book

Windows Vista® Resource Kit, Second Edition

Name: Windows Vista® Resource Kit, Second Edition
ISBN: 9780735625969

by Jerry Honeycutt, Mitch Tulloch, Tony Northrup

July 2008

Intermediate to advanced

1696 pages

91h 39m

English

Microsoft Press

Read now

Unlock full access

Windows Vista® Resource Kit, Second Edition
A Note Regarding Supplemental Files
Foreword to the Second Edition
Acknowledgments
Introduction
Overview of Book
Document Conventions
Reader AidsSidebarsCommand-Line Examples
Companion CD
Using the VBScript Scripts
Using the Windows PowerShell Scripts

Disclaimer Concerning Scripts
Resource Kit Support Policy
I. Overview
1. Overview of Windows Vista Improvements
What’s New
User InteractionsStart MenuNew ExplorersClearTypeUser InterfacesWindows Sidebar and GadgetsInternet ExplorerSpeech RecognitionHelp and SupportMedia SharingXPSPerformanceReadyBoostReadyDriveNetworkingSuperFetchAutomatic Disk DefragmentationWindows Experience IndexLow-Priority I/OMobilityWindows Mobility CenterSleepImproved Battery MeterPresentation SettingsNetwork ProjectionSync CenterWindows SideShowOffline FilesTablet PCPen ImprovementsImprovements to Tablet PC Input PanelHandwriting Recognition ImprovementsDeploymentReliability and SupportabilityBackupsDisk PartitioningReduced RestartsImproved Driver ReliabilitySystem File and Registry ProtectionSupportabilityRoaming Profiles and Folder RedirectionTroubleshootingRepairing Unbootable ComputersBuilt-in DiagnosticsRecovering from Service CrashesReliability Analysis ComponentArchitecture Improvements
Windows Vista Service Pack 1 Improvements
Windows Vista Editions
Windows Vista StarterWindows Vista Home BasicWindows Vista Home PremiumWindows Vista BusinessWindows Vista EnterpriseWindows Vista Ultimate
Choosing Hardware
Windows Vista LogosHardware Requirements
Summary
Additional Resources
Related InformationOn the Companion CD
2. Security in Windows Vista
Addressing Specific Security Concerns with Windows Vista
Wireless NetworksHelp Desk Calls Related to MalwareProtecting Against Bundling and Social EngineeringProtecting Against Browser Exploit Malware InstallationsProtecting Against Network WormsData TheftPhysical Theft of a Mobile Computer or a Hard Disk, or Recovering Data from a Recycled or Discarded Hard DiskCopying Confidential Files to Removable MediaAccidentally Printing, Copying, or Forwarding Confidential Documents
New and Improved Windows Vista Security Features
User Account Control (UAC)Admin Approval ModeEnabling Non-Administrators to Make Configuration ChangesWindows DefenderWindows FirewallInternet Explorer Security FeaturesBitLockerEncrypting File System (EFS)Auditing EnhancementsSmart Card ImprovementsCredential Manager Enhancements
Architectural and Internal Windows Vista Security Improvements
Code Integrity (CI)Windows Resource Protection (WRP)Kernel Patch ProtectionRequired Driver SigningWindows Service HardeningAuthorization ManagerNetwork Access Protection ClientWeb Services for ManagementCrypto Next Generation (CNG) ServicesData Execution Prevention (DEP)Address Space Layout Randomization (ASLR)New Logon ArchitectureRights Management Services (RMS)Multiple Local Group Policy Objects
Summary
Additional Resources
Related InformationOn the Companion CD
II. Deployment
3. Deployment Platform
Tools Introduction
Windows Vista Deployment Terminology
Platform Components
Windows ImagingAnswer FilesWindows SIMWindows SetupSysprepWindows PEOther ToolsWindows DSImageX
Deployment Scenarios
Upgrade Computer ScenarioNew Computer ScenarioReplace Computer Scenario
Understanding Setup
Preinstallation PhaseOnline Configuration PhaseWindows Welcome Phase
Basic Deployment Process
Microsoft Deployment Toolkit Process
Summary
Additional Resources
Related InformationOn the Companion CD
4. Planning Deployment
Using Microsoft Deployment Toolkit for Planning
Planning GuideEnvisioningPlanningDevelopingStabilizingDeployingFeature Team GuidesSolution FrameworkJob Aids
Planning Low-Volume Deployment
Scope and ObjectivesCurrent EnvironmentConfiguration PlanTesting and PilotingRolling Out
Windows Vista Requirements
Hardware RequirementsUpgrade Paths
Preparing for Development
Application ManagementImage EngineeringDeploymentInfrastructure RemediationOperations ReadinessSecurityMigration
Installing Microsoft Deployment Toolkit
Starting Deployment Workbench
Updating Microsoft Deployment Toolkit Components
Summary
Additional Resources
Related Information
5. Testing Application Compatibility
Understanding Compatibility
What Compatibility MeansWhy Applications Fail
Choosing the Best Tool
Program Compatibility AssistantProgram Compatibility WizardApplication Compatibility ToolkitApplication Virtualization
Understanding the ACT
Support TopologiesCompatibility Evaluators
Planning for ACT
Targeting DeploymentChoosing a Deployment MethodChoosing a Log File Location
Preparing for the ACT
Sharing the Log Processing FolderPreparing for Microsoft Compatibility ExchangeInstalling the ACT 5.0Configuring the ACM
Collecting Compatibility Data
Analyzing Compatibility Data
Creating and Assigning CategoriesPrioritizing Compatibility DataAssessing Application CompatibilitySetting the Deployment StatusManaging Compatibility IssuesFiltering Compatibility DataSynchronizing with the Compatibility Exchange Service
Rationalizing an Application Inventory
Identifying the Missing ApplicationsSelecting Specific Application Versions
Testing and Mitigating Issues
Building a Test LabModeling the Production EnvironmentUsing the Standard User AnalyzerUsing the Compatibility AdministratorCreating a Custom Compatibility DatabaseCreating a Compatibility FixCreating a Compatibility ModeCreating AppHelp MessagesDeploying Application Mitigation Packages
Summary
Additional Resources
Related Information
6. Developing Disk Images
Getting Started
Prerequisite SkillsLab RequirementsLab HardwareNetwork ServicesInstallation Media
Capturing Images with Microsoft Deployment Toolkit
Navigating Deployment Workbench
Creating a Distribution Share
Configuring the Distribution Share
Adding Windows VistaAdding ApplicationsSpecifying Application DependenciesInstallation RebootsAdding PackagesAdding UpdatesAdding Language PacksAdding Out-of-Box Drivers
Creating Task Sequences
Editing a Task Sequence
Configuring Group and Task PropertiesConfiguring the Options TabTask Sequence VariablesIf StatementsOperating System VersionsWMI Queries
Creating the Lab Deployment Point
Configuring the Deployment PointUpdating the Deployment Point
Capturing a Disk Image for LTI
Capturing a Disk Image for ZTI
Creating an Image Capture CDPreparing the Image for CaptureCapturing the Image
Manually Preparing Images
Customizing Microsoft Deployment Toolkit
Summary
Additional Resources
Related InformationOn the Companion CD
7. Migrating User State Data
Evaluating Migration Technologies
Windows Easy TransferUser State Migration ToolMicrosoft IntelliMirror
Using Windows Easy Transfer
Refresh ComputerReplace Computer
Planning User State Migration Using USMT
Choosing Subject Matter ExpertsIdentifying User State DataOperating System SettingsApplication Data and SettingsUsers’ DocumentsPrioritizing Migration TasksChoosing a Data Store LocationLocal Data StoresNetworked Data StoresRemovable StorageAutomating USMTTesting User State MigrationCreating a Lab EnvironmentChoosing Sample DataRunning the TestValidating the Test Results
Installing USMT
Local InstallationNetwork StagingMicrosoft Deployment ToolkitSystem Center Configuration Manager 2007
Understanding USMT Components
Scanstate.exeLoadstate.exeXML Migration Files
Developing Migration Files
Customizing USMTControl File SyntaxDeploying Migration Files
Using USMT in Microsoft Deployment Toolkit
Downloading USMT ComponentsSpecifying the Data Store LocationAdding Custom Migration Files
Summary
Additional Resources
Related InformationOn the Companion CD
8. Deploying Applications
Preparing the Lab
Planning Deployment
PrioritiesCategoriesInstallation MethodsSubject Matter ExpertsConfigurations
Choosing a Deployment Strategy
Thick ImagesThin ImagesHybrid Images
Automating Installation
Windows InstallerInstallShieldLegacy InstallShieldLegacy InstallShield PackageForTheWebLegacy Wise Installation SystemWindows Script Host
Repackaging Legacy Applications
The Repackaging ProcessRepackaging Tools
Injecting in a Disk Image
Adding ApplicationsCreating DependenciesInstalling Applications
Summary
Additional Resources
Related InformationOn the Companion CD
9. Preparing Windows PE
Exploring Windows PE
CapabilitiesLimitationsNew Features
Setting up the Environment
Installing the Windows AIKConfiguring the Build EnvironmentRemoving the Build Environment
Working with Windows PE
Applying Windows PEAdding Optional ComponentsCopying ApplicationsAdding Device DriversInstalling UpdatesPrepping the ImageCapturing the ImageCreating Bootable MediaStaging a Boot ImageCreating Bootable CD/DVD MediaCreating Bootable UFD MediaBooting from a Hard Disk DriveCustomizing Windows PE
Automating Windows PE
Automating with Unattend.xmlAdding Images to Windows DS
Using Windows PE with Microsoft Deployment Toolkit
Summary
Additional Resources
Related InformationOn the Companion CD
10. Configuring Windows DS
Introducing Windows DS
Service ArchitectureImage StorePXE ServicesManagementClientOperating ModesLegacy ModeMixed ModeNative Mode
Planning for Windows DS
Server RequirementsClient RequirementsDHCP RequirementsRouting RequirementsCapacity Requirements
Installing Windows DS
Windows Server 2003Windows Server 2008
Configuring Windows DS
Preparing Discover Images
Importing Images
Importing Boot ImagesImporting Install Images
Managing Image Security
Pre-staging Client ComputersConfiguring Administrator Approval
Installing Windows Vista
Capturing Custom Images
Creating Multicast Transmissions
Multicast PrerequisitesTransmission Types
Using Windows DS with Microsoft Deployment Toolkit
Summary
Additional Resources
Related InformationOn the Companion CD
11. Using Volume Activation
Introduction
Volume ActivationActivation OptionsOriginal Equipment ManufacturerMultiple Activation KeyKey Management ServiceActivation Terminology
Planning an Activation Infrastructure
Analyzing Activation OptionsNetwork ConnectivityComputer Connection PatternsOther Activation QuestionsMapping Computers to Activation Options
Implementing OEM Activation
Installing Volume-Licensed Images on OEM SystemsOEM Imaging of Volume Editions
Implementing MAK Activation
Obtaining MAKsManaging MAKsObtaining Additional MAK ActivationsAssigning MAKs to Windows Vista SystemsManually Assigning MAKsAutomating MAK AssignmentMAK Integration with the Deployment WorkbenchVolume Activation Management Tool
Implementing KMS Activation
Installing a KMS ComputerRequired ResourcesKMS InfrastructureDNS Registration (KMS Autodiscovery)Installing KMS Client ComputersComputer ImagingKMS Client ActivationEnabling Standard User ActivationKMS Integration with the Deployment WorkbenchKMS ReportingKMS Event Log EntriesMOM Pack for KMS Activation
Configuring KMS Activation
Using Slmgr.vbs to Configure KMSKMS Computer ConfigurationKMS Client ConfigurationUsing Registry Entries to Configure KMSKMS Computer ConfigurationKMS Client ConfigurationUsing WMI to Configure KMSKMS Computer ConfigurationKMS Client Configuration
Activation in Microsoft Deployment Toolkit 2008
Using the Windows Deployment WizardAutomating the Windows Deployment Wizard
Troubleshooting Volume Activation
Common ProblemsEvent Log EntriesResolving Activation IssuesActivating Non-Genuine SystemsResetting the Activation Grace PeriodAllowing Standard Users to Activate Windows Vista
Summary
Additional Resources
Related Information
12. Deploying with Microsoft Deployment Toolkit
Introducing MDT 2008
Deployment ScenariosComparing LTI and ZTIDeployment PointsResource Access
Using LTI with MDT 2008
Creating Deployment PointsPreparing Windows DSConfiguring ResourcesConfiguring CustomSettings.iniCustomSettings.ini Modified by Deployment WorkbenchAutomating the LTI ProcessCustomSettings.ini File for a Refresh Computer ScenarioPerforming LTI Deployments
Using ZTI with SMS 2003
Creating an OSD Deployment PointPreparing Windows PE for SMS 2003Customizing Windows PEAdding Required Operating SystemsConfiguring the Windows PE 2004/2005 TabUpdating the Deployment PointProviding Access to Windows PE ImageImporting Windows PE into SMS 2003 OSDCreating the SMS 2003 OSD Image Installation CDPreparing Windows DSConfiguring ResourcesConfiguring ZTI Package SelectionSample Ripinfo.iniConfiguring SMS 2003Configuring the Operating System ImageCreating a ZTI User State Migration PackageConfiguring CustomSettings.iniCustomSettings.ini file Customized for Target Computer SettingsPerforming ZTI Deployments
Using ZTI with System Center Configuration Manager 2007
Enabling System Center Configuration Manager 2007 Console IntegrationConfiguring Resource AccessConfigure the Network Access AccountCreate Additional Shared FoldersConfiguring System Center Configuration Manager 2007 to Respond to PXE Boot RequestsDefining Computers in System Center Configuration Manager 2007Boot MediaPXE BootRequired Packages and TemplatesAdvertising a Task Sequence
Customizing MDT 2008
Configuring Multiple ComputersSelecting a Grouping MethodGrouping with [DefaultGateway]Applying the Properties to the GroupsConfiguring Individual ComputersSelecting an Identification MethodApplying the Properties to the Individual ComputersCustomizing CustomSettings.iniCustomSettings.ini for ZTICustomizing BootStrap.iniUsing the MDT 2008 DatabaseCreating the MDT 2008 DatabaseConfiguring the MDT 2008 DatabaseConfiguring the Database Access
Summary
Additional Resources
Related Information
III. Desktop Management
13. Managing the Desktop Environment
Understanding Group Policy in Windows Vista Service Pack 1
Group Policy Issues on Earlier Versions of WindowsNew Group Policy Features in Windows Vista SP1 with Remote Server Administration Tools (RSAT)New Group Policy Settings in Windows VistaUnderstanding ADMX Template FilesTypes of ADMX Template FilesLocal Storage of ADMX Template FilesDomain Storage of ADMX Template FilesConsiderations When Working with ADMX Template FilesUnderstanding Multiple Local Group PolicyTypes of MLGPOsMLGPOs and Group Policy Processing
Managing Windows Vista Computers Using Group Policy
Configuring the Central StoreAdding ADMX Template Files to the Central StoreCreating and Editing GPOsEditing Multiple Local Group PolicyUsing ADMX MigratorConverting ADM Template Files to ADMX FormatCreating and Editing Custom ADMX Template FilesConfiguring Group Policy ProcessingUsing Advanced Group Policy Management
Troubleshooting Group Policy
Using Event ViewerEnabling Debug LoggingUsing GPLogViewUsing GPResult
Summary
Additional Resources
Related InformationOn the Companion CD
14. Managing Users and User Data
Understanding User Profiles in Windows Vista
Types of User ProfilesUser Profile NamespaceUser Profile Namespace in Windows XPUser Profile Namespace in Windows VistaApplication Compatibility Issues
Implementing Corporate Roaming
Understanding Roaming User Profiles and Folder RedirectionImplementing Folder RedirectionConfiguring Redirection MethodConfiguring Target Folder LocationConfiguring Redirection OptionsConfiguring Policy-Removal OptionsFolder Redirection and Sync CenterConsiderations for Mixed EnvironmentsAdditional Group Policy Settings for Folder RedirectionTroubleshooting Folder RedirectionImplementing Roaming User ProfilesCreating a Default Network ProfileConfiguring a User Account to Use a Roaming ProfileImplementing Mandatory ProfilesImplementing Super Mandatory ProfilesUsing Roaming User Profiles Together with Folder RedirectionConsiderations for Mixed EnvironmentsManaging User Profiles Using Group Policy
Working with Offline Files
Enhancements to Offline Files in Windows VistaHow Offline Files WorksUnderstanding Modes of OperationManaging Offline FilesManaging Offline Files Using Windows ExplorerManaging Offline Files Using the Offline Files Control PanelManaging Offline Files Using Sync CenterConfiguring Offline Files on the ServerManaging Offline Files Using Group Policy
Summary
Additional Resources
Related InformationOn the Companion CD
15. Managing Disks and File Systems
Overview of Partitioning Disks
How to Choose Between MBR or GPTConverting from MBR to GPT DisksGPT PartitionsChoosing Basic or Dynamic Disks
Working with Volumes
How to Create a Simple VolumeHow to Create a Spanned VolumeHow to Create a Striped VolumeHow to Resize a VolumeHow to Delete a Volume
File System Fragmentation
Backup and Restore
How File Backups WorkFile and Folder Backup StructureHow Complete PC Backups WorkHow to Start a Complete PC Backup from the Command LineHow to Restore a Complete PC BackupComplete PC Backup StructureBest Practices for Computer BackupsHow to Manage Backup Using Group Policy SettingsPrevious Versions and Shadow CopiesHow Volume Shadow Copy WorksHow to Manage Shadow CopiesHow to Restore a File with Previous VersionsHow to Configure Previous Versions with Group Policy Settings
Windows ReadyBoost
BitLocker Drive Encryption
How BitLocker Encrypts DataHow BitLocker Protects DataTPM (Use BitLocker Without Additional Keys)TPM with External Key (Require Startup USB Key At Every Startup)TPM with PIN (Require PIN At Every Startup)TPM with PIN and External KeyExternal Key (Require Startup USB Key At Every Startup)Recovery PasswordClear KeyBitLocker PhasesBitLocker RequirementsHow to Configure BitLocker PartitionsHow to Enable the Use of BitLocker on Computers Without TPMHow to Enable BitLocker EncryptionHow to Manage BitLocker Keys on a Local ComputerHow to Manage BitLocker from the Command LineHow to Recover Data Protected by BitLockerHow to Disable or Remove BitLocker Drive EncryptionHow to Permanently Decommission a BitLocker DriveHow to Prepare Active Directory for BitLockerHow to Manage BitLocker with Group PolicyThe Costs of BitLocker
Encrypting File System
How to Export Personal CertificatesHow to Import Personal CertificatesHow to Grant Users Access to an Encrypted File
Symbolic Links
How to Create Symbolic LinksHow to Create Relative or Absolute Symbolic LinksHow to Create Symbolic Links to Shared FoldersHow to Use Hard Links
Disk Quotas
How to Configure Disk Quotas on a Single ComputerHow to Configure Disk Quotas from a Command PromptHow to Configure Disk Quotas by Using Group Policy Settings
Disk Tools
Disk UsageEFSDumpSDeleteStreamsSyncMoveFile and PendMoves
Summary
Additional Resources
Related InformationOn the Companion CD
16. Managing Devices and Services
Managing Devices
Changes to Device Management in Windows VistaUnderstanding Device Installation in Windows VistaDriver Store and Driver PackagingDriver Staging vs. InstallationDriver Staging and Installation ProcessDetailed Installation ProcessManaging Driver PackagesUsing PnPutil.exeOther Staging ToolsDriver SigningDriver RankingManaging Devices Using Group PolicyManaging Device Installation BehaviorManaging Driver Installation BehaviorManaging Driver Installation Behavior for Standard UsersBlocking Installation of Removable DevicesWindows Resource Protection and Device DriversTroubleshooting Device InstallationUsing Event LogsUsing WinSATUsing Windows Error ReportingUsing the SetupAPI Log FileUsing Driver INF FilesUsing Device Manager Error CodesRepairing Driver Store CorruptionRepairing Index File CorruptionTroubleshooting Device IssuesTroubleshooting Input Device IssuesTroubleshooting Display and Monitor IssuesTroubleshooting USB Device IssuesTroubleshooting IEEE 1394a Device IssuesTroubleshooting Memory IssuesTroubleshooting Processor IssuesTroubleshooting Networking IssuesTroubleshooting Power Management IssuesTroubleshooting Sleep and Hibernation IssuesAdditional Troubleshooting Tips
Understanding Power Management
Configuring Power Management SettingsUsing the Power Options CPLUsing Group PolicyUsing the Powercfg Utility
Understanding Services
Changes to Services in Windows VistaManaging ServicesUsing the Services Snap-inUsing Task ManagerUsing Group PolicyUsing the sc.exe Command
Summary
Additional Resources
Related InformationOn the Companion CD
17. Managing Sharing
Managing File Sharing
Understanding Local SharingLocal Sharing in Windows XPLocal Sharing in Windows VistaUnderstanding the Public FolderUsing the Public FolderUnderstanding Network SharingNetwork Sharing in Windows XPSimple File Sharing in Windows XPNetwork Sharing in Windows VistaEnabling Network SharingWindows Firewall and Network SharingImplementing File SharingSharing a File or Folder Using the File Sharing WizardSharing a Folder Using the Advanced Sharing InterfaceUsing the Public Folder to Share FilesDetermining Which Files and Folders Are Being SharedControlling Share Visibility with Access-Based EnumerationAccessing Shared Files and FoldersPublishing Shares in Active DirectoryManaging File Sharing Using Group PolicyCreating and Managing Shares Using the Net CommandsCreating and Managing Shares Using ScriptsScript for Creating Multiple Shared FoldersExample UsageUsing Cscript.exeFurther RemarksScript for Configuring Windows Firewall to Allow Remote ScriptingAdditional ScriptsTroubleshooting File SharingTroubleshooting Sharing on the Client SideTroubleshooting Sharing on the Server SideBest Practices for Implementing File Sharing in a Workgroup EnvironmentBest Practices for Implementing File Sharing in a Domain Environment
Managing Media Sharing
Media Sharing and Windows FirewallMedia Sharing and Windows Firewall in Windows XPLimitations of Media SharingMedia Sharing and Network CategoriesUsing Media SharingFinding and Sharing MediaMedia Sharing and Network TrafficManaging Media Sharing with Group PolicyTroubleshooting Media SharingBest Practices for Media Sharing
Summary
Additional Resources
Related InformationOn the Companion CD
18. Managing Windows Meeting Space
Understanding How Meeting Space Works
Meeting Space and Microsoft P2P Collaboration ServicesMeeting Space and IPv6Meeting Space and the Peer Name Resolution Protocol (PNRP)Meeting Space and People Near MeMeeting Space ServicesMeeting Space and Windows FirewallMeeting Space and SecurityHow a Meeting WorksLimitations of Meeting Space
Deploying and Managing Meeting Space
Managing Meeting Space in a Workgroup EnvironmentManaging Meeting Space in a Domain EnvironmentAdditional Group Policy Settings for Meeting SpaceManaging Meeting Space in an Ad Hoc Wireless Environment
Using Meeting Space
Setting Up Meeting SpaceManually Setting Up Meeting SpaceRemotely Setting Up Meeting SpaceConfiguring People Near MeStarting a New MeetingJoining a MeetingInviting Others to Your MeetingCollaborating Within a Meeting
Troubleshooting Meeting Space
Summary
Additional Resources
Related InformationOn the Companion CD
19. Managing Printing
Enhancements to Printing in Windows Vista
Understanding Printing in Windows Vista
Understanding the XML Paper SpecificationUnderstanding the Windows Vista Print Subsystem
Understanding Print Management
Enhancements to Print Management in Windows VistaThe Print Management ConsoleAdding and Removing Print ServersAdding Printers Using the Network Printer Installation WizardCreating and Using Printer Filters
Managing Printers Using Print Management
Configuring Properties of PrintersPublishing Printers in Active DirectoryManaging Printer DriversExporting and Importing Print Server ConfigurationsPerforming Bulk Actions Using Print Management
Client-Side Management of Printers
Installing Printers Using the Printers CPLSearching for PrintersInstalling Printers Using Point and PrintUsing Printers ExplorerUsing the Color Management CPL
Managing Client-Side Printer Experience Using Group Policy
Configuring the Add Printer WizardDisable Client-Side Printer RenderingConfiguring Package Point and Print Restrictions
Deploying Printers Using Group Policy
Preparing to Deploy PrintersDeploying a Printer ConnectionLimitations of Deploying Printers Using Group PolicyAssigning Printers Based on Location
Migrating Print Servers
Migrate Print Servers Using Print ManagementMigrating Print Servers Using Printbrm.exe
Monitoring and Troubleshooting Printers
Configuring E-Mail NotificationsConfiguring Print Server NotificationsConfiguring Script ActionsConfiguring Detailed Event Logging
Summary
Additional Resources
Related InformationOn the Companion CD
20. Managing Search
Search and Indexing Enhancements in Windows Vista
Issues in Previous Windows PlatformsDesign Goals and New Features
How Search and Indexing Works in Windows Vista
Understanding Search Engine TerminologyWindows Search Engine ProcessesWindows Search Engine ArchitectureUnderstanding the CatalogDefault System Exclusion RulesDefault Start AddressesInitial ConfigurationUnderstanding the Indexing ProcessTypes of Files IndexedModifying IFilter BehaviorHow Indexing WorksUnderstanding Remote Search
Managing Indexing
Configuring the CatalogConfiguring the Catalog Using Control PanelConfiguring the Catalog Using Group PolicyConfiguring Offline Files IndexingConfiguring Offline Files Indexing Using Control PanelConfiguring Offline Files Indexing Using Group PolicyConfiguring Indexing of Encrypted FilesConfiguring Indexing of Encrypted Files Using Control PanelConfiguring Indexing of Encrypted Files Using Group PolicyConfiguring Indexing of Similar WordsConfiguring Indexing of Similar Words Using Control PanelConfiguring Indexing of Similar Words Using Group PolicyOther Configuration Options
Using Search
Configuring Search Using Folder OptionsConfiguring What to SearchConfiguring How to SearchConfiguring What Happens When Searching Nonindexed LocationsSearch Integration in Windows ExplorerUsing Instant SearchSearching for ProgramsSearching for SettingsSearching for FilesUsing the Search ExplorerUsing Advanced SearchUsing Saved SearchesOther Search and Organization Features
Troubleshooting Search
Summary
Additional Resources
Related InformationOn the Companion CD
21. Managing Internet Explorer
Non-Security Internet Explorer Improvements
User Interface ChangesTabbed BrowsingSearch BarHow to Create a Web Link to Add a Custom Search ProviderHow to Configure Custom Search Providers Using the RegistryHow to Configure Custom Search Providers Using Group PolicyHow to Use the Internet Explorer Administration Kit to Configure Custom Search ProvidersRSS FeedsImproved Standards SupportExpanded Group Policy Settings
Internet Explorer 7 Security Features
Defending Against MalwareProtected ModeHow Protected Mode Improves SecurityHow the Protected Mode Compatibility Layer WorksHow to Solve Protected Mode IncompatibilitiesWindows DefenderURL-Handling ProtectionAddress Bar VisibilityCross-Domain Scripting Attack ProtectionControlling Browser Add-onsInternet Explorer Add-ons Disabled ModeAdd-on Manager ImprovementsControlling Add-ons Using Group PolicyProtecting Against Data TheftSecurity Status BarPhishingHow the Phishing Filter WorksHow to Configure Phishing Filter OptionsDeleting Browsing HistoryBlocking IDN SpoofingSecurity ZonesUnderstanding ZonesConfiguring Zones on the Local ComputerConfiguring Zones Using Group PolicyNetwork Protocol Lockdown
Managing Internet Explorer with Group Policy
Using the Internet Explorer Administration Kit
Troubleshooting Internet Explorer Problems
Internet Explorer Does Not StartAn Add-on Does Not Work ProperlySome Web Pages Do Not Display ProperlyAn Unwanted Toolbar AppearsThe Home Page or Other Settings Have Changed
Summary
Additional Resources
Related InformationOn the Companion CD
IV. Desktop Maintenance
22. Maintaining Desktop Health
Monitoring Reliability and Performance
Component BinariesOpening the Reliability And Performance MonitorUsing Resource OverviewCPU GraphDisk GraphNetwork GraphMemory GraphUsing Performance MonitorNew Features in Performance MonitorNew Classes for Individual Data SourcesTime-Based AlgorithmsScale to FitDrag and DropTime Range ControlTool TipsZoomNew Legend ControlAdd Counters Dialog BoxTransportable Configuration FilesEnd of File CommandCompare FeatureWorking with Performance MonitorReal-Time Performance MonitoringPerformance Monitor LoggingCreating a Data Collector SetConfiguring a Data Collector SetUsing Data Manager to View Performance DataStarting and Stopping Data LoggingViewing Performance DataComparing Performance Monitor LogsPerformance Monitor User RightsRemote Data CollectionManaging Performance Logs and Event Trace Sessions with LogmanUsing Reliability MonitorReliability Monitor FeaturesAutomatic Data Collection and ProcessingSystem Stability ChartStability IndexSystem Stability ReportSoftware (Un)installsApplication FailuresHardware FailuresWindows FailuresSystem Clock ChangesMiscellaneous FailuresReliability Monitor Data Files
Understanding Windows Eventing
Overview of Windows EventingWindows Eventing CapabilitiesChannelsPublishing PropertiesLogging PropertiesChannel TypesEvent Log FilesNaming Providers and ChannelsEvent LevelEvent LogsEvent AttributesEvent MessagesEvent Viewer User InterfaceAccessing Event ViewerOverview And Summary ViewCustom ViewsCreate a View ManuallyWindows LogsApplications and Services LogsSaving and Opening Event LogsSave Events AsOpen Saved LogSubscriptionsAdditional ConsiderationsCreating a New SubscriptionActions Pane
Understanding the Windows System Assessment Tool
Overview of WinSATAssessment NamesExamining the Features AssessmentCommand-Line UsageBinary ComponentsExit ValuesRegistry LocationsHow Desktop Window Manager Performs CompositionDesktop Window Manager ComponentsDesktop Window Manager Session Manager ServiceWindows Presentation FoundationWinSAT and the Desktop Windows ManagerTroubleshooting Aero GlassOverriding Windows Vista Automatic Detection MechanismsForcing WinSAT to Reassess the ComputerExamining Desktop Window Manager Performance
Using Performance Information And Tools
Accessing Performance Information And ToolsConfiguring Performance Information And Tools Using Group PolicyUnderstanding Each Section of the ToolPerformance IssuesSystem CapabilitiesOEM Upsell And Help
Understanding Windows Error Reporting
Overview of Windows Error ReportingError Reporting CycleReportingCategorizationInvestigationResolutionResponseReport Data OverviewFirst-Level DataSecond-Level DataConceptual ComponentsReport ProcessorData Collection ModuleTransport SystemStore Management SystemUser StoreComputer StoreReportQueue FolderReportArchive FolderQueue ReportingStore MaintenanceQueue TriggersArchitecture of Windows Error ReportingWer.dllWerMgr.exeProblem Reports And Solutions Control PanelProblem Reports And Solutions Control Panel Support ServiceWindows Error Reporting ServiceStore.lockConfiguring Windows Error ReportingPer-Computer Registry SettingsPer-User Registry SettingsGroup Policy Registry SettingsPer-Computer Group Policy SettingsPer-User Group Policy SettingsWER Registry ValuesUsing the Problem Reports And Solutions Control PanelCheck For New SolutionsLow-Priority ResponseMedium-Priority ResponseHigh-Priority ResponseResponse NotificationNo New Solution FoundSee Problems To CheckView Problem HistoryChange SettingsAdvanced Settings
Using Task Scheduler
Task Scheduler Enhancements and ImprovementsUser Interface ImprovementsScheduling ImprovementsSecurity ImprovementsAdministrative ImprovementsPlatform and Manageability ImprovementsDefault TasksOperational OverviewTask TriggersTask SettingsTask ActionsUser InterfaceTask Scheduler ArchitectureTask Scheduler SecurityCredentials ManagementUser SecuritySecurity ConceptsSecuring Running TasksRegistration Permissions MatrixAT and Task Scheduler v1.0 Compatibility ModesTask Scheduler User InterfaceCreating New TasksDefining TriggersOn A Schedule TriggerAt Log On TriggerAt Startup TriggerOn Idle TriggerOn An Event TriggerAt Task Creation/Modification TriggerOn Connection To or Disconnect From User Session TriggersOn Workstation Lock or Unlock TriggersDefining ActionsDefining ConditionsDefining SettingsManaging TasksDisplay Running TasksViewing HistoryExporting TasksImporting TasksUsing the SchTasks.exe CommandCommand SyntaxCommand ParametersCreating TasksDeleting TasksRunning TasksEnding TasksQuerying TasksChanging TasksScheduled Tasks EventsTask RegistrationTask LaunchTask ExecutionTask CompletionTroubleshooting Task SchedulerTasks Won’t Run If the Service Is Not StartedThe Task Did Not Run at the Expected TimeThe Task Will Run Only If All Conditions Are MetThe Task Will Only Run When a Certain User Is Logged OnThe Task Executed a Program But the Program Did Not Run CorrectlyThe Task Failed to StartThe Task Action Failed to ExecuteThe Program Specified in the Task Requires Elevated PrivilegesInterpreting Result and Return Codes
Summary
Additional Resources
Related InformationOn the Companion CD
23. Supporting Users Using Remote Assistance
Understanding Remote Assistance
Improvements to Remote Assistance in Windows VistaHow Remote Assistance WorksRemote Assistance Operational StatesUser vs. Helper FunctionalityRemote Assistance and NAT TraversalRemote Assistance and IP Ports UsedRemote Assistance and Windows FirewallRemote Assistance and the Secure DesktopRemote Assistance LoggingPurpose of RA Session LoggingSession Log Path and Naming ConventionUsing Remote Assistance in the EnterpriseUsing Remote Assistance in the Corporate Help Desk EnvironmentOther Possible Remote Assistance Usage ScenariosInteroperability with Remote Assistance in Windows XP
Implementing and Managing Remote Assistance
Initiating Remote Assistance SessionsInitiating Remote Assistance From the GUIInitiating Remote Assistance from the Command LineScenario 1: Offering Remote Assistance Using DCOMScenario 2: Soliciting Remote Assistance by Creating RA Tickets and Saving Them on Monitored Network SharesManaging Remote Assistance Using Group PolicyConfiguring Remote Assistance in Unmanaged EnvironmentsAdditional Registry Settings for Configuring Remote Assistance
Summary
Additional Resources
Related Information
24. Managing Software Updates
Update Improvements to Windows Vista
Methods for Deploying Updates
Windows Update ClientWindows Server Update ServicesSystems Management ServerSystems Center Configuration Manager 2007
Manually Installing, Scripting, and Removing Updates
Overview of Windows Vista Update FilesHow to Script Update InstallationsHow to Remove UpdatesDeploying Updates to New Computers
Managing BITS
BITS BehaviorBITS Group Policy SettingsThe BITSAdmin.exe Tool
Windows Update Group Policy Settings
Configuring Windows Update to Use a Proxy Server
Tools for Auditing Software Updates
The MBSA ConsoleMBSACLISMS
Troubleshooting the Windows Update Client
The Process of Updating Network Software
Assembling the Update TeamInventorying SoftwareCreating an Update ProcessDiscovering UpdatesEvaluating UpdatesRetrieving UpdatesTesting UpdatesInstalling UpdatesRemoving UpdatesAuditing Updates
How Microsoft Distributes Updates
Security UpdatesUpdate RollupsService PacksMicrosoft Product Life Cycles
Summary
Additional Resources
Related InformationOn the Companion CD
25. Managing Client Protection
Understanding the Risk of Malware
User Account Control
UAC for Standard UsersUAC for AdministratorsUAC User InterfaceHow Windows Vista Determines If an Application Needs Administrative PrivilegesHow to Control UAC Using Application PropertiesHow UAC Examines the Application ManifestUAC HeuristicsUAC VirtualizationUAC and Startup ProgramsCompatibility Problems with UACHow to Configure User Account ControlGroup Policy SettingsControl PanelMsconfig.exeRegistryHow to Configure Auditing for Privilege ElevationOther UAC Event LogsBest Practices for Using UAC
Managing Client Certificates
Using Windows Defender
Understanding Windows DefenderAutomatic ScanningReal-Time ProtectionWindows Defender Alert LevelsUnderstanding Microsoft SpyNetConfiguring Windows Defender Group PolicyConfiguring Windows Defender on a Single ComputerWindows Defender ToolsHow to Determine If a Computer Is Infected with SpywareRequiring Windows Defender Using Network Access ProtectionBest Practices for Using Windows DefenderHow to Troubleshoot Problems with Unwanted Software
Network Access Protection
Microsoft Forefront Client Security
Summary
Additional Resources
Related Information
V. Networking
26. Configuring Windows Networking
Usability Improvements
Network And Sharing CenterNetwork ExplorerHow Windows Vista Finds Network ResourcesHow Windows Vista Publishes Network ResourcesHow Windows Vista Creates the Network MapNetwork MapNetworking Icons in the System TrayThe Set Up A Connection Or Network Wizard
Manageability Improvements
Network Location TypesPolicy-Based QoSSelecting DSCP ValuesPlanning Traffic ThrottlingConfiguring QoS PoliciesConfiguring System-Wide QoS SettingsConfiguring Advanced QoS SettingsWindows Firewall and IPsecWindows Connect Now
Core Networking Improvements
Efficient NetworkingScalable NetworkingImproved ReliabilityIPv6 Support802.1X Network AuthenticationServer Message Block (SMB) 2.0Strong Host ModelWireless Networking
Improved APIs
Network AwarenessImproved Peer NetworkingServices Used by Peer-to-Peer NetworkingManaging Peer-to-Peer NetworkingEAPHost ArchitectureLayered Service Provider (LSP)Windows Sockets Direct Path for System Area Networks
How to Configure Wireless Settings
Manually Configuring Wireless SettingsUsing Group Policy to Configure Wireless SettingsConfiguring Wireless Settings from the Command Line or a Script
How to Configure TCP/IP
DHCPManually Configuring IP AddressesCommand Line and Scripts
How to Connect to Active Directory Domains
How to Connect to a Domain When 802.1X Authentication Is Not EnabledHow to Connect to a Domain When 802.1X Authentication Is Enabled
Summary
Additional Resources
Related InformationOn the Companion CD
27. Configuring Windows Firewall and IPsec
Understanding Windows Firewall
Understanding the Windows Filtering PlatformUnderstanding Windows Service HardeningUnderstanding Service SIDsWindows Firewall and Windows Service HardeningUnderstanding Windows Firewall ProfilesUnderstanding Windows Firewall Policy Storage and Rule Merge LogicUnderstanding Windows Firewall RulesRules and ConditionsExamples of RulesRules ProcessingRule GroupsRule Groups Enabled By DefaultCore Networking RulesWindows Firewall and the Startup ProcessUpgrading Windows FirewallUnderstanding IPsec IntegrationNew IPsec Features in Windows VistaNew Cryptographic Algorithms for IPsec Key Exchange, Data Integrity, and EncryptionNew Credential Types for IPsec AuthenticationUnderstanding AuthIPUnderstanding Negotiation DiscoveryUnderstanding Connection Security RulesTypes of Connection Security RulesImplementing IPsec Protection StrategiesServer and Domain IsolationNetwork Access ProtectionUnderstanding Windows Firewall Logging and Auditing
Managing Windows Firewall
Managing Windows Firewall Using the Windows Firewall With Advanced Security Snap-inManaging Windows Firewall Using Group PolicyManaging Windows Firewall Using netshManaging Windows Firewall Using ScriptsCommon Management TasksRestore OOB DefaultsCopy Configuration To Another ComputerEnable/Disable a Rule GroupCreate a New Firewall RuleCreate a New Connection Security RuleTurn Off Windows Firewall
Summary
Additional Resources
Related InformationOn the Companion CD
28. Connecting Remote Users and Networks
Understanding Connection Types
Outgoing Connection TypesIncoming Connection TypesDeprecated Connection Types
Configuring Virtual Private Network Connections
Supported Tunneling ProtocolsEnhancements to VPN Security in Windows VistaSupport for Advanced Encryption StandardWeak Cryptography Removal from PPTP/L2TPSupported Authentication ProtocolsVPN Connection Negotiation ProcessCreating and Configuring VPN ConnectionsCreating a VPN ConnectionInitiating a ConnectionTerminating a ConnectionViewing Connection DetailsConfiguring a VPN ConnectionConfiguring Connection Security SettingsConfiguring Network Access Protection SettingsReducing Connection Time
Configuring Dial-Up Connections
Creating a Dial-Up ConnectionConfiguring a Dial-Up ConnectionAdvanced Connection SettingsConfiguring Incoming Connections
Managing Connections Using Group Policy
Using Remote Desktop
Understanding Remote DesktopRemote Desktop ProtocolRemote Desktop ConnectionTerminal Services Web AccessSteps for Using Remote DesktopEnabling Remote Desktop and Authorizing Users on a Single ComputerEnabling Remote Desktop Using Group PolicyConfiguring and Deploying Remote Desktop ConnectionConfiguring Remote Desktop Connection from the Command LineConfiguring Remote Desktop Connection Using NotepadConfiguring Remote Desktop Using Group PolicyEstablishing a Remote Desktop SessionImproving Remote Desktop PerformanceTroubleshooting Remote Desktop
Summary
Additional Resources
Related InformationOn the Companion CD
29. Deploying IPv6
Understanding IPv6
Understanding IPv6 TerminologyUnderstanding IPv6 AddressingUnderstanding IPv6 PrefixesUnderstanding IPv6 Address TypesUnderstanding Unicast AddressesIdentifying IPv6 Address TypesUnderstanding Interface IdentifiersComparing IPv6 with IPv4Understanding ICMPv6 MessagesUnderstanding Neighbor DiscoveryUnderstanding Address AutoconfigurationUnderstanding Name ResolutionUnderstanding Name QueriesUnderstanding Name Registration
IPv6 Enhancements in Windows Vista
Summary of IPv6 Enhancements in Windows Vista
Configuring and Troubleshooting IPv6 in Windows Vista
Displaying IPv6 Address SettingsConfiguring IPv6 in Windows Vista Using the User InterfaceConfiguring IPv6 in Windows Vista Using NetshOther IPv6 Configuration TasksEnabling or Disabling IPv6Disabling Random Interface IDsResetting IPv6 ConfigurationDisplaying Teredo Client StatusTroubleshooting IPv6 Connectivity
Planning for IPv6 Migration
Understanding ISATAPMigrating an Intranet to IPv6Step 1: Upgrading Your Applications and ServicesStep 2: Preparing Your DNS InfrastructureStep 3: Upgrading Your HostsStep 4: Migrating from IPv4-only to ISATAPStep 5: Upgrading Your Routing InfrastructureStep 6: Upgrading Your DHCP InfrastructureStep 7: Migrating from ISATAP to Native IPv6
Summary
Additional Resources
Related InformationOn the Companion CD
VI. Troubleshooting
30. Configuring Startup and Troubleshooting Startup Issues
What’s New with Windows Vista Startup
Boot Configuration DataSystem RecoveryWindows Boot Performance Diagnostics
Understanding the Startup Process
Power-on Self Test PhaseInitial Startup PhaseInitial Startup Phase for BIOS computersInitial Startup Phase for EFI ComputersWindows Boot Manager PhaseWindows Boot Loader PhaseKernel Loading PhaseControl SetsSession ManagerLogon Phase
Important Startup Files
How to Configure Startup Settings
How to Use the Startup And Recovery Dialog BoxHow to Use the System Configuration ToolHow to Use BCDEditHow to Interpret BCDEdit OutputHow to Back Up and Restore SettingsHow to Change the Default Operating System EntryHow to Change the Boot Menu Time-OutHow to Change the Order of Boot Manager Menu ItemsHow to Create an Entry for Another Operating SystemHow to Remove a Boot EntryHow to View and Update Global Debugger SettingsHow to Remove the Windows Vista Boot LoaderHow to Configure a User Account to Automatically Log OnHow to Disable the Windows Vista Startup SoundHow to Speed Up the Startup Process
The Process of Troubleshooting Startup
Startup Troubleshooting Before the Progress Bar AppearsHow to Run Startup RepairHow to Start the System Recovery ToolsHow to Run Startup RepairHow to Use BootRec.exeHow to Diagnose Hardware ProblemsHow to Use System RestoreHow to Manually Repair the Boot SectorHow to Manually Update the BCD Registry FileHow to Manually Replace FilesHow to Reinstall WindowsStartup Troubleshooting After the Progress Bar AppearsHow to Run Startup RepairHow to Restore the Last Known Good ConfigurationHow to Use System RestoreHow to Enable Boot LoggingHow to Start in Safe ModeHow to Identify Failing Drivers and ServicesHow to Analyze Startup Problems in Safe ModeEvent Viewer (Eventvwr.msc)System InformationError Reporting ServiceHow to Use Device Manager to View or Change ResourcesHow to Analyze Boot LogsHow to Roll Back DriversHow to Temporarily Disable a ServiceTroubleshooting Startup Problems After LogonHow to Temporarily Disable Startup Applications and ProcessesHow to Disable Startup Applications Using the Shift KeyHow to Disable Startup Programs Using the System Configuration UtilityHow to Disable Startup Applications Configured Using Group Policy or Logon ScriptsHow to Permanently Disable Startup Applications and ProcessesUninstall the ApplicationManually Remove the EntryAutomatically Remove an Entry Using Windows Defender
Summary
Additional Resources
Related InformationOn the Companion CD
31. Troubleshooting Hardware, Driver, and Disk Issues
Windows Vista Improvements for Hardware and Driver Troubleshooting
Windows Memory DiagnosticsDisk Failure DiagnosticsSelf-Healing NTFSReliability MonitorImproved Driver ReliabilityImproved Error Reporting
The Process of Troubleshooting Hardware Issues
How to Troubleshoot Problems That Prevent Windows from StartingHow to Troubleshoot Problems Installing New HardwareHow to Troubleshoot Problems with Existing HardwareHow to Troubleshoot Unpredictable Symptoms
How to Diagnose Hardware Problems
How to Use Device Manager to Identify Failed DevicesHow to Check the Physical Setup of Your ComputerHow to Check the Configuration of Your HardwareHow to Verify That System Firmware and Peripheral Firmware Are Up to DateHow to Test Your Hardware by Running Diagnostic ToolsHow to Simplify Your Hardware ConfigurationHow to Diagnose Disk-Related Problems
How to Use Built-In Diagnostics
How to Use Problem Reports And SolutionsHow to Use Reliability MonitorHow to Use Event ViewerHow to Use Data Collector SetsHow to Use Windows Memory DiagnosticsHow Windows Vista Automatically Detects Memory ProblemsHow to Schedule Windows Memory DiagnosticsHow to Start Windows Memory Diagnostics When Windows Vista is InstalledHow to Start Windows Memory Diagnostics from the Windows Vista DVDHow to Configure Windows Memory Diagnostics
How to Troubleshoot Disk Problems
How to Prepare for Disk FailuresHow to Use ChkdskChkdsk ExamplesChkdsk SyntaxHow to Use the Graphical Chkdsk InterfaceHow to Determine if Chkdsk Is Scheduled to RunChkdsk Process on NTFS VolumesHow to Use the Disk Cleanup WizardHow to Disable Nonvolatile Caching
How to Troubleshoot Driver Problems
How to Find Updated DriversHow to Roll Back DriversHow to Use Driver VerifierHow to Use the File Signature VerificationHow to Use Device Manager to View and Change Resource Usage
How to Use System Restore
How to Troubleshoot USB Problems
How to Solve USB Driver and Hardware ProblemsUnderstanding USB LimitationsHow to Identify USB Problems Using Performance MonitorHow to Examine USB Hubs
How to Troubleshoot Bluetooth Problems
Troubleshooting Tools
DiskViewHandleProcess Monitor
Summary
Additional Resources
Related InformationOn the Companion CD
32. Troubleshooting Network Issues
Tools for Troubleshooting
ArpHow to Identify a Problem with the ARP CacheHow to Clear the ARP CacheEvent ViewerIpconfigIPsec Diagnostic ToolNblookupNbtstatNetHow to View Shared Folders on the Local ComputerHow to View Shared Folders on Another ComputerNetstatNetwork MonitorNslookupVerifying the Default DNS Server Resolves CorrectlyVerifying a Specific DNS Server Resolves CorrectlyVerifying Specific Types of AddressesPathPingPathPing OutputRouting LoopsPerformance ProblemsPossible Connectivity IssuesNo Connectivity IssuesPerformance MonitorPingPortqryIdentifying the TCP Port for a ServiceTesting Service ConnectivityDetermining Available Remote Management ProtocolsReliability and PerformanceResource MonitorRouteTask ManagerTCPViewTelnet ClientTesting Service ConnectivityTest TCPWindows Network Diagnostics
The Process of Troubleshooting Network Problems
How to Troubleshoot Network Connectivity ProblemsHow to Troubleshoot Application Connectivity ProblemsHow to Troubleshoot Name-Resolution ProblemsHow to Verify Connectivity to a DNS ServerHow to Use the Hosts FileHow to Troubleshoot Performance Problems and Intermittent Connectivity IssuesHow to Troubleshoot Joining or Logging on to a DomainHow to Analyze the NetSetup.Log fileHow to Verify Requirements for Joining a DomainHow to Troubleshoot Network DiscoveryHow to Troubleshoot File and Printer SharingHow to Troubleshoot File and Printer Sharing from the Client ComputerHow to Troubleshoot File and Printer Sharing from the Server ComputerHow to Troubleshoot Wireless NetworksHow to Troubleshoot Firewall Problems
Summary
Additional Resources
Related InformationOn the Companion CD
33. Troubleshooting Stop Messages
Stop Message Overview
Identifying the Stop ErrorFinding Troubleshooting InformationStop MessagesBugcheck InformationRecommended User ActionTechnical InformationDriver InformationDebug Port and Dump Status InformationTypes of Stop Errors
Memory Dump Files
Configuring Small Memory Dump FilesConfiguring Kernel Memory Dump FilesConfiguring Complete Memory Dump FilesHow to Manually Initiate a Stop Error and Create a Dump FileUsing Memory Dump Files to Analyze Stop ErrorsUsing Problem Reports And SolutionsUsing Symbol Files and Debuggers
Being Prepared for Stop Errors
Prevent System Restarts After a Stop ErrorRecord and Save Stop Message InformationCheck Software Disk Space RequirementsInstall a Kernel Debugger and Symbol Files
Common Stop Messages
Stop 0xA or IRQL_NOT_LESS_OR_EQUALInterpreting the MessageResolving the ProblemStop 0x1E or KMODE_EXCEPTION_NOT_HANDLEDInterpreting the MessageResolving the ProblemStop 0x24 or NTFS_FILE_SYSTEMInterpreting the MessageResolving the ProblemStop 0x2E or DATA_BUS_ERRORInterpreting the MessageResolving the ProblemStop 0x3F or NO_MORE_SYSTEM_PTESInterpreting the MessageResolving the ProblemStop 0x50 or PAGE_FAULT_IN_NONPAGED_AREAInterpreting the MessageResolving the ProblemStop 0x77 or KERNEL_STACK_INPAGE_ERRORInterpreting the MessageResolving the ProblemStop 0x7A or KERNEL_DATA_INPAGE_ERRORInterpreting the MessageResolving the ProblemStop 0x7B or INACCESSIBLE_BOOT_DEVICEInterpreting the MessageResolving the ProblemStop 0x7F or UNEXPECTED_KERNEL_MODE_TRAPInterpreting the MessageResolving the ProblemStop 0x9F or DRIVER_POWER_STATE_FAILUREInterpreting the MessageResolving the ProblemStop 0xBE or ATTEMPTED_WRITE_TO_READONLY_MEMORYInterpreting the MessageResolving the ProblemStop 0xC2 or BAD_POOL_CALLERInterpreting the MessageResolving the ProblemStop 0xCE or DRIVER_UNLOADED_WITHOUT_CANCELLING_PENDING_OPERATIONSInterpreting the MessageResolving the ProblemStop 0xD1 or DRIVER_IRQL_NOT_LESS_OR_EQUALInterpreting the MessageResolving the ProblemStop 0xD8 or DRIVER_USED_EXCESSIVE_PTESInterpreting the MessageResolving the ProblemStop 0xEA or THREAD_STUCK_IN_DEVICE_DRIVERInterpreting the MessageResolving the ProblemStop 0xED or UNMOUNTABLE_BOOT_VOLUMEInterpreting the MessageResolving the ProblemStop 0xFE or BUGCODE_USB_DRIVERInterpreting the MessageResolving the ProblemStop 0xC000021A or STATUS_SYSTEM_PROCESS_TERMINATEDInterpreting the MessageResolving the ProblemStop 0xC0000221 or STATUS_IMAGE_CHECKSUM_MISMATCHInterpreting the MessageResolving the Problem
Hardware Malfunction Messages
Stop Message Checklist
Check Your SoftwareCheck Software Disk Space RequirementsUse the Last Known Good ConfigurationUse Disaster Recovery FeaturesRestart the System in Safe ModeUse Startup RepairCheck Event Viewer LogsCheck Application and Driver CompatibilityInstall Compatible Antivirus ToolsCheck for and Install Service Pack UpdatesReport Your ErrorsInstall Operating System and Driver UpdatesCheck Information SourcesInstall and Use a Kernel DebuggerCheck Your HardwareRestore a Previous ConfigurationCheck for Nondefault Firmware SettingsCheck for Nondefault Hardware Clock SpeedsCheck for Hardware-Related UpdatesCheck by Running Hardware Diagnostic ToolsCheck ATA Disk and Controller SettingsCheck for SCSI Disk and Controller SettingsCheck for Proper Hardware Installation and ConnectionsCheck Memory CompatibilityCheck by Temporarily Removing DevicesCheck by Replacing a DeviceCheck Information SourcesContact Technical Support
Summary
Additional Resources
Related InformationOn the Companion CD
VII. Appendices
A. System Files Reference
System Files
Startup Files
Important Folders
Windows Folders
System32 Folder
Additional Resources
Related Information
B. User Rights Reference
Logon Rights
Privileges
Additional Resources
Related Information
C. Accessibility
Ease of Access Center
Additional Accessibility FeaturesUsing the Ease of Access CenterUsing MagnifierUsing NarratorUsing the On-Screen KeyboardEase of Access Keyboard Shortcuts
Windows Speech Recognition
Assistive Technology Products
Microsoft Accessibility Resource Centers
Additional Resources
Related Information
Glossary
D. About the Authors
E. System Requirements
F. More Great Resources for IT Professionals from Microsoft Press
Administrator’s Pocket Consultant
Administrator’s Companion
Resource Kit
Self-Paced Training Kit
Index
About the Authors
Copyright

Content preview from Windows Vista® Resource Kit, Second Edition

Logon Rights

Logon rights control how security principals are allowed access to the computer—whether from the keyboard or through a network connection, or whether as a service or as a batch job. For each logon method, there exists a pair of logon rights—one to allow logging on to the computer and another to deny logging on to the computer. Use a deny logon right as you would use a deny permission—to exclude a subset of a group that has been assigned an allow logon right. For example, suppose that Alice wants all users except the members of the domain Marketing group to be able to log on locally at her computer’s keyboard. With this in mind, Alice creates a local group, which she names LocalLogonDenied. Then she configures her computer as follows: ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Microsoft® Windows® Security Resource Kit, Second Edition

Publisher Resources

ISBN: 9780735625969Catalog Page Errata

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Windows Vista® Resource Kit, Second Edition

by Jerry Honeycutt, Mitch Tulloch, Tony Northrup

Logon Rights

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

More than 5,000 organizations count on O’Reilly

Julian F.

Addison B.

Amir M.

Mark W.

You might also like

Microsoft® Windows® Security Resource Kit, Second Edition

Windows Installation and Update Troubleshooting

Windows® 7 Resource Kit

Windows Operating System Fundamentals

Publisher Resources