book

Windows Server 2012: Up and Running

Name: Windows Server 2012: Up and Running
Author: Samara Lynn
ISBN: 9781449333195

by Samara Lynn

November 2012

Intermediate to advanced

258 pages

6h 39m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Windows Server 2012: Up and Running
Preface
About This BookAudienceGoals of This BookContents of This BookConventions Used in This BookUsing Code ExamplesComments and QuestionsSafari® Books OnlineAcknowledgments
1. Windows Server 2012: Overview
Introducing Windows Server 2012New Capabilities and Updated FeaturesInstallation and InterfaceManagementWindows PowerShell 3.0StorageRemote AccessNetworkingHyper-V 3.0IIS 8SecurityClusteringRequirementsSummary
2. Windows Server 2012 Requirements and Installation
Server 2012 EditionsServer 2012 DatacenterServer 2012 StandardServer 2012 EssentialsServer 2012 FoundationServer 2012 RequirementsHyper-V 3.0 RequirementsInstalling Server 2012Server Core InstallServer Core installation proceduresServer with a GUI InstallServer with a GUI installation proceduresSwitching Between Install ModesConverting Server Core to Server with a GUIConverting Server with a GUI to Server CoreDeploying Minimal Server InterfaceCustomizing the Interface with Features on DemandSummary
3. Managing Server 2012
Server 2012’s InterfaceNavigating the Tiled InterfaceAccessing and Running Management ToolsFinding management appsRunning as an administratorLaunching the Microsoft Management ConsoleCustomizing the InterfaceCustomizing the desktopCustomizing the Start menuLogging Off, Restarting, and Shutting DownPerforming SearchesServer ManagerLaunching and Working with Server ManagerAdding server roles and featuresMultiserver management and groupsAdding legacy servers to Server ManagerManaging Server 2012 RemotelyInstalling RSATSummary
4. Active Directory
Deploying Active Directory Domain ServicesInstalling Active DirectoryAdding Machines to a Server 2012 DomainJoining Windows 7 to a Server 2012–Level DomainJoining Windows 8 to a Server 2012–Level DomainJoining Server 2012 to a Server 2008 R2–Level DomainManaging Active DirectoryNavigating ADACAD Recycle BinPerforming Searches in ADACWindows PowerShell HistoryUsing PowerShell to Deploy Active DirectorySummary
5. Managing Users and Data with Dynamic Access Control
The Building Blocks of DACRequirements and Predeployment PointersDeploying DACPreparing ClaimsConfiguring Resource Property for FilesAdding a Resource Property to the Global Resource Property ListCreating a New Central Access RuleCreating a Central Access PolicyPublishing a Central Access PolicyConfiguring the File ServerAdding the Central Access Policy to the FolderValidating the ConfigurationAccess Denied RemediationDeploying Access Denied RemediationGroup policy deploymentFile server deploymentAuditingAutomatic File ClassificationEncrypting Classified DataSummary
6. Storage Management and Clustering
ReFS Versus NTFSCreating a Storage SpaceClusteringInstalling Failover ClusteringCreating a ClusterCluster-Aware UpdatingSummary
7. Hyper-V
RequirementsInstalling the Hyper-V RoleCreating and Configuring Virtual MachinesConfiguring Virtual DisksCreating Virtual MachinesManaging Virtual Machines and Virtual DisksLive-Migrating Virtual MachinesHyper-V ReplicaCloning Virtual Domain ControllersMerging SnapshotsPerformance and Virtual Network ManagementResource MeteringSummary
8. Networking
IPAMInstalling IPAMConfiguring IPAMUsing IPAMIPAM featuresIPAM utilizationDHCP and DNS management and monitoring through IPAMAuditing and eventsNIC TeamingQuality of ServiceQoS PoliciesHyper-V Extensible Network SwitchConfiguring Private VLANsSummary

9. Remote Access
Unified Remote AccessRequirementsDirectAccessDeploying DirectAccessConfiguring DirectAccessManual configurationBranchCacheRequirementsDeploying BranchCacheConfiguring the Windows FirewallDeploying the BranchCache Role via Server ManagerDeploying the BranchCache Role with PowerShellPrepping and Testing Client ConnectivityVirtual Desktop InfrastructureRemote Desktop Services (RDS)Remote Desktop Services InstallRemote Desktop Services ManagementAssociating Apps to a Collection and Publishing Remote AppsAdding Published Apps to the RD Web FolderConnecting Clients to Remote AppsInstalling RemoteFXSummary
10. Troubleshooting, Securing, and Monitoring
Server ManagerAdding a ServerCreating Server GroupsThe Alert FlagBest Practices AnalyzerWindows PowerShell 3.0SecurityBitLockerOther Security EnhancementsSummary
Index
About the Author
Colophon
Copyright

Content preview from Windows Server 2012: Up and Running

Chapter 5. Managing Users and Data with Dynamic Access Control

Without question, the one major new capability that you will have to get to know at some time or another—and no matter how big or small the infrastructure—is Dynamic Access Control (DAC).

DAC provides rich, centralized control over data and user permissions through various mechanisms, including expression-based access conditions (i.e., if x condition is met, then access is granted), centralized access policies, and centralized auditing.

The reason DAC is so significant is because it reduces many of the pain points that arise when you’re trying to deploy, manage, and keep the reins on permissions throughout a Windows forest or domain. Managing Windows permissions, as many of us know, can easily spiral out of control.

Permissions, in general, have been managed through NTFS, Active Directory, and the use of groups. In many cases, a user who is not a member of a particular group needs access to a file in a shared folder belonging to that group. What often ends up happening in such cases is that unnecessary groups are created. NTFS permissions get sloppy in parent and child folders, and keeping track of which users have access to what data becomes an auditing nightmare. Not only do you face group membership bloat when access permission management gets out of control, but you also encounter the issue of security token overload. As a company grows and more users (employees) are added, very often the number of groups increases. ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781449333188Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Windows Server 2012: Up and Running

by Samara Lynn

Chapter 5. Managing Users and Data with Dynamic Access Control

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.