1 / 35

Goals

Goals. Understand local user accounts Set and modify local user account properties Create a domain user account Set domain user account properties Automate user creation and modification Understand user profiles Create a roaming user profile. (Skill 1). Introducing Local User Accounts.

wyatt-stone
Download Presentation

Goals

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Goals • Understand local user accounts • Set and modify local user account properties • Create a domain user account • Set domain user account properties • Automate user creation and modification • Understand user profiles • Create a roaming user profile

  2. (Skill 1) Introducing Local User Accounts Local user account • Identifies a user on a network • Enables a user to access network resources, such as files, printers, and databases • Enables a user to access local resources on the computer where the user is logged on • Authenticates the identity of a system or user by verifying the user logon name and password

  3. (Skill 1) Introducing Local User Accounts (2) Types of user accounts • Domain user account • Created in Active Directory • Can be used to log on from any computer in the forest • Local user account • Allows a user to log on only to a local computer • Allows access to the resources on that computer

  4. (Skill 1) Introducing Local User Accounts (3) Factors to consider when planning user accounts • Naming conventions • Solidify an identification pattern for the users in a domain • Follow a consistent naming convention so users can easily remember and locate their logon names • Passwords • Play a very important role in protecting user access to a domain or a computer • Each user account is required to have a password

  5. (Skill 1) Introducing Local User Accounts (4) Built-in user accounts • Administrator account is used to manage the overall functioning of a computer • Guest account is used for infrequent users who must log on to access shared resources for a short duration

  6. (Skill 1) Figure 6-1 Creating a local user account

  7. (Skill 1) New user account Figure 6-2 New local user account in the Users folder

  8. (Skill 2) Setting and Modifying Local User Account Properties • Default properties for each local user account include the user name, password, and dial-in properties • Properties dialog box for a local user account • General tab • Member Of tab • Profile tab • Dial-in tab • Terminal Services settings • Terminal Services provides the ability to connect to a server from a remote location, as well as run a session as if you were physically sitting at the computer • These settings are accessed via the Environment, Sessions, Terminal Services Profile, and Remote Control tabs

  9. (Skill 2) Figure 6-3 Tabs on the Properties dialog box for a local user account

  10. (Skill 2) Used to specify the path to the user profile Figure 6-4 The Profile tab

  11. (Skill 2) Used to set Terminal Services timeout and reconnection settings Figure 6-5 The Sessions tab

  12. (Skill 2) Used to configure settings for remotely observing or controlling a Terminal Services client session Figure 6-6 The Remote control tab

  13. (Skill 2) Setting and Modifying Local User Account Properties (2) Managing user accounts • Renaming a user account • Resetting passwords • Unlocking user accounts • Disabling and enabling a user account • Deleting a user account

  14. (Skill 2) Specifies that the user cannot change the password Specifies that the password for the user account will never need to be changed Activated when the user breaches the account threshold Figure 6-7 Preventing a user from changing the password

  15. (Skill 2) Defines routes to be used for the dial-in connection Figure 6-8 Setting the dial-in properties

  16. (Skill 2) Figure 6-9 Modifying local user account properties

  17. (Skill 2) Figure 6-10 Setting a new password for a local user account

  18. (Skill 2) Figure 6-11 The Set Password for <user_name> dialog box

  19. Figure 6-12 Message confirming the changed password

  20. (Skill 2) Figure 6-13 Renaming a local user account

  21. (Skill 3) Creating a Domain User Account Domain user account • Used to log on to a domain and access network resources • Use the Active Directory Users and Computers console to create domain user accounts • Created in an OU on a domain controller • The domain controller replicates the new user account information to all of the other domain controllers in the domain • After replication, all domain controllers in the domain can authenticate the user during logon • All trusting domains allow the user account to gain access to their resources

  22. (Skill 3) Figure 6-14 Domain user account

  23. (Skill 3) Figure 6-15 Creating a domain user account in an OU

  24. (Skill 3) Figure 6-16 Creating a domain user account

  25. (Skill 3) Figure 6-17 Specifying a password for a new domain user account

  26. (Skill 3) Figure 6-18 Summary screen for a new domain user account

  27. (Skill 3) Figure 6-19 The new user in the Active Directory Users and Computers console

  28. (Skill 4) Setting Domain User Account Properties • Every user account has a set of default properties • Personal properties you define for a domain user account are useful when searching for users • Logon settings are used to specify the logon hours for a user • Dial-in settings include specifying whether a user can dial in from a remote location • Terminal Services settings allow a user to connect to a server from a remote location as well as run a session as if the user is physically sitting at the computer

  29. (Skill 4) Figure 6-20 Specifying user account properties

  30. (Skill 4) Figure 6-21 The Account tab for a domain user account

  31. (Skill 4) Figure 6-22 Specifying logon hours for a user account

  32. (Skill 5) Automating User Creation and Modification • Windows Server 2003 supports a variety of tools to automate the process of creating and modifying user accounts in a domain environment • Account templates • Importation tools • Scripting (for experienced administrators)

  33. (Skill 5) Automating User Creation and Modification (2) Account templates • User accounts created specifically for copying; no one can log on using the template account • Create the account • Fill out all of the information common to all users • Copy it when creating new user accounts • Templates can significantly reduce the headaches involved with adding users to small as well large networks

  34. (Skill 5) Automating User Creation and Modification (3) Importation utilities • Windows Server 2003 ships with two importation utilities helpful in creating large batches of user accounts • Csvde.exe • Ldifde.exe • Csvde (Comma separated value data exchange) • A utility designed to import and export objects into Active Directory using .csv files • .csv files can be used in Excel and most other spreadsheet programs

  35. (Skill 5) Automating User Creation and Modification (4) • Ldifde (LDAP data interchange format data exchange) • A utility that performs the same functions as Csvde.exe,only with .ldif files • .ldif files are specifically formatted text files supported by many third-party LDAP applications • Both Csvde.exe and Ldifde.exe are installed by default with Windows 2003 Server, and should be run from a command prompt on the server

More Related