1 / 17

CN1276 Server

CN1276 Server. Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+. Agenda. Chapter 10: Planning a Group Policy Management and Implementation Strategy Quiz Exercise. Group Policy Management Console. Import and copy GPO settings to and from the file system

xuxa
Download Presentation

CN1276 Server

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

  2. Agenda • Chapter 10: Planning a Group Policy Management and Implementation Strategy • Quiz • Exercise

  3. Group Policy Management Console • Import and copy GPO settings to and from the file system • Backup and restoration of GPOs • Resultant Set of Policy (RSoP) functionality integration • Hypertext Markup Language (HTML) reports allow read-only views of GPO settings and RSoP information • Search function

  4. Group Policy Management Console • Is located in the Administrative Tools • See Figure 10-1 on Page 205 • Link order • See Figure 10-2 on Page 205 • Group Policy Inheritance • See Figure 10-3 on Page 205 • Delegation • See Figure 10-4 on Page 206

  5. Managing an Individual GPO • When a GPO is selected in the Group Policy Management interface: • Scope • Details • Settings • Delegation

  6. Scope • Allows administrators to view the locations to which the policy is linked • Security filtering using permissions and WMI are available for viewing, editing, or creating

  7. Detail • Allows the GPO to be enabled or disabled • Displays read-only information • The owner • GUID • Creation date • Last modification date

  8. Settings • HTML report • View GPO settings that do not have the original default values • Right-clicking within this view to print or save the report

  9. Delegation • Lists the users and groups that have access to this GPO • Lists the permissions that apply to them • The Advanced button allows access to the Security tab to directly view the GPO’s ACL

  10. Filtering Group Policy Scope • Block Policy Inheritance policy setting • Enforce • Two additional filtering methods • Security Group Filtering • Uses the GPO’s Security tab to determine user and group account access to the policy • WMI Filtering • Uses filters written in the WMI Query Language (WQL) to control GPO application.

  11. Windows Management Instrumentation (WMI) • A component of the MS Windows that provides management information and control in an enterprise environment • You can use WMI: • To create queries based on hardware, software, operating systems, and services • To gather data or to determine where items, such as GPOs, will be applied. • To control which users or computers will be affected by a GPO based on defined criteria

  12. Windows Management Instrumentation (WMI) • To find all Win XP Prof. • Select * from Win32_OperatingSystem where Caption = “Microsoft Windows XP Professional” • Only one WMI filter can be applied to each GPO • See Table 10-2 on Page 211 for more WMI filter string example

  13. Group Policy EXCEPTION • You can applied the GPO to the domain and make an exception list • http://sdmsoftware.com/blog/2011/01/29/the-virtues-and-vices-of-gpo-deny-aces/

  14. Effective Policy Settings • Resultant Set of Policy Wizard (MMC Snap-in) • Group Policy Results and Group Policy Modeling components of Group Policy Management • GPResult command-line tool

  15. Resultant Set of Policy (RSoP) • The sum of the policies applied to a user or computer after all filters, security group permissions, and inheritance settings • Two modes within RSoP: • Planning mode • To simulate the effect of policy settings prior to implementing them on a computer or user • Logging mode • Useful for documenting and understanding how combined policies are affecting users and computers

  16. Using GPResult Command • GPResultallows you to create and display an RSoP query from the command line • It provides comprehensive information about the operating system, the user, and the computer

  17. Assignment • Case Scenario 10-1 • Question 2 • Question 3 • Matching • 1-10 • Multiple Choice • 1-10 • Online Lab 10

More Related