0
Windows Server 2003
Also known as the Win2K3, Windows Server 2003 is a server OS (operating system) from the American software company Microsoft. This OS has the capability to share printers and files, provide email services, authenticate users, and host message queues.
1,215 Questions
Which edition of Windows Server 2003 cannot be configured as an Active Directory domain controller?
Windows Server 2003, Web Edition
Does sperm wear off in the open?
Not immediately. Sperm cells can last for up to 48 hours outside the body.
Why management is said to be a group activity?
Management as a group refers to all those persons who perform the task of managing an enterprise. When we say that management of ABC & Co. is good, we are referring to a group of people those who are managing. Thus as a group technically speaking, management will include all managers from chief executive to the first - line managers (lower-level managers). But in common practice management includes only top management i.e. Chief Executive, Chairman, General Manager, Board of Directors etc. In other words, those who are concerned with making important decisions, these persons enjoy the authorities to use resources to accomplish organizational objectives & also responsibility to for their efficient utilization.
Management as a group may be looked upon in 2 different ways:
1. All managers taken together.
2. Only the top management
The interpretation depends upon the context in which these terms are used. Broadly speaking, there are 3 types of managers -
1. Patrimonial / Family Manager: Those who have become managers by virtue of their being owners or relatives of the owners of company.
2. Professional Managers: Those who have been appointed on account of their specialized knowledge and degree.
3. Political Managers / Civil Servants: Those who manage public sector undertakings.
Managers have become a part of elite group of society as they enjoy higher standard of living in the society.
How many password policies can be configured in a domain?
you can use combination of six policies
Configuring Password Policy Settings in an Active Directory-Based DomainYou must be logged on as a member of the Domain Admins group.
To implement password policies on network computers belonging to an Active Directory domain:
1. Navigate to the Control Panel (Start }Settings } Control Panel) and open the `Administrative Tools'.
2. Open the `Active Directory Users and Computers'. Right click on the root container of the domain and select Properties.
3. In the properties dialog, click on the Group Policytab. Then click on New to create a new Group Policy Object (GPO) in the root container.
4. Specify the name of the new group policy (for example, "Domain Policy") and then click on Close.
NOTE: Microsoft recommends that you create a new Group Policy Object rather than editing the default policy (called `Default Domain Policy'). This makes it much easier to recover from serious problems with security settings. If the new security settings create problems, you can temporarily disable the new Group Policy Object until you isolate the settings that caused the problems.
5. Right click on the root container of your domain and select Properties. This will bring up again the Domain Properties dialog.
6. Click on the Group Policy tab, and select the new Group Policy Object Link that you have just created (for example, `Domain Policy').
7. Click on Up to move the new GPO to the top of the list, and then click on Edit to open the Group Policy Object Editor.
8. Expand the Computer Configuration node and navigate to Windows Settings } Security Settings }Account Policies } Password Policy folder.
9. From the right pane, double-click on the `Enforce password history' policy. Then select the `Define this policy setting' option, and set the `Keep password history'value to `24'.
10. Click on the OK button to close the dialog.
11. From the right pane, this time double-click on the `Maximum password age' policy. Then select the `Define this policy setting' option and set the `Password will expire' value to 42 days.
12. Click on OK to close the properties dialog.
13. From the right pane, double-click on the `Minimum password age' policy. Then select the 'Define this policy setting' option and set the `Password can be changed after:' value to `2'.
14. Click on the OK button to close the dialog.
15. From the right pane, double-click on the `Minimum password length' policy. Then select the `Define this policy setting' option and set the value of the `Password must be at least:' entry field to `8'.
16. Click on the OK button to close the dialog.
17. From the right pane, double-click on the `Password must meet complexity requirements' policy. Then enable the `Define this policy setting in the template' option, and select `Enabled'.
18. Click on the OK button to close the dialog.
A seedbox is a server (PC/computer if you prefer) which is hosted on a datacenter (huge buildings where they host hosting providers with high speeds etc),
How do you install a sprinkler system?
There are two main methods of sprinkler system installation: open trench and pulled pipe. Open trench typically uses PVC pipe and pulled pipe typically uses poly pipe. Other than the pipe and fittings, the main difference in installation will be that the pulled pipe system requires a hole and saddle tee at the location of each sprinkler head.
The steps for installing an automatic sprinkler system using an open trench method are:
1. Start with a good sprinkler system design (try searching "sprinkler system designer" for support options)
2. Make sure that you have all necessary tools, equipment, and permits
3. Have Blue Stakes mark all utilities prior to any digging
4. Install a backflow prevention device according to code
5. Place flags at the location of each sprinkler head
6. Mark and dig all trenches and valve manifold locations
7. Build and install valve manifolds (preassembled valve manifolds can make this easier)
8. Connect mainline pipe from water source connection to valve manifolds
9. Lay lateral line pipe from the valve manifolds to the location of each sprinkler head
10. Install tees and swing assemblies for each sprinkler head and flush lines
11. Connect sprinkler heads to swing assemblies; set head to level with ground
12. Install sprinkler timer/controller and connect sprinkler wire from timer to valve manifolds
13. Install nozzles on sprinkler heads
14. Install valve boxes (as required) and backfill all trenches
15. Run a zone by zone test and adjust nozzle patterns
What is the recommended method for moving active directory objects from one domain to another?
look into Drag-and-Drop. it might help
What is the difference between forward lookup zone and reverse lookup zone in DNS?
Forward lookup is name-to-IP address; the reverse lookup is IP address-to-name.
How you can raise domain functional level of 2003 server?
server 2003
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
After you upgrade all Windows NT 4.0-based domain controllers in a domain to Windows Server 2003, you can raise the functional level of each domain in the forest to Windows Server 2003. Before you raise the domain functional level, however, you must ensure that no Windows NT 4.0-based domain controllers remain in the domain.
Warning
* If Windows NT 4.0-based domain controllers are running in a domain when you raise the domain functional level to Windows Server 2003, they will no longer be able to communicate with the new Windows Server 2003 domain controllers and will not receive necessary updates.
Use the following LDAP query to identify any Windows NT 4.0 domain controllers remaining in the domain. Run the LDAP query against the Domain container in Active Directory Users and Computers. If you have not manually changed the value of the operatingSystemVersion attribute of the computer object, this query is conclusive for domain controllers running Windows NT 4.0. You must be a member of the Domain Admins group to run the following query.
To identify Windows NT 4.0-based domain controllers in a domain
1. From any Windows Server 2003-based domain controller, open Active Directory Users and Computers.
2. If the domain controller is not already connected to the appropriate domain, connect it to the domain as follows:
a. Right-click the current domain object, and then click Connect to domain.
b. In the Domain dialog box, type the DNS name of the domain that you want to connect to, or click Browse to select the domain from the domain tree, and then click OK.
3. Right-click the domain object, and then click Find.
4. In the Find dialog box, click Custom Search.
5. Click the domain for which you want to change the functional level.
6. Click the Advanced tab.
7. In the Enter LDAP query box, type the following, leaving no spaces between any characters (the query is not case-sensitive):
(&(objectCategory=computer)(operatingSystemVersion=4*)(userAccountControl:1.2.840.113556.1.4.803:=8192))
8. Click Find Now. This produces a list of the computers in the domain that are running Windows NT 4.0 and functioning as domain controllers.
A domain controller might appear in the list for any of the following reasons:
* The domain controller is running Windows NT 4.0 and must be upgraded.
* The domain controller has been upgraded to Windows Server 2003, but the change has not replicated to the target domain controller.
* The domain controller is no longer in service, but its computer object has not been removed from the domain.
Before you can change the domain functional level to Windows Server 2003, you must physically locate any domain controller in the list, determine its current status, and either upgrade or remove the domain controller as appropriate.
What is Global catalog server?
GC contains an entry for every object in an enter prise forest but only a few properties for each object
Difference between Schema Master and Global Catalog?
global catalog
The global catalog contains a complete replica of all objects in Active Directory for its Host domain, and contains a partial replica of all objects in Active Directory for every other domain in the forest.
The global catalog is a distributed data repository that contains a searchable, partial representation of every object in every domain in a multidomain Active Directory forest. The global catalog is stored on domain controllers that have been designated as global catalog servers and is distributed through multimaster replication. Searches that are directed to the global catalog are faster because they do not involve referrals to different domain controllers.
In addition to configuration and schema directory partition replicas, every domain controller in a Windows 2000 Server or Windows Server 2003 forest stores a full, writable replica of a single domain directory partition. Therefore, a domain controller can locate only the objects in its domain. Locating an object in a different domain would require the user or application to provide the domain of the requested object.
The global catalog provides the ability to locate objects from any domain without having to know the domain name. A global catalog server is a domain controller that, in addition to its full, writable domain directory partition replica, also stores a partial, read-only replica of all other domain directory partitions in the forest. The additional domain directory partitions are partial because only a limited set of attributes is included for each object. By including only the attributes that are most used for searching, every object in every domain in even the largest forest can be represented in the database of a single global catalog server.
schema
All databases have a schema which is a formal definition (set of rules) which govern the database structure and types of objects and attributes which can be contained in the database. The schema contains a list of all classes and attributes in the forest.
The schema keeps track of:
* Classes
* Class attributes
* Class relationships such as subclasses (Child classes that inherit attributes from the super class) and super classes (Parent classes).
* Object relationships such as what objects are contained by other objects or what objects contain other objects.
There is a class Schema object for each class in the Active Directory database. For each object attribute in the database, there is an attributeSchema object.
Schem Master is A FSMO role held by single DC in forest
Can a Server be both an FTP Server and a Web Server?
Yes, we can host multiple web sites on single web server and only one FTP server per IP address.
They just use different ports.
Is it possible to install Microsoft Windows Server 2008 to a laptop?
Yes, if the laptop meets the minimum hardware requirements
To create an application directory partition you must be a member of which group?
Enterprise Admin Group
What does dhcp use to determine if a dhcp client has an ip reservation?
DHCP uses the clients MAC address to determine the IP address a client receives.
Where can one backup software on a Windows Server?
Software can be backed up in several ways on a Windows server. Periodic disk images, full or differential backups or restore points can be archived to another disk drive or a network drive, or on a cloud storage system.
What is the best way to upgrade to server 2003?
Note: The best to upgrade windows server 2003 on line. when you connect internet. open internet explorer go tool menu select windows update. or you can select automatically update go to control pannel open windows icon select time and day.
Any Domain controller (server in the domain and ad installed on it) can authrorize and authenticate the user. If there is any password related issue, the information is sent to the PDC.There is one PDC role holder server in the domain which delegates other DCs to authorirze and authenticate in domain
In Windows 2003 routing what are the interface filters?
NAT actsas a middle man between the internal and external network; packets coming from the private network are handled by NAT and then transferred to their intended destination. A single external address is used on the Internet so that the internal IP addresses are not shown. A table is created on the router that lists local and global addresses and uses it as a reference when translating IP addresses.
NAT can work in several ways:
Static NAT
An unregistered IP address is mapped to a registered IP address on a one-to-one basis - which is useful when a device needs to be accessed from outside the network.
Dynamic NAT
An unregistered IP address is mapped to a registered IP address from a group of registered IP addresses. For example, a computer 192.168.10.121 will translate to the first available IP in a range from 212.156.98.100 to 212.156.98.150.
Overloading
A form of dynamic NAT, it maps multiple unregistered IP addresses to a single registered IP address, but in this case uses different ports. For example, IP address 192.168.10.121 will be mapped to 212.56.128.122:port_number (212.56.128.122:1080).
Overlapping
This when addresses in the inside network overlap with addresses in the outside network - the IP addresses are registered on another network too. The router must maintain a lookup table of these addresses so that it can intercept them and replace them with registered unique IP addresses.
How NAT works
A table of information about each packet that passes through is maintained by NAT.
When a computer on the network attempts to connect to a website on the Internet:
the header of the source IP address is changed and replaced with the IP address of the NAT computer on the way out the "destination" IP address is changed (based on the records in the table) back to the specific internal private class IP address in order to reach the computer on the local network on the way back in Network Address Translation can be used as a basic firewall - the administrator is able to filter out packets to/from certain IP addresses and allow/disallow access to specified ports. It is also a means of saving IP addresses by having one IP address represent a group of computers.
Setting up NAT
to setup NAT you must start by opening the Configure your server wizard in administrative tools and selecting the RRAS/VPN Server role. Now press next and the RRAS setup wizard will open. The screen below shows the Internet Connection screen in which you must specify which type of connection to the Internet and whether or not you want the basic firewall feature to be enabled.
Press next to continue. The installation process will commence and services will be restarted, after which the finish screen will be displayed - showing what actions have taken place.
Configuring NAT
Configuration of NAT takes place from the Routing and Remote Access mmc found in the Administrative Tools folder in the Control Panel or on the start menu.
The screenshot below shows the routing and remote access mmc.
Select which interface you wish to configure and double click it. This will bring up the properties window giving you the option to change settings such as packet filtering and port blocking, as well as enabling/disabling certain features, such as the firewall. The remote router (set up previously) properties box is shown below. The NAT/Basic Firewall tab is selected.
You are able to select the interface type
- to specify what the network connection will be. In my example I have selected for the interface to be a public interface connected to the internet. NAT and the basic firewall option have also been enabled. The inbound and outbound buttons will open a window that will allow you restrict traffic based on IP address or protocol packet attributes. As per your instructions, certain TCP packets will be dropped before they reach the client computer. Thus, making the network safer and giving you more functionality. This is useful if, for example, you wanted to reject all packets coming from a blacklisted IP address or restrict internal users access to port 21 (ftp).
For further firewall configuration, go to the Services and Ports tab. Here you can select which services you would like to provide your users access to. You can also add more services by specifying details such as the incoming and outgoing port number.
List of services shown in the above screenshot are present. Press Add to bring up the window that will allow the creation of a new service or select an available service and press Edit to modify that service. You will be asked to specify the name, TCP and UDP port number and the IP address of the computer hosting that service.
If the services in the list aren't enabled then any client computer on the Windows 2003 domain will not be able to access that specific service. For example, if the computer was configured as shown in the image above and a client computer tried to connect to an ftp site, he would be refused access. This section can prove to be very useful for any sized networks, but especially small ones.
That concludes this article. As you have seen, Network Address Translation is a useful feature that adds diversity and security to a network in a small to medium sized company. With the advent,
VIJayK
It's called APIPA (automatic private ip addressing).
When did active directory come out?
Active Directory was previewed in 1999, released first with Windows 2000 Server edition, and revised to extend functionality and improve administration in Windows Server 2003. Additional improvements were made in Windows Server 2003 R2. Active Directory was refined further in Windows Server 2008 and Windows Server 2008 R2 and was renamed Active Directory Domain Services.
Active Directory was called NTDS (NT Directory Service) in older Microsoft documents. This name can still be seen in some Active Directory binaries.
Answer: It 's depend upon how many services configure paticular a server. and also how many user access. if we make diffrent service diffrent server then server performance work fine.
