SHARING & PROFILE

In order to make a resource to be available over the network and to be accessed by network users we need to implement sharing.


The moment we create a share on a server, server acts like a file server.






Sharing a resource: On DC
Open my computer Select any drive Create a new folder
Give name of the folder Right click on the folder Select sharing and security Share this folder
Apply > ok
Accessing share resources from a client machine: On client machine
Open my network places
Entire network Microsoft windows n/w Domain name (ex. Zoom) Computer name

Creating a share through command line
:
On DC
Go to command prompt md sharename
net share sharename=c: \share name
Connecting to a share resource through a command prompt: On member server
Go to command prompt
net use z:\\computername\sharename

Mapping a drive (connecting to the share from GUI):

On member server
Right click on my computer
Map network drive
Select the drive letter
Uncheck or check reconnect logon
Browse the share folder
Computer name>share name>ok>finish.



Permissions

Using  permissions  an  administrator  can  either  allow  or  deny  access  to  a resource.
Resource can be a network resource or local resource

Permissions are of two types

1. Share level
2. File system or NTFS

Share level permissions
Share level permissions are applied over the network.
Share level permissions are not applied on the local machine where the resource is existing.
There are three types of share level permissions

Full control    RWXDO (Read/Write/Execute/Delete/Ownership) Change  RWXD
Read              R Practice:
On DC
Create a share Create three users Set permissions

Setting permissions:
Create folder> share> right click on folder> properties> permission
> Remove everyone
>Add all the users whom you want to allow or deny.
>Apply>ok.

Verification:
Move on to client machine
Login as different users
Try to access the n/w resources.



2. NTFS permissions:
NTFS permissions are powerful permissions and they offer file and folder level security. NTFS permissions are useful for securing locally available resources.
NTFS Features: File/folder level security
Compress


Encryption
Quotas
Reduced fragmentation
Hot fixing
Volume shadow copy services
Mounting
Separate recycle bin for each user



NTFS permissions

Full control                RWXDO Modify      RWXD Read & Execute       RX
List folder contents  L Read         R Write                                    RWX

Implementing NTFS permissions
:
On member server-Create a folder
On DC-Create 3 users. On member server Right click on the folder Properties
Security
Add the users we have created on DC Ok
Select the user and set the permission
U1-full control
U2-modify U3-read Apply-ok.

Experiment2:

Login as administrator on member server
Create a folder Folder properties Security
Advanced-uncheck the box allow inheritable permissions.. Remove
Apply – ok.
Add the users we have created along with the administrator
Administrator -full control
U1 – full control
U2 modify
U3 – read apply – ok


Full control permissions
This  permission  offers  complete  control  i.e.,  taking  ownership  and  setting permissions on files and folders.
Users who have full control permission can take ownership of a resource The moment a user creates a folder he becomes an owner of a folder. Owners will have full control access
Taking ownership of a folder: On member server
Login as administrator
Create a folder
Go to properties of the folder
Security
Add the user to whom we want to give permission
Ex: u1-full control
Apply – ok

Step2: login as a user1 (u1) Go to the folder properties Security
Advanced Owner Select user
Check the box replace owner on
Apply – ok

Share level      NTFS level      N/W         Local


Read                                      read                read                read Change           read                                                change          read Read     modify          read    modify Read                                      write                read                write



Profiles

Profiles are used for providing basic user environment needs
Environment needs can be

Desktop settings Startup applications N/w connectivity.

Profile is responsible for providing the initial desktop environment needs with the help  of  desktop  folder,  favorites,  cookies,  my  documents,  start  menu,  and Internet settings, n/w connections and etc.


When a user logs in for the first time the user will be loaded with a default user profile.
Default user profile is located under
C:\documents and settings\default user
Types of profiles: Local profile
Roaming profile
Mandatory profile

Local profile: It is a profile loaded for the user and saved in the local hard drive where the user works.
And profile will be saved when a user logs off
Local profiles are limited only to the machine where they are saved.
A user with a local profile will not be loaded with a network profile when he logs on from another machine.

Verifying the type of the profile: My computer
Properties
Advanced
User profile – settings

Roaming Profile: It is a profile, which is saved in the shared folder on the server. Hence available in the entire network.
Roaming profile is a n/w profile which is available in the entire network. As a result when a user logs in from any machine in the n/e he will be loaded with a roaming.




Creating a roaming profile: On DC
Create a user A/C Create a folder
And share it and give full control permission for everyone
Start >P>ADUC Double click the user Profile
Profile path ex: \\sys1\profile\username
Apply – ok

Move on to member server
Log in as user My computer Properties
Advanced-profile settings-you should notice “roaming profile”.


Mandatory Profile: Mandatory Profile is a profile used for controlling desktop environment  setting especially used for restricting user from saving user data, setting, and configuration on the desktop.
It is a type of roaming profile but settings are not saved  when a user logs off. Changes will be  available only for the session where user is active. (Active session)

Creating a mandatory profile:
Open the profiles folder you’ve created for roaming
There will be a user folder
Take the ownership of the folder of the user
Right click on the folder properties
Security – ok – advanced
Owner – administrators
Replace owner on sub >apply – ok

Open the folder Rename the file Ntuser.dat to ntuser.man Back
Give back the permission (ownership) Folder
Properties
Security – advanced
Check the box Allow inheritable
Check - Replace permission entries on all
Apply – ok



Verifying:
Move on to client machine
Login as user
Make some desktop changes
Create a folder or delete a folder

For removing mandatory profile just rename ntuser.man to ntuser.dat

Home folders:
Home folders are separate folders where users save their data and protect their data from other users every user can have one home folder either on the server on the local machine.
If the home folder is in the server an administrator can secure it and back-up.
If the home folders are created in the local machine backing up is not that easy.

Creating a user home folder in a server
On member server
Create a home folder for user1
Share it
Permissions


Remove everyone
Add administrator and user1
Give full control for both
Apply ok Open ADUC Create a user a/c
Go to user properties
Profile
Connect home folder Select the drive letter To mention the path Ex: sys1\u1\home\u1
Apply ok

Verifying:
On client machine Log in as user Open my computer
We should notice an extra drive letter
Go to cmd prompt
We should not get the drive letter we have assigned.

Creating a local home folder: On Member server
Login as administrator Create a folder in any drive Share it
Permissions
Remove everyone
Add administrator &u2
Give full access
Apply – ok

Move on to server or DC
Open                                                                                                                           ADUC
create a user
Go to user properties
Profile
Home folder Give local path Ex: E:\u2home Apply-ok

Verifying:
Move on to client machine
Login as user
Go to command prompt.
We should notice the local folder


Offline folders:
It is a feature of 2000&03-network resources in spite of no network connections
(offline)

Implementing offline folders
On server client Open my computer Tools
Folder options
Offline files
Check the box enable offline files
Apply – ok
Repeat same process on the client also
On server Create a folder Share it
Everyone full access

On the client machine
Access the share resources through the n/w places
Right click on the share resources
Make available offline
Next
Check the box automatically
Next – finish

On the client machine
Access the n/w share

Disabling NIC Network places Properties
Right                                      click                                      on                                      LAN
select disable

Open n/w places
We will notice another system Access the offline folder from server Do some modifications to that folder Enable NIC Devamını oku...

Paylaş |