ITB7345 Advanced Networking Technologies LAB practical exercises Technical report assessment (40% of the course) • Completion of each practical lab (signed off by the tutor): 2% (12% in total) • The research lab report for each lab is a further 4% (24% in total) o Each report should be around 800-1500 words. Do not include the lab steps given in this document. Students should research the topic and include the following in the report:  Purpose of the technology (1 marks)  Description/Architecture of the technology (4 marks)  Uses/applications of the technology (5 marks)  Advantages and disadvantages (5 marks)  Description of an alternative technology (5 marks)  Comparison to other alternative technologies (10 marks)  Professionalism: Grammar, spelling, APA referencing, appropriate headings, logical order, appropriate diagrams, simple/clear explanations (10 marks) • Extension exercises are to be done after completing all 6 labs (4% in total) o Extension to project 1: 2% for create an Ubuntu virtual machine using VMware server o Extension to project 6: enable SSL filtering on pFsense to blacklist facebook and other specified HTTPs sites   PROJECT 5 Using Windows Powershell for managing Active Directory users PROJECT 5 AIM The student will be able to setup new users and associated folders using the appropriate utilities. EQUIPMENT A PC configured as a Windows7 workstation and connected to a Windows server environment. TASKS 1. Connect the PC to the network 2. Apply a fixed IP address 3. Set PC as an Active Directory Client 4. Explore the ITD student domain 5. Install Windows server 2003 admin tools 6. Create a new user using AD GUI 7. Create a new Organisation unit using AD GUI 8. Create One new user using Powershell 9. Delete user using AD Powershell 10. Create Multiple users using Powershell and CSV File 11. Use command line tools 12. Tidy the workplace 13. Produce a report 1. LOG INTO DOMAIN FROM THE WINDOWS CLIENT AS THE ADMINISTRATOR a. Press Ctrl+Alt+Delete to be presented with the Windows Logon screen. Choose to Logon to the Rexnet domain using the details: User: admin Password: router Login successful? __________ 2. INSTALL WINDOWS ADMINISTRATIVE TOOLS Next we need to install the tools required to administer the server, the setup file required to install the pack is located on the public drive of Makinen Server. a. Make sure you are logged in as the admin user (part b and c may already be done fore you) b. Install program from the itsw1 server (location given by Tutor) \\itsw1\Public\nm619\.. c. Once Installed: Click Start – Control Panel – Programs – Turn Windows features on or off d. Expand "Remote Server Administration Tools" and expand "Features administration tools" e. Check "Group Policy Management Tools" f. Expand "Role Administration Tools", then expand "AD DS and AD LDS Tools" g. Check "Active Directory Module for Windows Powershell". h. Expand "AD DS Tools" i. Check "Active Directory Administrative Center" and "AD DS Snap-ins and Command-line Tools" j. Click Ok 3. USE ACTIVE DIRECTORY USERS AND COMPUTERS TO CREATE A USER Active Directory Users and Computers is one of the most frequently used tools throughout these exercises. This tool is used for creating and configuring the users, computers and groups of users on the Domain a. Login as admin b. Run the "Active Directory Users and Computers Administrative Tool" Note: Create a shortcut on the desktop. c. Expand the rexnet domain and select ITD by highlighting it and then go into the ITB6244 folder by highlighting it d. Only when you have highlighted the ITB6244 folder: create a user from the Action menu -> New -> User. Enter a login name, first and last name of your choice. Login Name: ________________________________ First and Last Name: ________________________________ e. Click Next f. Set the password to be: Router1 a. Also Check "password never expires" option g. Click Next h. Click Finish i. Have you created your user? Y/N 4. CREATE AN ORGANISATIONAL UNIT a. Expand the rexnet domain and select ITD by highlighting it and then go into the ITB6244 folder by highlighting it b. Only when you have highlighted the ITB6244 folder: create a user from the Action menu -> New -> Organisational Unit b. Give your organisational unit a unique name e.g. MyOU 5. USING ACTIVE DIRECTORY MODULE FOR POWERSHELL a. Start-> ControlPanel-> Administrative tools ->Active Directory Module for Powershell b. Also have Active Directory GUI open so that you can see what is happening with the Powershell commands c. At the command prompt type: Import-Module ActiveDirectory (This will only work if the following file exists on the PC: C:\Windows\System32\WindowsPowerShell\v1.0\Modules\ActiveDirectory\ActiveDirectory.psd1 d. To find a particular user use the "Get-ADUser command to find the user you just created details e.g. Get-ADUser username. e. . Now Delete your user using the following command: Remove-ADUser username (type 'Y' to confirm when prompted) f. To get details for all users in the ITB6244 Organisational Unit use the following command Get-ADUser -Filter * -SearchBase "OU=ITB6244, OU=ITD,dc=rexnet,dc=local" f. If we wanted to add one new user we could use the following to create a user called Dileep in the MyOU organisational unit: Notes - You will need to create a new user with a different user from the one you did previously with a different username and details - you will need to change the following in the script below: name, SamAccountName, GivenName, DisplayName, UserPrincipalName and Path (MyOU) to create your own unique user in your organisation unit: - Type this script into a text file with large font size and then paste it into Powershell. This will save a lot of time if there are errors New-ADUser -Name "Dileep Rajendran" -SamAccountName "draj1" ` -GivenName "Dileep" -Surname "Rajendran" -DisplayName "Dileep Rajendran" ` -UserPrincipalName "[email protected]" -Enabled $true ` -Path "OU=MyOU,OU=ITB6244,OU=ITD,DC=rexnet,DC=local" -Department "Sales" ` -AccountPassword (ConvertTo-SecureString "Router1"` -AsPlainText -Force) (note: make sure there are no spaces at the end of the line after the special character `) g. Use the following command to see if your user has been added Get-ADUser username Can you see your new user in Powershell? Y/N h. Look at your active directory GUI and refresh the page. Can you see your new user? Y/N Look at your active directory GUI and refresh the page. Has your user been deleted? Y/N 6. CREATE MULTIPLE USERS FROM A CSV FILE a. Start a new excel file and create a list of users as in the diagram below. Note: The column headings will need to be the same but your users must be different b. Save the file as a "users" with the CSV (comma delimited) file type onto your desktop c. Now in Powershell, type the following commands (changing 'MyOU' to your organisational unit name) (Type this script into a text file with large font size and then paste it into Powershell. Will save a lot of time if there are errors) Import-Csv -Path C:\users\admin\desktop\users.csv | foreach {New-ADUser -Name $_.name -Enabled $true ` -AccountPassword (ConvertTo-SecureString $_.password ` -AsPlainText -Force) ` -samAccountName $_.samAccountName -City $_.city ` -Department $_.Department -EmployeeID $_.EmployeeID ` -Path "OU=MyOU,OU=ITB6244,OU=ITD,DC=rexnet,DC=local"} d. Look at your Active Directory Users and groups GUI and refresh the page. Can you see all the new user? Y/N e. Can you see your users in Powershell: Get-ADUser -Filter * -SearchBase "OU=MyOU,OU=ITB6244, OU=ITD,dc=rexnet,dc=local" Y/N 7. OTHER COMMAND LINE TOOLS a. Open the command prompt b. Type ping itsw1.rexnet.local What IP address did the DNS name translate to? ___________________________________________________________ c. Type net user at the prompt Result? ____________________ d. Type net view at the prompt Result? ____________________ e. Type net use and note allocated drive mappings f. Type net use Y: \\ITSW1\public at the prompt Note: Use another drive letter if Y: is already mapped. Result? __________________________________________ g. Type net use to view mapped drives. Drive Y: mapped? ______ Y/N