify the name of this mailbox
store, the default public store associated with it, and the offline address list that is used.
You can also archive messages sent or received by mailboxes that you choose, and
control the appearance of messages that are displayed:
• Use Name text box to type a name for the new mailbox store. The name should
reflect the type of users that will be represented in the mailbox store. For
example, if you place mailboxes of clerical employees in this mailbox store, you
might type "Clerical" in the text box.
Note If you are viewing an existing mailbox store, this text box is not available.
• To change the name and location of the default public folder store, use Default
public store. You can use this text box to view the public store that is associated
with this mailbox store. To change the public store associated with this mailbox
store, click Browse. You can then choose from a list of available public stores
and click OK.
• To change the name and location of the offline address list, use Offline address
list. Use this text box to view the offline address list that is associated with this
mailbox store. Each mailbox store exports address list data to an offline address
list, which allows off-site users to browse the Exchange organization. To choose
an offline address list, click Brows.
• To archive messages sent or received by mailboxes on this store. Use Archive all
messages sent or received by mailboxes on this store to create an archive of
messages to or from users or distribution lists on this mailbox store. When the
check box is selected, you can view the mailbox or distribution list currently
archived in the text box. Click Browse to select a mailbox or distribution list to
archive.
• Use this option to select the check box if the e-mail clients using this mailbox
store support Secure Multipurpose Internet Mail Extensions (S/MIME). S/MIME
is a secure method for sending e-mail over the Internet, and is supported by
Outlook 98 or later. By default, Clients support S/MIME signatures option is
enabled.
• To convert scalable fonts to fixed fonts, Use Display plain text messages in a
fixed-sized font check box to preserve formatting of plain text messages by
displaying them in a fixed-sized font. You can use this option to avoid the
improper display of ASCII diagrams and similar text.
16. On the Database tab, set the following properties to specify the locations of Exchange
databases in which messages are stored. You can also configure database mounting,
maintenance, and restore options:
• To change the name and location of the Exchange database (.edb) file. Use this
text box to view the location of the Exchange database (.edb) file. Messages sent
y MAPI clients, using Exchange Rich Text Format, are stored in this database. To
change the location of the database:
Click Browse
Goto E: drive

Create Folder 1st Storage Group
Double-click 1st Storage Group folder
Click Save file 1-Mailbox Store.edb
• To change the name and location of the Exchange streaming database (.stm)
file. Use this text box to view the location of the Exchange streaming database
(.stm) file. Internet e-mail messages sent in Multipurpose Internet Mail
Extensions (MIME) format are stored on this database. To change the location of
the database:
Click Browse
Goto E: drive
Double-click 1st Storage Group folder
Click Save file 1-Mailbox Store.stm
• To build a custom schedule graphically, use this drop-down list to specify a
maintenance schedule for Exchange databases. You can choose one of the pre-
defined schedules from the list, or click customize to define your own schedule.
• To prevent the automatic mounting of the store, click Don't mount this store at
start-up. Use this check box if you prefer to manually mount this mailbox store.
When the check box is selected, this mailbox store does not automatically mount
when Exchange is started. By default, this check box is cleared.
IMPORTANT: Mailboxes in this store cannot be used until the mailbox
store is mounted.
• To allow database overwrites, click This database can be overwritten by a
restore. Use the check box to allow a restore operation to overwrite Exchange
databases in this mailbox store. By default, this check box is cleared.
! WARNING Allowing a restore procedure to replace these database
files results in loss of any messages sent or received after the backup is
performed. In general, you should only select this check box if the mailbox store
databases are corrupt beyond repair, and you are aware of the extent of potential
data loss.
17. On the Limits tab, set the following properties to control the size of user mailboxes and
to specify the length of time that deleted items remain in the mailbox store. You can also
specify when storage limit maintenance occurs:
• To send a warning when the storage used reaches a specific size, use Issue
warning at (KB) check box to type a mailbox size limit, in kilobytes, into the
text box. When a user's mailbox exceeds the specified size limit, the user receives
an e-mail alert to delete messages from the mailbox. By default, this check box is
cleared.
• To stop sending items when the storage used reaches a specific size, Click
Prohibit send at (KB) check box to type a mailbox size limit, in kilobytes, into
the text box. When a user's mailbox exceeds the specified size limit, the user
receives an e-mail alert to delete messages from the mailbox. In addition, the user
is unable to send any e-mail until the mailbox size is reduced below the specified
limit. By default, the check box is cleared.
Note This option is not used when messages are sent by Post Office Protocol
version3 (POP3) or Internet Message Access Protocol version 4 (IMAP4) clients
because those protocols do not support this functionality.
• To stop sending and receiving items when the storage used reaches a specific
size, click Prohibit send and receive at (KB) check box to type a mailbox size
limit, in kilobytes, into the text box. When a user's mailbox exceeds the specified

size limit, the user receives an e-mail alert to delete messages from the mailbox.
In addition, the user is unable to send any e-mail until the mailbox size is reduced
below the specified limit, and any incoming e-mail is returned to the sender with
a non-delivery report (NDR).
• To build a custom schedule graphically, use Warning message interval drop-
down list to schedule when warning messages are generated. You can select one
of the standard maintenance schedules, or click Customize to sent up your won
schedule.
Note This process is CUP and disk intensive and can cause slow server
performance. You should schedule maintenance of this type at off-peak times.
• To set a retention period for deleted items, use Keep deleted items for (days)
text box to type the number of days that deleted items (such as e-mail messages)
remain on the server before they are permanently removed. Yu can type a number
from 0 to 24, 855. if you type 0, deleted items are removed from the server.
• To set a retention period for deleted mailboxes, use Keep deleted mailboxes for
(days) text box to type the number of days that deleted mailboxes remain on the
server before they are permanently removed. You can type a number from 0 to
24, 855. if you type 0, deleted mailboxes are removed from the server
immediately.
Tip In some cases, deleted mailboxes can be recovered if they are still on the
server.
• To preserve items until backup, use Do not permanently delete mailboxes and
items until the store has been backed up check box to keep deleted mailboxes
and items on the server until a backup is performed. After a backup is performed,
mailboxes and items are deleted according to the settings that you specified.
18. On the Full-Text Indexing tab, set the following properties to set an indexing schedule.
Microsoft Exchange Server 2003 can create full-text indexes to enable fast searches and
lookups. You can update existing indexes or completely rebuild and index. You can also
take an existing index offline, so that it cannot be searched by clients.
IMPORTANT Indexing places a high demand on server resources. You
should schedule indexing for time periods during which the server is not in heavy use.
• Use this drop-down list to choose a time to update the full-text index. Updating
the index adds new data reference to the index adds new data references to the
index, but does not remove references to data that has been deleted. If you select
Never run, the full-text index is not updated. To create your won schedule, click
Customize.
Note in order to keep the index current, you should update it regularly.
• Use This index is available for searching by clients check box to disable
searches using this index. When the check box is selected, clients can make use
of the index for fast searches and lookups. When the check box is cleared, the
index is taken offline.
19. To add additional information, use Administrative note on the Details tab. To view the
creation date of the Exchange object and the date it was last modified. You can also enter
ran optional administrative note to keep track of information concerning the object.
• Use Creation date option to view the data and time the object was created. This
will be blank when you're creating a new object.
• Use Last modification option to view the date and time the object was last
modified. This will be blank when you're creating a new object.

• Use Administrative note option to add an optional note of up to 1024 characters.
20. Use the Policies tab to check which polices apply to this mailbox store. You cannot use
this tab to modify the polices.
• The Policies list includes details about all of the polices that apply to his mailbox
store. Name of the policy. Administrative Group that the policy applies to.
Policy Options that are controlled by the policy.
21. To set permission for the mailbox store for user and groups, on the Security tab, click a
user or group, and then click Allow or Deny to grant or deny permission.
Note Permissions inherited from the parent object (the storage group) are indicated by
shaded check boxes. Scroll to the bottom of the Permissions list to see the extended
permissions specific to Exchange.
Administer a Mailbox Store
You can administer the mailbox store in the following ways:
• View logon and mailbox information.
• Change any of the properties you set when you created the store.
• Apply policies to the mailbox store.
• Run full-text indexing on the mailbox store.
The first option for administering a mailbox store follows. You can find the other three options
in the Related Topics links below.
To view logon and mailbox information:
1. The Start menu, point to Programs, point to Microsoft Exchange, and then click
System Manager.
SERVER
First Storage Group
1-Mailbox Store
Logons
Mailboxes
3. Click logons (information about all logons to the store is displayed in the details panel.)
4. Right-click Logons
5. Point to View
6. Click Add/Remove Columns… (to see the information you can use to construct a view.)
7. Click Mailboxes store (information about all mailboxes in the store is displayed in the
Details pane.
8. Right-click Mailboxes
9. Point to View
10. Click Add/Remove Columns… (To see the information you can use to construct a view.

Recover a Mailbox
There are two ways to make an Exchange mailbox unusable: use System Manager to delete the
mailbox, or delete the mailbox's user from Active Directory, which makes the mailbox
unowned.
Deleted mailboxes can be recovered only by restoring them from a backup. Mailboxes that
belong to users who were deleted from Active Directory can be recovered.
Note In very specific disaster recovery circumstances, you may need to remove Exchange
attributes from an object before reconnecting the Exchange mailbox.
There are two methods for recovering mailboxes:
• Recover a single mailbox on a single mailbox store.
• Use Mailbox Recovery Center to recover one or more mailboxes on one or more mailbox
stores. You can export the mailbox properties, and you can associate the mailboxes with
users in Active Directory and reconnect the mailboxes.
To recover a single mailbox on a single mailbox store:
System Manager.
SERVER
First Storage Group
1-Mailbox Store
Mailboxes
3. In the details pane, Right-click Mailbox
4. Click Reconnect (To recover the mailbox)
To recover one or more mailboxes on one or more mailbox stores:
1. Right-click Logons
Configure Public Folder Stores
This section contains the following topics:
• Add a Public Folder Store
• Set Public Folder Store Properties
Add a Public Folder Store

The public folder store is a storage device for a server's public folders. Exchange supports
multiple public folder stores. Each public folder store is contained in a storage group.
Note Each public folder store is associated with one public folder tree (also called a public
folder hierarchy). The tree must exist first before you create a public folder store. You
cannot change a public folder store from one tree to another. The only other property
required when adding a public folder store is the public folder name.
Create Public Store
First create public folder tree.
To add a public folder tree:
System Manager.
First Storage Group
5. Right-click First Storage Group
6. Point to New
7. Click Public Store…
8. Type Name: Sales Tree
9. Click Apply
10. Click OK
Now Add Public Folder Store
To add a public folder store:
System Manager.
Folders
3. Right-click Folders
4. Point to New
5. Click Public Store…
6. Type Name: Sales
7. Click Browse
8. Select Sales Tree
9. Click OK
10. Click Apply
11. Click OK
12. Click Yes (Mounting process starts)
13. Click OK (The store was successfully mounted.)

Set Public Folder Store Properties
All the properties of Public Folder Store are same as Mailbox Store Properties except
Replications.
Use this dialog box to set parameters for public folder replication. A public folder can be
configured to have replicas on multiple public-folder servers. Replicas distribute user load
on servers, distribute public folders geographically, and back up public folder data.
• To build a custom schedule graphically, click pull-down menu to select a replication
interval. You can also click Customize to display the Schedule dialog box, in which
you can define the desired replication interval.
• To set a replication interval when you are using the Always Run option, click
Replication interval for always (minutes) and type a value.
• To limit the size of replication messages, click Replication message size limit and
type a value.
• Use Restore Defaults button to restore defaults for Replication interval for always
(minutes) at 15 and Replication message size limit (KB) at 300.
Managing Recipient Policies
Exchange 2003 features two kinds of recipient policies: one is for e-mail addresses and the other
affects mailboxes.
E-mail address policies generate e-mail addresses for your users, contacts, and groups, while
mailbox policies restrict the age and size of messages stored in users' mailboxes. Both kinds of
recipient policies can be created, modified, and prioritized through System Manager, and both
can be applied to all users or only a select few.
• E-Mail Address Recipient Policies. For each e-mail address recipient policy you create,
you can define the membership of the recipient policy and select the address types for
policy members. E-mail addresses are used to define the valid formats for addressing
inbound e-mail to the Exchange system. E-mail addresses identify recipients to the
gateways and connectors that connect Exchange with other messaging systems.
• Mailbox Recipient Policies. For each mailbox recipient policy you create, you can
define the membership of the recipient policy and choose to move or delete messages
from some or all folders in the mailboxes of all policy members. Exchange Mailbox
Manager reguarly scans and processes user mailboxes in order to enforce corporate e-
mail retention policies and conserve disk space on the local Exchange server.
E-Mail Address Recipient Policies:
% g = First name of the user
% i = Middle name of the user
% s = Last name of the user
% 2g = Indicate first two character of first name
% 3s = indicate first three character of last name

a. On the Start menu, point to Programs, point to Microsoft Exchange, and then
click System Manager.
Recipients
Recipient Policy
b. Right-click Recipient Policy
c. Point to New
d. Click Recipient Policy…
e. Check E-Mail Addresses
f. Click OK
g. Type Name: Mail Policy
h. Click Modify…
i. Click Advance tab
j. Click Field
k. Point to user
l. Click Company
m. Select Condition: Is (exactly)
n. Enter value: corvit
o. click Add
p. Click OK
q. Click OK (if any message appear)
r. Click Apply
s. Click OK
Then select E-Mail Address (Policy) Tag
1. Select Recipient Policies
2. Double-click Mail Policy
3. Click E-Mail Addresses (Policy)
4. Select SMTP @yahoo.com
5. Click Edit
6. Address: %g%s@yahoo.com
7. Click Apply
8. Click OK
9. Click Apply
10. Click Yes
11. Click OK
Create User
i. On the Start menu, point to Programs, point to Microsoft Exchange,
and then click Active Directory Users and Computers.
Yasser.com (Domain)

Users
ii. Right-click Users
iii. Point to New
iv. Click User
v. Enter First name: Raja
vi. Enter Last name: Yasser
vii. Enter User logon name: Raja Yasser
viii. Click Next
ix. Enter Password: 123
x. Confirm password: 123
xi. Uncheck User must change password at next logon
xii. Check user cannot change password
xiii. Check Password never expires
xiv. Click Next
xv. Uncheck Create an Exchange mailbox
xvi. Click Next
xvii. Click Finish
If following error message appear then resole the password problem by gpedit.msc:
"Windows cannot set the password for Raja Yasser because:
The password does not meet the password policy requirements. Check the minimum
password length, password complexity and history requirements."
1. Right-click on Raja Yasser
2. Click Properties
3. Click Organization tag
4. Enter Company: corvit (which we have selected in policy
[value (corvit)]
5. Click Apply
6. Click OK
a. Right-click Raja Yasser
b. Click Exchange Task…
c. Click Next
d. Click Create Mailbox
e. Click Next
f. Select Mailbox Store: 2nd
Storage Group/1-Mailbox Store
g. Click Next
h. Click Finish
Update Recipient Service

System Manager.
Recipients
Recipient Update Services
2. Select Recipient Update Services
3. Right-click Recipient Update Service (right side panel)
4. Click Update Now (select update now one by one for all services)
Verification
If you have E-mail address = abc@yahoo.com and some extra tags like Exchange General,
Exchange Feature, Exchange Advance and E-mail Address (Policy) appears it reveal that policy
is applied. To verify:
Active Directory Users and Computers.
Yasser.com (Domain)
Users
2. Right-click Users
3. Click Properties
Mailbox Recipient Policies
Mailbox recipient policies enforce corporate e-mail retention policies. When you create a
mailbox recipient policy, you configure the Exchange Mailbox Manager to move or delete
messages from some or all folders in users' mailboxes. For each recipient policy you create, you
can define the membership of the recipient policy and select whether you want to delete
messages based on age, size, or both. You can also choose to notify clients that their mailboxes
were cleaned, and you can choose to have reports sent to an administrator.
Notes Mailbox Manager can only process local mailboxes. It cannot be used on mailboxes
located on other servers.
System Manager.
Recipients
Recipient Policy
2. Right-click Recipient Policy
3. Point to New
4. Click Recipient Policy…
5. Check Mailbox Manager Settings
6. Click OK
7. Type Name: Mailbox Setting
8. Click Modify…

9. Click Advance tab
10. Click Field
11. Point to user
12. Click Company
13. Select Condition: Is (exactly)
14. Enter value: corvit
15. click Add
16. Click OK
17. Click OK (if any message appear)
18. Click Mailbox Manager Settings (Policy)
19. Check Send notification mail to user after processing
20. Click Inbox
21. Age Limit (Days): 30
22. Message Size (KB): 1024
23. Click OK
24. Click Sent Items
25. Age Limit (Days): 30
26. Message Size (KB): 1024
27. Click OK
28. Click Apply
29. Click OK
System Policy
By default system policy is not enabled. To add system policy:
System Manager.
Administrative Groups
2. Right-click First Administrative Group
3. Point to New
4. Click System Policy Container
Type of Policies
There are three type polices:
• Public Store Policy
• Mailbox Store Policy
• Server Policy

Server Policy
Use this dialog box to view an existing system-store policy or name a new system-store policy.
A policy is a collection of configuration settings that is applied to one or more Exchange 2003
objects of the same class (for example, servers). When you make or modify a policy, it is
applied across all applicable objects. System policies are applied to servers, public stores, and
mailbox stores. Recipient policies are applied to objects with at least one e-mail address. Server
policy contain only one page. This page is "General".
System Manager.
System Policy
2. Right-click System Policy
3. Point to New
4. Click Server Policy…
5. Check General
6. Click OK
7. Type policy Name: Lahore
8. Click General (Policy) tag
9. Check Enable subject logging and display
10. Check Enable message tracking
11. Check Remove log files
12. Enter Remove files older than (days): 30
13. Click Apply
14. Click OK
Policy of Lahore will be created under System Policy.
15. Select Lahore Policy
16. Right-click Lahore
17. Click Add server…
18. Click Advance
19. Click Find Now
20. Select your Server
21. Click OK
22. Click OK
Message Are you sure you want to add the items(s) to this policy?
23. Click Yes
Verification

To verify pages:
System Manager.
Server
PC1
2. Right-click PC1
3. Click Properties
Mailbox Policy
To verify pages:
System Manager.
System Policy
3. Point to New
4. Click Mailbox store policy…
5. Check General
6. Check Database
7. Check Limits
8. Check Full-Text Indexing
9. Click OK
10. Type policy Name: LHR
11. Click Apply
12. Click OK
13. Select Policy LHR
14. Right-click LHR
15. Click Add Mailbox store…
17. Click Find Now
18. Click 1-Mailbox Store
(If you have multiple mail box stores then select appropriate store.
19. Click OK
20. Click OK
21. Are you sure you want to add the items(s) to this policy? Click Yes

Verification
To verify pages:
System Manager.
Server
PC1
4. Right-click 1-Mailbox Store
5. Click Properties
All pages gray on which you configure policy.
Public Store Policy
Public store policy contain 5 pages who is configurable.
To verify pages:
System Manager.
System Policy
23. Point to New
24. Click Public store policy…
25. Check General
26. Check Database
27. Replication
28. Check Limits
29. Check Full-Text Indexing
30. Click OK
31. Type policy Name: KHI
32. Click Apply
33. Click OK
34. Select Policy KHI
35. Right-click KHI
36. Click Add Public store…
38. Click Find Now

39. Click Sale
(If you have multiple mail box stores then select appropriate store.
40. Click OK
41. Click OK
42. Are you sure you want to add the items(s) to this policy? Click Yes
Verification
To verify mailbox policy but now you select public folder store instead of mailbox store.
To verify pages:
System Manager.
Server
PC1
First Storage Group
Sale
2. Right-click Sale
3. Click Properties
All pages gray on which you configure policy.
Mailbox Recovery
First we remove / delete mailbox of any user then we recover this mailbox. There are tow
methods are used to delete mailbox:
Method 1:
Active Directory Users and Computers.
yasser.com
Users
User1
2. Right-click User1
3. Click Exchange Task…
4. Click Next
5. Click Delete Mailbox
6. Click Next
7. Click Next

8. Click Finish
Method 2:
System Manager.
Server
PC1
2nd Storage Group (or other storage group in which mailbox exist)
1-Mailbox Store
9. Right-click 1-Mialbox Store
10. Click Exchange Task…
11. Click Next
12. Click Delete Mailbox
13. Click Next
14. Click Next
15. Click Finish
Verification
Select user1 property if you doesn’t see users E-mail address and tags like Exchange General,
Exchange Feature, Exchange Address and E-mail Address. It means that mailbox is deleted. To
verify mailbox policy but now you select public folder store instead of mailbox store.
Mailbox Recovery
To recover mailbox:
System Manager.
First Organization (Exchange)
Tools
Mailbox Recovery Center
2. Right-click Mailbox Recovery Center
3. Click Add Mailbox Store
5. Click Find Now
6. Click 1-Mailbox Store (or any mailbox store)
7. Click OK

8. Click OK
9. Select user1
10. Right-click user1
11. Click Find Match
12. Click Next
13. Click Finish
14. Again Right-click User1
15. Click Reconnect
16. Click Next
17. Click Next
18. Click Finish
19. Right-click user1
20. Click Refresh
System Manager.
Recipients
Recipients Update Services
2. Right-click (Enterprise Configuration)
3. Click Update Now
4. Right-click (domain name, yasser)
5. Click Update Now
Verification of Mailbox Recovery
Select user1 property to whom the mailbox is recovered. If you see Exchange General,
Exchange Feature, Exchange Address & E-mail addresses (Policy). It means mailbox is
recovered.
Message Tracking
Let say you want to track message which is sent to user1 by user2. Last week, last day or
specific time.
Enable Message Tracking:
System Manager.

Server
PC1
2. Click Properties
3. Check Enable message tracking
4. Click Apply
5. Click OK
System Manager.
Tools
Message Tracking Center
2. Right-click Mailbox Recovery Center
3. Sender… user1 (Just type user1 or click sender to find)
4. Server… PC1 ""
5. Recipient user2 ""
6. Logged Between 5/4/2009 12:00:00 AM
7. and 6/4/2009 04:00:00 PM
8. Click Find Now
When the message is tracked then you can see the message history.
Monitoring
There are two types of monitoring:
• E-mail Notification
• Script Notification
E-mail Notification
System Manager.
Tools
Monitoring and Status
Notification
2. Right-click Notification
3. Click New
4. Click E-mail notification…
5. Click Select…
7. Click Find Now

8. Click PC1
9. Click OK
10. Click OK
Servers and connectors to monitors
11. This server
12. To… Administrator@yasser.com
13. Click E-mail server…
14. Click Advanced
15. Click Find Now
16. Click OK
17. Click OK
18. Click Apply
19. Click OK
Script Notification
System Manager.
Tools
Monitoring and Status
Notification
2. Right-click Notification
3. Click New
4. Click Script notification…
5. Click Select…
7. Click Find Now
8. Click PC1
9. Click OK
10. Click OK
11. Path to executable: C:Script.bat
12. Apply
13. OK
Open notepad and write a script with the extension of (.bat).
Web Site Hosting
a. Design a web site

i.Goto Start
ii.Run type notepad
iii.Type: <hs><manager><font size 12)<font color=blue> Corvit System <hs><manager>
iv.Click File
v.Click Save As…
vi.Goto D:Site (folder name which is in drive d:)
vii.Save: site.html
b. Open Internet Information Services (IIS) Manager
1. On the Start menu, point to Programs, point to Administrative Tools, and then click
Internet Information Services (IIS) Manager.
PC1 (local computer)
Web Sites
Default Web Site
2. Right-click Default website
3. Click New
4. Click Website
5. Click Next
6. Type Description File name
7. Click Next
8. Click Next
9. Click Browse…
10. Click D:Site
11. Click Next
12. Click OK
13. Click Finish
c. Open Domain Name Server
DNS.
PC1
2. Right-click Forward Lookup Zones
3. Click New Zone
4. Click Next
5. Click Primary zone
6. Click Next
7. Click To all domain controllers in the Active Directory domain yasser.com
8. Type Zone name: site.com
9. Click Next
10. Click Next
11. Click Allows only Server dynamic update
12. Click Next

13. Click Finish
DNS.
PC1
Site.com
2. Right-click Site.com
4. Name: www
5. IP address: 192.168.0.1
6. Click Create associated pointer (PTR) record
7. Click Add Host
8. The host record site.com was successfully created. Click OK
9. Click Done
10. Open Browser type: www.Site.com
Host Header for Website
1. www.site.com
2. Click Next
3. Click Browse
4. Click D:Site
5. Click OK
6. Click Next
7. Check Read
8. Check Write
9. Check Browse
10. Click Next
11. Click Finish
Restart IIS
a. PC1 (local computer)
b. Point to All Task
c. Click Restart IIS…
d. Click OK
WIN Server
Role of WINS in the Network
Although NetBIOS and NetBIOS names can be used with network protocols other than TCP/IP,
WINS was designed specifically to support NetBIOS over TCP/IP (NetBT). WINS is required
for any environment in which users access resources that have NetBIOS names. If you do not
use WINS in such a network, you cannot connect to a remote network resource by using its

NetBIOS name unless you use Lmhosts files, and you might be unable to establish file and print
sharing connections.
The following figure illustrates the role of WINS for computers that use NetBIOS names.
Typically, DHCP is used to assign IP addresses automatically.
WINS Name Registration and Resolution
In a typical scenario, the following occurs:
1. ClientA, which uses NetBIOS and is a WINS client, sends a name registration
request to its configured primary WINS server (WINSA) when it starts up and
joins the network. WINSA adds ClientA's NetBIOS name and IP address to the
WINS database.
2. When ClientB needs to connect to ClientA by its name, it requests the IP address
from the WINS server.
3. The WINS server locates the corresponding entry in its database and replies with
ClientA's IP address.
Summary of WINS Benefits
WINS provides the following benefits over other NetBIOS name resolution methods:
• WINS name resolution reduces NetBIOS name query broadcast traffic because
clients can query a WINS server directly instead of broadcasting queries.
• WINS enables the Computer Browser service to collect and distribute browse
lists across IP routers.
• The WINS dynamic name-to-address database supports NetBIOS name
registration and resolution in environments where DHCP-enabled clients are
configured for dynamic TCP/IP address allocation.
• The WINS database also supports centralized management and replicates name-
to-address mappings to other WINS servers.
• WINS and DNS can be used in the same environment to provide combined name
searches in both namespaces.
WINS and DNS
WINS and DNS are both name resolution services for TCP/IP networks. While WINS
resolves names in the NetBIOS namespace, DNS resolves names in the DNS domain
namespace. WINS primarily supports clients that run older versions of Windows and

applications that use NetBIOS. Windows 2000, Windows XP, and Windows Server 2003
use DNS names in addition to NetBIOS names. Environments that include some
computers that use NetBIOS names and other computers that use domain names must
include both WINS servers and DNS servers.
4. DNS Server
5. Broadcost
Backup of Microsoft Windows XP Users
Take backup of "Users” that are created already in Windows XP. We take backup of users,
because admin allot different policies to different users and memories these polices for different
users and again creating all these users after deletion is a hard job, so we do so.
To take backup of users, 1st
create users, if not created already.
Goto Start
Programs
Accessories
System Tools
Select Backup
Welcome to the Backup or Restore Wizard
Click Next
Backup or Restore: You can back up files and settings, or restore them from a previous
backup.
Select backup files and settings
Click Next
What to Back Up: You can specify the items you want to back up.
Select Let me choose what to back up
Click Next
Items to Back Up: You can back up any combination of drives, folders, or files.
Double-click on My Computer
Check System State
(Boot Files, COM+Class Registration Database & Registry)
Click Next
Backup Type, Destination, and Name: Your files and settings are stored in the destination
you specify.
Click Browse…
Goto E: drive
Create folder backup
Open backup folder
Give Name: Backup
Click Save
Click Next
Completing the Backup or Restore Wizard

Click Finish
Backup starts…
Click Close (after backup complete)
Restoration
Goto Start
Programs
Accessories
System Tools
Select Backup
Welcome to the Backup or Restore Wizard
Click Next
Backup or Restore: You can back up files and settings, or restore them from a previous
backup.
Select Restore files and settings
Click Next
What to Restore: You can restore any combination of drives, folders, or files.
Double-click File
Double-click Backup.bkf…
Check System State
Click Next
Completing the Backup or Restore Wizard
Click Finish
Warning Message: Restoring System State will always overwrite current System State unless
restoring to an alternate location.
Click OK
Restoration starts…
After restoration complete restart the computer.
RAS (Remote Access Service)
Suppose we have to access PC in remote area where internet services is not available. The only
option to access remote PC is through telephone line. Modem is must on both PC's.
Configuration of RAS (PC1 Islamabad)
1. Goto Start
4. Click Routing and Remote Access
5. Right-Click PC
6. Click Configure and Enable Routing and Remote Access
Welcome to the Routing and Remote Access Server Setup Wizard

7. Click Next
Configuration
8. Click Remote access (dial-up or VPN)
9. Click Next
Remote Access
10. Check Dial-up
11. Click Next
IP Address Assignment
12. Click From a specified range of addresses
13. Click Next
Address Range Assignment
14. Click New
15. Enter Start IP address: 192.168.0.150
16. Enter End IP address: 192.168.0.200
17. Click OK
18. Click Next
Managing Multiple Remote Access Severs
19. Click No, use Routing and Remote Access to authenticate connection requests
20. Click Next
Completing the Routing and Remote Access Server Setup Wizard
21. Click Finish
Make Dial-up Connection (PC2 Lasbala)
1. Right-click on My Network Places
2. Click Properties
3. Click Create a new connection
Welcome to the New Connection Wizard
4. Click Next
Network Connection Type
5. Click Connect to the Internet
6. Click Next
Internet Connection
7. Click Connect using a dial-up modem
8. Click Next
Connection Name
9. Enter ISP Name: abc or card name
10. Click Next
Phone Number to Dial
11. Enter Phone number: 158740
12. Click Next
Connection Availability

13. Click Anyone's use
14. Click Next
Internet Account Information
15. User name: user name of card
16. Password: password of card
17. Confirm password:
18. Click Next
Completing the New Connection Wizard
19. Click Finish
Now dialing tone is ringing on both PC's (PC RAS Server & PC2 Client) it means that client PC
is connected to RAS PC. Create a folder on RAS Server (PC1) and make a file in it and shared it
fully.
Now from PC2 goto start, Run server or IP 192.168.0.100
You can see the RAS Server data on PC2. Perform the same process on client PC and access
from server then data of PC2 is shown on PC1.
To check what is the IP address of PC2 from IP range.
On PC2 Goto Start
Run cmd
Ping ipconfig
It will show the IP address from the range that we have defined on RAS Server i.e. from
192.168.0.150 to 192.168.0.200.

Mcse notes

More Related Content

What's hot

Similar to Mcse notes

More from Danish Mahmood

Recently uploaded

Mcse notes