1 / 34

Group Policy in Windows Vista

Group Policy in Windows Vista. What Will We Cover?. Group Policy Administration Group Policy with Windows Vista QoS Policies. Helpful Experience. Understanding of Group Policy Administering Windows. Level 200. Agenda. Understanding Group Policy Reviewing New Infrastructure Features

shirley
Download Presentation

Group Policy in Windows Vista

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Group Policy in Windows Vista

  2. What Will We Cover? • Group Policy Administration • Group Policy with Windows Vista • QoS Policies

  3. Helpful Experience • Understanding of Group Policy • Administering Windows Level 200

  4. Agenda • Understanding Group Policy • Reviewing New Infrastructure Features • Using Policy Settings

  5. Group Policy Overview

  6. File Format Policy Definition Policy Enforcement Policy Troubleshooting • Network Traffic • End-to-end performance • WAN performance • ADM file format and languages • Storage • Difficult to locate settings • Lack of best practice knowledge • Ping issues • VPN scenarios • Error messages • Complicated diagnostic log Group Policy Pain Points What and Where is GPMC?

  7. demonstration • Preparing Active Directory • Install Group Policy Management Console • Copy AdPrep Folder • Run ForestPrep

  8. Agenda • Understanding Group Policy • Reviewing New Infrastructure Features • Using Policy Settings

  9. Hello Hola SYSVOL Windows Vista Improvements Reliable and Efficient Application of Policy Extended Coverage Ease of Use

  10. Group Policy Service Winlogon • More efficient • Service has been hardened

  11. Group Policy Client Network Awareness Ping Connecting over VPN Ping Ping

  12. Customer Request: Set different configurations for different users with local GPOs Multiple Local GPOs

  13. Group Policy Management Console

  14. userenv.log Admin Events Multiple Logs Operational Events Cryptic Error Messages Events and Logging

  15. Demo demonstration • Using Group Policy Features • Run DomainPrep • Access the Vista GPMC • Use Internet Explorer 7.0 Group Policy • Use Events and Logging

  16. %windir%\policydefinitions • Printing.admx • inetres.admx • … • %windir%\policydefinitions \en-us • Printing.adml • inetres.adml Windows Vista Administrative Computer (English) <sysvol>\policies\policydefinitions Printing.admx inetres.admx .. \en-us Printing.adml inetres.adml \fr Printing.adml inetres.adml \ .. Windows Vista Administrative Computer (French) • %windir%\policydefinitions • Printing.admx • inetres.admx • … • %windir%\policydefinitions \fr • Printing.adml • inetres.adml Administrative Template Files

  17. Demo demonstration • Editing Domain-based GPOs Using ADMX Files • Create ADMX Central Store

  18. ADM File ADMX File DFS Replication and SYSVOL SYSVOL

  19. Agenda • Understanding Group Policy • Reviewing New Infrastructure Features • Using Policy Settings

  20. Choosing the Right Settings • Examples of Expanded Policy Settings: Client Help BITS Disk Failure Diagnostics DVD Video Burning Shell Application Management MMTP Network Quarantine Security Protection UAC

  21. Security Pain Points • Users over-privileged • Spyware and viruses • Lost productivity • Administrative cost • Secure by default

  22. UAC Policy Settings

  23. IPSec Windows Firewall and IPSec

  24. Windows Defender Wireless and Wired Configuration Version 7.0 Network Access Protection Public Key Policy Configuration Integrated IE 7.0 Policy Settings Security Enhancements

  25. Power Management Printer Management Windows Shell Management Desktop Management

  26. Device Driver Device Driver Device Installation Policy Settings • Device Identification Strings • Device Setup Classes

  27. Demo demonstration • Installing Devices with Group Policy • Block the Installation of a USB Device

  28. A/V Traffic QoS Policies • Source IPv4/IPv6 addresses • Destination IPv4/IPv6 addresses • Protocol • Source or destination ports

  29. Demo demonstration • Configuring QoS Policy • Create a QOS Policy for Web Traffic • Create a QOS Policy for VoIP Traffic

  30. Session Summary • Better Group Policy administration • Restricting device installation • Managing network traffic

  31. Microsoft Press Publications www.microsoft.com/learning/books/itpro/

  32. These books can be found and purchased at all major book stores and online retailers Non-Microsoft Publications

  33. What else does TechNet give you? • FREE TechNet Newsletter” • FREE Events and Webcasts • FREE quarterly “TechNet” magazine • FREE comprehensive technical website • FREE TechNet Radio, Security Centre, Learning Paths and Virtual Labs • TechNet Plus Subscription DVD A range of tools and resources for IT professionals that let you plan, manage ,deploy To subscribe to the newsletter or just to find out more, please visit www.microsoft.com/uk/technet

  34. Thank you for attending this TechNet Event • For my blog go to http://blogs.technet.com/jamesone http://www.microsoft.com/uk/technet PS The evaluation form is now sent out electronically with your thank you e-mail. This can take up to 5 working days. Please do feedback as we read all the comments and use them to shape future event content

More Related