Microsoft Windows Server 2003. Полное руководство, 2-е издание

Microsoft
Windows Server 2003

2-
Microsoft
Windows Server 2003
U N L E A SH E D
SECOND EDITION
Rand H. Morimoto
Kenton Gardinier
Michael Noel
Omar Droubi
201 West 103rd Street,

Indianapolis, Indiana, 46240 USA
Microsoft
Windows Server 2003

2-
-
2005
32.973.26-018.2.75
M79
681.3.07

. ..
.. , .. , ..
.. , ..
:
info@williamspublishing.com, http://www.williamspublishing.com
, , , , , , , .
M79 Microsoft Windows Server 2003. , 2- . : . .
. : , 2005. 1312 . : . . . .
ISBN 5-8459-0776-4 (.)

, , Windows Server 2003.
Windows Server 2003
() .
. -
, ,
Windows Server 2003;
Active Directory; , , -
; Windows Server
2003; ; -
; Windows Server 2003.
-
.
32.973.26-018.2.75
-
.

, ,
, -
Sams Publishing.
Authorized translation from the English language edition published by Sams Publishing, Copyright 2004
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means,
electronic or mechanical, including photocopying, recording or by any information storage retrieval system,
without permission from the Publisher.
Russian language edition published by Williams Publishing House according to the Agreement with R&I
Enterprises International, Copyright 2005
ISBN 5-8459-0776-4 (.) , 2005

ISBN 0-672-32667-1 (.) Sams Publishing, 2004

5
43
44
45
47
48
I. Windows Server 2003 51
1. Windows Server 2003 53
2. ,
,
Windows Server 2003 89
II. Active Directory Windows Server 2003 147
4. Active Directory 149
5. Active Directory Windows Server 2003 181
6. 209
8. Active Directory
Novell, Oracle, Unix NT4 263
III. 291
9. 293
10 . DHCP, WINS 329
11 . Internet IIS 6 361
IV. 397
12 . 399
13 . 427
14 . Windows Server 2003 447
15 . 465
V. Windows Server 2003 485
16 . Windows NT4 Windows Server 2003 487
17 . Windows 2000 Windows Server 2003 527

6
VI. Windows Server 2003 597

19 . ,
23 .
25. Microsoft
VII. 833
26 . 835
VIII. 923
28.
29 .
947
IX. 977
30 . 979
31.
( ) 1031
33 . 1129
X. , 1171
34 . 1173
35 . 1213
XI. Windows 1237
36 . Windows SharePoint 1239
37 . Windows Media 1271
CD-ROM 1304
1305

7
43
44
45
47
48
I. Windows Server 2003 51

Windows .NET Framework Windows Server 2003 54
Windows .NET Framework 55
Windows Server 2003 Active Directory 57
? 60
Windows Server 2003 NT4 Windows 2000 60
Windows 2000 Windows Server 2003 61
Windows Server 2003 Windows NT4 62
Windows Server 2003 Web 62
Windows Server 2003 Standard 63
Windows Server 2003 Enterprise 63
Windows Server 2003 DataCenter 64
, 66
67
68
70
Active Directory 71
71
72
IPSec NAT Traversal 73
74
DFS 74
74

8
75
75
76
76
77
77
78
78
79
Windows Server 2003
Feature Pack 79
79
80
Active Directory
80
Directory Services Markup Language Windows 81

Active Directory 81
Services for NetWare 5.0 SP2 81
Windows SharePoint 82
Windows 82
Windows 82
Windows 2003 83
Active Directory v2.0 83
83
84
84
Microsoft 84
85
Windows 2003 85
86
2. ,
,
90

91
92

95
97
99
: 100
102

9
103
: 104
: 104

105
108
: 108
109
111
111
: 113
? 114
115
:
116
116
117
118
118
/: 119
119
120
120
124
124
: 124
126
, 126
128
129
130
131
131
131
132
133
134
134
134
135
137

10
137
137
137
138
139
139
139
140
143
143
144
145
Windows Server 2003
145
146
146
II. Active Directory Windows Server 2003 147
150
Microsoft 151
Active Directory 151
, NT 4.0 152
Microsoft Internet 154
Windows Server 2003 Active Directory 157
Windows 2000 157
Windows 2000 157
Active Directory X.500 159
AD 159
161
161
161
162
163
164
164
166

11
OU? 167
? 169
, - 170
170
DNS Active Directory 171
DNS 171
DNS 173
DNS DNS, AD 173
AD DNS DNS 173
Kerberos 174
Internet v6 174
175
Active Directory Windows Server 2003 175
176
176
176
177
, Windows Server 2003 178
178
179
5. Active Directory Windows Server 2003 181
183
184
() 185
185
187
188
188
189
191
191
193
194
194
195
196
197
198
199

12
199
200
201
202
203
204
204
205
206
208
208
6. 209
210
212
: 213
214
OU 217
OU 217
OU NT 218
OU 219
OU 219
OU 219
OU 222
223
223
224
224
225
225
- 225
228
231
231
235
235
236
236
236
237
SMTP- IP- 240

13
241
243
244
245
246
247
248
248
248
249
250
250
251
SMTP- IP- 251
SMTP- 251
252
/
253
254
254

255
255
IPv6 Windows Server 2003 255
IPv6 256
IPv6 256
IPv6 257
IPv6 258
IPv6 259
259
259
260
262
262
8. Active Directory
Novell, Oracle, Unix NT4 263
Services for Unix 3.5 264
Services for Unix 265
Services for Unix 3.5 266
Interix Services for Unix 269
Interix 269
Interix 269
Unix NFS Windows 270
NFS 270

14
NFS 270
NFS 271
SFU 271
271
SFU 271
Telnet 272
MMC Services for Unix 273
ActivePerl 5.6 SFU 273
Windows NetWare Services for NetWare 273
Gateway Services for NetWare 274
Services for NetWare 274
Services for NetWare 5.02 SP2 275
NetWare 276
Microsoft 277
279
Microsoft 279
MIIS 279
(IIFP) 280
SQL Server MIIS 281
MIIS 281
MIIS 282
282
Microsoft 282
MIIS 284
MIIS 285
MIIS 286
MIIS 2003 289
289
290
III. 291
9. 293
294
DNS 294
DNS 295
DNS 295
DNS 296
DNS 297
DNS Windows Server 2003 297
DNS 297
DNS 300
301
301
(A) 301
(NS) 302
(SRV) 303
(MX) 304

15
(PTR) 304
(CNAME) 304
304
DNS 304
306
306
306
307
- 307
308
309
310
DNS- 310
311
311
DNS 312
DNS 312
312
313
314
314
315
WINS 316
Microsoft DNS 317
, Active Directory 317
317
Unicode 317
DNS Windows Server 2003 318
DNS 318
DNS 318
318
_msdcs 319
Active Directory DNS, Microsoft 320
SRV 321
DNS 322
DNS
322
DNS 323

HOST 323
NSLOOKUP 323
IPCONFIG 324
TRACERT 325
DNSCMD 326
326

16
327
10 . DHCP, WINS 329
330
330
330
331
331
332
DHCP 332
DHCP: RARP BOOTP 332
DHCP 333
DHCP 334
IP- 334
DHCP 335
DHCP DNS 336
DHCP 336
DHCP, Windows Server 2003 338
DHCP 338
DHCP 340
DHCP 340
DHCP 50/50 340
DHCP 80/20 342
DHCP 100/100 342
344
DHCP- 344
DHCP 344
DHCP 344
DHCP 345
DHCP 345
Netsh 345
DHCP 346
DHCP 347
DHCP 347
DHCP 348
Internet- Windows 349
, Microsoft NetBIOS 349
WINS DNS 349
WINS Windows Server 2003 350
WINS 351
WINS 352
352
WINS 353
NetBIOS LMHOSTS 354
, WINS 355
WINS 355
WINS 355

17
WINS 357
357
/ 358
358
359
360
360
11 . Internet IIS 6 361
IIS 6 362
IIS 364
364
365
IIS 366
IIS 367
IIS 368
IIS 368
Web- 369
Web- IIS 370
Web- 370
373
375
375
IIS 6 376
IIS 377
377
378
FTP 378
FTP 379
FTP- 380
FTP 380
IIS 383
SMTP 383
NNTP 384
Internet 384
IIS 385
Web- 385
IIS 386
Web- 386
SSL 387
FTP 390
IIS 391
IIS 392
Internet Explorer
393
394

18
395
IV. 397
12 . 399
Trustworthy Computing Microsoft 400
Common Language Runtime 400
401
401
401
402
Run As 403
- 404
405
405
406
406
406
407
408
409
NTFS 410
NTFS 411
411
412
413
413
414
414
SUS: Windows Update 414
415
415
SUS 416
416
SUS 417
SUS 420
SUS 421
422
SUS 425
425
425
13 . 427
428
429
429
429

19
VPN 430
430
PPTP L2TP 430
L2TP/IPSec 431

Internet 431
VPN 433
435
435
436
- 438
439
PKI Kerberos 439
Internet 439
IPSec 439
IPSec 440
NAT Traversal IPSec 440
IPSec
IPSec 442
IPSec 443
IPSec 443
IPSec 444
445
446
.NET 448
.NET 449
PREP ID 450
452
453
.NET 455
.NET Passport 455
456
.NET 456
456
Web- 457
.NET 458
458
.NET 458
Cookie- .NET Passport 459
460
.NET Passport 460
461
461
.NET Passport for Kids 461

20
462
462
463
15 . 465
466
466
467
467
468
470
473
473
474
475
476
Security Configuration and Analysis 476
Microsoft 478
479
Windows 481
482
482
V. Windows Server 2003 485
16 . Windows NT4 Windows Server 2003 487
488
Windows NT4 Windows Server 2003 492
492
493
,
Windows NT4 494
SAM NT 4.0 495
496
Windows NT4 496
498
499
500
501
Windows NT4
Windows NT4 Windows
Server 2003 503
Windows
NT4 Windows Server 2003 506

21
Windows Server 2003

508
Windows NT4 509
Windows NT4

Active Directory Microsoft 511
NT4 Active Directory 517
524
524
17 . Windows 2000 Windows Server 2003 527
528
528
529
530
: 530
531
531
531
532
532
533
Active Directory Windows 2000 534
536
Active Directory adprep 537
539
539
541
Windows 2000 543
Windows 2000 543
543
AD- DNS 546
Active Directory
547

547
547

Active Directory 2.0 552
ADMT 2.0 553

22
Windows 2000 Windows Server 2003

ADMT 2.0 553
ADMT 554
ADMT 2.0 554
559
562
566
569
569
569
572
573
574
576
580
580
580
581
Windows 581
582
583
583
584
584
, , ,
587
588

588
589
589
590
591
592
592
593
594
595
VI. Windows Server 2003 597
19 . ,
600
600
601

23
601
602
603
604
606
608
610
611
613
613
613
614
AD 615
615
616
618
618
618
620
621

622
622
623
626
628
629
630
, 633
634
HKEY_LOCAL_MACHINE 634
HKEY_CLASSES_ROOT 637
HKEY_CURRENT_CONFIG 637
HKEY_CURRENT_USER 638
HKEY_USERS 639
640
641
Favorites 642
642
643
644

24
644
646
646
646
647
647
649
650
652
652
652
652
653
656
656
656
657
657
, : 658
(RSoP) 658
658
658
GP 659
659
659
660
660
660
661
661
662
663
663
664
664
665
665
Group Policy 665
665

667
668
669
669

670

25
GPO: , ,
670
671
671
HTML- Settings 672
WMI 672
GPMC 673
GPMC Resultant Set of Policies 673
Resultant Set of Policies 673
RSoP
673
Windows 674
WMI 674
WMI 675
Group Policy 676
677
677
:
678
679
679
(My Documents) 680
681
681
682
683
gpupdate.exe 683
gpresult.exe 683
683
GPOTool.exe 684
FRSDiag.exe 684
Sonar.exe 685
686
686
Microsoft 687
687
Outlook 687
Outlook 688
690
691
Outlook 691
Outlook 693
Outlook 693
Group Policy 696
696
Group Policy 697
698
698

26
699
699
700
Group Policy 701
701
701
Windows 702
702
704
706
706
707
708
710
714
715
715
716
717
720
721

Active Directory Users and Computers 722
Telnet 722
723
723
Microsoft 724
DHCP WINS 724
DNS 726
726
Windows Update 727
728
728
730
733
733
741
743
746
747
747

27
23 .
750
751
752
752
752
752
753
VBScript 754
Visual Basic 754
759
MMC ADSI Edit 760
MMC Active Directory Schema 763
764
765
767
767
Exchange 2000 Active Directory 768
769
Ldifde.exe Csvde.exe 769
770
ActiveX 771
ADO 771
MMC Active Directory Users and Computers 772
Windows Management Instrumentation 773
WMI 773
774
775
776
778
780
CSV- 782
784
785
785
788
789
789
790

28
790
790
791
791
792
793
793
794
794
795
796
796
797
( ) 797
798
798
798
799
799
799
800
800
801
801
801
802
802
802
803
803
803
804
804
804
804
805
805
805
805
25. Microsoft
Microsoft 808
MOM 808
809
809
MOM 809

29
MOM 810
MOM 811
811
811

811
MOM 813
MOM 813
MOM 814
815
815
817
818
MOM 2000 Resource Kit 818
MOM 819
819
819
MOM 820
MOM 820
MOM 821
MOM 821
DCAM D-DCAM 821
822
822

823
823
824
MOM 825
826
MOM 826
MOM 827
MOM 827
828
828
MOM 828
MOM 828
MOM 830
831
831
VII. 833
26 . 835

Ethernet 837
1.5 838
NAT Traversal Universal Plug and Play 838

30
838
839
SNMP RRAS 839
839
, 840
(Mprdim.dll) 840
840
840
IP- (Iprtmgr.dll) 841
IPX- (Ipxrtmgr.dll) 841
841
IP- 842
(Rtm.dll) 842
842
IP- (Ipfltdrv.sys) 842
IP- 842
IP- 843
IPX- (Nwlnkflt.sys) 843
IPX- (Nwlnkfwd.sys) 843
, VPN- 844
RRAS 845
PPTP 846
EAP-TLS 846
L2TP/IPSec 846
847
VPN 847
848
2 848
IP Security 849
PPTP L2TP/IPSec 850
L2TP/IPSec PPTP 851
PPTP L2TP/IPSec 851
852
853
VPN- 854
855
855
855
856
NAT Traversal 856
RRAS 857
MMC Routing and Remote Access 857
Netsh 860
862
862
863

31
864
864
865
RQS.EXE RRAS 866
867
868
CM 872
873
873
875
875
876
878
879
879
880
881
881
882
883
884
884
886
887
887
887
888
888
888
889
890
891
891
891
892
892
893
895
897
898
Local Security Policy 898
Computer Management 898
Active Directory Users and Computers (Dsa.msc) 899
Terminal Services Configuration (Tscc.msc) 899
Group Policy 902
903

32
904
905
906
907
907
908
910
RDP 910
911
911
911
GPO 912
912
913
914
916
916
916
WMI 917
917
918
919
919
32-
Windows- RDP 919
Web- 919
MMC Remote Desktops (Tsmmc.msc) 920
920
921
922
VIII. 923
28.
926
926
927
927
928
RIS 928
RIS 929
RIS 929
DHCP RIS 931
931
Windows XP 932
932
933
933

33
Windows XP 934
RIS 935
936
Windows XP 937
938
XP 2000 938
939
939
939
940
940
Group Policy 941

942
943
Windows XP 944

Active Directory Users and Computers 944

945
946
29 .
947
948
948
949
950
950
951
951
952
952
953
, ,
953

954
954
955
956

956
957
957
958
959

34
959
960
962
963
966
968
971
973
974
IX. 977
30 . 979
980
981
981
981
982
982
985
985
986
989
990
993
995
Performance 995
Fsutil.exe 995
995
997
: 997
Windows 997
1000
DFS 1000
DFS 1001
FRS 1002
DFS 1003
NTFS
DFS 1003
DFS 1003
DFS 1004
1004
1005
DFS 1007
DFS 1007
DFS 1007
DFS 1008
1009

35
DFS 1010
DFS Active Directory 1011
DFS 1012
DFS 1013
DFS 1013
DFS 1014
FRS 1014
FRS SONAR 1015
DFS 1016
1016
1017
FRS 1017
DFS 1017
DFScmd.exe 1018
1018
1019
Remote Storage 1019
Remote Storage 1020
1024
DFS Windows Server 2003 Backup 1025
1026
1028
1029
1029
31.
( ) 1031
1032
1032
1033
1034
1034
, 1035
1039
Microsoft 1039
1040
1041
1041
1041
1042
1044
1044
1046
1047
1048
1051
1052

36
1052
Cluster.exe 1052
1052
1053
1055
1057
1058
1060
1060
1061
1062
1063
1063
1065
1066
1067
1068
1069
1072
1075
1077
1078
1078
1078
1079
NLB 1079
1080
1080
1081
1081
NLB 1082
1082
NLB- 1084
NLB- 1085
NLB 1086
1086
NLB- 1087
1088
1088
1088
1092
1092
: 1094
1094
1095
1095

37
1095
1096
1096
1097
1097
1097
1098
1098
1099
1099
1099
1099
1100
1100
1101
, 1101
1103
1103
1104
1104
Windows Server 2003 Backup (ntbackup.exe) 1105
Remote Storage 1106
1106
1107

Windows Server 2003 Backup (ntbackup.exe) 1107
1108
1108
1111
Remote Storage 1112
Remote Storage 1113
1114
1114
1115
1115
vssadmin.exe 1115
( RAID-) 1116
1117
1118
1120
1121
Internet 1122
Remote Storage 1123

38
1124
Windows Server 2003 Backup
Remote Storage 1124
1124
1125
1126
1127
1127
33 . 1129
1130
1130
1131
1131
1131
1132
1132
1132
1132
1133
1134
1134
1135
1136
1136
1137
RAID- 1137
1138
1138
1138
1138
1140
1140
1140
1141
1142
ASR 1144
1146
1146
1149
1152
NTBackup.exe 1152
1153
Internet 1155

39
IIS 1156
1156
1164
Remote Storage 1166
1167
99,999% Windows Server 2003 1168
1168
1169
1169
X. , 1171
34 . 1173
1174
1175
1175
1176
1176
1177
1178
1179
1181
1181
1182
1183
1185
1185
1186
1187
, 1187
1188
1192
1192
1193
, 1193
Netmon 1195
Netmon 1196
Netmon 1197
1198
, Windows Server 2003 1199
TCP/IP 1200
1209
, 1210
1210

40
Dr. Watson for Windows 1211

1211
1212
35 . 1213
1214
1215
1215
1217
1218
1218
1222
1223
1224
1228
1228
1229
Windows 1233
1234
1234
Windows 1235
1236
1236
XI. Windows 1237
36 . Windows SharePoint 1239
SharePoint 1240
WSS: SharePoint 1240
SharePoint 1241
SharePoint 1241
SharePoint Microsoft 1242

WSS 1243
WSS 1244
WSS 1244
WSS 1245
1245
WSS- 1246
Microsoft Word 1251
1254
1256
SharePoint 1256
SharePoint 1258

41
1259
WSS 1259
1260
1261
1262
Microsoft Office 2003 1262
SharePoint 1264
1265
SharePoint 1265

1266
WSS- 1267
SharePoint 1268
1268
FrontPage 2003 1269
1270
1270
37 . Windows Media 1271
Windows Media 1272
Windows Media 1273
Windows Media 1273
Windows Media 1274
Windows Media 1275
Windows Media
1275
1276
1278
1278

1279
1281
1281
1282
1284
1285

1285

1288
Windows 1288
Windows 1289
Windows 1291
1291
1292
1292
- 1295
1295

42
1295
Windows 1297

Windows 1297
Windows 1298
Microsoft Producer 1299
1302
1302
- 1304
1305

43

(Rand Morimoto) -
25 , Windows 2003, Exchange
2003, , BizTalk Server .
Convergent Computing -
, -, -
Microsoft -
Windows Server 2003
. 50 -
,
, Windows
Server 2003, -
.
(Michael Noel)
10 Windows,
Exchange SharePoint, .
Exchange Server 2003 Unleashed SharePoint Portal Server 2003 Unleashed, -
Sams Publishing, ,
Windows 2000, Exchange 2000 Microsoft.
Convergent Computing,
, -
.
(Kenton Gardinier)
-
10 . Con-
vergent Computing. -
Windows Server 2003, Exchange Server 2003 SharePoint Portal Server 2003
.
. web-.
Windows, Exchange, -
, , -
. ,
. , -
MCSE, CISSP MCSA.
(Omar Droubi) Northern California
Computer and Network. 1994 , ,
Microsoft. -
, Win-
dows Server 2003/Exchange Server 2003 . -
Windows- .
MSCE CCNA,
Microsoft Exchange 2000 Microsoft, , -
, Windows 2000.

44
. , -
: !
. , , MBA, MCSE
. ,
.
, MCSE+I, MCSA
, , , ,
, , .
, MCSE, CISSP, MCSA
,
.
, MSCE, MCT, CCNA

45
. , , MBA, MCSE
,
.
(Neil Rowe), . -
Sams Publishing (Mark Renfrow), (Andrew
Beaster) (Seth Kerney)
.
(Chris Amaris),
, .
, .
, , -
, ,
Convergent Computing, , -
, , ,
. -
,
Windows 2003.
,
( )
.
, , ,
.
, ,
.
!
, MCSE+I, MCSA
, !
,
. -
Convergent Computing,
. -
. ! -
Sams, , .
, , .
, , ! ,
.
, , (Val) -
(Liza Ulanovsky). !

46
, MCSE, CISSP, MCSA

, -
. -
Sams Publishing -
, . (John Krebs) -
(Tiffany Phillips) RHI, (Kevin Williams)
(Jason Mauer) Microsoft, Convergent Comput-
ing , -
,
Windows Server 2003.
- (John McMains) -
.
, -
. , ,
.

47

, , .
, ,
. -
, .
. -
, Web-
. , , -
, ,
.
, ,
. -
. -
:
E-mail: info@williamspublishing.com
WWW: http://www.williamspublishing.com
:
: 115419, , / 783
: 03150, , / 152

48
2003 Windows Server

2003 . -
Windows,
(Service Packs), Windows Server 2003
Microsoft (Feature Packs). 2003 , -
, -
. , Windows
Server 2003,
, .
,
, , , -
Windows Server 2003 -
.
, ,
.
Windows 2003 Resource Kit , -
,
Windows
2003. , ,
,
( - -
).
(, ) Windows Whistler -
Windows 2000 1999 .
, , , , -
11 , -
Windows Server 2003 .
:
I. Windows Server 2003. Windows
Server 2003, , , -
Windows Server 2003,
- . -
, -
, , , Windows
Server 2003.
II. Active Directory Windows Server 2003. -
Active Directory. -
Active Directory .
,
, Win-
dows Server 2003 Windows 2000. , -

49
, Windows
2000 Active Directory, . -
,
.
III. . DNS, DHCP,
IIS , , -
. , II, ,
-
, Windows Server 2003; -
,
IV. . , -
Windows Server 2003. -
: , ,
(Encrypting File System EFS) -
; , ,
IPSec NAT Traversal; Windows .NET -
; , -
Active Directory.
V. Windows Server 2003. .
Windows NT Windows Server 2003
Windows 2000 Windows Server 2003.
,
.
VI. Windows Server 2003.
(
Windows 2000) . -
, ,
Windows Server 2003 . -
, Windows 2000,
, ,
Windows Server 2003
. , -
.
VII. .
(Routing and Remote
Access RRAS) Windows Terminal Services.
Windows Server 2003

. -
.

50
VIII. . -
Windows Server 2003 ,

, -
.
, -
IX. .
, Windows Server 2003 -
, , Microsoft -
.

(Distributed File System DFS), ,
, -
(Automated System Recovery ASR).
-
.
X. , . -
, , -
, -
XI. Windows. -
, -
Windows SharePoint Services
Windows Media Services.
,
,

Windows
Server 2003 I
...
1.
Windows Server 2003
2.
,
,

Windows Server 2003
3. Windows
Server 2003
Windows Server 2003
53
1

...
Windows Server 2003
Windows
Server 2003
?
Windows Server 2003
Windows Server 2003

Windows Server 2003

Windows Server 2003

Windows Server 2003
Feature Pack
Windows 2003

Windows
Server 2003
Windows Server 2003
54
I
Windows
Server 2003
-
, , -
Windows Server 2003
, - Microsoft. -
Windows Server 2003 Windows 2000
Windows 2000 Windows 2003. -
, -

Windows.
Windows XP -
Windows 2000 . -
, , Windows Server 2003
Windows 2000
, Windows Server 2003 , -
,
.
-
Windows Server 2003, , -
.
, Windows Server 2003 ,
, Windows 2003 ,
, -
, Windows, -
Windows Server 2003
.
Windows .NET Framework

Windows Server 2003
,
Windows Server 2003 Windows .NET Framework. ( -
) , .
2001 Microsoft
Windows .NET Framework, -
. Windows Server 2003 -
, ,
. Windows Server 2003 Windows
.NET Framework.
Windows Server 2003
55
1
Windows .NET Framework

Windows .NET Framework , -
,
. Windows .NET Framework
Visual Basic, Visual C,
Web-, -
ODBC (Open Database Connectivity
), Microsoft SQL Microsoft Access.
Windows .NET Framework ASP.NET.
ASP.NET Web-. -
,
, .
,
Web-, .
ASP.NET -
; -
: VBScript, JScript, Visual Basic .NET, C#, Visual Basic .
ASP.NET -
,
, . Windows .NET Frame-
work , -
Web-.
, Windows .NET Framework
,
Windows .NET Framework.
regsrv32 ,
XML- .
Windows .NET Framework Web-
. ,
,
, -
.
Outlook Web Access Exchange 2003 SharePoint 2003,
(Directory Services Mark-up Lan-
guage, DSML), .NET Framework
Feature Pack.

Windows Server 2003
Windows .NET Framework -
. -
, Windows Server 2003 :
Windows Server 2003
56
I
.
-
. Windows Server 2003
( -
12), (. 30)
( 3).
Web-. Windows Server 2003 Web-
Web- Windows
NT Windows 2000. Web-
HTML Windows Server 2003 Web-
, Web-
(. 31).
. Windows Server
2003 , Windows
Server 2003, . , -
Windows Server 2003: Windows -
( 27), -
Windows - ( 37)
, DNS DHCP (. 9 10).
, Microsoft Exchange, -
SharePoint, BizTalk Server 2004 ISA Server 2004 -
Windows .NET. Windows Server 2003 -
-
Windows .NET Framework. IIS (Internet In-
formation Server Internet) 6 (-
11), Windows .NET
Windows Server
2003 , , , -
,
Windows.

Windows Server 2003
Windows Server 2003 , -
.
, , Novell NetWare Windows NT (-
), Windows Server 2003
.
Windows Server 2003
57
1

, Windows Server
2003 , -
. 2030 -
-
, , -
.
,
, , Web-.
, Windows Server 2003,
Active Directory, -
Windows .
Windows Server 2003

Active Directory
, -
Windows 2000, Active Directory. Active Directory
,
, -.
-
.
Active Directory, ,
, -
. -
, -
, , , -
.
Windows Server 2003 Active Directory,
, -
-
, .
, Windows Server 2003
,
,
. Active Directory Windows
Server 2003, Active Directory,
II Active Directory.
Windows Server 2003

. -
Windows Server 2003
58
I
, ,
, -

, Web- .
, , ,

. -
. -
, -
(. 35), (. 19),
(. 33), (. 12) -
(. 5).
, :
.
Microsoft Windows, -
.
. -
Active Directory.

Active Directory, -
.
DNS. (Domain Name Service DNS) -
, , DNS- -
, .
DHCP. (Dynamic Host
Configuration Protocol DHCP) .
DHCP.
. , -
. Win-
dows Server 2003 , -
, .
.

-
. Windows
Server 2003
.
.
, Windows Server
2003 , -
.
Windows Server 2003
59
1
Web-.
Web Web-, Windows Server 2003 -
.
.
, , Windows
Server 2003 -
.
(DFS).
, -
, -
.
-
, Windows Server
2003 .
Windows Server 2003

-
DNS, DHCP, , Windows
Server 2003
Windows-.
Microsoft, ,
Microsoft Exchange Microsoft SQL Windows Server 2003.
, ,
, -
,
.
Windows -
;
, Windows Server 2003. -
, , ,
, Web -
, , Windows Server 2003 ,
,
-
. -
-
, -
. , , ,
-
, -
Windows Server 2003
60
I
, -
.
, ,
, ,
Windows 2000. Windows 2000
, ; -
Windows 2000, -
Windows Server 2003, -
.
, Windows 2000, ,
Windows 2000, ,
?
Windows Server 2003 2003 ,
,
. Microsoft -
; ,
Windows 2003 ,
Windows NT4 Windows 2000. , ,
-
.
, Windows
Server 2003, -
. , -
, ,
,
.
, Windows
Server 2003, . -
Windows Server 2003, Windows Server 2003
Windows NT4 Windows 2000, Windows 2000 Windows
Server 2003 Windows NT4 Windows Server 2003.
Windows Server 2003 NT4

Windows 2000
Windows Server 2003, Windows Server 2003 - .
Windows NT4 Windows 2000.
Windows Server 2003
61
1

,
,

.
Windows
Server 2003
Windows Server 2003 Active Directory.
Windows 2000
Windows Server 2003
, Windows 2000 Active Directory,
Active Directory Windows Server 2003 -
, , Win-
dows Windows Server 2003. Windows
Server 2003, Windows Server 2003 Active Directory, -
RIS , Windows Server
2003 Windows Server 2003.
, , Windows 2000
Windows NT4 Windows 2000, -
. , Windows Server 2003 -
Active Directory, Windows 2000, , -
, , , ,
Windows 2000 , Windows
Server 2003 Windows 2000 Active Directory
Active Directory Windows Server 2003 Active Directory .
Windows NT4 Windows 2000, -

(Backup Domain Controller BDC) Windows NT4 (Domain Con-
troller DC) Windows 2000, Windows Server 2003
Windows 2000 Windows Server 2003, -
() Win-
dows Server 2003.
, , ,
17,
. - Win-
dows 2000 Windows Server 2003 -
.
Windows 2000 Windows Server 2003 -
Active Directory, , -
. Windows
Server 2003 , 17, -
Windows Server 2003
62
I
Active Directory .
Windows
Server 2003. , , -
. 17.
Windows Server 2003

Windows NT4
, Windows NT4, -
, Windows NT4 Windows 2000 Windows
NT4 Windows Server 2003. , -
. ?, -
. Windows NT4 Windows Server 2003
,
Active Directory. Windows Server
2003 .
Windows 2000,
Windows
Server 2003. Windows 2000 Active Directory
Windows 2003 Active Directory -
.
, Windows
2003. , Windows NT4
Windows Server 2003, , , Win-
dows 2000 Windows Server 2003 ,
Windows 2000 Windows NT4 Windows Server 2003.
, , , -
Windows NT4 Windows Server 2003,
16.
Windows Server 2003

Windows Server 2003
. Server Advanced Server
Windows Server 2003: Web, Standard (),
Enterprise () DataCenter ( ).
Windows Server 2003 Web

Windows Server 2003 Web - -
Web- -
Windows Server 2003
63
1
, Web-.
Web- ,
.
Windows Server 2003 Web Web-

Web- Web- -
. Win-
dows Windows Server 2003
. ,
Web- -
, Web-.
Windows Server 2003 Web 2
Web-.

, Windows Server 2003 Web
, (DNS,
DHCP, ), Web : -
, . -
, Web-, Windows Server 2003 -
Standard.
Windows Server 2003 Standard

Windows Server 2003 Standard
. Standard
,
, Web-,
(Terminal Services), -
4 .
Standard -
, , (DNS, DHCP,
), . -
Standard -
, Standard
.
, -
- . 35 -
Windows
Server 2003.
Windows Server 2003 Enterprise

Windows Server 2003 Enterprise ,
/ -
. 32
64- Itanium, Enterprise -
Windows Server 2003
64
I

, SQL Server
.
, -
, Enterprise
. -
27.
Enterprise , 8 ,
, , -
99,999% 24 , 7
, . Windows Server 2003 -
Enterprise -
, -
, , Win-
dows Server 2003.
, Windows Server 2003 Enterprise -
Standard,
Microsoft, Win-
dows, Windows -
Windows. , -
Enterprise.
Windows Server 2003 DataCenter

Windows Server 2003 DataCenter -
, 8 64 -
, 8 . DataCenter -
, -

.
35 ,
.
(scale-out) , -
, (scale-
up) , -
. Web-,
, .
-
, , -
, ,
DataCenter , ,
, , -
.
Windows Server 2003
65
1
DataCenter , 8 , -
864 -
, -
-
. ,
, -
, 99,999%.

Windows Server 2003 DataCenter -
, DataCenter -
32- .
DataCenter -
,
.
Windows Server 2003

Microsoft Windows Server
2003 , ,
. , Windows
Server 2003 .
, -
Windows, -
-
.
Windows Server 2003

(Graphical User Interface GUI) Win-
dows XP. , , -
Windows. Windows
XP, -
, Windows NT
Windows 2000, XP- ,
. , -
: -

.NET Server
. Windows
Server 2003 ,
, GUI
Windows Server 2003
66
I
. , ,
, -
, -
. -
-
Windows, XML ,
, , ,
, ,
. 23 ,
-
.
,
. -
,
. -
(drag-and-drop)
.

,
. Windows 2000 -
, , -
Move ()
. ,
,
Active Directory Users and Computers Windows 2000,
, -
Active Directory.
,

, ,
.
, -
: Windows Server 2003 , -
, . ,
, -
, , , . Win-
dows , ,
Windows Server 2003
67
1
-
<Enter>, ,
, .

. -
Windows Server 2003 Microsoft -
(Trustworthy Computing Initiative), ,
Microsoft -
. , Windows Server
2003 ,
Windows, -
.
IV .
12 , Win-
dows Server 2003 ,
, -
.
Windows ,
.
Windows Windows , -
, . -
, ,
12.
IPSec

IPSec
Windows 2000, -
, - . 13
IPSec
,
, . 13

( 802.1X), Windows Server 2003. Windows Server 2003

-
WEP (Wired Equivalency Protocol -
), 802.11 -
.
, , Windows Server 2003
.
Windows Server 2003
68
I
Microsoft
Windows Server 2003
Microsoft (Microsoft Passport) .
Microsoft, -
Windows XP, -
.

, Web-
.
Microsoft Windows Server 2003
. , ,
, Web- ,
Microsoft Windows Server 2003 -
14.

, , -
, Windows Server 2003, -
, -
. -
, .
,
, , -
. ,
,
, , -
.

-
. Windows 2000 -
,
,
. -

(WAN) , -
; , -
.
Windows Server 2003
Windows Server 2003
69
1
,
. : -
,
, , -
, -
, .

. -

.
-
, -
.
Windows 2000
PAS (Partial Attribute Set -
). , -
, , , 5000 ,
, 5001 .
, -
.
5001- . -
-
Windows Server 2003, 7.

, -
,
. Windows 2000
.
-
, Windows 2000 -
.
.

,
100 /c 1 /c -
, .
, -
Windows Server 2003
70
I
Windows Server 2003

.

7,
Active Directory, 35, -
.

Windows. -
Windows ,
Microsoft. ,
Windows Server 2003, IPv6, Web- XML IETF
(Internet Engineering Task Force Internet).
IPv6
Windows Server 2003 IPv6 (Internet Protocol version 6
Internet, 6), Internet -
TCP/IP. IPv4 (
Internet 4). Internet
, Internet- -
IPv6, .
, IPv6 -
IPSec (Internet Protocol Security Internet).
IPv6 IPv4,
. IPv6 Windows Server 2003
IPv6, IPv4
Internet.
IPv6 7.
Web- XML
Windows Server 2003 Web-, -
XML Web-, -
Web- . Web- -
, Web- -
. XML ,
. XML -
, IP-, -
,
.
Web- XML XML
Web-,
Web- XML. Web- XML Microsoft
, Web- .
Windows Server 2003
71
1
IETF
IETF. IETF ,
. Microsoft -
Internet-. -
IETF, Microsoft
.

Active Directory
Active Directory. Active Directory Windows 2000 -
.
, .
Active Directory. -
, ,
.

Windows
Server 2003
. -
,

.

Windows Server 2003
(Volume Shadow Copy).
.

( ) , -
, . ,
, -
.
-
.
30.
Windows Server 2003
72
I

.
-
, ,
. , -
, ,
. -
,
,
.
Windows Server 2003
.
, , -
, -
. , -
, ,
, -
.
, -
.

-
. Windows NT4 Windows 2000
, (Recycle Bin), -
. ,
.
.
,
.
,
-
.

, -
Windows 2000, ,
- , -
, -
Windows Server 2003
73
1
-
.
-
, DCPromo,
. -
. -
, ,
-.
3
,
.
IPSec NAT Traversal

IPSec NAT Traversal (NAT-T). IPSec (Internet
Protocol Security Internet) -
- -
-. , IPSec -
Internet . NAT (Network Address Transla-
tion ) .
IP-
. ,
, -
, IP-. ,
IPSec , -
, Windows 2000.
Windows Server 2003 IPSec NAT Traversal, -
IPSec -
. IPSec NAT Traversal -
-
, .
IPSec NAT Traversal 26.

Windows Server 2003
Win-
dows Server 2003 ; -
, -
. , , -
, .

(Distributed File System DFS), -
, DFS, , -
.
Windows Server 2003
74
I

, Windows 2000.
.
, -
, - .
,
,
-
, -
. ,
.
Windows Server 2003
-
- -
, . -
, .
DFS , -
,
, ,
DFS. -
, .
DFS ,
, DFS -
DFS 30 .

DFS
DFS , , -
, -
. DFS, DFS, -
DFS -
. DFS
30.

-
. -
Windows -

.
Windows Server 2003
75
1

,
.
3.

Windows Server 2003
. , -
, Windows (Remote
Desktop Client),
,
,

(Session Directory), -
, Internet.
,
27, -
, , , .

, -
.
-
Citrix Systems.
Windows Server 2003, ,
.

;
,
. -

. C:,
-, , -
, -
.
Windows Server 2003
76
I

-
. , -
-
, -

, .

, , -
. -
,
.
Windows : -
. , , -
, ,

. , Windows Server 2003
, -
. -

, -
.
, .

.

, ,
,
,
.
, -

, , -
, , . -
Windows -
,
.
Windows Server 2003
77
1

, , ,
, ,
.
, , -
, -
.

Windows Server 2003 (Session Di-
rectory),
, - -
Internet, . -
, -
.
, -
, 32 -
.

.
, -
, ,
. ,
, , .
,
-
. -
, , 10
. 10
, , -
, -
. , ,
, ,
. -
, 27.

. -
, , -
-
.
3 33.
Windows Server 2003
78
I

(Automatic Server Recovery
ASR) , Windows
Server 2003,

. ASR -
, ,
-
,
, ASR ,
.
ASR , -
.
ASR , , ,
Windows.
ASR, , -
- Windows Server 2003
. ASR 33.

Windows Server 2003
(Remote Installation Services RIS) . RIS -
, RIS-, -
. RIS Win-
dows 2000, .
RIS . -
, , -
, . , -
, ,
-,
RIS. ,
.
RIS -
.
, Exchange,
SQL, ,
RIPrep RIS- .

, .

RIS- ,
-
. RIPrep
. 33.
Windows Server 2003
79
1
RIS , -

.
33, RIS 3
.

(Out-of-Band Management), -

RS-232 Win-
dows Server 2003. , Win-
dows , (blue screen), -
.
,
.
-
, . -

.

Windows Server 2003
Feature Pack
Microsoft -
,
. Microsoft
, Windows 2003, -
(Feature Pack).
:
http://www.microsoft.com/windowsserver2003/downloads/featurepacks/default.mspx
Feature Pack ,
, Active
Directory,
.

Feature Pack,
, (Group Policy
Management Console GPMC). -
, Active Directory -
, GPMC -
Windows Server 2003
80
I
Windows Server 2003. GPMC -

.

, , -
.
, GPMC -
, ,
. GPMC -
21.

(Software Update Service SUS), -
-
Windows 2000 2003, Windows
2000 Windows XP. Windows -
Web- Microsoft Windows, -
, , . -

-
, -
.
,
IT-
. , , -
-
. Microsoft -
22.
Active Directory

Active
Directory .
Active Directory (Active Directory in Application Mode ADAM)

, Active Directory
. ADAM
-
. ADAM, -

ADAM Active Directory. ADAM -
5.
Windows Server 2003
81
1
(Identity and Integration Feature

Pack IIFP) Active Direc-
tory. , -
, , , -
Exchange 2003, IIFP -
,
. IIFP
Active Directory 2000, Active Directory 2003 Active Directory
2000 Active Directory 2003.
Active Directory ADAM, -
. IIFP 8.
Directory Services Markup

Language Windows
(Directory Services Markup Language DSML)
Active Directory SOAP,
Web-. Active
Directory Web-, XML. -
Web--
. DSML 23.

Active Directory

,
, -
Active Directory Users and Computers MMC,

.
Active Directory ,
, -
, -
Active Directory Users and Computers MMC.
Active Directory -
28.
Services for NetWare 5.0 SP2

Microsoft
.
Windows Server 2003 Service Pack 2 Services for NetWare
(SfN). SfN Windows 2003 Novell NetWare.
Windows Server 2003
82
I
. SfN
8.
Windows SharePoint
,
Windows 2003, Win-
dows SharePoint, 36. Windows
SharePoint (Windows SharePoint Services WSS)
, -
, ,
.
, WSS -
, Microsoft -
Windows 2003.
Windows SharePoint , SharePoint
Portal 2003 (SharePoint Portal Server SPS). SPS WSS
. WSS -
-
.
Windows
Windows (Rights Management Services RMS)
-
, -
. RMS
,
-
, .
Windows 15.
Windows
Windows (Windows System Resource Manager
WSRM) , Microsoft,
.
, ,
-
, WSRM
.
, -
, , 90% -
10 , , -
WSRM , , 15%,

. WSRM -
Windows Server 2003
83
1
,
, :
, . -
, -
, -
. WSRM 27.
Windows
2003
, Microsoft -
, -
, , .
, Windows 2003,
http://www.microsoft.com/windowsserver2003/downloads/default.mspx.
Active Directory v2.0

Active Directory (Active Directory Migration Tool ADMT) -
Windows 2000 1.0 -
. Windows Server 2003 ADMT v2.0 -
,
(ACL) NT4 Win-
dows 2000 Windows Server 2003. ADMT, -
,
, ADMT v2.0
.
, ADMT v2.0 Active Directory,
. -
Active Directory
. , -
, ,
Active
Directory, . ADMT v2.0 -
-
17.

. Windows 2000
, ,
, , -
(, , -
, ), -
Windows Server 2003
84
I
NetBIOS, -
DNS.
, , -
, -
, . -
. -
,
, .
, -
, . -
17.

Windows 2003 -
Windows-.
,
Windows Server 2003
, , -
. 18.

Microsoft -
Windows 2003.
,
.
,
SQL.
Microsoft , -
, -
Microsoft (Microsoft Operations Manager),
-
. 22.
Microsoft
Microsoft (Microsoft Operations Manager MOM) -
Microsoft, -
Windows-, Windows Server 2003 -
, MOM Windows 2003. -
,
Active Directory, Internet Information Service, Windows
. -
(Operations Manager Resource Kit) Microsoft, -
MOM, (Server Status
Windows Server 2003
85
1
Monitor SSM), MOM -

.
MOM MIIS 2003
MIIS 2003, -
Active Directory , MIIS.
Microsoft 25.

, ,
, sonar.exe frsdiag.exe, -
. -
Windows ,

. -
, , -
,
.
Windows
2003 , -
, , .
30, 21.

Windows 2003
Windows 2003,
Windows 2003, -
, Windows
2003 .
Microsoft, -
, Windows 2003 -
Windows 2003 Windows 2003.
-
Windows 2003 ,
Windows 2003.
, 26 -
, (VPN) -
,
.

-
-
.

, -
Windows Server 2003
86
I
. -
GPO MMC
,
. ,
, 21.
, Windows
Server 2003, , , -
, SMTP DNS, ,
, -
34. -
Microsoft,
,
, -
.
Windows
Server 2003
, -
, , Win-
dows Server 2003, -
. Windows
Server 2003 Windows NT4 Windows 2000,
.
Windows Server
2003
.

Windows,
Microsoft Windows Server 2003, .
, IPv6, Web- XML IETF.

.
, ACL
NT4 Windows 2000 Windows
Server 2003, Active Directory (ADMT) 2.0.
Windows Server 2003

.
Windows Server 2003
87
1
(SUS) -

, .
-
-
Windows 2003.
-
Windows 2003. -
,
Windows 2003, , -
, ,
Windows 2003.
Windows 2003 -
Windows 2003 ,
, ,
.
SUS -
-
, .

,
,

2
Windows Server 2003
...

Windows Server 2003

Windows Server 2003
:

:

:

:

:

/:

Windows Server 2003
90
I
-
, -
,
. , -
,
. -

.
,
. , , , -
,
, Microsoft.
,
: , -
.
, , , ,
, NT4 Windows 2000, , -
, .

,
.
, -
.
-
,
, , -
.
, ,
, . -
, -
, .
, -
,
, , .
, , , -
, ,
, , .

91
2

Windows Server 2003
, -
. -
, ,
, , , -
.

:
, -
(Distributed File System DFS) (Volume
Shadow Copy) Windows Server 2003. ,
, , -
, -
.
,
. -
,
.
,
-
.

, -
. -
,
, (,
, ); (-
) 50 000 . ,
10 000 , -
( , ,
). -
1000 ,
IT- .
-
, . -
-
, , -
.
Windows Server 2003
92
I
, -
Web- , -
, -
, . -
, ,
. -
, , , -
: -
.
-
, .
-
, -
, . ,
, -
, , -
. , -
, -
.
, ,
- , -
. -
, .

-
, , ,
.

50 000
-
. -
, . -
-
.
,
, -
.
(Network Operating System
NOS) IT-, .

, , -
. -
.

93
2

,
. -

.

, -
. ,
,
, Internet, -
, ,
.
, ,
(Client Relationship Management CRM),
. ,
, ,
, , . IT-
, , -
-
.
-
. , -
, -
.

, .
,
, .
,
.

, 30
, ,
, .

Windows Server 2003
Windows Server 2003
,
1000 . -
Windows Server 2003
94
I

.
, -
, ,
, , -
.
,
(50 000 , 10 000 , 1000 ). -
,
, .

. , -
, 99,99% -
,
, , .
: -

VPN -
.
-
. ,
IT-
. ,
, -
-
-
.
1000 ,
,
, , Windows Server
2003.
Exchange, Web-,
Windows Server 2003 .NET. -

Internet, , Windows .NET.
: -
. , -
( ) .
, -
. -
,
.
, . -
$500 000 , $250 000? , , $100 000
$250 000? , -
, .

95
2

.

, ,
. , , -
:
? ,
,
.
, , -
(NOS) -
,
.
, , -
.
(
, -
) , -
(, ). -

,
, , -
, NOS. Windows Server
2003 ,
, -
, .
,
. 99,99%
,
. ,
, -
NOS.
, , -
. : -
, -
. -
.
:
?
?
?
-
?
?
Windows Server 2003
96
I
-
.
:
.
.
,
.
,
-
, -
, .
, .

-
.
Exchange:
( Windows
2000 Windows Server 2003), Windows Active Direc-
tory. ,
SharePoint (SharePoint Team Services STS), , STS
Active Directory ,
Active Directory Windows Server 2003.
, , , NOS
, -
. -

.
-
, .
, ,
. -
-
, -
, .
, (),
NOS . ,
.
8, Windows Server 2003 -
, -
NT 4 Server Windows 2000. -
, NOS, -
. ,
, -

97
2
, -
. -
, . -
, .

; -
, .
, -
, , -
. ,
, .
,
, -
. -
, ,
.
,
, . -
, , -

. , -
.
, -
, ,
,
. , -
, ,
.
,
, ,
,
( + = ).
,
. ,
, ,
(
).
NOS ,
.

,
. , -
, , ,
Windows Server 2003
98
I
.
, -
, , , -
.
, , -
,
.

, -
, .
, -
( )
. -
,
,
.
,
-
-
.
. , -
,
,
.
, -
, ,
. ,
: , .
,
, , , ,
.
, -
.
( )
, .
, -
, - . -
-
, , , -
.

,
.
,

, .

99
2
, , ,
.

; :
.

.
-
. -
, ,
, , -
.
,
.
, , -
,
.
, ,
, .
, , -
, , , IT-
, -
.
-
.
,
. , Windows Server 2003 -
-
. , -
, -
.

, ,
. -
-
. 90%
, 10% .
,
. , -
,
.
-
Windows Server 2003
100
I
, -
. -
-
,
, .
, -

.
,
- -
. ,
, -
.
, -
, . -
, , -
, . -
,
,
, ,
.
, -
, ,
. ,
, , .
:

Windows Server 2003
. -
, 50 000
1000 . ,
, -
.
( ) -
. -
, -
, Win-
dows Server 2003.
,
, , -
. -
. , 200,
,

101
2
(Hewlett-Packard, IBM, Cisco),

, , . , -
-
. ,
, -
.
,
. ,
, -
, -
. ,

.
,
.
, -
,
.
IT-, ,
.
, -
, . -
,
, -
-
.
, .
, .
, NOS,
, .
, ,
( , -
, , , -
), -
.
, -
,
, -
, -
.
,
. , -
,
. -
.
Windows Server 2003
102
I

. , , -
(Service Level Agreement SLA),
IT- -
.
-
, , ,
.
, .
, , , -
, :
,
, ,
.

, ,
, -
, . -
, .
, :
DNS, WINS DHCP? VPN VLAN?
? ?
: T1, T1, T3, ATM? -
?

? -
, -
. -
, ,
.

, -
.
-
. , , -
.
, , -
, ?
. -
, -
-
? ,
.
, -

103
2
. :
-
, ?
,
(WAN). , -
? Active Directory,

(OU), -
? .
Internet? -
Internet, , , -
?
,
.

, -
.
, -
,
( ? ?).
, , ,
.
, , -
, , ,
. -
-
, , ,
.
.

, -
.
, ,
-
.
Microsoft Exchange, / -
, .

. -
, - / -
,
. -
.
Windows Server 2003
104
I
, ,
, ,
. -
, ,
RAID-.
.

, -
. , -
.
,
. -
, ;
, , ,
. ,
,
.
, ,
, -
. : -
, (),
, , (-
/).
:

, -, -
, . -
, -
, -
.

, -
, .

-
, .

105
2

, , -
.
. -
, , -
.

. -

, , -

.
-
. :
, ( ,
, ),
.
, , -
, .
, -
, , , -
, .

, ,
, -
.

,
. , , -
, , -
.
. -
, -
, -
.
-
.
.
Windows Server 2003 (, , ).
. 50 000
1000 ,
.
Windows Server 2003
106
I
. , -
, -
, , -
.
. , -
(
).
. .
, , -
. .
,
. -
,
, .

, ,
. .
-
, .

.
1000 , -
,
.
-
,
. , -
,
. ,
.
, -
: ?.

, -
( )
, .
,

107
2
. -
, ,
.

-
. , -
, ,
Windows Server 2003 ( ,
, DNS),
. , -
.
, ,
, ,
.
, ,
.

-
. -
,
.
, . , -
.
Windows Server 2003

,
Windows Server 2003 . ,
-, ,

. ,

. , , , -
, -
.
, -
.
, .
-
. -
( , , -
, ) -
Windows Server 2003
108
I
( NOS, -
), .
, ,
: -
.

. ,
, ,

, , - , -
.
, (-
), ,
.
, ,
, -
. ,
. -
$500 000, -
$250 000,
, , . -
-
, , -
.
-
, ,
.
, -
. -
, -
, . ,
.

. , ,
.
:

-
. , -
, . ,

109
2
,
, . , -
, -
, .
, , ,
, , -
-
. - -
.
,
, , -
. , -
. -
, , , -
.

, ,
,
.
, -
, , -
.
, Microsoft Project,
. ,
. 2.1, . , -
, ,
, , -
. .
1 Windows Server 2003 139 . 15.04.04 . 01.09.04

2 7 . 15.04.04 . 23.04.04
6 15.5 . 24.04.04 . 13.05.04
25 13 . 14.05.04 . 29.05.04
39 ( 1) 30.25 . 02.06.04 . 10.07.04
52 ( 2) 30.25 . 10.07.04 . 18.08.04
65 ( 1 2) 10 . 19.08.04 . 01.09.04
. 2.1.
-
, ,
, .
: , -
Windows Server 2003
110
I
-
.
. ,
, ,
. 2.2.
, . 2.2
, -
. ,
, , -
.
, . ,
( Gantt chart),
. -
, -
.
1 Windows Server 2003 139 . 15.04.04 . 01.09.04

2 7 . 15.04.04 . 23.04.04
6 15.5 . 24.04.04 . 13.05.04
7 : 0 . 24.04.04 . 24.04.04
8 1 . 24.04.04 . 24.04.04
9 0 . 25.04.04 . 25.04.04
10 1 . 25.04.04 . 25.04.04
11 Windows Server 2003 1 0.25 . 28.04.04 . 28.04.04
12 Windows Server 2003 2 0.25 . 28.04.04 . 28.04.04
13 1 0.25 . 28.04.04 . 28.04.04
14 2 0.25 . 28.04.04 . 28.04.04
15 1 0.25 . 29.04.04 . 29.04.04
16 2 0.25 . 29.04.04 . 29.04.04
17 7.5 . 29.04.04 . 06.05.04
18 2 . 07.05.04 . 08.05.04
19 3 . 09.05.04 . 13.05.04
20 0 . 13.05.04 . 13.05.04
21 : 0 . 13.05.04 . 13.05.04
22 ( ) 0 . 13.05.04 . 13.05.04
. 2.2.

111
2

IT-
, , .
, ,
, , -
, .
, ,
, -
. ,
. Microsoft Project -
-
; .
, -
, -
, .

, . -
, -
, .
.
,
, , .
Microsoft Project
, , - 20 .
. -
,
.
. -
.
,
.
, .
. -
, , -
NOS -
.

,
. ,
.
Windows Server 2003
112
I
-
.
. Win-
dows Server 2003 ( ).
. .
.
,
.
. , -
, (
) .
. -
, Microsoft Project
.
. , -
.

, -
, .
.
, -
.

,
, ,
-
. ,
, ,
, -
, . -
.

, -
. -
, , , -
.

,
, .
-

113
2
.
, .

, .
, -
, -
.

, , .

, , -
, -
. -
-
.

. ,
, ,
, -
.
,
, , .

, -
, , -
, . -
,
, . , -
, -
, ;
. ,

, . ,
.
:

,
,
.
Windows Server 2003
114
I
, - -
, .
,

.
, , ,
. -
, ,

, . -
,
.
, ,
, -
.
, -
, ,
. -
- , .
?
, -
.

. Windows Server
2003, , , -
.
.
, -
.
,
-
.
Windows Server 2003: NOS , -
,
.
. -

.
;
Windows Server 2003, 18.

-
, .
, -

115
2
, . ,
, ,
, ,
.

, ,
. , -
.
, , ,

.
-
.
(As Built), -
.
,
,
(Computer Management) Windows Server
2003, : -
, , , -
, .
-
(Disaster Recovery DR). , -
, -
. ,
,
, ,

(, ), -
-
.
-
,
. , -
( !), -
. -
,
.
-
, . -
, -
.
Windows Server 2003
116
I
,
,
.
, -
,
,
, -
.
:

, ,
-
. , , -
, , -
.

,
. ,
Windows Server 2003. , -
, .

, , -
-
, -
. -
.
.
, -
,
, ,
.
.

, , ,
, .
.

-
,

117
2
SharePoint,
Active Directory.
, ,
,
.
, , -
, .

.
-
;
. -
, ,
, , , .

,
.
-

,
, .
510 - (
IT-, ).
.
-
1%, 3%, 5%, 10% -
. -
,
, , -
-
.
,
,
, (,
) ,
.
-
-
, -

.
Windows Server 2003
118
I
.
, - ,
; ,
, , ,
- .
-
.
-
, , -
.
, ,
, -
, ( -
, -). -
, -
-
,
.

-
- -
.
, IT-
, -
. -
, -
.
-
, - . ,
,
, ,
.
-
. ,
, -
-

119
2
, -
. -
-,
, .
/:

10% , -
, ,
.
.

, -
, : -
, , -
, , , -
.
-
; .
, -
. , -
.
, -
, .

Windows Server 2003
, ,
,
, .
(
32), ( 22), -
( 25), ( 35) Win-
dows Server 2003.
,
, -
, ,
. ,
.
Windows Server 2003
120
I
.
, . -
50 000 ,
10 000 , 1000 . , -
, . -
, -
, , -
.

, .
,
, -
, . , -
, . ,
, , -
, .
,
, ,
.
,
. -
, , ,
, 1020%.
, -

.

.

,
, , -
.
; .
,
.

-
, , ,
.

121
2

, -
.
Windows
Server 2003, , ,
.
.
-
.
( -
50 000 , 10 000 , 1000 ).

, , -
, , -
, .
-
.
, -

,
.
.
,
.
,
.
, ,
, .

, -
, ,
.
, -
.
, -
.
, .
Windows Server 2003
122
I
, -
, .
,
.
-
.

, -
-
.
, , , -
.

, -
, .
, -
.
.

, Win-
dows Server 2003. , ,
.

.
.
-
.
/
, , -
,
.
.
,
, .
.

Windows Server 2003

3
...

Windows Server 2003
Windows Server 2003

Windows Server 2003
Windows Server 2003

Windows Server 2003

Windows Server 2003
124
I
Windows
Server 2003. Microsoft
. , -
,
, - -
Plug and Play. , -
IRQ, -
. , Windows
Server 2003
Microsoft.
.
, .
, -
, .

.
.

, ,
. , ,
() -
(), . -

( ). . 3.1 -
Windows, -
, . .
?
,
, .
, , , -
- , -
.
Windows Server 2003
125
3
3.1.

133 133
x86
733
Itanium
550 733
128 128
256 256
4 32
x86
64
Itanium
4 8
1.5 1.5
x86
2.0
Itanium
, -
. -
, .
,
( ), , -
.
.
, .

?
, Windows,
, , , .
.
, , -
. , -
Windows, ,
, ,
, -
.
Windows Server 2003
126
I

. Workstation Home
Windows 2000
Windows NT 4.0 Server ( Service Pack 5 ). . 3.2 -
3.2. Windows Server 2003

Windows Server 2003
Windows NT 3.51 , NT 4.0
Service Pack 5
Windows NT 4.0 Server ,
Service Pack 5 .
Windows 2000 Server
Windows 2000 Advanced Server
Windows 2000 Professional , -

Novell NetWare , -
Novell (Novell Directory
Service NDS) Windows

, (Domain Controller
DC), . , -
, .
- -
. -
.
Windows 2000, -
. -
. DCPromo -
. , ,
Active Directory .
,

(Setup Wizard), .
, -
.
, , ,
, : .
Windows Server 2003
127
3

, .

. ,
. 63
, Windows 2000 15
. -
, Internet. AZ ( -
), 09 (-).
, (Domain Name Sys-
tem DNS) Microsoft ,
Internet (, Unicode ), -
, Micro-
soft DNS.
Internet, .

, .
, , -
.
, Microsoft, :
? , ,
,
. -
.
.

.
IP-
Windows Server 2003
, .
TCP/IP
(Transmission Control Protocol/Internet Protocol -
/ Internet). -
, Internet. TCP/IP -
IP- .
IP-.
IP- (Automatic Private IP Addressing
APIPA). APIPA -
, DHCP (Dynamic Host Configuration Protocol
), -
IP-. IP-
IP- LINKLOCAL.
Windows Server 2003
128
I
169.254 169.254.x.x. ,
APIPA, DHCP-, -
, DHCP.
IP-. IP- DHCP-.
IP-
. -
IP-, , , -
(Domain Name System DNS)
Windows (Windows Internet Naming Service WINS). -
, -
, (lease). -
, IP- DHCP-.
. -
, ,
, .
IP-.
IP-. , ,
. ,
, , , -
. IP- ,
.

-
, -
-
. ,
, .
-
, . -
.
, -
,
.

, ,
. ,
, ,
. -
/ , -
.
Windows Server 2003
129
3

Windows Server 2003
Micro-
soft, Windows Server 2003 -
.
, . -
<F8> , -
.
,
. , -
.
.

Windows -
: NTFS FAT. ,
,
. 3.1.
. 3.1. Windows Server 2003
NTFS FAT -
. .
-
25 ! ,
. Quick Format -
,
.
Windows Server 2003
130
I
, .
, , .
FAT NTFS
Windows-:
FAT NTFS? FAT (File Allocation Table
) MS-DOS.
Windows 95 SR-2, FAT16 FAT32, -

.
FAT32 2 , Windows Server
2003 : 32 .
: 4 (2 FAT16).
,
FAT. -, , Windows Server 2003 -
, ,
NTFS (, Windows 95). -, , -
(, DOS
Win95) .
!
, , -
, , - !
NTFS (NT File System NT) -

Windows Server 2003, Windows 2000 Windows NT.
NTFS NTFS5, NT 4.0 Ser-
vice Pack 4.
. -
, .
Windows Server 2003 16 ( 4 ),
16 ( 64 ). , NTFS
, -
, -
. , -
Windows Server 2003? :
FAT , NTFS.

. , -
(Graphical User Interface GUI).
Regional Options ( ) -
(Standards and Formats). -
, , .
Windows Server 2003
131
3
Location () , -
, .
Languages ()
. ,

, .

.
-
. , Windows Server
2003 Registered To ( ).
. Name
() (, -
), Organization () .

Windows,
(product key) .

.
.

, -
Microsoft ( Internet
). . , -

Windows (Windows Scripting Host WSH)
Windows (Windows Management Instrumentation WMI).

Microsoft (, Open Select), . -
, .

-
. Windows Server 2003, Windows 2000
NT, : Per Server (
) Per Device ( ).
Windows Server 2003
132
I

, , Per
Server. Per Server
Per Device, Per Device Per Server .

Per Server -
, . , -
,
(Client Access License CAL), ,
, . -
CAL, -
, -
Access Denied ( ).
,
. Web-
(Remote Access Service RAS).
,
.

Per Device CAL
( ),
. , Windows,
Macintosh Unix Windows.
-
;
Windows, CAL.
,
. CAL -
Per Server, ,
Windows-.

,
, Organization () Personalize
Your Software ( ). (,
Windows Server 2003
133
3
, ) . ,
, .

, -
, , Administrator ().

.
( ) .
. -
Password (), Confirmation (-
).
Windows, -
127 .
, .
, Microsoft ,
Windows, . 3.2.
. 3.2. -

,
.

. ,
, .
, , -
.
Windows Server 2003
134
I

. -
, -
, Internet. Typical Settings (
) Custom Settings ( ).

Typical Settings -
.
Microsoft, -
, TCP/IP .
, TCP/IP -
DHCP-. , -
IP-. DHCP- ,
IP- (Automatic Private IP Address APIPA).
, , -
, , , , -
TCP/IP .
IP- .

Custom Settings -
. Client for Microsoft Networks (
Microsoft), File and Printer Sharing for Microsoft Networks ( -
Microsoft) Internet- (TCP/IP).
Custom Settings , -
, / , -
.
,
. -
,
.
, , ,
, -
. .

Next ()
,
. -
Windows Server 2003
135
3

<Ctrl+Alt+Delete>,
.
OK.
Windows Server 2003

, -
, Start () All ProgramsActivate
Windows ( Windows). Windows -
Internet .
Windows Internet
Internet,
Next. : -
Microsoft. Windows -
. , Microsoft ( )
, , .
Yes, I Want to Register and Activate Windows at the Same Time
(, Windows ), -
Collecting Registration Data ( ), -
. 3.3.
. 3.3. Windows
Windows Server 2003
136
I
Next. -
Internet . No, I
Dont Want to Register Now; Lets Just Activate Windows (, -
; Windows) ( -
Internet) . -
Windows.
OK, Windows.
Windows Server 2003

Windows Server 2003 Yes, I Want to
Telephone a Customer Service Representative to Activate Windows (,
Windows)
Next. Windows
.
, ,
. -
.
,
4, . 3.4.
Windows Server 2003

Windows Server 2003
. , -
.
Windows Server 2003
137
3

- . -

.

.
Check System Compatibility (
). , -
, Web- .

, -
, -. -
Microsoft Internet,
.
. -
, Microsoft. , -
( IIS), -
. Finish ().

, Perform
Additional Tasks ( ). -
(Remote Desktop Connection RDC),
-
.

,
, . -
, :
1. Windows Server 2003 Install Win-
dows Server 2003, Enterprise Edition Server ( Windows Server 2003,
Enterprise).
2. . Upgrade (-
) Next.
3. I Accept This
Agreement ( ) Next.
4. ,
. 25-
Windows Server 2003
138
I
- Windows.
Next.
5. Windows Server
2003. , -
Details (). ,
, Save As ( ).
6. , -
, Next.
7. -
.

Windows, -
,
.
Windows -
, .

. , -
(Remote Installation Services RIS), (System
Preparation Sysprep), (Remote Installa-
tion Preparation RIPrep), -
( (Systems Management Server
SMS)), ,
. . 3.3.
3.3.
Unattend RIS Sysprep GP/SMS
X X X
X X
X X X
X X
- X X X

Active Directory X X
-
.
Windows Server 2003
139
3

Windows Server 2003
, Windows
Server 2003 . -
(unattend.txt) , -
. -
, , IP-, DNS.
-
, , . Windows
Server 2003 , -
.

,
. -
,
.
.
,
, . -
, ,
, .

deploy.cab \support\tools
- Windows. -
.
,
. , -
.

, -
. -
Windows Server 2003, .
, .
1. - Windows Server 2003 .
<Shift>,
-.
Windows Server 2003
140
I
2. My Computer ( ), -
-
Explore ().
3. support\tools deploy.cab, -
.
4. ,
Extract ().
5. , ( -
), Extract.
6.
Setupmgr.exe.
7. ,
.

, -
. Setupmgr.exe
.
unattend.txt
unattend.txt ,
.
unattend.txt,
:
;SetupMgrTag
[Data]
AutoPartition=1
MsDosInitiated="0"
UnattendedInstall="Yes"
[Unattended]
UnattendMode=FullUnattended
OemSkipEula=Yes
OemPreinstall=Yes
TargetPath=\WINDOWS
[GuiUnattended]
AdminPassword=xxxxxxxx
EncryptedAdminPassword=Yes
OEMSkipRegional=1
TimeZone=4
OemSkipWelcome=1
[UserData]
ProductKey=XXXXX-XXXXX-XXXXX-XXXXX-XXXXX
FullName="Rand Morimoto"
OrgName="Convergent Computing"
ComputerName=WNS-Server-One
Windows Server 2003
141
3
[Display]
Xresolution=800
YResolution=600
[LicenseFilePrintData]
AutoMode=PerServer
AutoUsers=10
[TapiLocation]
CountryCode=1
Dialing=Tone
AreaCode=510
[SetupMgr]
DistFolder=C:\windist
installation
DistShare=windist
[Components]
accessopt=On
calc=On
charmap=On
clipbook=On
deskpaper=On
templates=On
mousepoint=On
paint=On
freecell=Off
hearts=Off
zonegames=Off
minesweeper=Off
solitaire=Off
spider=Off
indexsrv_system=On
msnexplr=Off
certsrv=Off
certsrv_client=Off
certsrv_server=Off
iis_www=Off
iis_ftp=Off
iis_smtp=Off
iis_smtp_docs=Off
iis_nntp=Off
iis_nntp_docs=Off
reminst=Off
rstorage=Off
TerminalServer=On
wms=Off
wms_admin_asp=Off
wms_admin_mmc=Off
wms_server=Off
chat=On
Windows Server 2003
142
I
dialer=On
hypertrm=On
cdplayer=On
mplay=On
media_clips=On
media_utopia=On
rec=On
vol=On
[Identification]
JoinDomain=companyabc
DomainAdmin=companyabc\administrator
DomainAdminPassword=password
[Networking]
InstallDefaultComponents=No
[NetAdapters]
Adapter1=params.Adapter1
[params.Adapter1]
INFID=*
[NetClients]
MS_MSClient=params.MS_MSClient
[NetServices]
MS_SERVER=params.MS_SERVER
[NetProtocols]
MS_TCPIP=params.MS_TCPIP
[params.MS_TCPIP]
DNS=No
UseDomainNameDevolution=No
EnableLMHosts=Yes
AdapterSections=params.MS_TCPIP.Adapter1
[params.MS_TCPIP.Adapter1]
SpecificTo=Adapter1
DHCP=No
IPAddress=10.100.100.10
SubnetMask=255.255.255.0
DefaultGateway=10.100.100.1
DNSServerSearchOrder=10.100.100.50,10.100.100.51
WINS=Yes
WinsServerList=10.100.100.60
NetBIOSOptions=0
, -
,
Windows Server 2003
143
3

unattend.txt, -
unattend.bat.
(unattend.txt) , (\\WINSERVER\windist\I386).
winnt32 , ,
.

( ) Windows, -
.
unattend.bat
unattend.bat , -
.
, ,
, , :
@rem SetupMgrTag
@echo off
set AnswerFile=.\unattend.txt
set SetupFiles=\\WIN2KSERVER\windist\I386
\\WIN2KSERVER\windist\I386\winnt32 /s:%SetupFiles% /unattend:%AnswerFile%
Windows Server 2003

, -
, . -
(Remote Installation Services RIS) -
(Remote Installation Prepara-
tion RIPrep) (System Preparation Sysprep),
Xcopy -
,
(Automated Deployment Services) -
.
,
:
,
.
( ).

, RIS, -
, .
Windows Server 2003
144
I
(RIPrep)
.
PXE
. -
PCI, PXE, .
RIS IP- DHCP-.
RIS-, , , Active Directory,
, . RIS- -
, RIS-. RIS-
Startrom.com, OSChoice.
, , OSChoice .

RIS. RIS Windows 2000, Win-
dows XP Professional 32- Windows Server 2003. -
.
, . -
RIS , -
; -
. , -
.
, RIS
RIS
PXE 1.0 PXE 2.0.
(Network Interface Card NIC), PXE -
RIS. , ,
Windows.

: (-
) , -
() . (Security Identifier SID),
IP- , -
.

(System Preparation), Sysprep. -
, , ,
SID, IP- . , -
-.
,
.
Windows Server 2003
145
3
Sysprep,
, .
Sysprep,
.
.
, -
. -,
. -
: .

Sysprep, Microsoft -
, . -
factory,
. , -
Windows Server 2003, IIS. -
PnP, -
Plug and Play. - 510 .
, -
(Automated Deployment Services ADS).
ADS
(Preboot Execution Environment PXE), -
(Remote Installation Service RIS). ADS -
RIS , ADS .
ADS -
, -
.
ADS Micro-
soft :
Windows Server 2003

: Windows Server 2003 -
Active Directory (Systems Management Server
SMS) . -
.
Windows Server 2003
146
I
SMS -
, -
SMS, -
,
.
.

Windows.

, -
.

, -
.
( )
.

, .
.
-
.

Internet: AZ ( ), 09 (-).

.
, -
.
NTFS, -
.
, ,
Per Server.

.
,
RIS, Sysprep, RIPrep,
( SMS).

Active Directory
Windows
Server 2003
II
...
4. Active Directory
5. Active Directory
Windows Server 2003
6.

7. Active
Directory
8. Active
Directory
Novell, Oracle, Unix NT4
Active Directory
149
4

Active
Directory
4
...

Active Directory
Active Directory
Active Directory

Active Directory
Active Directory
DNS Active Directory
Active Directory
Active Directory Windows
Server 2003
Active Directory Windows Server 2003
150
II
Windows Server 2003 Active

Directory Microsoft.
Active Directory Windows,
Microsoft. -
Active Directory Windows Server
2003 .
Active Directory: -
, , ,
Active Directory.
, -
Active Directory .
, Active Direc-
tory Windows Server 2003.

-

. -
, ,
. , -
, , -
, .
.
.
-
.
Internet

. MVS PROFS (IBM),
Grapevine WHOIS.
, -
,
.
, .
, ,
Novell GroupWise Directory, Lotus Notes /etc/aliases Unix.
-
Novell,
Novell (Novell Directory Services NDS).
NetWare,
NetWare/NT. NT -

NDS .
NT Microsoft Active Directory.
Active Directory
151
4
(Lightweight Directory
Access Protocol LDAP) Internet
. -
, -
TCP/IP, , -
. Active Directory -
, LDAP.

Microsoft
Exchange 5.5 , -
Exchange.
, Active Directory Jet,
Exchange 5.5, Active Directory
.
Microsoft Internet
.
,
.
Active Directory
Active Directory . -
Internet, -
:
TCP/IP. -
, IPX/SPX NetBEUI, TCP/IP
. TCP/IP
Internet
, , -
. Active Directory Windows Server 2003 -
TCP/IP .
. -
(Lightweight Directory Access Protocol LDAP)
Internet -
LDAP.
. (Domain Name
System DNS) -
, (, www.microsoft.com) IP-,
(, 207.46.230.218). Active Directory -
DNS .
152
II
. , -
Internet, ,
. -
, Windows Server
2003 Active Directory . Win-
dows Server 2003 Active Directory IPSec, Kerberos,
(Secure Sockets
Layer SSL). , Microsoft -
-
, .
.
, -

. Active Directory Win-
dows Server 2003 ,
. , Windows Server
2003 -
, Windows 2000:
, , -
-
Windows XP.
Active Directory
Windows 2000, Active Directory -
,
, NT 4.0, -
Microsoft.
, NT 4.0
Windows NT 4.0, -
Windows, -
, -
. Windows NT , ,
,
. , -
.
, NT 4.0 :
. -
,
, . -
, -
, Windows NT . ,
,
Active Directory
153
4
/ . -
NT. -
-
. ,
Active Directory -
.
NT 4.0 -
.
. , A B, -
B C, A C, -
A C. ,
, , -
( -
) , . 4.1.

NT

NT

NT

NT

. 4.1. Windows NT4

,
NT 4.0, , -
,
, , -
.
,
(Primary Domain Controller PDC) Windows NT -
NT. PDC -
, -
. -
, NT 4.0 44 000.
154
II
Windows 2000 Active Directory

Windows 2000, Active Directory,
1925 VI .
Microsoft
Internet
Windows 2000, Windows Server 2003, -
Microsoft ,
Internet. , ,

. -
TCP/IP,
NetBEUI . Windows Server 2003
Microsoft Internet .
Active Directory
Active Directory
.
, -
.
.
Active Directory X.500,
.
Active Directory, , Windows 2000,
. Active Directory,
.
Active Directory
Active Directory (AD)
Active Directory. AD Windows NT.
.
Active
Directory .
Active Directory -
. ,
-
. ,
. -
,
, , ,
Active Directory, -
.
Active Directory
155
4

AD Windows 2000 AD Windows
Server 2003 , .
-
Windows Server 2003, Active Directory -
Active Directory 5.
Active Directory
Active Directory , -
. Active
Directory . . 4.2 -
Active Directory companyabc.com, asia.companyabc.com
europe.companyabc.com .
companyabc.com
asia.companyabc.com europe.companyabc.com
. 4.2. Active Directory -

Windows Server 2003
, -
NT 4.0, -
. ,
asia companyabc, europe -
companyabc, asia europe.
.

Windows Active Directory , -
, -
. -
. -
.
.
, ,
companyabc.com , -
. , europe
156
II
, -
asia companyabc .
, europe -
.
.
Active Directory
. -
, .
-
.
. , microsoft.com
msnbc.com , -
( ) -
.
Active
Directory, , -
. , -
.

Active Directory .

. Microsoft MS02-001, -
2002 , , -
. SIDHistory
. ,
. SID ,
. , Active Directory -
.
Active Directory
Windows NT 4.0 , -
NT (NT LAN Manager NTLM). -
-. -
, , -
-, ,
, L0phtcrack, -
.
Windows 2000 Windows Server 2003 , -
Kerberos, . -
Kerberos -
, NTLM. Kerberos
Active Directory , AD
Windows.
Active Directory
157
4
Windows
Server 2003 Active Directory
, Windows 2000
Windows NT, Windows Server 2003
Windows
2000 Windows NT4. Windows Server 2003 -
.

Windows 2000
Windows Server 2003 Active Directory Windows 2000, -
(Mixed mode), ,
Windows NT Windows 2000.
, -
,
. -
.

Windows 2000
Active Directory Windows 2000, -
(Native mode) Windows 2000, Windows Server 2003 -
Windows 2000.

Windows Server 2003
(Interim mode) Windows Server 2003 Active
Directory Windows Server 2003 , -
Windows NT 4.0. , -
NT 4.0 Active Directory Windows Server 2003, -
Interim mode Windows Server 2003 -
, Active Directory Windows 2000.
-
NT.
158
II

Windows Server 2003
Active Directory -
,
, -
.
Windows Server 2003. ,
, Windows Server 2003.
.
1. Windows Server 2003.
2. Administrative Tools ( )
Active Directory Domains and Trusts ( Active
Directory).
3.
Raise Domain Functional Level (
).
4. Raise Domain Functional Level, . 4.3,
Windows Server 2003 Raise ().
5. OK OK, .
6. 15 .
7. , Raise
Forest Functional Level ( )
.
. 4.3. -
Windows Server 2003

Windows Server 2003, Windows Server 2003 -
, Active
Active Directory
159
4
Directory Windows Server 2003. , Windows Server

2003 , ,
Windows 2000 Windows NT.
Active Directory
Active Directory -
, .
, , -
.
Active Directory
X.500
Active Directory , , -
X.500. , X.500 -
,
(Directory Information Tree DIT).

_._._.com. X.500
, -
(Directory System Agent DSA). Active Directory Microsoft
X.500, AD -
X.500, X.500 OSI, -
TCP/IP, Active Directory.
AD
(schema) Active Directory
.
AD , -
, Active Directory. , -
(Discretionary Access Control List DACL),
Active Directory. ,

. -
,
AD.

Active Directory User (), Printer (),
Computer () Site () . -
,
. , User
FirstName () LastName () .
160
II
, : ,
. ,
Active Directory, , , -
, . ,
1000 .

Active Directory
-
.
Microsoft Exchange, ,
. Active Directory Windows 2000 Active Directory Windows
Server 2003 , , Win-
dows Server 2003.

Active Directory
Active Directory
Active Directory (Active Directory Service
Interfaces ADSI). Active Directory,
LDAP. -
ADSI, . 4.4, ,
. -
, , , .
. 4.4. Active Directory

ADSI
Active Directory
161
4

(Directory Service Protocol), -
Active Directory, Internet
(Lightweight Directory Access Protocol LDAP),
RFC-1777. LDAP Active
Directory. LDAP- -
.
: .

(distinguished name) Active Directory
, Active Directory. ,
James Bond :
CN=James Bond,OU=Marketing,DC=COMPANYABC,DC=COM
CN (Common Name )
, . OU (Organizational
Unit) , . DC
(Domain Controller) DNS- Active Directory.

-
, . -
:
OU=Marketing,DC=COMPANYABC,DC=COM
OU=Marketing. -
-
.

NT 4.0, Active Directory
(Domain Controllers DC).
(Backup Domain Controller BDC) -
, -
, . ,
,
(multi-master replication).

(global catalog) Active
Directory, . -
162
II
, AD,
. -
, , -
, , , .
, GC
GC/DC Active Directory,
. -
, -
(Global Catalog Caching) , -
, -
. , ,
Exchange 2000
,
.
-
, -
, ,
. -
Active Directory.

Windows 2000 Windows Server
2003 , -
, Windows NT PDC.
- , -
.
(Operations Master OM), -
(Flexible Single Master Operations FSMO), :
(Schema master). AD
AD . , -
-
. Active Directory .
(Domain naming master).
Active Directory. OM
,
.
.
PDC (PDC emulator). PDC , -
: , ,
NT . -
Windows 2000 Windows Server 2003 .
, , PDC, -
(
PDC NT). Active Directory
PDC.
Active Directory
163
4
RID (RID master). Active Directory,

, -
(Security ID SID). SID SID , -
, -
(Relative ID RID), .
SID, -
RID , RID.
, RID . RID
, ,
-
RID. Active Directory RID .
(Infrastructure master)
.
, DC -
. -
, , ,
. -
, -
. -
, -
, .
, -
. , -
.
OM
. -
(Change Schema Master) Active
Directory. - ,
RID OM
ntdsutil, -
. 4.5. , -
, OM -
, .
22 33.

, Windows 2000, -
Windows NT.
Windows NT ,
.
, , , .
Windows 2000 ,
164
II

. ,
Windows. , Windows
Server 2003 , ,
, -
.
. 4.5. ntdsutil Active Directory

-
Active
Directory. -
, . , -
, , -
, , . ,
,

: .
.

, , -
Windows NT. , , -
. -
, , -
, .
. 4.6 companyabc companyxyz -
, .
Active Directory
165
4

companyabc.com companyxyz.com
asia.companyabc.com europe.companyabc.com japan.companyxyz.com
. 4.6. ,

, -
. (shortcut trust)
, -
. . 4.7 -
asia.companyabc.com europe.companyabc.com,

.
,
(external
trust); -
.
companyabc.com
. 4.7.

Windows 2000
, -
, -
. -
5.
166
II

LDAP, (Organiza-
tional Unit OU) , -
Active Directory
LDAP. Active Directory
,
. . 4.8 -
,
(, ). -
-
.
. 4.8. ,
-

, -
-
. -
. ,
, -
-
. -
, ,
.
, . 6
, -
.
Active Directory
167
4
OU?
, -
Active Directory.
, , -
, . ,
, , Active Directory
.
: -
. -
, , -
, .
, -
,
. ,
-
. -
, -
OU . ,
OU -
.
, OU -
, .
Active Directory : -
OU,
.
Active Directory
, Active Directory, -
-
. , ,

. , ,
,
. ,
.
,
.
, -
.

. , -
, , -
Printer Admins, -
168
II
. -
, , ,

Printer Admins. -
.
, Windows NT, . -
: . Active Directory
: . -
. -
, -
. , Active Directory
, :
(Machine Local Groups).
, ,
Windows NT 4.0. -
.
, .
,
, , -
.
(Domain Local Groups).
Windows NT -
, .
,
Windows 2000.
,
.
(Global Groups).
. ,
, -
. -
, -
, .
(Universal Groups). -

.
. -, -
, (Native) . -
, -
, . -

.
Active Directory
169
4

6,
( , )
-
, ,
.

, -
, ,
.
-
, . -
, -
, -
.
, -
, -
-
. ,
,
, .
?

, -
. , OU ,
- -
. , ,
,
OU
OU. -
. -
, Japanese Office Users (
), . -
Active Directory. ,
, -
, OU.
, -
, , OU
,
. -
6.
170
II
Active Directory
.
-
. ,
Microsoft. Ac-
tive Directory , ,
AD.
, -

(site). , ,
T1 . -
, , -
, (site link).
,
,
.

, -
,
Active Directory.
, , -
(bridgehead) . . 4.9
Active Directory Windows Server 2003. ,
.
-
,
, .
7.

, (originating write).
.
, .
, , , . -
-
. -
, -
, 7.
Active Directory
171
4
DC -

NY
C-
BO
S
C
DC SFO-NY
DC - DC

YC
DC DC -
-N

DF

SF

O- -
DFW

-

DC - DC

. 4.9. ,


Microsoft Active Directory, -
(Domain Name System
DNS). Active Directory DNS, -
, .
Microsoft , , -
DNS Internet, ,
Internet.
, DNS, Active Directory -
DNS, -
: DNS, AD, -
DNS. , Active Directory
DNS, , Unix BIND 8.2.x .
DNS Active Directory Windows Server 2003
DNS. DNS Windows Server 2003 -
9.
DNS
DNS, , -
, DNS . ,
172
II
europe.companyabc.com, asia.companyabc.com companyabc.com -

DNS. DNS
Active Directory Internet , microsoft.com
msn.com , -
, .
()
DNS, Internet,
.
, ,
Internet Active
Directory. Active Directory -
, , -
Internet. ,
Exchange, Outlook Web Access,
mail.companyname.com .
,
name@companyname.com. ,
Windows Server 2003
.
()

, -
, Internet. ,
DNS cco.com, , Active
Directory internal.cco -
. , -
,
.com, .net, .gov .
, , cucamonga.funkychicken.

, -
Internet,

. ,
companyabc.com, , -, -
. , -
, Active Directory
. Internet, ,
,
VPN, ,
DNS Internet,
.
Active Directory
173
4
DNS
(Dynamic Domain Name System DDNS) -
, DNS
DNS . DDNS Windows Server 2003 -
DNS , -
DHCP,
. DDNS
Active Directory, -
.

DDNS Windows Server 2003
Active Directory Windows,
. DNS- Unix -
DNS , . DDNS
DNS .
DNS DNS,
AD
DNS
.
Unix BIND DNS - DNS,
, DNS Windows Server 2003.
Active Directory DNS, -
DNS Active Directory. DNS -
Active Directory, -
. DNS Active Directory,
DNS . Active Directory Windows Server
2003 DNS, AD, , -
, -
. DNS 9.
AD DNS DNS
, Active Directory,
DNS,
Unix BIND. , -
DNS Windows 2000 , DNS
SRV (BIND 8.2.x ).
, IT- -
Microsoft Unix, -
. DNS Windows Server 2003
9.
174
II
Active Directory
, Active Directory Windows Server
2003, -
, Windows NT 4.0. Windows Server 2003 -
; , -
Internet (Internet Information Server IIS),
Code Red Nimbda.
Windows Server 2003
Microsoft (secure by default),
. , Microsoft

, . -
.
Kerberos
Kerberos -

.
,
,
, .
Kerberos ,
: ,
. ,
.
. -
, .
Microsoft Internet. -
Kerberos 12.
Internet v6

Internet
Microsoft, Microsoft, -
, ,
. IIS, Index Server, -
-
Code Red Nimbda. Microsoft -
Windows Server 2003 Internet.
11.
Active Directory
175
4

Active Directory, , ,
Windows Server 2003, . Active
Directory , , -
IPSec,
- . , -
, ,
, , -
.
Active Directory
Windows Server 2003
Active Directory -
Microsoft
Microsoft .NET . , Windows Server 2003
Active Directory. , Active
Directory -
.
Active
Directory Windows Server 2003
Active Directory. -
, ,
.
Active Directory -
, -
. , ,
Windows Server 2003. , , -
.
,
. -
, ().
, 5.
176
II

(Configure Your Server Wizard CYS), -
Windows 2000 Server, .
Windows 2000 , Windows Server 2003 -
, -
, .
,
(Routing and Remote Access
Server RRAS).

Active Directory.
-
. , -
,

.

Active Directory
Active
Directory , .
, -
. Active Directory Windows Server 2003 -
. -

.

, Active Directory, ,
,
. , -
.
Active Directory
177
4

Windows 2000 -
.
Active Directory. , , -
. ,
5000 5001- -
,
5001 . Windows Server 2003 -
. -
Windows Server 2003 5001- .
Active Directory
Directory (Active Directory in Application Mode ADAM). AD -
-
ADAM ,
-
.
ADAM , Active Directory, -
X.500
AD, ,
AD. , , ADAM
-
.
ADAM -
(),
. ADAM
Windows Server 2003 Windows
NT. ADAM NT
.
ADAM Microsoft
Active Directory: -
NOS, ,
AD, NOS, . ADAM -
AD -
, ,
, ( ) -
.
ADAM ,
ADAM, -
, . , -
ADAM Windows Server 2003
178
II
Windows XP Professional. ADAM ,

.
ADAM Active Directory,
, -
AD, ADSIEdit, LDP.exe Microsoft
(Microsoft Management Console MMC). ,
,
AD AD.
, ADAM Active
Directory, , NOS, - -
.
Active Directory Windows Server 2003,

.
,
Windows Server 2003
, , Active Directory Win-
dows Server 2003 :
AD DNS . DNS, -
Active Directory, .
, AD ,
DNS.
AD. Windows Server 2003 -
.
AD. Windows Server 2003 -
, -
: ACL, -
.
Microsoft .NET,
, . -
Active Directory Windows 2000 Microsoft -
. ,
, Active Directory
Windows 2000,
.NET Services .
Active Directory
179
4

:
.
,
Internet.
DDNS, DNS
Unix.

Active Directory.
, -
, ,
.
OM
ntdsutil.
, -
,
.
-
.

Active
Directory Windows
Server 2003 5
...
Active Directory

Windows Server 2003

Active
Directory
182
II
Active Directory
. -
. -
Active Directory ,
. -
, , Windows
Server 2003, .
Active Directory . , -
.
.
Active Directory, Windows Server 2003,
.
(federated forests) Windows
Server 2003.
,
.

.
, ,
Windows 2000
. Active
Directory . , -
, -
Active Directory. , ,
Active Directory, .
- , -
Active Directory.
Windows 2000 , Windows Server 2003
,
. , AD -
.

Active Directory, ,
Active Directory. Active Directory,
. -
, , -
, . , -
Windows 2000.
183
5

, (trust). -
NT 4.0 , (
). , -
-
. , , , NT 4.0 -
. , -

,
. Active Directory Windows Server 2003
. AD -
, , , ,
.

(transitive trusts) -
Active Directory.
Active Direc-
tory Windows NT , -
. , A B,
B C, A C. -
Windows, -
-
.

(explicit trust) , -
-
. -
- .
NT 4.0 , -
,
. -
Active Directory -
-
. Active Directory
NT .

(shortcut trusts)
,
. , -
, , -
184
II
, .
5.1.
.
,
, .
companyabc.com
sales.asia.companyabc.com sales.europe.companyabc.com
. 5.1. -

. 5.1 , -

(sales) companyabc.com.
, , -
.

-
,
Active Directory.
Windows 2000, -
-
. -
.

Active Directory
(Domain Name
System DNS), Active Directory. Active Directory
185
5
DNS, . -
, , , microsoft.com,
. -
. , Internet
? -
? ,
.
()

Active Directory
DNS,
Internet. microsoft.com,
. -
: Internet,
Internet. ,
, CompanyABC,
(User Principal Name UPN) Vera@companyabc.com.
,
, .
, , -
,
.
, Internet,

DNS-. , , ,
, -
. ,

, . -
. ,
-
.

,
Active Directory, ,
Internet. -
, UPN
. , -
. , -
, , -
Internic: .com, .net, .biz, .info .
186
II
, , , , -
moogoo.funk, .
,
Internet, .
internalnetwork.net, -
Internet , -
, DNS- ,
. , -
,
ISP (Internet service provider
Internet), DNS DNS-, -
Internet. , -
,
.net .org, - ,
, .
,
, ,
( network.msft),
.internal, .

Windows Server 2003
Active Directory
2000. Windows Server 2003 Active Directory , -
Active Directory
. .
.
Windows Server 2003
Active Directory.

Active Directory. Active Direc-
tory Windows Server 2003
, , ,
.

.
, . ,
, .
.
Windows Server 2003
-
. -
Active Directory Windows 2000. -
187
5
-
, ,
.
Microsoft .
.
-
- , -
. Windows 2000
DC,
.
(, -),
, ,
(dcpromo), .
,
, .

-
.
. -
-
. (Terminal Services
Remote Administration) Windows Server 2003, -
.
, -
. 500
, .
, ,
,
.

Active Directory -
.
. , , -
Active Directory.
,
, ,
. -
.
Active Directory -
, . 5.2. , ,
.
188
II
CompanyABC
companyabc.com
.
CompanyABC -
-
. . 5.2. -
-
, .
Active Directory
. Active
Directory Windows Server 2003. , -
, . -
:
.
.
.
.
.
.
.
AD , -
AD. -
, -
, .
; ,
.

Active Directory -
. -
.
, .
, -
, , . -
, NT,
, . -
,
Active Directory -
.

,
. -
189
5
, -
. ,
. -

. ,
NT 4.0 Active Directory

.
, -
, . -
IT-
.
NT , -
. Active Directory, -
, -

. Active Directory.
- Active Directory -
, , -
. -
,
. , -
, , , -
. -
, -
Active Directory.
, . ,
, -
,
.
, -
,
. ,
.
, -
, .
, ,
. -
.

, -
A 500
.
, -
190
II
. A
NT-
.
IT- Active Directory -
.
, -
.
Active Directory A
Active Directory, companya.net. -
,
.
NT 4.0 Active Directory,
5.3. A -
, -
, -
, , .
companya.net

-
, -
, -
-
. -
6.
Active Direc-
tory. ,
, . 5.4.
191
5

companya.net

. 5.4. , -

-
, .
7.
-
, , -, -
, . -
OU , -
AD, -
.

, , . -
. -
: -
.
Active Directory -
. -
, , -
. B -
A; .
.

, Active Directory Windows
Server 2003 ,
192
II
.
,
.
. -
IT-
,
.
-
.
, NT, -
. , Active Directory,
, -
AD.
. -
-
,
.
. ,
-
, Active
Directory Windows Server 2003 Active Directory. -
-
.
-
-
.
DNS. -
Active Directory
, Internet,
hotmail.com microsoft.com, -
.
, .
.
, ,
. ,
,
.
. -

, . -
, -
.
-
, .
193
5
, -
, NT-,
.

, -
, . B -
, , . -
,
.
, A
B; IT- -
. B Windows Server
2003 Active Directory -
.
IT-
, B -
Active Directory -
A B, . 5.5.
companyb.com
subsidiarya.companyb.com subsidiaryb.companyb.com

-
,
DNS.
, -
, . -
, -
IT- -
.
, NT -

. ,
.
194
II

.
DNS
. ,
AD -
, . -
Active Directory -
DNS. ,
DNS Active Directory -
. , . 5.6 , Microsoft
Active Directory,
, DNS.

hotmail.com msn.com msnbc.com
microsoft.com
sales.microsoft.com service.microsoft.com

microsoft.com . -
, microsoft.com ,
DNS, .
, .

-
DNS, ,
. ,
DNS .
, DNS,
Active Directory ,
, DNS Active Directory.
195
5
,
, , . -
, , .
-
, IT-.

,
, AD. A
,
, . -
DNS
, , -
,
. -
:
citya.org
firedeptcitya.org
policeofcitya.org
cityalibrary.org
Active
Directory, ,
.
Active Directory citya.org.
, ,
. 5.7.

cityalibrary.org citya.org firedeptcitya.org policeofcitya.org

, -
.
-
.
, -
, -
. -
. -
, DNS
, DNS.
196
II

.

,
.

,
,
. , -
Windows 2000. , -
, Active Directory .
.
Active Directory, -
, -
. -
AD. ,
Active Directory
, . 5.8, -
.
. 5.8.
, -

-
, , -
, .
, -
-
, -
. , , , AD:
197
5
, .
, .
- ,
.
-
.
Active Directory Windows 2000
, .
, SIDHistory
, ,
. , -
-
, SIDHistory.
. 5.9
-
SIDHistory. , ,
,
.
NT,
.
NT, Windows Server 2003 -
, Windows Server
2003. ,
-
.
AD AD

. 5.9.

Active Directory . , ,
AD - -
, -
198
II
, -
, -
.

, -
, -
A
. Active Directory Win-
dows Server 2003.
companyb.net. conglomeratea.net, ,
: asia, europe na.
A A
.
A Active Directory Windows Server 2003 -
Active Directory, -
suppliera.com
DNS supplierabranch.org, -
.

, -
. -
, . 5.10.
, , NT 4.0, -
, -
.
.
, , -
.
conglomeratea.net

suppliera.com supplierabranch.org
asia.conglomeratea.net na.conglomeratea.net
europe.conglomeratea.net sales.suppliera.com
A
A
. 5.10.
199
5

, .
, ,
. ,
. -
, . 5.11.

abcschema.root
companyabc.com
. 5.11.
,
,
.
. 5.11 companyabc.com -
, abcschema.root -
, .
,
.
-
. , -
, -
. -
,
FSMO, , .

. ,
, -
, , . ,
200
II
,
.
-
,
, -
, -
. , root.network,
compaq.com ,
hp.com, root.network.
,
. ,

.
, . 5.12, -
. Active Directory
, .
microsoft.com

msn.com root.msft hotmail.com
redmond.microsoft.com asia.msn.com
tokyo.microsoft.com europe.msn.com
sales.redmond.microsoft.com
. 5.12. ,

,
, . -
:
.
,
.

D ,
-. ,
.
201
5
,
.
D Active Directory Windows
Server 2003 -
. -
-
, , .
Active Directory ,
,
. , -
. 5.13.
companyd.com
rootd.peer
IT-

. 5.13.

companyd.com. rootd.peer
.
. -
-
.

(placeholder domain),
(sterile parent domain),
-
. , , -
. 5.14, , -
, .
202
II
companyabc.com
asia.companyabc.com na.companyabc.com europecompanyabc.com
, AD
. 5.14.
. -, -
, , -
, . -, -
,
. -
,
. -
, , -
,
.

E -
, , -, -, --, , , -
, , .
-, --,
, -
. 5.15.
.
, - -
,
. ,
, -
.
203
5
companye.com

E

- --
sa.companye.com europe.companye.com
- -
na.companye.com asia.companye.com

. -
,
,
Active Directory. ,
.
- Active Directory
.
, -
.
.
-

, - -
.
, -
, LDAP , -
, Active Directory, .

. -
, -
, . Active Directory
, ,
. -
, ADAM, 4.
204
II

E
. -
E;
. Active Directory
, -
, . -
Active Directory .
-
, , , -
IT-.
-
companye.com, , .
, -
companye.com , .
Active
Directory
/ -
: -
.

Active Directory (, companyabc.com), NetBIOS (NT),
. ,
.
, , -
, , -
Active Directory,
,
. Active Directory
Windows 2000 ,
, .
Active
Directory .

.
, -
.
205
5
.
. ,
, -
. -
,
Active Directory, 16 17.
.
-
Active Directory ,
. .
. -
, -
. , -
.
Exchange 2000/2003.
-
Exchange 2000 - .
-
. -
.

, -
, .
,
, , -
, , ,
DNS. () DNS
,
. , -
NetBIOS.
.
Windows Server 2003 ( ) -
.
.
, . -

, .
206
II

.
, , -
, -
.
-
. -
. , , ,

.
1:
, , Rendom ( Re-
name domain; , Microsoft -
Rendom Random ). Rendom
, . , -
rendom /list,
XML-
Domainlist.xml, . 5.16.
XML- ,
, , , ,
.
. 5.16. XML-
2:
()
XML, /list, -
. , CompanyABC
CompanyXYZ, XML, . 5.16,
companyabc companyxyz. NetBIOS, DNS.
207
5
3:

XML- , -
rendom /upload. -
-
, .
4:

, -
,
. , rendom /prepare,
, , ,
Active Directory, , , -
. ,
/prepare , .
, - -
.
5:

, -
rendom /execute. execute -
. -
. -
,
, ,
.

Windows NT, -
.
6: ,
Rendom rendom /clean,

, ,
.
-
, DNS. -
, -
208
II
netdom. -
.
1. ( Start () Run (),
cmd.exe).
2.
netdom /add:
3.
netdom /makeprimary:
4. .
5.
netdom /remove:
.
DNS-
, , server1.companyabc.com server1.companyxyz.com.
, -
, Active Directory
, Windows 2000. , -
, -
.

Active Directory .
,
Internet.
.
,
.
-
Active Directory.
.
, -
.
, , -
.

6
...

OU
OU
OU

OU

210
II
, Active
Directory (AD) Windows Server 2003
. (OU),
. -
OU . -
OU , -
.
OU
, OU Windows 2000, Win-
dows Server 2003 OU
, , . -
(GC),
OU
.
Active Directory
Active Directory. , -
.
OU .

(. 6.1) -
. -
(Lightweight Directory Access Protocol LDAP),
Active Directory, LDAP Active Directory
-
.
Active Directory -
OU , -
. -

Users, - -
Computers, . 6.1.
. Active Directory

Users Computers Active Directory -
, Container.
, Container ,
. , Group Policies,
OU,
OU.

211
6
Active Directory -
LDAP, OU.

Active Directory, -
LDAP- Active Directory. , . 6.2
OU Users
LDAP:
CN= ,OU=Users,OU=,DC=companyabc,DC=com

OU , OU -
OU. , OU, ,
. Microsoft
10 . -
, , -
.
OU
.
OU, - OU
AD . -
OU.
companyabc.com

212
II

-
Active Directory, OU
. ,
, , , Active Directory
OU. -
, , /
.
IT-, -
, OU .
, , -
OU, -
OU OU, .
,
Active Directory. ,
.
Microsoft , OU. OU,

-
. -
OU. :
. OU
,
, . -
, , , -
, .
. OU
. ,
OU. -
.
, .
. Active Direc-
tory (Security ID SID), -
. OU
(Access Control Entry ACE) , ,
. ,

.
, .
. ( -
Microsoft Exchange)
-

213
6
, .
, -
.
, .
:
Windows Server 2003 : -
. ,
(scopes): , , .

(security
group). -
, . -
. ,
Marketing,
. 6.3. -
.
. 6.3. -

,
Windows, NT Windows 2000. ,
.
, -
(SID) , Active
214
II
Directory SID. SID -

. ,
, -
, .

(distribution group) Windows Server 2003
Windows 2000 Active Directory. -
, SMTP (Simple
Mail Transfer Protocol ) , -
, Active Directory
( LDAP).

Exchange 2000. ,
Exchange 2000, -
.

Active Directory
, .
, -
.

Active Directory -
(mail-enabled group).
,
SMTP- . -
Exchange 2000 -
. Exchange 2000/2003 ,
, Exchange,
SMTP-.
,
,
. , Marketing,
, -
, Exchange -
.

Active Directory (scope) . -
, -
-

215
6
. -
:
.
.
.
.

Active Directory, ,
.
,
.

(machine local groups) ,
; , -
, . , -
Power Users, Administrators , -
. -
.
,
, . -
,
.

Active Directory .
dcpromo ,
, .
.
, , -
.

(domain local groups)
; , -
, . -
Windows NT.
Active Di-
rectory .
:
;
;
( AD Native);
(, Native).
216
II
, -
,
/ . -
, .

(global groups)
NT, . -
:
;
( Native).
-

. , -
, -
.

(universal groups) Windows
2000 Windows Server 2003.
.

.

Windows Server 2003 Windows Native 2000
Windows Server 2003 Interim Windows 2000 Mixed. , -
Windows NT4 (BDC) -
, .
-
, ,
. , -
Windows 2000 Active Directory
. ,
.
, .
,
.

. , -

217
6
OU
.
. ,
Active Directory, OU . -
OU,
, OU
. -
, OU,
.

, .
, -
.

SID , -
. , -
, , , -
, , .
(. 4 5),
OU .
OU
Active Directory, OU
, -
OU. ,
OU
. . 6.4. -
,
OU, - Active Directory
. -
, -
. 6.4.

OU , . 6.5.
,

OU, .
-
, -
. 6.5. -
OU. - -
-
,
-
OU, -
OU
. ,
218
II
, LDAP- -
. OU
OU .
OU
NT
OU Active Directory NT.
. ,
CompanyABC. NT
NT, , . 6.6. -
IT-.
. 6.6. Windows NT4

Windows Server 2003 CompanyABC -
, . 6.7, -
, -
NT.
companyabc.com
- -


219
6
NT4.0
, .
, IT- -
NT. Active Directory
OU, -
IT-.
OU

-
OU.
OU , , , ,
. OU , -
. -
,
OU.
, OU . , -
OU .
.
, , -
OU . -
,
OU.
OU
OU. -
- OU ,
. -
, OU.
OU Windows 2000 Active Directory. -
OU Windows 2000 Win-
dows Server 2003 . OU
, Windows 2000.
OU

, OU
Active Directory -
. NT 4.0 -
, Active Directory
. .
220
II
NT -
. -
. , IT-
//
OU.
.
1. Active Directory Users and Computers -
(OU), -
, Delegate Control (
).
2.
Next ().
3. Add (), ,
.
4. .
5. Next.
6. Delegate the Following Common Tasks ( -
) . 6.8 Create
(), Delete () Manage User Accounts (
) Next.
7. Finish (), .
. 6.8.

. , -

OU. -
OU,
. ,

221
6
, . -
-
, :
1. Active Directory Users and Computers -
(OU), -
, Delegate Control.
2.
Next.
3. Add, , -
.
4. .
5. Next.
6. Create a Custom Task to Delegate ( -
) Next.
7. Delegate Control Of ( ) Only the Fol-
lowing Objects in the Folder ( ).
8. Users Objects ( )
Next.
9. Property-Specific ( ).
10. Permissions () Read and Write Phone
and Mail Options ( ),
. 6.9, Next.
11. Finish, .
, . -
Active Directory
. 6.9.
222
II
OU
,
-
. , -

. ,
Active Directory,
.
.
, OU
-
OU OU .
, -
. -
, ,
:
1. Active Directory Users and Computers
Properties ().
2. Group Policy (-
).
3. , ,
Properties.
4. Security ().
5. Read () Apply Group Policy (
) Authenticated Users Group (
), .
6. Add (), ,
.
7. .
8. Read Apply
Group Policy, . 6.10.
9. 68 , -
.
10. , Close (),
.
11. 110 .
,
, -
OU . ,
,
OU.

223
6
. 6.10.
Read Apply Group Policy

, -
, . -

-
.

, :
-
. -
,

.
,
. 6.11.
.
(Marketing Global Finance Global),
. -
Printer1, . -
Marketing Finance Printer1.

,
.
224
II
Finance Global
Printer1 DL
Printer1
Marketing Global

. 6.11.
,
, , , .
, -
, .
, -

, -
Native,
Mixed. ,
. SID , -
, Mixed -
, .

Active Directory, -
, ,
. ,
-
, . -
, - , -
.

,
,
. -
.

225
6

Windows 2000 Mixed Windows Server 2003 Interim
. , Native
, -
.

, ,
SMTP- . ,
SID, , ,
. -
, Exchange 2000/2003. -
.

NT BDC Mixed Interim -
. , -
.

OU , -
, - -
. -
, OU . -
, OU . -
, OU
.
-
CompanyA -, .
-
T1. IT- -
50% .
, -
:
;
;
;
.
NT, . 6.12.
,
.
226
II
NT -
: IT_NT
IT_NT
SALES_NT
MANUF_NT MNGMT_NT SALES_NT
DESIG_NT
MNGMT_NT
OU DESIG_NT MANUF_NT
-

, IT-
. 6.12. -
Windows NT4

AD, -
, .
Active Directory companya.com, -
OU, , ,
. 6.13.
companya.com
IT
. 6.13.
, Ac-
tive Directory Active Directory (Active Directory Migration
Tool ADMTv2). 16 17.
OU -
,
, . 6.14. , -
(. OU -

227
6
) ,
/
OU.
. 6.14.

-
, -
. :
IT Global
Sales Global
Manufacturing Global
Design Global
Management Global
,
, :
Printer1 DL
FileServer3 DL
VidConfServer1 DL
Printer3 DL

.
. , Prinrer3
. ,
. ,
Printer3 DL, Design Global Sales Global
Printer3 DL , . 6.15.
228
II
Design Global
Printer3 DL
Sales Global
. 6.15.

.
Printer3 IT-,
Printer3 DL IT Global. -
.
-, -
-
, -
. ,
OU . -
OU,
.
, CompanyB.
, -
, , -, , ,
(. 6.16).
. ,
, -
.
, - .
OU

AD CompanyB , -
, OU -

229
6
. OU
, . -
OU, . 6.17.
-
-
. 6.16. CompanyB
companyb.com
. 6.17. -

230
II

-
OU. , Europe
OU DL .
, OU
,
OU.

CompanyB . IT-
, -
. , Berlin IT Admins Global Kiev IT Admins
Global, IT-
.
Europe OU DL,
. 6.18. OU .
-
OU.
Berlin IT Admins
Global
Europe OU DL

Kiev IT Admins
Global
. 6.18.

, -
, -

.
, -
, ,
, . ,
IT-
OU, -
Europe OU DL. -
. , OU
OU, -
.

231
6
- -
, , . -
- -
,
. Active Directory
,
(OU) . -
, -
.

OU -
Users Computers.
OU .
OU 10 , 3
.
OU , -
.

.
,
.

Exchange 2000/2003.
,
.
, SID
.

Mixed.
.

Active Directory
7
...
Active Directory
Active Directory

IPv6 Windows Server 2003

234
II
Active Directory
-
, . -
.
, ,
Active Directory (AD), , .
Windows Server 2003 Active Directory,
Windows 2000, .
Active Directory,
AD.
, Windows 2000.
,

(DC). , DC (DC
Promotion from Media) -
, DC.
, ,

, -
. , -
IPv6, .
, . -
, -
-
.
Active
Directory Windows Server 2003, . -
Active Directory
, . ,
, AD, , -
IPv6 (Internet- 6).
Active Directory

. Active Directory
,
, .
-
, Active Directory.
Active Directory
235
7
Active Directory
.
WAN, -
.
Active Directory , , -
.
, (multimaster replication),
.
, -
. -
. , - ,
. -
Active Directory
(Update Sequence Number USN).

, .
, - ,
. -
.

. ,
,
.
. USN
Active Directory
. USN 64- , -
Active Directory. USN
, . -
USN,
. . , -
Server2 Server1
USN, Server2, -
, . -
.
USN , USN -
,
. , -
USN,
.
236
II

USN -
Active Directory. -
.
(replication collision) -
, - , ,
. , -
Server1,
Server2 , Server1
, . -
.

Active Directory. -
.
, -
. -
.
,
, .

DC Windows (Windows
Time Service), .

-
(Knowledge Consistency Checker KCC) Active Directory
.
. , -
, -
(Primary Domain Controller PDC), , -
.
.
. -
, .
1. Active Directory Sites and Services.
2. Sites \ <_> \ Servers \ <_> \ NTDS Settings
(\<_>\\<_>\ NTDS), _
.
Active Directory
237
7
3. NTDS Settings (
NTDS) New Active Directory Connection
( Active Directory).
4. .
5. .

Properties (),
, . 7.1. ,
, .

, , Active Di-
rectory KCC . ,
,
, .
. 7.1.

, Active Directory,
, AD ,
. ,
,
, .
, AD . -
() . -
, -
238
II
, .
-
:
2. Sites \ <_> \ Servers \ <_> \
NTDS Settings, _ , , -
.
3.
Replicate Now ( ),
. 7.2.
. 7.2.
, -
, repadmin. -
repadmin -
,
. -
,
. . 7.3 -
, Active Directory
.
repadmin, replmon, -

.
. . 7.4 -
, -
Active Directory.
Active Directory
239
7
. 7.3. , -
repadmin
. 7.4. replmon
,
. ,
, -
.
.
2. Sites \ <_> (\<_>).
240
II
3. NTDS Site Settings (

NTDS) Properties.
4. Change Schedule ( ).
5. Four Times Per Hour ( ),
. 7.5.
6. , ,
, NTDS Site Settings Properties
( NTDS).
. 7.5. -

, , -
.
.
SMTP- IP-
IP- (RPC), SMTP-.
SMTP-, AD . -
, SMTP-
AD Internet. , SMTP -
, ,
VeriSign. -
AD, Internet.
IP- .
-
(Remote Procedure Call RPC),
,
(WAN).
Active Directory
241
7
Active Directory
Active Directory (site). -
Exchange 5.5: AD
.
. , -
, -
, .
Active Directory.
Windows
Server 2003
Windows 2000 .
-
:
.
.
.
ISTG.
.
.
.

.

Active Directory -
, . ,
, ,
.
Active Directory ,
-
. , , . 7.6.
Server1 Server2, Site1, -
10.1.1.x. Server3 Server4 10.1.2.x.
Client1, IP- 10.1.2.145,
Active Directory Server3 Server4, ,
.
. .
2. Sites \ Subnets (\).
242
II
3. Subnets -
New Subnet ( ).
4. IP-, .
10.1.2.0 C
(255.255.255.0).
5. , . , . 7.7, -
Site2.
6. .
1 2
10.1.1.0/24 10.1.2.0/24
Server1 Server2 Server3 Server4
10.1.2.145/24
Client1
. 7.6.
. 7.7.
Active Directory
243
7

Windows 2000 DC. -
-
Active Directory Client ( Active Directory). AD -
, Windows 9x NT -
, .

, .
.
(site link) , -
.
, -
WAN. -
,
.
,
, : SMTP IP
(. SMTP- IP-).
-
. , WAN -
, . -
-
WAN.
, IP- , -
Site1 Site2. , -
,
18:00 06:00 .
2. Sites \ Inter-Site Transports \ IP (\ -
\IP).
3. IP -
New Site Link ( ), ,
. 7.8.
4. .
Site1 Site2 SL.
5. Sites in This Site Link ( -
).
6. .
7.
Properties.
8. Change Schedule ( ).
244
II
. 7.8.
9. . -
06:00 18:00
Replication Not Available ( ),
. 7.9.
10. , .
. 7.9.

(bridge), -
,
.
, . ,
A B, B C, C
A.
Active Directory
245
7
. ,
,
.
,
.
2. Sites \ Inter-Site Transports \ IP (, , SMTP).
3. IP ( SMTP) -
Properties.
4. Bridge All Site Links ( -
), . 7.10.
5. , .
. 7.10.

, -
.

(Knowledge Consistency Checker KCC),
-
15 . KCC ,
246
II
. KCC : KCC, -
, (Inter-Site
Topology Generator ISTG), .
Windows Server 2003
, ISTG,
, Active Directory.
, Active Directory, 5000.

ISTG,
ISTG , -

,
. (site cost), -
Active Directory . , ,
, . -
-
.
. . 7.11
Active Directory, .
7
DC

DC DC 7

5 DC DC

15
DC
5
DC
DC
DC
DC

DC
5
3
DC DC
DC

. 7.11.
Active Directory
247
7
. 7.11 -
, 15.
-
, -
,
( ) 17. -
Active Directory.

, -
, -
.
(preferred site link bridgeheads) , -
. , -
.
Active Directory -
. , . -
Site1 Site2 SL -
.
2. Sites \ <_> \ Servers \ <_> (\
<_>\\<_>), _ , -
.
3. <_>
Properties,
, -
. 7.12.
4. ,
,
Add (),
. 7.12.
5. , -
.
-
.

,
-
(Operations Master OM),
PDC, . 7.12.
,
248
II
. , , ,
. ,
, , -
, , , -
-
.

, .
, , , -
, .
, T1, ,
,
.
,
.

, .
,
. ,
, -
.
- Windows Server 2003 -
WAN . Active Directory

WAN. , , -
- .
. 7.13 , AD -
WAN . , -
, WAN.
WAN , WAN -
, -
.

.
, , -
.
Active Directory
249
7
. 7.13. WAN

Windows 2000/XP Windows, AD Client, -
DNS. , DNS -
,
, . -
, , DNS, -
. 9.

LAN ,
,
. ,
, , -
. -
.
, .
, -
,
, .
-
, -
.
.
250
II

, , , -
, . Windows
Server 2003
-
.
,
. -
, -
.

AD, -

, , -
. ,

.

,
WAN .
WAN, , -
.
WAN
. -

, .
, , -
, . ,
, -
, . 7.14.
10
Site2 Site1
10
. 7.14.
Active Directory
251
7

-
WAN. -
, , ,
. , ,
, ,
, . ,
WAN .
, .
SMTP- IP-
Active Directory -
IP,
RPC .
SMTP. , -
, , ( -
), SMTP , RPC -
. SMTP
Internet, -
, .
SMTP ,

, , Internet. SMTP -
(Certificate Authority CA), ,
, .
SMTP-

, , Internet.
, -
(VPN), SMTP,

Internet. ,
SMTP.
SMTP
,
SMTP.
, SMTP.

Windows Server 2003
Windows 2000 , -
-
252
II
. -
, Active Directory , -
AD.

, ,
- . ,
-
WAN, -
, Windows 2000 -
, . -
,
GC .
, GC/DC ,
. -
.
- -
GC.
dcpromo /adv (dcpromo /adv), -
, . 7.15.
. 7.15. DCPromo
-
dcpromo ,
. DCPromo
, -
Active Directory
253
7
. DCPromo WAN -
,
.

Active
Directory ( 30 ),
DCPromo . -
, , , , -
.

/

Active Directory
. , -
, -
(linked-value replication). -
, Active Directory.
, . , -
. -

. , -
.
, -

. Active Directory Windows 2000 -
, -
.
, . -
, , -
, ,
. -
, -
AD, -
.
,
, , , -
.
.

.
254
II

2. Sites \ <_> (\<_>).
3. NTDS Site Settings (
NTDS) Properties ().
4. Enable Universal Group Membership Cashing (
), . 7.16.
5. , .
. 7.16.

(lingering objects), , -
, ,
, . -
, -
.
, . Windows Server 2003
, .

AD ,
. -
,
, -
.
Active Directory
255
7

Windows 2000 -
. -
, -
,
.

KCC, (InterSite
Topology Generator ISTG), AD
5000 . Windows 2000
ISTG AD 1000 . -
IPv6 Windows Server 2003

Internet,
, .
Internet Protocol,
232 . ,
Internet. -
IP-,
(dotted-decimal format) (, 12.155.166.151).
Internet. -
, ,
(Network Address
Translation NAT), .
, Internet- 4
(IPv4) , , -
, IPSec QoS. IPv4.

Internet-, Internet 6 (IPv6).
IPv4, -
(2128). -
Internet-, , -
.
Windows Server 2003 IPv6, -
. -
IPv6, , ,
256
II
, , -
.
IPv6
, IPv6 , .
IPv4 ; -
128- , . -
, , IPv6,
.
IPv6 ,
Internet. , IPv6.
. ,
IPv4 IPv6, .
- , IPv4
4 294 967 296 . IPv6 340 282 366 920 938 463 463 374 607
431 768 211 456 . , IPv6
, -
.
. IPv6- , -
. ,
IPv4,
. , -
IPv6
IPv4.
. -
, ,
IPv6- .
IPv6 Internet-
(Automatic Private Internet Protocol Addressing APIPA) -
, Windows IPv4.
IPSec QoS. IPv6 -
IPSec -
, (Quality of Service
QoS), .
IPv6
, IPv6- 128 32-
IPv4. -
. , , 128-
IPv6- :
111111101000000000000000000000000000000000000000000000000000000000000010000011
00001010011111111111111110010001000111111000111111
Active Directory
257
7

16- :
1111111010000000 0000000000000000
0000000000000000 0000000000000000
0000001000001100 0010100111111111
1111111001000100 0111111000111111
16- ,
IPv6-:
FE80:0000:0000:0000:020C:29FF:FE44:7E3F
, IPv6 IPv6-, -
, . -
, 020C 20C. -
, IPv6 .
:
FE80::::20C:29FF:FE44:7E3F

IPv6- , -
.
IPv6 , IPv4:
,
. , IPv4, IPv6.
IPv6
Windows Server 2003 IPv6,
. , -
:
Netsh interface ipv6 install
-
(Network Components), :
1. Start () Control Panel ( ).
2. Network Connections ( -
).
3. , -
IPv6, Properties ().
4. Install ().
5. Protocol (), Add (-
).
6. Microsoft TCP/IP version 6, . 7.17.
7. , Close (),
.
258
II
. 7.17. IPv6
IPv4- IPv6-
.
ipconfig /all, . 7.18.
. 7.18. IPv4- IPv6-
IPv6
IPv6 . ,
-
IPv4. , ,
IPv4 IPv6 .
IPv6 Windows Server 2003 IPv4 -
. - .
Active Directory
259
7
IPv6
IPv4, (, Internet).
IPv6.
.
(Intrasite Automatic Tunnel Addressing Protocol ISATAP) -
IPv6 -
. , 6--4 (6to4), -
IPv6- , Internet.
-
IPv6.
IPv6
-
. -
, IPSec, NAT -
, .
, ,
IPv4. , , Windows Server 2003 -
IPv6.

Active Directory Windows Server 2003 , -
. -
WAN, , ,
, WAN.
, , -
, .
AD

CompanyA
(). ,
, . WAN -
, . 7.19.
.
, .
, WAN,
. -
Active Directory Windows Server 2003, . 7.20.
260
II
DC DC

DC DC -
-

512 /
DC
DC
512 / DC
DC
( PDC) -

-

256 /
128 /
DC DC

DC DC

. 7.19. WAN . 7.20.

CompanyA CompanyA
-

. PDC
, . -
, -
.
CompanyA ,
, -
WAN.

CompanyB
, , . -
-
. WAN WAN
, . 7.21.
CompanyB Windows Server 2003 Active
Directory. Active Direc-
tory . , ,
.
-
, WAN ,
, DCPromo.
, . 7.22, ,
WAN . -
,
WAN.
Active Directory
261
7

128 /
128 / 64 /
64 /

T1 128 /
64 /
T1

T1 64 /
128 /
128 /

256 /
64 /
. 7.21. WAN CompanyB
DC DC DC
15 15 20

20
DC DC
DC
DC DC
DC DC
DC DC 5 10
20
DC DC
5 DC
DC DC
DC DC
DC 15
DC DC 5 20
DC
DC DC
15
DC DC DC
10
20
DC DC
DC

. 7.22. CompanyB
, , -
CompanyB
, -
. ,
,
262
II
,
WAN .
-
-. -

, .
CompanyB -
WAN , ,
, AD.
Active Directory

. , Windows
Server 2003 IPv6, -
-
-
.

, KCC,
.
, , DNS, -
SRV.
repadmin replmon -
Active Directory.
IPv6 , Windows XP
Windows Server 2003 , IPv6.
IPv6 ISATAP 6--4
IPv4 IPv6.
AD 95/98/NT,
.
, -
-
.
SMTP, , -
, ( ).

Active Directory
Novell,
Oracle, Unix NT4
8
...
Services for Unix 3.5

Interix Services for Unix

Unix NFS Windows
SFU

Services for Unix
Windows NetWare
Services for NetWare

Microsoft

MIIS
264
II
Microsoft , , , -
, , -
. -
-
Microsoft. Windows Server 2003
Microsoft -
, Microsoft Unix, Novell, Oracle
.
: Services for Unix (SFU) 3.5, Ser-
vices for NetWare (SFNW) 5.02 SP2 Microsoft
Identity Integration Server (MIIS) 2003. -
Microsoft .
-
, . ,
,
.

Unix Windows -
, ,
. , -
;
, -
, , .
-
.
Unix Windows, Samba ,
Linux/Unix Windows NT. -
, Microsoft , -
Unix, , , Unix
.
Services for Unix . -
Microsoft , , -
Unix, .
, -
, Unix- Windows, -
,
Active Directory Novell, Oracle, Unix NT4
265
8
Services for Unix

Services for Unix . -

, .
, 1.x 2.x, .
.
Services for Unix 3.0.
Unix -
. 3.0 Interix -
Windows- POSIX,
Unix Windows Server.
SFU 3.5,
SFU 3.0. -
:
2003.
.
Interix.
Interix ( 100%).
Services for Unix

Unix, Services for Unix (SFU),
, -
Unix. -
Services for Unix, -
. SFU -
.
Interix
NFS
NFS
NFS
Telnet
Telnet
PCNFS
NIS

NIS-
266
II
,
.
.

Services for Unix
Services for Unix Unix,
-
Unix:
Sun Solaris 7.x 8.x
Red Hat Linux 8.0
Hewlett-Packard HP-UX 11i
IBM AIX 5L 5.2

SFU Sun Solaris, Red Hat Linux, HP-UX
IBM AIX.
Unix.
Windows 2000
(Server Professional), Windows XP Professional Windows Server 2003 ( ).
Services for Unix , -
, .
:
NIS Active Direc-
tory. , -
NIS.
NFS NFS .

.
NIS NIS- Unix
SFU- Windows.
,
Unix , NIS-
NIS Windows.
NIS
, .

Services for Unix -
Microsoft. -
.
267
8
Services for Unix 3.5 -

Microsoft Web- Services for Unix :
http://www.microsoft.com/windows/sfu
SFU 3.5 .
1. - .
, setup.exe -
- SFU.
2. Next ().
3. Next.
4. .
Next.
5. Custom Installation ( )
Next.
6. . (. 8.1)
, Client for NFS.
. 8.1.
7.
.
Next. -
, ( GNU C++
ActivePerl).
8. , -
, Interix, , -
Interix .
, , . 8.2,
Next.
268
II
. 8.2. Interix
9. (User Name Mapping
Service),
.
. , -
Next.
10. NIS-
. ,
, . 8.3, Next.
. 8.3. -

11. Next.
, .
12. Finish (),
Yes (), .
269
8
SFU
.
Interix Services for Unix

Services for Unix,
. Interix -
Services for Unix. Interix POSIX
Windows, Unix -
Windows. Interix , -
POSIX, Windows Server 2003, .
Interix Unix
Windows. , ,
Unix, -
: grep, tar, cut, awk . , -
, , Unix-,
Wintel, Win-
dows Unix.
SFU 3.5 Interix. -
/, -
,
. , Interix SFU 3.5
, Active Directory
Interix
Unix, , Interix,
,
Korn C, , Unix. SFU -
-
,
.
, Win-
dows , Unix.

Interix
Interix Unix
grep, man, env, pr, nice, ps, kill . -
, Unix (. 8.4), Interix -

, Unix.
270
II
. 8.4. Interix C

Unix NFS Windows
Services for Unix -
Unix Windows Server 2003,

. NFS, NFS-
NFS -
.
NFS
Windows NFS (Gateway for
NFS) (Network File System
NFS) Unix. NFS Windows Server 2003 -
NFS,
NFS- Unix -
NFS-.
NFS (gateway shares), -
Windows
\\server1\marketing, ,
NFS. ,
SFU
.
NFS
NFS (Server for NFS)
NFS. Windows- -
NFS, NFS- SMB- Windows. -
NFS- Unix .
271
8
NFS
NFS (NFS Client) -
Windows, NFS
. NFS- Windows,
. NFS-
Windows-, UID GID , -
SFU. , -
Unix NFS net mount.
SFU
(Single Sign-In SSI), -
, ,
. , -
-
. Services for Unix -
SSI ,
.

(User Name Mapping) -
Unix. -
,
.
, , Unix -
, Windows .
-
Windows -
Unix. , ,
(root) Unix.
SFU
,

. ,
MMC SFU, . 8.5,
, -
.
,
Unix-. -
, -
Unix:
272
II
Solaris 7 and 8
Red Hat Linux 6.2, 7.0 and 8.0
HP-UX 11
Unix ,
SFU. SFU 3.5
, -
.
. 8.5.
Services for Unix

Services for Unix -
. ,
Telnet, ActivePerl 5.6
MMC Admin Services for
Unix. , SFU -
.

Telnet
Services for Unix Telnet. -
, Windows- Telnet, Tel-
net, Windows Server 2003 Windows XP. Telnet
SFU inetd, Interix -
273
8
Windows- Telnet. Telnet

Unix
NT LAN (NTLM).
MMC Services for Unix

Services for Unix, NFS, -
Microsoft (Microsoft Management Con-
sole MMC), . 8.6. Windows -
MMC
SFU.
. 8.6. MMC Services for Unix

ActivePerl 5.6 SFU
Services for Unix ActivePerl 5.6, -
Perl 5.6 Unix. Perl
Windows, ActivePerl 5.6
Windows (Windows Scripting Host WSH),
Perl WSH-.
Windows NetWare
Microsoft -
NetWare (Network Operating System
274
II
NOS) Windows. NetWare

Microsoft.
Gateway Services for NetWare (GSNW) Services
for NetWare (SFNW), -
.
Gateway Services for NetWare

Windows Novell -
Gateway Services for NetWare ( NetWare, GSNW) -
Novell NetWare. GSNW
:
Windows NetWare.
NetWare - Windows.
GSNW:
Windows Server 2003 Exchange
NetWare.
, ,
NetWare
NetWare, GroupWise.
Novell Microsoft Win-
dows Server 2003.
Microsoft,
Novell, NetWare,
GSNW.

Windows- GSNW
NetWare. .

Services for NetWare (SFNW) 5.02 Service Pack 2 (SP2)
Novell Windows.
SFNW :
NetWare (FPNW).
Microsoft (MSDSS).
(FMU).

Services for NetWare Windows Server 2003. -
Service Pack 2 SFNW 5.02
275
8
Services for NetWare 5.02 SP2

SFNW . -, ,
MSDSS, -
Active Directory. ,
, .
-
. SFNW .
1. SFNW 5.02 MSDSS.MSI.
2. , , -
. .
3. Next ().

, -
, . -
, .
4. , AD ,
. 8.7. , MSDSS.
. 8.7. AD MSDSS
5. Finish ().
6. , ,

repadmin.
MSDSS.MSI.
7. Next.
8. , Next.
9. Microsoft Directory Synchronization Services (
Microsoft), . 8.8,
Next.
10. Next.
11. Custom Install ( )
Next.
12. , . 8.9, Next.
276
II
. 8.8. MSDSS
. 8.9. SFNW
13. Next, .
14. Finish,
Yes (), .
Services for NetWare . -
Administrative Tools ( ),
. 8.10.
NetWare
NetWare , Win-
dows- NetWare. Net-
Ware , -
Novell. Novell -
, -
277
8
FPNW. FPNW FPNW -

NetWare ,
Windows.
. 8.10. Services for NetWare

Start ()
FPNW.
Novell 3.12,
NetWare.
Windows Server 2003, FPNW, -
, Novell 3.12.
Novell Microsoft Windows Server 2003.
Novell, Windows Server
2003, , Win-
dows Server 2003 FPNW.
Microsoft
Microsoft (Microsoft Directory Synchronization
Services MSDSS) , Ac-
tive Directory, Novell (Novell Directory Services NDS). MSDSS
, Active Directory, Net-
Ware, NDS -
Novell 3.x.
NDS, Active Directory
278
II
Novell, MSDSS ( ) Active Directory

-
(OU) NDS . MSDSS OU
Novell
Active Directory.
MSDSS . -
NDS. Active Directory NDS
, -
. NDS Active Directory
( ).
MSDSS .
Active Directory -
NDS.
Windows Server 2003 NDS -
.
MSDSS .
, , ,
Active Directory, NDS NetWare.
(Session Manager). -
. ,
NDS, -
.
(Object Mapper).
(, , , )
.
DirSync (DirSync Provider). -
DirSync (/). -
(Lightweght Directory Access Protocol LDAP)
Active Directory NetWare NCP NDS NetWare.
MSDSS, Active Directory
( ).
MSDSS.
Novell Windows Server 2003.
DNS, DHCP ISS . -
Windows Server 2003
MSDSS.
Novell Windows Server 2003.
DNS, DHCP ISS .
MSDSS
AD NDS.
279
8

(File Migration Utility FMU) -

NetWare Windows Server 2003.
MSDSS, FMU , -
(ACL), . FMU -
, ,
NDS Active Directory. -
, MSDSS,
, NetWare,
Windows, -
. FMU -
.

Windows
NetWare Windows. -
NTFS Novell,
, .

Microsoft
-

, . -
, , -
, ,
-
Microsoft (Microsoft Identity Integration Server MIIS) 2003.
MIIS
MIIS Microsoft .
(metadirectory) , -
. 1996 ,
(Burton Group, http://www.tbg.com) ,
. -
, -
.
Microsoft -
Microsoft (Microsoft Metadirectory Services MMS). -
, . -
280
II
, -
.
3.0 , -
Microsoft (Microsoft Identity Integration Server
MIIS) 2003. MIIS ,
, -
, -
, :
Active Directory Windows 2000/2003
Active Directory (ADAM)
Windows NT 4.0
Novell NDS eDirectory
SunONE/iPlanet Directory
Lotus Notes Domino
Microsoft Exchange 5.5
ERP
PeopleSoft
SAP
Microsoft SQL Server
dBase
Oracle
Informix
DSMLv2
LDIF, CSV, ,
/
, LDAP.
MIIS 2003 -
Web- -
. , -
,
.

(IIFP)
MIIS, Microsoft
(Identity Integration Feature Pack
IIFP) Microsoft , -
Active Directory, (Global Address
List GAL) Exchange 2000/2003 Active Directory (Active
Directory in Application Mode ADAM).
MIIS, AD,
281
8
, MIIS. -
AD, IIFP. IIFP
Web- Microsoft MIIS
http://www.microsoft.com/miis.
SQL Server MIIS

MIIS IIFP Microsoft SQL Server
2000. -
, .
MIIS, -
SQL Server. -
SQL MIIS.
MIIS
, ,
, -
MIIS. MIIS -

/ .
MIIS, .
(Management Agent MA). , -
. , Active Di-
rectory MIIS -
Microsoft Active Directory.
(Connected Directory CD). , MIIS
MA.
Microsoft Exchange 5.5.
(Connector Namespace CS). -
, , -
.
(Metaverse Namespace MV).
, , -
.
(Metadirectory). MIIS
.
(Attributes). , -
. -
, , , , ,
.
MIIS ,
. -
-
, , , , -
282
II
, . ,
, -, -

, MIIS
. , - -
, ,
MIIS. MIIS
(identity management). -
MIIS , -

.
MIIS
MIIS 2003 , -
MMS. -
MIIS -
. -
.

. -
,
, , -
, -
.
MA , -
.

, -
, .
Full Import ( ), Delta Import ( ), Export Apply Rules
( ) Full Import and Re-Evaluate Rules (
). MIIS
-
, . -
,

. .

Microsoft
MIIS 2003 , -
. MIIS Enterprise MIIS,
Enterprise Windows Server 2003, SQL Server 2000 Enterprise. -
283
8
MIIS 2003. -
.
1. - MIIS , -
Install Microsoft Identity Integration Server 2003 (
Microsoft), . 8.11.
. 8.11. MIIS
2. Next ().
3. I Agree (
). Next.
4. Complete Installation ( )
Next.
5. , SQL Server. , -
, . 8.12, Next.
. 8.12. SQL Server MIIS

284
II
6. , MIIS, -
Next.
7. , MIIS, . 8.13,
Next.
. 8.13. MIIS
8. Start (), .
9. ,
. 8.14. , . -
.
. 8.14. MIIS
10. MIIS Finish ().
MIIS -
, ,
.

MIIS
MIIS .

.
285
8
, ,
-
. MIIS , -
.
MIIS .

MIIS
MIIS -
. , MIIS
.
, , ,
.
,
intranet-. MIIS
Active Directory LDAP,
:
1. MIIS 2003.
2. ,
Active Directory LDAP.
3.
, . 8.15.
4. , Active
Directory
.
. 8.15. MA
286
II
5. , -
, ,
-
. -
.
6. -
. , ,

. ,
, ,
. -
,
, , Active Directory -
.
7. MA
,
,
. , -
. MA -
.
8. MA -
-
.
-
, .
,
MIIS . -
,
.
, -
.

MIIS
(provisioning) MIIS
, -
, -
. , Active Directory -
, Active Directory
. , MA -
, -
.
MIIS -
,
287
8
. , HR PeopleSoft
, -
, . 8.16.
:
NDS:
x4288

ADAM:

MIIS
NT
NT:

MIIS
HR PeopleSoft:
Lastname=
Firstname=
JobTitle=-
Extension=x4288 UPN AD/Exchange 2003 UPN:
EmploeeID=12345678 Vera.Serdyuchka@companyabc.com
LDAP:

. 8.16. MIIS

MIIS. -
-

.
, -
. MIIS -
Windows NT. , ,
Exchange Server 2003,
Active Directory.
1. MIIS Enterprise.
2. Windows NT 4.0.
3. MA NT 4.0, ,
, .
4. NT MA
MIIS, . 8.17.
5. MA Active Directory Exchange Resource.
6. , MA Active Directory, MIIS
, , . 8.18.
288
II
. 8.17. MA NT
. 8.18. MA
7. Visual Studio .NET 2003 DLL-
, -
. DLL-
MVExtensionExchange.
8. DLL- ,
. 8.19.
9. -
.
289
8
. 8.19. DLL--

, ,
Exchange Server 2003 Exchange 2000 .
(SID) NT -
,
. -
MIIS Exchange

.
MIIS 2003
MIIS ,
-
. MIIS
, -
. - MMS
, , MIIS
, -
.
/ Microsoft, ,
MIIS , .
Microsoft -
, .
Services for Unix, Services for NetWare -
Microsoft -
290
II
. ,
-
,

Microsoft
.
AD MSDSS
Services for NetWare.
NetWare -
NTFS .
,
AD.
NIS, Windows Server -
NIS- Unix.
Interix Unix -
Windows.
NIS Active
Directory, NIS AD -
.
NFS NFS .
NIS -
, .

III
...
9.
10. DHCP, WINS

11. c
Internet IIS 6

293
9

9
...

DNS
DNS Windows
Server 2003

DNS

DNS-
DNS
Microsoft DNS
DNS Windows Server 2003
DNS

294
III

( )
(NOS). -
-
. , ,
NOS -
.
Active Directory Windows Server 2003. DNS
Windows Server 2003
(Request for Comments RFC), -
DNS.
DNS, RFC.
DNS -
DNS Active Directory -
. -
DNS, Windows Server 2003. ,
DNS
DNS Active Directory.
DNS
-.
, . , -
, . -
, , . -
,
.
.
.
TCP/IP ,
10.1.2.145,
IP-.
, -
, , www.microsoft.com.
DNS ,
-
, (Resource Record
RR), .

295
9
DNS . -
( ) (),
( ), -
(IP-). -
, DNS. ,
, DNS Windows Server
2003, .
DNS
Internet
HOSTS, Internet -
IP-. -
HOSTS-. Internet
, -
.
1983 -
RFC (Domain Name System DNS),
Internet. -
HOSTS -
, DNS-, -
Internet, ,
, . -
, DNS, -
.
Windows NT 4.0 Microsoft
DNS, RFC, DNS. Windows 2000
Microsoft DNS
. ,
(OC), WINS -
. Microsoft DNS ,
-
, , Unix BIND. -
,
DNS.
DNS
DNS Internet, -
Internet. ,
. -
DNS -
, DNS Windows Server 2003.

296
III
DNS
DNS ,
, -
. -
(.) (Fully Qualified Domain
Name FQDN), server1.sales.companyabc.com, -
DNS. . 9.1 -
CompanyABC DNS.
.com
.edu .net .org
companyabc.com
microsoft.com
sales.companyabc.com
. 9.1. DNS
(root),
(.) Internet (Internet Registra-
tion Authority). DNS -
.com, .net, .gov, .fr , -
, . -
, .edu,
.com.
DNS.
DNS, , -
, companyabc, . 9.1. -
DNS,
.
DNS , ,
. , sales.microsoft.com
microsoft.com. , DNS -
.

297
9
DNS
, DNS,
(namespace) DNS. , microsoft.com
marketing.companyabc.com. , -
. Internet -
. .com, .net, .org -
, .
Internet, .
, , -
, , dnsname.local companyabc.internal.
Active Directory,
.
, Internet.
DNS Windows
Server 2003
DNS, .
DNS,
.
DNS

DNS, -
Configure Your Server Wizard
( ), Configure a DNS Server Wizard
( DNS).
.
, DNS.
DNS Windows Server 2003 -
. DNS
Windows Server 2003, . DNS -
, , , 7.
1. Start () All ProgramsAdministrative ToolsConfigure
Your Server Wizard ( -
).
2. Next ().
3. , ,
Next. .

298
III

, 3, -
, DNS Active Direc-
tory .
421.
4. DNS Server Component ( DNS)

Next.
5. Install DNS Server ( DNS) Run the Configure
a DNS Server Wizard to Configure DNS ( -
DNS DNS), Next.
6. DNS -
- Windows Server 2003.
OK.
7. Configure a DNS Server Wizard (
DNS), . 9.2. (, -
DNS , , Start
Run () dnswiz.exe.)
. 9.2. DNS
8. DNS
Next.
9. Create Forward and Reverse Lookup Zones (Recommended
for Large Networks) ( (-
)) Next.
10. Yes, Create a Forward Lookup Zone Now (Recommended) (, -
()) Next.
11. Primary Zone (
) Next. ,
Store Zone in Active Directory ( Active Directory).

299
9
12. Zone Name ( ) Next.

13. -
. Create a
New File with This File Name ( )
, . Next.
14.
. , -
Allow Both Nonsecure and Secure Dynamic Updates ( -
, ), Next.

DNS-,
. , -
.
15. . -
Yes, Create a Reverse Lookup Zone Now (,
) Next.
16. Primary Zone Next.
17. -
Next. ( ,
IP- . , IP- C
10.1.1.0/24, 10.1.1, . 9.3.)
. 9.3.
18. ,
. Create a New File
with This File Name Next.
19. .
Allow Both Nonsecure and Secure Dynamic Updates
Next.

300
III
20. ,
, DNS.
No, It Should Not Forward Queries (, -
) Next.
21. , . 9.4,
, DNS.
, Finish ().

DNS, 21, .
, -
. , , OK
DNS .
.
. 9.4. -
DNS
DNS
DNS
DNS. TCP/IP
DNS-, DNS ,
.
:
1. Start Control PanelNetwork Connections (
).
2. Network Connections ( )
< > (
, , -
DNS) Properties ().

301
9
3. Internet Protocol (TCP/IP) ( Internet

(TCP/IP)).
4. , Use the Follo-
wing DNS Server Address ( DNS-),
IP- DNS- Preferred DNS Server (
DNS-).
5. DNS Alternate
DNS Server ( DNS-).
6. OK, .

Windows 2000 , DNS- -
DNS.
(island problem) Windows DNS. -
DNS- , -
. .

DNS (Re-
source Record RR).
-
. , DNS ,
DNS -
RR.
DNS.
DNS, Active Directory Windows
Server 2003, .
DNS RR.

DNS (Start of Authority SOA) , -
. SOA
-
. SOA , -
(Time to Live TTL), , DNS,
, . 9.5.
(A)
,
A. RR IP-
, . 9.6.

302
III
. 9.5. SOA
. 9.6.
DNS A,
IP- -
.
(NS)
(Name Server NS) , -
DNS DNS- .
SOA, -
NS-, , -
DNS-.

303
9

, NS, IP- -
.
A. NS A . -
, NS server1.companyabc.com,
A server1 companyabc.com.
(SRV)
(Service SRV) , ,
. Active Directory
SRV, : -
, LDAP Kerberos. SRV DNS -
. SRV -
, . , LDAP-
SRV, , LDAP-
. SRV Active
Directory,
, . 9.7.

SRV DNS , -
DNS , Unix BIND 4.1.x NT 4.0 DNS. -
, DNS, Active Directory Windows
Server 2003, SRV. Unix BIND -
8.1.2 .
. 9.7. SRV
Active Directory

304
III
(MX)
(Mail Exchanger MX) , -
SMTP. MX -
,
, . , MX -
companyabc.com, , user@companyabc.com, -
, MX.
(PTR)
DNS (Pointer
PTR). , ,
IP-, IP-.
DNS PTR , IP-.
PTR .
(CNAME)
(Canonical Name CNAME) -
, DNS
. ,
A . CNAME ,
sfoexch01.companyabc.com
mail.companyabc.com.

DNS , , -
.
:
AAAA. IP- 128- IPv6, -
. 9.8. IPv6
.
ISDN. DNS ISDN.
KEY. ,
.
RP. (Responsible Person) .
WKS. (Well Known Service).
MB. , .
DNS
(zone) DNS DNS,
DNS. DNS -
, -

305
9
. , -
- , , -
, . . 9.9 , -
DNS ,
DNS.
, DNS
. , -
, -. -
. -
Internet .,
.
. 9.8. AAAA
.com
companyabc.com
companyxyz.com

east.asia.companyabc.com sales.europe.companyabc.com
west.asia.companyabc.com
. 9.9. DNS

306
III

, DNS, , -
(caching-only) .
, -
-
DNS .

, (forward lookup zone) -
DNS. -
IP- . ,
Server1, IP- -
, DNS 10.0.0.11 IP- .

.
. ,
. -
CNAME, .

(reverse lookup zone)
. IP-
.
. -
, .
PTR, -
.

DNS ( Active Directory)
DNS- , , , -
. DNS- -
, .
,
, .
.
DNS
companyabc.com:
1. DNS MMC, Start Administrative
ToolsDNS (DNS).
2. DNS \ <_> \ Forward Lookup Zones (DNS\
<_>\ ).

307
9
3. Forward Lookup Zones ( -

) New Zone ( ).
4. Next.
5. Primary Zone. -
AD, Store the Zone in Active Directory (-
Active Directory), , Next.
6. Next.
7. , ,
Create New File with This File Name ( )
Next.
8. , .
, Do Not Allow Dynamic Updates ( -
) Next.
9. Finish, .

(secondary zone) -
. DNS
, . -
DNS .
-
, .
-
- Microsoft DNS . - (stub
zone) ,
,
. - NS, SOA
. (glue records) A, -
NS IP-
. , - -
, .
. 9.10, - ,
. , -
, .
Windows Server 2003 -, .
-.
ToolsDNS.
2. DNS \ <_> \ Forward Lookup Zones.
3. Forward Lookup Zones
New Zone.

308
III

companyabc.com companyabc.com
Server1 Server2 Server3
192.168.0.11 192.168.0.12 192.168.0.13
NS-
-
NS server2.companyabc.com SOA A SOA A

A A
A server2.companyabc.com NS A NS A
A A
NS server3.companyabc.com NS A NS A
A A A A A A
A server3.companyabc.com A A
A A A A
A A
A A A A A A
A A
A A A A
A A A A
A A
. 9.10. -
4. Next.
5. Stub Zone (-).
AD, Store the Zone in Active
Directory ( Active Directory), ,
Next.
6. - Next.
7. Create a new File with This File Name (
) , , -
. Next.
8. IP- ,
. Add (),
. 9.11, Next.
9. Finish, .
- SOA, NS -
, .

DNS -
, (zone transfer).
, .
DNS ,
Active Directory.
DNS- , DNS-
. -
, -
.

309
9

ToolsDNS.
3. -
Properties.
4. Zone Transfers ( ).
5. Allow Zone Transfers ( ) -
Only to the Following Servers ( ).
6. IP- , ,
. 9.12.
7. , OK.

IP-, -
Only to Servers Listed on the Name Servers Tab ( , -
) , -
Name Servers ( ).

, DNS -
, (Asynchronous Zone
Transfer AXFR) . -
DNS ,
- . DNS -
AXFR, .
. 9.11. - . 9.12.

310
III

(incremental zone transfer IXFR) ,
DNS
DNS-.
AXFR, , -
, .
IXFR ,
SOA DNS-, .
. , , ,
, 45,
55, IXFR -
, 45 55. -
, -
, AXFR. ,
25, 55, -
AXFR, . 9.13.
= 50

Server1
Server2
50 55

Server2

= 55 = 45

Server1
Server3
45 55
Server1 Server3

= 25

,

Server1 Server4
Server4
. 9.13. IXFR
DNS-
DNS , -
.
DNS : -
.

311
9

(resolvers),
, DNS.
DNS-, -
.
, .
. -
. 9.14.
3
Server2
(
)
2
5
1
4
6
8 Server3

Server1 ( )
Client1
7

Server4
( Microsoft DNS Server)
. 9.14.

DNS , -
DNS-, ,
. -
,
.
, . 9.14, Client1 CompanyABC
Web- Web- www.microsoft.com.

Server1. Server1 companyabc.com
microsoft.com, DNS-
, DNS-. Server2
microsoft.com, Server1 -
Server3, .com.
Server3 ,
microsoft.com Server4,
Server1. Server1 Server4 -
, Server4 www IP-.

312
III
, Server1 Client1,
IP-, Client1
www.microsoft.com.
DNS -
DNS, .
DNS
DNS , -
. , -
DNS, -
DNS Microsoft.
DNS
DNS DNS,
.
DNS
, . DNS
-
DNS . DNS,
DNS
.
,
Windows 2000/XP , DNS -
(NT/9x) -
DHCP.
, -
10.

Time to Live (TTL, )
( ), -
DNS-, . -
DNS. -
TTL -
, DNS-.
Client1 IP-
www.microsoft.com, DNS- ,
, IP-
. -
, DNS- IP-
, Client1 TTL.
-
DNS-.

313
9
TTL , -
. TTL -
, .
TTL SOA. Windows
Server 2003 .
ToolsDNS.
2. DNS \ <_> \ Forward Lookup Zones \ <_>.
3. SOA .
4. Minimum (Default) TTL ( ()
) , . 9.15.
5. , OK.
. 9.15.

DNS -
. -
, , , -
IP-.
DNS, AD, , -
. -
Kerberos, ,
.
DHCP -
: DHCP-

314
III
. ,
DHCP- DNSUpdateProxy. -
, DNS. -
, DHCP- -
, -
. , ,
.
SRV , -
, , DHCP- -
. DHCP , -
, .

DNS
, -
, IP-
DNS-
. (scavenging)
-

. -
,
.
1. DNS
MMC, Start Ad-
ministrative ToolsDNS.
2.
-
Properties.
3. Advanced (- . 9.16.
).
4. Enable Automatic Scavenging of Stale Records (
).
5. , . 9.16,
OK, .
DNS,
.
.

DNS
Internet, Internet

315
9
.com, .net, .uk . DNS -

,
(Root Hints), , -
.
,
.
\%systemroot%\system32\DNS\cache.dns
Web-:
ftp://ftp.rs.internic.net/domain/named.cache
(forwarders), , , -
.
,
, -
Internet. -
, -
DNS- Internet-. -
DNS- Active Directory
AD DNS- DNS-
, , Unix BIND.
, -
, DNS- .

. , -
companyabc.com companyxyz.com,
DNS-, Internet
, .
, ,
,
. , -
.
DNS Windows Server 2003 ,
, .
ToolsDNS.
2.
Properties.
3. Forwarders ().
4. DNS Domain ( DNS) ,
. , , New ().

316
III
5. IP- Selected domains forwarder IP ad-

dress list ( IP- ),
. 9.17.
6.
, Do Not Use Re-
cursion For This Domain ( ).
7. , OK.
. 9.17.
WINS
WINS, DNS -
WINS DNS. -
DNS DNS-,
WINS-. DNS
WINS .
WINS DNS .
ToolsDNS.
3. -
Properties.
4. WINS.
5. Use WINS Forward Lookup (
WINS).
6. IP- () WINS, Add (-
), OK, .

317
9
Microsoft DNS
, Windows 2000 DNS.
, , ,
-
DNS, Windows 2000.
DNS Windows 2000,
DNS Windows Server 2003 DNS.
, Active Directory
DNS, Windows 2000,
DNS, AD--
. Active Directory, ,
DNS. Active Directory -
DNS. -
Kerberos DNS -
, , DNS- -
.
Windows Server 2003 AD- , -
. , ,
Active Directory, .
.

, DNS
(Dynamic DNS DDNS)
.
Windows 2000 DNS, Windows Server 2003.
Unicode
Unicode DNS , -
Unicode, -
. DNS- , -
: ,
.

DNS Microsoft Unicode,
DNS DNS,
Unicode -
DNS (, Unix BIND) .
az, AZ, 09 (-).

318
III
DNS Windows Server 2003

, DNS Windows 2000, Windows Server 2003
DNS
Microsoft . -

DNS Windows Server 2003.
DNS

, DNS Windows Server 2003
Active Directory AD. -
,
AD- . -
, DNS
.
, Windows 2000, AD- -

.
.
, , -
, -
.
DNS
DNS -
, -
DNS. ,
Active Directory. ,
DNS MMC
Configure a DNS Server ( DNS-).

Windows 2000 -
(island problem), DNS-,
DNS-. IP- DNS-
DNS, DNS- -
, IP-.
DNS- .
DNS, -
IP- .
DNS- DNS- , -
.

319
9
_msdcs

Active Directory -

SRV DNS. SRV Active Di-
rectory, _msdcs.
Windows Server 2003 _mscds DNS, -
. 9.18. , , -
, DNS-.
SRV .
Windows 2000 _msdcs -
DNS, -
. SRV -
, DNS-
,
.
. 9.18. _msdcs

DNS Active Directory. - -
.
, Active Directory
X.500, DNS. , Ac-
tive Directory DNS -
. -
Active Directory

320
III

Windows 2000, DNS -
Active Directory.
, -
Active Directory.
Active Directory
DNS.
DNS, -
DNS ,
AD.
DNS . -
AD-
, DHCP- . ( -
.) , -
DNS DNS.
Active Directory DNS,

Microsoft
Active Directory -
DNS, Microsoft -
SRV-. , Active Directory -
Unix BIND 8.1.2 . -
, Microsoft,
DNS Active Directory Win-
dows Server 2003, -
.
, DNS, ( -
) Active Directory -
, DNS Active Directory , -
DNS, -
.

Active Directory
Active Directory -
. ,
, -
, -
Windows 2000 DNS.
-
, -
, .

321
9
DNS -
, . 9.19. Windows Server 2003
DNS- , -
.
.
AD CompanyABC
abcroot.local companyabc.com
DNS- DNS-

abcroot.local companyabc.com
AD-- AD--

companyabc.com abcroot.local

. 9.19. DNS -

SRV
Active Directory DNS.
, Active Directory
SRV, , -
. , Windows Server 2003 SRV -
,
DNS.
, -
. , SRV -
, -
. , -
: Active
Directory , DNS
SRV .
, SRV SRV,
. , , , -
WAN, -
.
,
, . 9.20. -

322
III
- .
,
. ,
. -
SRV -
.
. 9.20. SRV
DNS
DNS , ,
.
DNS
. -
DNS .

DNS
,
(Event Viewer) , .
DNS, , -
DNS MMC. -
, DNS,
.

. -
,
. ,
.

323
9

ToolsDNS.
2.
Properties.
3. Debug Logging ( ).
4. Log Packets for Debugging ( -
).
5. OK.
DNS
Preformance (), Sys-

tem Monitor ( ) Performance Logs and Alerts (-
) , -
, , .
DNS, ,
, .

HOST
Windows 2000
, ,
.
, .
, .
, -
ipconfig /flushdns.
HOSTS, -
IP-.
\%systemroot%\system32\drivers\etc.
DNS, , -
HOSTS DNS.

NSLOOKUP
NSLOOKUP ,
, DNS. , -

DNS. NSLOOKUP -
DNS-
. , www.companyabc.com,

324
III
nslookup www.companyabc.com. NSLOOKUP -

. , , . 9.21,
MX SOA, -
:
1. , Start All ProgramsAcces-
soriesCommand Prompt (
).
2. nslookup <Enter>.
3. set query=mx <Enter>.
4. <> <Enter>.
5. set query=soa <Enter>.
6. <> <Enter>.
. 9.21. MX NSLOOKUP
NSLOOKUP . -
nslookup /? . NSLOOKUP
-
.

IPCONFIG
DNS
IPCONFIG, TCP/IP.
DNS IPCONFIG . -
.
ipconfig /flushdns.
flushdns. -
, , ,
IP-,
.

325
9
ipconfig /registerdns. registerdns -

DNS,
.
ipconfig /displaydns. , . -
-
, .

, , Windows 2000
. , , NT 4.0,
IPCONFIG, , Win9x, -
WINIPCFG. ,
, ? (ipconfig /?).

TRACERT
TRACERT , -
DNS- . ,
TRACERT www.microsoft.com, , DNS-
. TRACERT , .
DNS- TTL, 1.
TTL 1, , -
-
. TTL 1, .
.
, ,
. 9.22. , , -
DNS- Internet.
. 9.22. TRACERT

326
III

DNSCMD
DNSCMD DNS
MMC. -
(Support Tools) Windows Server 2003,
, -
. ,
- Windows Server 2003 ( -
\support\tools). ,
DNSCMD /? (. 9.23).
. 9.23. DNSCMD
DNS ,
. Windows Server 2003 DNS
, DNS Windows
2000. DNS Active Directory
DNS Internet ,
-
.

327
9

Active Directory DNS Windows
2000/2003. DNS Windows,
SRV, , , BIND 8.1.2 .
,
, -
, DNS -
.
, DHCP -
DNS .
,
.
DNS-, DNS- ,
DNS-.
DNS
, -
Unicode DNS (, Unix BIND) .
az, AZ, 09 (-).

DNS , -
, .

DHCP, WINS

10
...

DHCP, Windows
Server 2003
DHCP
DHCP
DHCP
Internet- Windows
WINS
,
WINS

330
III

,
.
,
- .
(Dynamic Host Configuration Protocol
DHCP) Internet- Windows (Windows Internet Naming Service WINS),
,
- .
, , DHCP WINS,
, ,
. -

.
DHCP WINS,
. , ,
.
,
,
, -
, , -

, -
, -
. , -
, -
(Network Operating System NOS).
() -
-
, .
TCP/IP (Transmission Control Protocol/Internet Protocol -
/ Internet)
.

Internet, -
DHCP, WINS
331
10
Microsoft Win-
dows 2000. Windows Server 2003 TCP/IP -
,
Microsoft.
TCP/IP , IP-
10.23.151.20. IP-
.
, DHCP Windows Server 2003.
DHCP Windows Server 2003 -
TCP/IP . DHCP -
, .

.
, IP-,
.
(Domain Name System DNS) IP- -
(Fully Qualified Domain Name FQDN), -
Active Directory Internet DNS.
( ) Windows Server 2003
9.
Microsoft Net-
BIOS IP- WINS. ( -
) Windows Server 2003,
NetBIOS, WINS .
, ,
. ,
Internet- Windows.

. -
, -
.
Active Directory , Windows Server 2003
. , -
-
, -
, Active Direc-
tory .
,
, -
.

332
III

Windows Server 2003
Windows Server 2003
. ,
.
, DHCP,

WINS, -
.
, -
DHCP.

DHCP ,
. , -
.
DHCP.
DHCP
, TCP/IP, , -

. TCP/IP -
,
. (IP-)
, -
TCP/IP.
IP- . -
,
.
-
IP- -
. DHCP: RARP BOOTP.
DHCP: RARP BOOTP

IP- -
(Reverse Address Resolution Pro-
tocol RARP). RARP IP- -
. , ,
-
IP-, , TCP/IP
.
DHCP, WINS
333
10
RARP (Bootstrap Protocol

BOOTP), IP-

cookie 64- BOOTP,
, , DNS- .
RARP,
: -
, .
DHCP
(Dynamic Host Configuration Proto-
col DHCP) BOOTP.
DHCP BOOTP,
cookie, -
, DNS-, WINS- .
DHCP . -
, IP-
. , UDP- 67,
, IP-
(. 10.1).
IP-, , -
. DNS WINS, ,
. , -
, IP- -
, .
10.1.2.242
DHCP- DHCP-
DHCP-, -
UDP- 67, DHCP-
IP- ,
- . IP-.
IP-.
. 10.1. IP- DHCP

334
III
DHCP
DHCP DHCP-.
IP- , DHCP.
- Windows 2000 -
TCP/IP -
.
, DHCP -
DHCP-, IP- .
Windows DHCP,
. IP- DHCP-
Windows.
IP-
Windows 2000 -
, , , IP-
. , IP-
(Automatic Private IP Addressing APIPA).
APIPA IP- 169.254.0.0/16, -
TCP/IP .
APIPA , -
, -
. DHCP- ,
,
APIPA. , -
.
Microsoft , -
APIPA . :
HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\
<>\IPAutoconfigurationEnabled:REG_DWORD=0
, .
1. , Start () Run
() regedit.
2.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Tcpip\Parameters|Interfaces\
<>
( ).
3. <> -
NewDWORD Value ( DWORD).
4. DWORD: IPAutoconfigurationEnabled.
5. , 0.
6. OK, .
DHCP, WINS
335
10

Windows XP APIPA
IP, IP- -
DHCP. .
DHCP
DHCP- DHCP -
,
. , -
DHCP -
DHCP-, . -
, Cisco ip-helper -
, IP- ,
. -
, Windows,
(Routing and Remote Access),
DHCP (. 10.2).

DHCP -
DHCP -
DHCP-. , -
DHCP.
2

DHCP-.
- -
3 4 5 1 2 7 8 9
1 3
1 2 6

DHCP
DHCP- 10 11

1 -
2 DHCP 3
1 -
DHCP. DHCP-.
. 10.2. DHCP

336
III
DHCP DNS
DNS DNS (Dynamic DNS
DDNS). 9.
DNS Windows Server
2003 DDNS DHCP.
Windows 2000 -
. DHCP , -
DDNS , .
DHCP Manager
( DHCP) MMC.
DHCP
DHCP . Windows Server 2003
Configure Your Server Wizard ( -
). DHCP -
New Scope Wizard ( ),
(scope) DHCP.
Windows Server 2003 DHCP- .
1. Start All ProgramsAdministrative ToolsConfigure Your
Server Wizard (
).
2. Next ().
3.
Next. .
4. DHCP Server (DHCP-) Next.
5. , . 10.3, -
Next.
. 10.3. DHCP
DHCP, WINS
337
10
6. New Scope Wizard,

. Next.
7. . , ,
10.1.1.0/24 Scope. Next.
8. , -
IP-. , , -
. 10.4. Next.
9. .
,
. Next.
10. . -
DHCP. Next.
11. DHCP
. , WINS-
DNS-. Yes, I Want to Configure These Options
Now (, ) -
Next.
12. IP- , ,
Next.
13. DNS-,
Next.
14. WINS-,
Next.
15. , :
. , ,
. Next.
. 10.4. -

338
III
16. , Finish ().

17.
DHCP-, . 10.5. -
, Finish.

DHCP
, DHCP .
, ,
DHCP DHCP- Win-
dows Server 2003, , DHCP.
. 10.5. -
DHCP
DHCP, Windows
Server 2003
, Windows Server 2003 DHCP -
. -
Windows 2000,
, DHCP Windows 2000.

DHCP
Windows Server 2003
DHCP ( ) . DHCP

DHCP, WINS
339
10
,
MMC.
DHCP
.
1. DHCP, Start All ProgramsAdminis-
trative ToolsDHCP ( DHCP).
2.
Backup ( ), . 10.6.
. 10.6. DHCP
3. OK. -
.
4. DHCP, 1.
5.
Restore ().
6. , -
, Yes (). -
.

DHCP -
,
DHCP- . , DHCP
( Windows Server 2003) -
, -
DHCP .

340
III
DHCP

DHCP, Windows Server 2003
Windows XP IP-, -
DHCP. IP-
APIPA, .
, , -
. , -
DHCP. IP-
, . -
Windows XP, :
1. Start Control Panel ( ).
2. Network Connections ( ).
3. -
Properties ().
4. TCP/IP Properties.
5. Alternate Configuration (-
).
6. Static IP Information ( IP-)
OK.
7. Close (), .
DHCP
DHCP . DHCP
, .
DHCP
DHCP.
, DHCP - -
DHCP- -
. -
DHCP
. -
, -
, , .
DHCP
50/50
50/50 DHCP-,
. DHCP-
, IP-
, IP-.
DHCP, WINS
341
10
50/50 . 10. 7. , -
200 , 192.168.1.0/24. DHCP-
, . 1 -
, IP-, 192.168.1.1
192.168.1.125. 2 ,
192.168.1.126192.168.1.254.
192.168.1.0/24
200
50%
:
: 192.168.1.1-192.168.1.254
: 192.168.1.126-192.168.1.254
1
50%
:
: 192.168.1.1-192.168.1.254
: 192.168.1.1-192.168.1.125
2
. 10.7. 50/50
IP- , -

.
, DHCP -

IP-. ,
.
, , -
, .
DHCP- , -
. ,
,
DHCP.
DHCP -
, -
, ,
. -
,
, IP-
. , ,
.

342
III
DHCP
80/20
80/20 50/50, ,
, DHCP-
, 20% IP- .
, 20% ,
, .
, 80% , -
,
(. 10.8).
192.168.1.0/24
200
80%
:
: 192.168.1.1-192.168.1.254
: 192.168.1.204-192.168.1.254
1
20%
:
: 192.168.1.1-192.168.1.254
: 192.168.1.1-192.168.1.203

2
. 10.8. 80/20
1 2
, 1 .
, 1
,
.
, 80% .
50/50, -
DHCP-,
.
DHCP
100/100
DHCP Windows Server 2003 100/100 -
DHCP.
,
.
DHCP, WINS
343
10
100/100 -
DHCP-, -
.
IP- , -
.
. 10.9 10.2.0.0/16 750 . -
DHCP-,
. 10.2.1.1 10.2.8.254.
1 IP-, 10.2.1.1
10.2.4.254. 2 IP-, -
10.2.5.110.2.8.254. , -
, 1000
.
10.22.0.0/16
750
100%
: A
: 10.2.1.1-10.2.8.254
: 10.2.4.255-10.2.8.254
1 10.2.1.255
10.2.2.255
10.2.3.255
100%
: B
: 10.2.1.1-10.2.8.254
: 10.2.1.1-10.2.4.255
10.2.5.255
2 10.2.6.255
10.2.7.255
. 10.9. 100/100
DHCP ,
, -
IP- .
. -
IP- , -
. ,
. , DHCP-
, -
.

IP- , -
. , ,
IP-. , -
IP-, , , -
(10.x.x.x ..), .

344
III
. 10.9, , -
, .

IP-, 10.x.x.x 192.168.x.x,
IP- ,
IP-,
.
DHCP, IP-.

DHCP- DHCP
, .
,
, , .
, DHCP , -
DHCP .
.
-
.
DHCP-
DHCP
. ,
, .
, -
, . -
31.
DHCP
DHCP
. , DHCP -
.
DHCP.
Windows 2000. DHCP
.
DHCP
DHCP ,
. , -
.
. , -
. DHCP . 10.10.
DHCP, WINS
345
10
. 10.10. DHCP
DHCP
,
IP-. IP- ,
,
, Web- -
.

DHCP
, -
. -
DHCP , Windows
Server 2003
DHCP Administrators ( DHCP).
, ,
DHCP-.
Netsh
.
, -
( Unix), -
, -
.

346
III
Netsh ,
DHCP,
MMC.
Netsh
netsh /?. . 10.11.
. 10.11. Netsh
DHCP
DHCP dhcp.mdb \%systemroot%\system32\dhcp.
Microsoft JET,
Exchange Server, Active Directory Microsoft.
, -
JET, DHCP
,
. DHCP
( ) ,
, . -
DHCP- ,
dhcp.mdb.
Windows Server 2003 dhcp.mdb DHCP
jetpack. DHCP-,
,
, . 10.12.
cd %systemroot%\system32\dhcp
net stop dhcpserver
jetpack dhcp.mdb tmp.mdb
net start dhcpserver
DHCP, WINS
347
10
. 10.12. DHCP

-
DHCP Microsoft JET.
. -
, , ,
.
DHCP
DHCP . -
, . -
DHCP- ,
IP-, -
IP-.
. ,
-
DHCP, , -
. -
, 802.11b, ( -
) .
,
DHCP
.
DHCP
DHCP , -
DHCP
. Windows
2000 DHCP-, Active
Directory. DHCP- -
IP-.

348
III
, -
Windows NT 4.0 Linux. -
DHCP- -
.
DHCP- Windows Server 2003 ,
Active Directory,
DHCP. -
.
1. DHCP (DHCP Manager), Start All
ProgramsAdministrative ToolsDHCP (
DHCP).
2.
Authorize (), . 10.13.
3. DHCP- , -
.
. 10.13. DHCP-
DHCP
DHCP Active
Directory, SVR-.
.
DNS AD- DNS ,
, . -
DHCP ,
-
.
DHCP, WINS
349
10
DHCP Windows Server 2003 -

DHCP- Active Directory,
DNSUpdateProxy. , -
DNS. , -
.
: DHCP-
, , -
. -
SVR DNS, , Ker-
beros , ,
. , DHCP -
. ,
DHCP-
DNSUpdateProxy.
Internet- Windows
Internet- Windows (Windows Internet Naming Service WINS)
Microsoft . Microsoft -
,
NetBEUI.
, -
, -
. TCP/IP
NetBIOS- IP-.
WINS.
,
Microsoft NetBIOS
WINS NetBIOS
IP-. 16- NetBIOS, WINS,
: , .
Microsoft WINS , -
NetBIOS
(Domain Name System DNS). -
WINS,
( Windows 2000),
Microsoft, DFS, WINS. -
, WINS Windows,
, .
WINS DNS
DNS WINS WINS
DNS. , , , DNS- -

350
III
client1.companyabc.com, DNS-
WINS , ,
WINS. Client1 -
DNS, WINS, DNS- IP-, -
WINS, companyabc.com,
. 10.14.
1
1. DNS-
client1.companyabc.com.

4
2 2. DNS-
DNS- DNS,
WINS.
3
3. WINS
CLIENT1 DNS-.

WINS 4. DNS- IP-,
companyabc.com.
client1.companyabc.com = 10.1.2.165
. 10.14. WINS DNS

DNS-,
. WINS- DNS-
, .
1. , DNS, DNS
MMC, Start All ProgramsAdministrative ToolsDNS (
DNS).
2. DNS \ <_> \ Forward Lookup Zones (DNS\
<_>\ ).
3.
Properties.
4. WINS.
5. Use WINS Forward Lookup (
WINS).
6. IP- () WINS OK, -
, . 10.15.
DNS 9.
WINS Windows Server 2003

Windows Server 2003 WINS -
, -
:
DHCP, WINS
351
10
. 10.15. -
DNS WINS
WINS.
WINS , -
NetBIOS -
. Windows Server 2003 WINS -
,
.
WINS -
. , -
, -
. WINS -
.
WINS Windows 2000: -
, , -
.
WINS
WINS Configure Your Server
Wizard ( ). -

. -,

352
III
WINS
WINS -
, .
Server Wizard ( -
).
2. Next ().
3. , ,
Next. .
4. Server Roles ( ) WINS Server ( WINS)
Next.
5. Summary () Next.
6. Windows Server 2003,
Next.
7. Finish ()
, . 10.16.
. 10.16. WINS

WINS,
, IP- -
, .
WINS, .
-
.
DHCP, WINS
353
10
(push partner) - WINS

WINS, , WINS.
(pull partner) WINS, . ,
1 2, -
2 1, .
/ WINS -
. , -
, , , -
WINS, / WINS
. 10.17.
EURWINS01
REDWINS01
TOKWINS01
SFWINS01 SFWINS02
BAKWINS01
LAWINS01 LAWINS02
HONWINS01
SDWINS01
. 10.17. / WINS
WINS
WINS -
, .
, -
. WAN ,

354
III
WINS .
/ , . -
, 30 ., .
1. WINS, Start All ProgramsAdministrative
ToolsWINS ( WINS).
2. Replication Partners ( ).
3. Push/Pull Partner (
/) ( , )
Properties.
4. Replication Interval ( ) -
, . 10.18, OK, -
.
. 10.18. WINS
, . 10.18, -
/: , -
.
NetBIOS
LMHOSTS
IP- NetBIOS Windows
WINS.
Windows. -
NetBIOS. IP-
, . -
nbtstat -R ( R).
DHCP, WINS
355
10
, WINS -
LMHOSTS, . LMHOSTS -
, .
WINS,
( \%systemroot%\system32\drivers\etc ).
,
WINS
, WINS
, Net-
BIOS, Windows. Windows Server 2003 -
WINS ,
WINS .
WINS
WINS .
.
WINS . WINS -
, , 510 , -
, , WINS. WINS
, -
-
WINS.
, -
. ,
WINS.
WINS
WINS
WINS. -

.
WINS -
. WINS -
, -
WINS. WINS . 10.19.
. 10.19 1 2
CompanyABC. IP- 10.1.1.11 10.1.1.12,
IP Pri-
mary WINS ( WINS) Secondary WINS ( WINS).
1 2 -
/.

356
III
10.1.1.11 10.1.1.21
1 1
10.1.1.12 10.1.1.22
2 2
. 10.19. -
WINS
1 2 WINS -
/ . IP-
10.1.1.21 10.1.1.22. 1 1
/ . -
WINS ,
. 10.19.
WINS -
(
), 1 2 IP- -
, . 10.20.
X
1
10.1.1.11
X
/
IP-
10.1.1.12
2 2
. 10.20. WINS
/
1 2, IP- .
WINS ,
. ,
IP-, - .
. IP-
, WINS . -
DHCP , -
, WINS
DHCP, WINS
357
10
DHCP.
WINS, -
WINS.
WINS
DHCP, WINS
Microsoft JET , , . -
WINS
. WINS wins.mdb
\%systemroot%\system32\wins. ,
:
cd %systemroot%\system32\wins
net stop wins
jetpack wins.mdb tmp.mdb
net start wins

Windows Server 2003
Active Directory.
-
, , , -
.
-
4 5.
Active Directory
Active Directory Active Di-
rectory. Active Directory Windows Server 2003
, -
, .
1. Active Directory Sites and Services ( Active
Directory).
2. Sites \ <_> \ Servers \ <_>.
3. NTDS Settings ( NTDS)
Properties.
4. Global Catalog ( ), .
10.21.

358
III
. 10.21. -

/
, -
,
. -
,
, .
, / (GC/DC)
(WAN) , Windows
Server 2003 .

, Active
Directory ,
,
.
-
GC/DC,
,
. :
, GC/DC,
, GC/DC.
DHCP, WINS
359
10
-
:
2. Sites \ <_>.
3. NTDS Site Settings
( NTDS) Properties.
4. Enable Universal Group Membership Caching (
),
. 10.22.
. 10.22. -

, -
DC GC/DC . -
GC/DC
-
. Windows Server
2003 :
, 50 . DC -
.
, 50100 . DC -
.

360
III
, 100200 . GC
DC.
, 200 . 100 -
DC GC/DC.
, -
. , , -
Microsoft Exchange, . -
Active
Directory .
DHCP WINS , -

Active Directory. ,
, -

, .

DHCP .
DHCP
Microsoft JET.
DHCP WINS.
,
WINS.
WINS -
.
DC GC/DC -
.
Active Directory, 50 ,
.
Active Directory, 50 100 ,
.

Internet
IIS 6 11
...
IIS 6
IIS
IIS
IIS

FTP

IIS
IIS
IIS

Internet Explorer

362
III
Internet (Internet Informa-

tion Services IIS) -
. IIS 6 .
, ,
.NET, Microsoft.
-
Web- ,
Microsoft IIS.
Microsoft , -
. Microsoft
IIS ,
.
IIS 6
IIS . -
.NET, , -
.
IIS 5 , inetinfo.exe, IIS 6 -
:
Http.sys. HTTP .
Web- Http.sys,
HTTP-. Http.sys -
IIS . Http.sys
: TCP-, ,
(Quality of Service QoS) -
IIS.
Web- (Web Administration Services WAS).
-
.
World Wide Web (World Wide Web Publishing Service W3SVC). -
, WAS
IIS . WAS
.
/ . -
, , -
Web-. WAS -
Http.sys. -
IIS .
IIS (IIS Admin Service). -
Web , FTP, SMTP, NNTP -
IIS.
IIS Web-,
Web-.
Internet IIS 6
363
11
IIS -
:
IIS, -
,
Web-.
64- Web-
. 64-
.
. -
Internet (Internet Service Pro-
vider ISP) (Application Service Provider ASP).
-
.
IIS 6 ,
.

IIS (IIS Lockdown Wizard). -
IIS.
IIS .
( .htm, .jpg ),
, ,
(Active Server Pages ASP), .
IIS .
Web-.
, Web-
Web-, .
IIS FTP. , -
,
. -
.
(Secure
Sockets Layer SSL): , -
.
IIS Kerberos .
IIS , -
. -
,
.
IIS ,
.NET (.NET Passport).

364
III
, ,
-
Web- .
IIS 6
XML (eXtensible Markup Language
). XML -
.
Web-,
.
Windows (Windows Mana-
gement Interface), .
IIS ,
.
IIS
IIS,
. -
IIS, -
:
.
IIS .
IIS,
.
, ,
.
,
, -
.
,
.
IIS .

-
, . -
-
. -
. , IIS
, 1 ,
RAID- 15 000 /.
Internet IIS 6
365
11

Web,
.
Web- , Web- -
99,999%. -
(Service Level Agreements SLA).
(,
), Web- -
.
Web-
, Web- -
Web- Windows Server 2003 -
(Network Load Balancing NLB). NLB -
,
Microsoft. -
(, IIS, -
, , ), . 11.1.
IBM-

ASP
IIS
. 11.1.

366
III
IIS
, , Microsoft -
IIS . ,
, -
Web-, IIS, -
.
IIS . -
: Add or Remove
Programs ( ) , -
Manage Your Server Wizard ( ), -
IIS Add or Remove Programs
, .
1. Start Control Panel ( ), -
Add or remove Programs ( ).
2. Add or Remove Programs
Add/Remove Windows Components (
Windows).
3. Windows Components Wizard ( Windows)
Application Server ( ). -
, , Details ().
4. Application Server ( ),
. 11.2, (,
ASP.NET, COM+, Internet ).
,
. Internet Information Services (IIS) (-
Internet (IIS)) Details.
. 11.2. -

Internet IIS 6
367
11
5. , . -
, .
OK.
6. Next () Windows,
IIS.
7. Finish ().
IIS , -
:
1. Manage Your Server Wizard ( ) -
Add or Remove a Role ( ).
2. Configure Your Server Wizard ( -
) Next. Windows Server 2003 -
.

. -
.
3. Web Application Server (IIS, ASP.NET) ( Web-

(IIS, ASP.NET)), Next.
4. FrontPage Server Extensions ( -
FrontPage) Enable ASP.NET ( ASP.NET)
Next.
5. Next,
IIS.
6. Finish.
,
, -
.
IIS
Windows Windows Server 2003 -
IIS. Windows Server 2003
, IIS, .
.
IIS Windows Server 2003 , -
. Web-, IIS 6, -
.
Web- IIS,
Windows. -
Windows IIS, -
Web-,
, . Web- .

368
III
IIS
IIS 5.
.
IIS
IIS Web- .
Web- , -
. IIS Windows Server 2003
.
IIS Internet Information
Services, All ProgramsAdministrative Tools ( -
) Start.
IIS
Web-,
IIS , -
. IIS, . 11.3,
IIS.
. 11.3. IIS
, .
Application Pools ( ). -
, . -
, -
IIS. -
, Web- .
, DefaultAppPool ( ) -
.
Internet IIS 6
369
11
Web Sites (Web-). Web-, -

Web-. Default Web Site .
Web Service Extensions ( Web-). Web-
, Web- IIS. ,
FrontPage Server
Extensions ( FrontPage) ASP.NET.
, Web-,
. 11.4.
. 11.4. Web-
Web-
, IIS 10 000 Web- Web-
. Web-
, , , -
. Web-,
Internet, IP- -
. IP-
Web-,
Internet, .
Web-
IP- , ,
Web- Internet
Web-. , , http://www.companyabc.com, -
Web-
. , Web-, -
http://www.companyabc.com/NewWebSite/.

370
III
Web- IIS
Default Web Site Web Sites (Web-
) IIS. ,
Web-.
Web-, :
1. Web Sites. -
NewWeb Site (Web-), , Web-
XML-, NewWeb Site (From
file) (Web- ( )).
XML-.
2. Web Site Creation Wizard
( Web-). Next ().
3. Web- Next.
4. ,
IP- , TCP (Host Header) Web-
. Next.
5. ( Browse ())
.
Next.
6. . -
Read (), Run scripts ( ), Execute (),
Write () Browse (). Next.
7. Finish.
Web-
ISS Web Sites Default Web
Site Properties -
Web-. ,
Web-, -
.
Web-.
Default Web Site Properties ( Web-), -
. 11.5, Web-. -

. .
Web Site (Web-).
, .
Web-, IP- TCP SSL.
.
W3C Extended Log File Format ( -
W3C).
Internet IIS 6
371
11
. 11.5. Web-
Performance (). ,
. 11.6,
(/) -
. -
, Web- , -
Web-.
Web- .
. 11.6.
Performance

372
III
ISAPI Filters ( ISAPI). ISAPI ,

HTTP-.
, Web-.
Home Directory ( ). -
Web-. Default Web Site
, Web-
. , . 11.7, -
Web-: Read (), Write (), Browsing
(), Script source access ( ), Indexing
() Application logging ( ). ,
,
.
. 11.7. -
Web-
Documents ().
Web- . -
Web-.
Directory Security ( ). ,
. 11.8, , -
IP- ,
. , -
,
. ,
IIS.
HTTP Headers ( HTTP).
Web-. Web-,
, HTTP, -
Internet IIS 6
373
11

Internet (Multipurpose Internet Mail Extensions MIME).
Custom Errors ( ). -
HTTP.
Web-.
. 11.8. Directory Security

, Service (), -
Web Sites Properties.
IIS IIS 5. , -
HTTP
. . 11.9.

Web-,
, , -
. Web-,
.
-
, Web-. , , Web-
CompanyABC (http://www.companyabc.com) Web- -
, . -
CompanyXYZ Web- :
http://www.companyabc.com/companyxyz/

374
III
. 11.9. HTTP
IIS -
.
1. Web-,
, NewVirtual Direc-
tory ( ). Virtual
Directory Creation Wizard ( -
) Next ().
2. Next.
3. Web-
Next.
4. (Read, Run scripts, Execute, Write Browse)
Next.
5. Finish.
Web-, ,
. -
. 11.10. , Web- -
.
: Virtual Directory ( ), Docu-
ments (), Directory Security ( ), HTTP Headers (-
HTTP) Custom Errors ( ). -
,
Web-.
Internet IIS 6
375
11
. 11.10.

Web- , Web-
. IIS
. -
Web- IIS Web-.

IIS :
IIS 5. Http.sys -
. (application pool)
Http.sys (worker process).
URL-, -
. , DefaultAppPool
Application Pools ( ).
Web- Web-
. ,
- -
. -
.
, -
IIS -
.

376
III
IIS 5 ,
IIS ( -
IIS 5). , -
. -
, -
, . ,
, .

IIS 6 -
. IIS 6 (IIS 4 5)
IIS 5. -
.
IIS 6
Web- . ,
Web- .
.
, Web- -
- .
Web-
, -
. ,
(recycling) -
IIS 6. IIS 6
Web-
-
Web-.
Web-, -
. -
, -
.
Recycling () Properties -
, . 11.11, -
( 1 740 , 29 ),
,
.

:
Web (Web Administration Services WAS)
, . -
, (overlapping recycling), -
.
, WAS .
Internet IIS 6
377
11
. 11.11.
,
. -
. , Web- -
ISAPI. , Web-
, , -
.
IIS
, IIS 6, -
. , WAS -
.
.
-
-
.
, WAS
, .

, .
, , , -
.
-
. -
Performance () . -

378
III
, -
:
Idle Timeout ( ). -
. -
20 .
Kernel Requests Queues ( ).
.
, -
1000.
CPU Utilization ( ).
, -
. . , -
-
.
Web Gardens (Web-). -
.

IIS , Active Server Pages,
ASP.NET, COM+, Java, Common Gateway Interface (CGI) FastCGI. -
, -
. -
IIS. , ASP
ASP.NET IIS -
, , -
.

FTP
FTP (File Transfer Pritocol )
TCP/IP,
, .
FTP IIS, FTP,
FTP IIS.
FTP , .
1. Add or Remove Programs ( -
) .
Add/Remove Windows Components (
Windows).
3. Windows Components Wizard ( Windows)
Application Server ( ).
Internet IIS 6
379
11
4. Details (), Application Server (

), . 11.12, IIS.
5. Details File Transfer Protocol
(FTP) Service ( FTP).
6. OK.
7. Next , Windows Server 2003
FTP.
8. Finish ().
. 11.12. Web- IIS
FTP

IIS FTP -
FTP. ISP ASP,
. FTP
Web- FTP-.

FTP.
FTP , -
.
FTP FTP-,
, . , -
FTP, . -
FTP , FTP-
. -
, FTP
, , -
, .

380
III

FTP Active Directory
Active Directory ( Active Directory) -
FTP.
FTP- . , -
Active Directory FTP
IPSec, SSL.
FTP FTP-. -
Isolate Users ( -
) . ,
.
FTP-
Default FTP Site. -
FTP- ( Default FTP Site) .
1. FTP Sites (FTP-)
NewFTP Site (FTP-).
XML- FTP- FTP Site (From
File) (FTP- ( )).
2. FTP Site Creation Wizard ( FTP-)
Next (), FTP-.
Next.
3. IP- , FTP. FTP
21. Next.
4. -
FTP. : ,
Web-
Active Directory. Next.

FTP -
.
5. FTP, Next.
6. FTP- ( ) -
Next.
7. Finish ().
FTP
11.13 11.14,
FTP. FTP
Sites (FTP-). FTP-.
Internet IIS 6
381
11
. 11.13. FTP-
. 11.14. FTP
FTP Sites -
FTP-. FTP-
.
FTP Sites .
FTP Site (FTP-). .
FTP-.

382
III
Security Accounts ( ).
-
.
Allow Anonymous Connections ( -
), . 11.15, -
SSL.
Yes () .
, SSL.
. 11.15. -

Messages (). FTP -

FTP-.
:
Use of this FTP Site is by permission only. All uploads and downloads
must adhere to the data transmission policies is Company ABC.
FTP- .

, Company ABC.
, - -
:
You have been disconnected because a maximum user limit has been reached.
Please try again later.
-
. .

FTP-.
Internet IIS 6
383
11
Home Directory ( ). Web Site

Home Directory ( Web-), Home Directory FTP
FTP-.
(Unix MS-DOS).
MS-DOS.
Directory Security ( ). -
TCP/IP IP-. -
FTP IP- IP-.
FTP Sites FTP- .
FTP- :
FTP Site (FTP-). -
IP- .
Home Directory ( ). -
FTP.

IIS
IIS -
.
, .
IIS . , -
, IIS. SMTP, NNTP
Indexing ().
SMTP
(Simple Mail Transport Protocol)
, -
Web-. Web- IIS -
. SMTP, :
1. Add or Remove Programs .
Add/Remove Windows Components.
3. Windows Components Wizard Appli-
cation Server ( ).
4. Details, Application Server ( -
) IIS.
5. Details SMTP Service (
SMTP), . 11.16.
6. OK.
7. Next , Windows Server 2003
SMTP.
8. Finish.

384
III
. 11.16. SMTP
NNTP
IIS NNTP -
.
. -
, .
News Service ( ) -
(Network News Transfer Protocol NNTP), -
. -
,
, , . -
( ) NNTP-
. NNTP-
Internet.
( ) .
-
NNTP-
. -
, SMTP-, -
, NNTP, SMTP.
Internet
IIS. Web-,
Web-.
C
, PDF-
(Adobe Acrobat), Web-. Windows Server 2003
, ,
Adobe. http://support.adobe.com -
iFilter.
Internet IIS 6
385
11
IIS
, IIS , -
.
Web-
. , IIS -
( -
).
Microsoft ,
.
Web-. ,
. Web- -
; .
Windows Server 2003

Windows Server 2003
.
, ( Windows Server 2003, -
) .
Web- Windows Server 2003 -
NTFS .
NTFS ,
, . -
, Web- Windows Server 2003,
, .
, , -
.

Windows Server 2003 IV.
Web-
, IIS -
( .htm, ), -
. IIS
. , Active Server Pages,
ASP.NET.
, -
.
1. IIS (IIS Manager) Web- -
Web Service Extensions ( Web-).

386
III
2. Web Service Extensions () ,

, Allow (), Prohibit (-
).
Web Service Extensions
, .
IIS
-
. IIS :
.
Web- .
Windows.
Active Directory. -
, , .
. , -
Windows, . -
.
.
. -
.
.NET Passport. .NET Passport Web-
, Microsoft.
Web-, ,
Microsoft, -
.NET Passport . -
, .NET Passport.
.NET Passport 14.
Authentica-
tion Methods ( ), . 11.17.
, Edit () Directory Security (
) Web-.
Web-
Windows Server 2003 Web- FTP-
( ),
,
.
Event Viewer.
IIS , -
,
, .
Internet IIS 6
387
11
. 11.17. -

SSL
(Secure Sockets Layer SSL) -
, -
, Web-
, . SSL
,
.
IIS SSL, IIS 6 . -
SSL IIS. IIS Windows Server 2003 -
:
SSL 50%
. SSL ,
.
SSL .
SSL. (-,
) -
SSL ,
. .
SSL.
. SSL
(Public Key Infrastruc-

388
III
ture PKI). ,
(Certificate Authority CA).
SSL.
. SSL ,
, CA.
SSL
SSL . -
.

SSL , -
. -
- SSL, SSL,
.
IIS, SSL Web-,

Web-. SSL
IIS, Administrative Tools Start.
SSL Web- , -
. -
CA, PKI. SSL Web-
, :
1. Internet Information Services (IIS) Manager ( -
Internet (IIS)), ,
Web-, Web-, .
2. Web-
Properties.
3. Directory Security Server Certificate (
).
4. Web Server Certificate Wizard ( -
Web-) Next.
5. Create a New Certificate ( ), -
Next.
6. Prepare the Request Now, But Send It Later ( -
, ), Next.
7.
( ). 1024 ( ) .
, .
Next.
8. Next.
9. IIS, Web-, Common
Name ( ). Internet,
server.domain.com.
URL-, -
Web-. Next.
Internet IIS 6
389
11
10. Country/Region (/), -

State/Province (/) City/Locality (/), -
. Next.
11. Next.
12. Request File Summary ( ) -
. Next,
Finish, .

CA. -
CA, :
1. URL- , -
(, http:///certsrv).
2. , -
, , -
.
3. Request a Certificate ( ).
4. Advanced Certificate Request (-
).
5. Submit a Certificate Request ( )
CMC PKCS #10 base-64
PKCS #7 base-64.
6. Submit a Certificate Request or Renewal Request (
) Browse for a File to
Insert ( )
.
7. Certificate Template ( )
, Web Server (Web-),
. 11.18. Submit ().
8. Certificate Issued ( )
Download Certificate ( ), -
Save (), -
.
SSL :
1. Internet Information Services (IIS) Manager Web-
, .
2. Web-
Properties.
3. Directory Security Server Certificate
( ).
4. Web Server Certificate Wizard
Next, Process the Pending Request and Install the

390
III
Certificate ( ). -
Next.
5. , ,
Next.
6. SSL Port ( SSL) SSL ( -
443) Next.
7. , Next. -
, Finish; - ,
Back () .
. 11.18.

FTP
FTP . -
. , -
,
, -
.
FTP
, .

HTTP. HTTP , FTP,
.
Internet IIS 6
391
11
FTP
FTP VPN-
(IPSec L2TP). ,
. VPN-
, .
FTP
, -
, FTP- -
FTP.
, FTP- . -
FTP , FTP- -
.
.
FTP
FTP:

NTFS.
, , -
, .
IIS -
.
IIS
IIS ,
IIS. IIS
IIS. , -
IIS -
.
IIS
. XML-, -
. IIS -
(
IIS). -
, . -
. -
.

. -
IIS, , -
Properties Enable Direct Metabase Edit
( ).

392
III
Windows Server 2003

IIS. IIS,
IIS,
.
1. IIS, Start All ProgramsAdministrative
ToolsInternet Information Services (IIS) (
Internet (IIS)).
2. Web-.
3. Action () All TasksBackup/Restore Configura-
tion ( /).
4. Configuration Backup/Restore ( /
) IIS
. ,
Create Backup ( ).
5. , -
, . 11.19.
. 11.19. -
IIS
6. OK, Close ().
:
%SystemRoot%\System32\Inetsrv\MetaBack
, IIS
.
IIS
IIS , -
IIS. IIS, -
.
.
.
Internet IIS 6
393
11
IIS W3C Extended Log File Format (

W3C), Microsoft IIS Log File Format ( Microsoft IIS)
NCSA Common Log File Format ( NCSA)
Http.sys. ,
.
, ODBC, .

IIS,
, Properties Enable
Direct Metabase Edit ( ).

Internet Explorer

, Internet Explorer (IE) IIS.
, ,
. IE Windows Server 2003 ,
Microsoft .
IE Enhanced Security Configuration (
IE) Windows Server 2003.
, IE (. 11.20)
.
. 11.20. -
IE

394
III
IE Enhanced Security Configuration

IE. Internet , -
, intranet- -
. Web-, -
. ,
Web- (. . 11.20).
, .
, . 11.21, Add (-
). URL- -
. , , -
, -
IE.
. 11.21.

, -
. Microsoft IE
Enhanced Security Configuration, -
Web, Web- ,
. Web- IE, -
,
.
IIS 6
, , .
Microsoft . -
Web- Microsoft -
, .
Internet IIS 6
395
11

IIS 6.0.
IIS 6.
IIS 6.
.
,
.

.
-
.
IIS .
Web,
.
IIS 5
,
IIS IIS 6.
IIS 6
.
IIS : -
,
-
.
FTP FTP-.
Web- PDF-
(Adobe Acrobat) iFilter.
IIS NTFS -
-
.
, Web-
.
-
.
Web- FTP-
( ),
, -
.
SSL .

396
III
IPSec L2TP FTP.

NTFS.
, , Windows
Server 2003.
IIS
.
.
IIS, -
.

IV
...
12.

13.

14. Windows
Server 2003
15.

399
12

12
...
Windows
Server 2003

400
IV
Windows
Server 2003
Microsoft (, , ) -
. ,
Windows NT Windows 2000,
( ),
Microsoft. -
, .

.
DNS, DHCP,
, ,
. ,
.
Win-
dows Server 2003 .
-
(Software Update Services)
Windows. ,
, -
.
Trustworthy Computing
Microsoft

, , Trustworthy
Computing ( ). -
Microsoft.
-
. Microsoft
, Microsoft
, -
.
Common Language Runtime

Microsoft Common Lan-
guage Runtime ( ). -
, , -

401
12
. ,
, ,
. -
, Common
Language Runtime Windows Server 2003.
, .
, , -
,
. :
, -
.
Windows Server 2003
, Kerberos,
NTFS , -
. -
-

.

, , , -
.
, Web- ,
. , -, -
,
.
, -
.
,
-
. ,
, .

,
.
.
-
.

402
IV
- -
.
-
.

, -
.
, ,

. ,
.
1. Start () All ProgramsAdministrative ToolsLocal
Security Policy (
).
2. Security Settings \ Local Policies \ User Rights
Assignment ( \ \
).
3. Allow Log On Locally (
).
4. , ,
. 12.1. ( , Web-
Web- -
IUSR_SERVERNAME.) .
. 12.1.

403
12

1 Local Security Policy Domain Se-
curity Policy ( ),

(Group Policy),
(OU), , -
. -
21.
Run As

-

.
,
.

Run As ( ) Windows Server 2003. ,
, IT-,
User (). -
, -
Run As, -
, Run As.
, , , -
-
.
, -
Run As Computer Management MMC.
1. ( ) Start All ProgramsAdministrative
ToolsComputer Management ( -
).
2. Computer Management (-
) Run
As ( ).
3. Run As, . 12.2, ,
, OK.

Run As . ,
, :
runas /user:DOMAINNAME\administrator cmd

404
IV
Run As -
, -
. ,
Active Directory Users and Computers
MMC , .
1. Start All ProgramsAdministrative Tools (
).
2. Computer Management
( ) Properties.
3. Advanced ().
4. Run with Different Credentials ( -
), . 12.3, OK,
.
. 12.3. -
. 12.2. Run As

, -
.
.
-
-
- (smartcard), -
.
PIN-.
PIN-, -
.
, -
.
-, . PIN-

405
12
.
, -
.
, , ,
.

,
.
, -
, . -
. ,

802.11b.
WEP, , , -
.
-
.
. ,
802.1x, -
. Microsoft ,
,
802.1x, , -
VPN .
WEP,
, .

-
, Internet. Internet -
. -
, Internet Security and Acceleration (ISA)
2000/2004 Microsoft, , , -
- (DMZ). -
, Windows Server 2003 Internet
.

ISA Server 2000 Windows Server 2003 ,
. Windows Server
2003 ( )
ISA Service Pack 1. , ISA Server 2004, -

406
IV

Windows Server Windows NT 4.0 Windows 2000

. , Win-
dows Server 2003 . -
Internet (Internet
Information Service IIS), .
,
, Configure Your Server Wizard ( -
). ,
.

-
.
DHCP DNS .
,
.
, -
, ,
.
, -
.

, ,

(Configure Your Server CYS) -
Windows 2000, CYS . -
DNS-, , CYS -
DNS,
.
,
. CYS ,
. -
WINS, -
.
.

407
12
1. CYS, Start All ProgramsAdministrative

ToolsConfigure Your Server Wizard (
).
2. Next
.
3. WINS, . 12.4,
Next.
. 12.4.
4. Summary () Next.
- Windows Server 2003. -
.
5. Success ( ) Finish.
6. 15,
. Next.


. (security template)
, -
. ,

408
IV
Kerberos
( ) . . 12.5 -
Windows Server 2003
securedc.inf.
. 12.5.
OU, -
(Group Policy Object GPO).
,
, . -
, , , -
- -
. -
.

, -
, . -
, Windows Server 2003, ,
, -
. -
, , -
Services () MMC. Services,
Start All ProgramsAdministrative ToolsServices ( -
).
. 12.6, Services MMC -
,

409
12
.
Services ,
, . -
,
,
-
.
. 12.6. Services MMC

, -
. -
GPO Active Directory.

. , Windows Server 2003,
Microsoft, Everyone ( -
) NTFS.
,
.
, -
,
.

410
IV
NTFS
Windows Server 2003
NT (NT File sys-
tem NTFS). , NTFS,
, (Access Control Entry ACE),
, . -
NTFS , -
.
NTFS,
-
NTFS. NTFS
Windows Server 2003 . :
1. , -
, Sharing
and Security ( ).
2. Security ().
3. Advanced ().
4. Allow Inheritable Permissions from the Parent to Propagate (-
).
5.
Remove ().
6. Advanced Add () -
/ ,
.
7. Replace Permission Entries on All Child Objects (
), . 12.7,
OK.
. 12.7. NTFS

411
12
8.
Yes ().
9. OK, .

NTFS
Windows
. (share) -
\\sfofs01\marketing,
.
FAT, HPFS FAT32 -
, .
- ,
NTFS.
, -
.


NTFS.
NTFS
.

, . NTFS -
,
. ,
, , -
, - .

, Windows
Server 2003 . -
-
.

1. ,
, Properties.
2. Security.
3. Advanced.
4. Audit ().

412
IV
5. Allow Inheritable Auditing Entries from the Parent to Propagate

( ) -
Apply ().
6. Add () ,
. -
, Everyone ( ).
7. Auditing Entry ( ) , -
. -
, , . 12.8.
. 12.8.
8. , OK.
9. Replace Auditing Entries on All Child Objects ( -
) OK.

-
, , ,
, . -
( )
, .

Windows Server 2003
(Encrypting File System EFS) ,

413
12
. EFS
, ,
, .
Windows 2000 EFS, EFS
Windows XP, Windows.
EFS ,
, , . Windows
Server 2003
EFS. EFS -

, -
Windows -
.
-

.

, .
-
. , ,
, .
-
. -
, -
.

.
, -
.

, ,
, . -
,
.
, ,
, -
. , -
.

414
IV

-
, , -
.
,
, . -
,
.
, -
, -
. ,
.
, , -
, . -
, -
, .
.

Windows -
-
. , IIS
Code Red Nimbda. -
Web- , .
, ,
, -
, . -
, -
(Software
Update Services SUS).
SUS: Windows Update

-
, Microsoft Web- Windows Update
( Windows), , -
. Web- Windows
Update ,
, .
,
.

415
12
Windows Update ,

.
.

(Automatic Updates Client)
-

Internet . (drizzling), -
(Background Intel-
ligent Transfer Service BITS) , -
.
, -
.
-
Windows 2000 Service Pack 3 Windows XP Service Pack 1,
.

Web- Windows Update
.
, Internet
, -
. - -
Windows Update.
(Software Update Services SUS).
SUS Microsoft , , -
, Windows Update.
SUS Windows Server 2003 ( Windows 2000) -
Internet (IIS).
SUS intranet-.
SUS ,
, -
(Systems Management Server SMS). ,
-
. , -
SMS, SMS 2.0 Value Pack, -
, SUS.
SUS Service Pack 1
. -
, Service Pack 1 SUS:

416
IV
. SUS
. Service
Pack 1
Microsoft.
-
. SUS , -
.
. SUS
.
ADM- . wuau.adm,
Microsoft, -
.

SUS
SUS ,
Internet (IIS). , -
SUS:
x86- 700 ;
512 ;
6 .
, SUS
,
SUS.

IIS (
IIS 11), SUS -
. SUS Web- Microsoft:
http://www.microsoft.com/sus
SUS -
.
1. SUS Setup -
.
2. Next.
3. , -
. Next.
4. Typical ().

417
12
5. URL- ,
SUS. SUS,
, . 12.9. Install
().
6. URL- Web-
. Finish.
. 12.9. URL-
SUS
Web-
(http:///SUSAdmin). -
SUS, -
. Web- -
. -
, . 12.10.
SUS
SUS
.
.
Set Options ( ) -
SUS.
-
-, SUS
-. -
, Do Not Use a Proxy Server (
-).

418
IV
. 12.10. SUS

, Automatically Detect Proxy Server Settings (
-). -
SUS -.
SUS
, . 12.11,
, .
( server2.companyabc.com)
, DNS, NetBIOS.

SUS
Windows Update Microsoft, SUS.
, , -
SUS .

,
, -
. .

. ,
SUS Microsoft

419
12
Windows Up-
date . -
, . 12.12,
Internet . Win-
dows Update -
SUS Internet- Windows Update.
. 12.11. SUS
. 12.12. SUS

420
IV
-
. , -
, ,
.
SUS
SUS, ,
, -
SUS. .
1. Web- SUS, Internet Explorer
SUS Web- http://localhost/SUSAdmin.
2. Synchronize Server ( )
.
3. , . 12.13, -
SUS -
. -
, . -
Synchronize Now ( ).
4. SUS -
,
SUS. Internet
.
. 12.13. SUS

421
12

SUS , -
. , ,
Internet,
.

SUS

. -
IIS, , -
.
, -
. -
.
1. Web- SUS, Internet Explorer
SUS Web- http://localhost/SUSAdmin.
2. Approve Updates ( ) .
3. , -
, . 12.14,
Approve ().
4. VBScript Yes ().
. 12.14.

422
IV
5.
, Accept ().
6. , , .
12.15, .
. 12.15.
-
, , .

Web- Windows Update.
, -
SUS .

,
Microsoft , -
.
Service Pack 3 Windows 2000 Service Pack 1 Windows XP.
SUS,
Web- Windows Update.
Active Directory
Windows (Windows
Update Group Policy), , :

423
12
1. Active Directory Users and Computers ( -

Active Directory), Start All ProgramsAdministrative
ToolsActive Directory Users and Computers ( -
Active Directory).
2. ,
,
Properties.
3. Group Policy ( ).
4. New () .
5. Edit (), -
(Group Policy Object Editor).
6. Computer
Configuration\Administrative Templates\Windows Components\Windows Update
( \ \ Win-
dows\ Windows), . 12.16.
. 12.16. -
Windows
7. Configure Automatic Updates (
).
8. -
.
2, 3 4 . -
, , 4.
9. , , -
.

424
IV
10. Next Setting

( ).
11. Web- SUS, Enabled (-
). ,
. 12.17. ( ) -
OK, .
. 12.17. -
SUS
12. (
).

, Active Directory ,
SUS .
, , SUS.
C
SUS
SUS . SUS
SUS,
. GPO -
, .
SUS -
. -
, SUS.

425
12

SUS
,
, SUS
.
:
.
, SUS, -
-
- .
-
,
.

-
, , .
, .

Windows. -
, Trustworthy Computing,
-
. -
,
. , -
-
(Software Update Services) -
.

,
.
.
(Configure Your Server CYS)
.
Run As
( ), .
( ) , -
, -

426
IV
, , , -
, .
, -
. -
.
SUS
, .
, -
,
.

13
...

Windows Server 2003

Internet

IPSec
Windows Server 2003

428
IV

Windows Server 2003
,
. ,
, -
.
,
.
-
.
,
.
,
.
, ,
Internet.

, . -

IPSec, PKI VPN. , -
Routing and Remote Access ( ) Internet
Authentication Server ( Internet).

, - -
. , -
- . -
,
.

. -
:
, -

. , ,
-

429
13
,
.

,
.
-
.
, , 128- -
, PIN-
. -

.
,
. , Windows Server
2003, .

,
, ,
, .

(encryption) -
, ,
, .
, ,

Internet
. -
, -
.
.

, -
, (Virtual Private Network
VPN),
,
.
VPN
.

430
IV
VPN , ,
.
.
VPN.
VPN
VPN
VPN. - ,
.
VPN , -
. -
, VPN

Internet. VPN , -
Internet VPN -
VPN .
, -

VPN . , -
VPN , ( , - Internet) -
. VPN
, .
, .

(tunneling protocol) , -
, VPN-
. , -
,
(Open System Interconnection OSI).
OSI , VPN
2 3. 2,
,
, 3 .
VPN 2
(Point-to-Point Tunneling Protocol PPTP) -
2 (Layer 2 Tunneling Protocol L2TP). -
PPTP L2TP
PPTP L2TP -
(Point-to-Point Protocol PPP)

431
13
VPN. VPN Windows Server 2003 -

L2TP, PPTP -
2 (Layer 2 Forwarding). L2TP
, IP, -
Internet.
L2TP , .
PPTP, L2TP -
, PPP: ,
(token card).
, , -
VPN.
L2TP/IPSec
Internet (IP Security IPSec)
3, L2TP
L2TP/IPSec. IPSec L2TP
, . , -

, .
L2TP/IPSec
L2TP:
L2TP/IPSec , -
, -
, , -
L2TP.
L2TP/IPSec -
, .
L2TP,
,
L2TP, IPSec .
L2TP/IPSec

. -
.

Internet
, VPN, -
, -
. VPN
(Remote

432
IV
Authentication Dial-in User Service RADIUS), -

.
,
-
.
Windows Server 2003 VPN
Internet (Internet Authentication Service IAS),
Windows Server 2003 RADIUS-
Active Directory.
IAS Windows Server 2003,
.
1. Start () Control PanelAdd or Remove Programs
( ).
2. Add/Remove Windows Components ( -
Windows).
3. Networking Services ( ),
, Details ().
4. Internet Authentication Service (
Internet), . 13.1, OK.
. 13.1. IAS
5. Next ().
6. Finish ().
, -
, IAS Active Directory,
AD VPN
. :
1. Start All ProgramsAdministrative ToolsInternet Authen-
tication Service ( -
Internet).

433
13
2. Internet Authentication Service (Local)

( Internet ())
Register Server in Active Directory ( Active Directory).

Active Directory ,
. , -
.
3. IAS Active Directory,

. -
IAS Active Directory.
VPN

(Routing and Remote Access Server
RRAS), Windows Server 2003, -
VPN L2TP/IPSec PPTP. RRAS
VPN
IAS VPN.
RRAS Windows Server 2003 ,
(Network Load Balance NLB) -
. ,
Internet (Internet Connection Firewall ICF).
Windows Server 2003 RRAS
(Configure Your Server Wizard CYS),
:
1. , Start All
ProgramsAdministrative ToolsConfigure Your Server Wizard (
).
2. Next.
3. Preliminary Steps ( ) Next.
CYS .
4. Remote Access/VPN Server ( /VPN),
. 13.2, Next.
5. Summary () Next. -
RRAS Setup Wizard (-
RRAS).
6. RRAS Next.
7. , -
RRAS. VPN
VPN
(Network Address Translation NAT). , -

434
IV
VPN, . , ,
, . 13.3.
Remote Access ( ) -
Next.
8. VPN Next.

VPN , -
, -
.
. 13.2. RRAS
. 13.3. RRAS

435
13
9. Finish, -
RRAS.
10. , RRAS -
, . Yes
(), ,
Finish, CYS.
RRAS VPN,
.

(Public Key Infrastructure PKI) -
, . -
, -
, , -
. ,
,
, , -
, , . PKI
-
PKI.
PKI , , -
-
.
PKI .

.
, -
(private key), -
, . -
, -
, .
(public key), , -
, .
, , -
. ,
. -
, . -
,
, .

436
IV
(certificate) , -
-
. VeriSign
Internet, , , , Microsoft -
Microsoft, -
.
, -
.
.
Web.
Internet (IPSec).
.
.
-
, -
, , -
, (Certificate Authority CA).
Windows Server 2003

(Certificate Services). -

-
. -
CA ,
.
Server 2003
:
. CA -
CA
CA. CA -
CA .
. CA -
CA ,
-
. CA -
CA .
. -
CA , -
. CA.

437
13
.
CA
CA, -
, CA.
.
1. Start Control PanelAdd or Remove Programs.
2. Add/Remove Windows Components.
3. Certificate Services ( ).
4. (. 13.4) ,
. -
Yes ().
. 13.4. CA
5. Next.
6. , . 13.5,
CA. CA, ,
. Enterprise Root CA (
CA ) Next.
. 13.5. CA

438
IV
7. CA , CA
CompanyABC.
8. -
Next. .
9. -
. -
. Next.
CA.
10. IIS , . 13.6
, Web
, IIS. ,
Next.
11. Finish.
. 13.6. IIS -
CA
-

-
-. - -
.
. - -
, , CA. -
, -
.
PIN-,
. PIN-
.
- -
.
- , -
-. - -
, , . -
, PIN-.
-
, PKI.

439
13

,
NTFS -
. (Encrypting File System EFS) Win-
dows Server 2003 EFS Windows 2000,
.
, . -
, ,
,
. EFS
.
PKI Kerberos
PKI, (realm) Kerberos
Active Directory. PKI -

, Active Directory.
Internet
Internet (IP Security IPSec),
, -
, . IPSec 3
OSI , , -
.
IPSec
: -
Internet, -
.
IPSec
IPSec :
, , -
IPSec, -
.
,
.
IPSec.

(NIC) ,
- . , Windows Server
2003 IPSec, -

440
IV
PKI
Kerberos, Active Directory Windows Server 2003.
IPSec
IPSec Windows Server 2003 ,
-
:
. , IPSec-
, ,
3DES, -
.
. IPSec
ESP, , , -
IPSec, .
. IPSec -

.
. IPSec
Kerberos , IPSec
.
NAT Traversal. IPSec Windows Server 2003 -
IPSec -
(Network Address Translation NAT). -
.
2048- -. IPSec Win-
dows Server 2003
2048- , , ,
IPSec.
NAT Traversal IPSec

, IPSec Windows Server 2003
(Network Address Translation Traversal
NAT Traversal NAT-T). , NAT-T, -
, .
(Network Address Translation NAT) -
, Internet IP- .
IP- (10.x.x.x, 192.168.x.x ),
IP-
. IP-
IP-, -
IP-
.

441
13
NAT. -
, -
. RRAS
Windows Server 2003 NAT.
IPSec NAT , NAT
IPSec, -
.
IPSec,
Internet NAT.
IPSec Windows Server 2003 NAT Traversal
Internet, Microsoft Cisco
Systems. NAT-T ,
NAT, IPSec UDP
UDP. NAT UDP,
NAT.
NAT Traversal , IPSec-
IPSec
UDP. IPSec NAT Traversal
-
IPSec, .

NAT-T NAT
. NAT -
IPSec NAT-T. NAT-T, -
, ,
IPSec, NAT-T, NAT NAT.

IPSec
Windows Server 2003
IPSec Windows Server 2003, .
IPSec
Active Directory Windows Server 2003, IPSec -
Kerberos.
IPSec -
, -
.

IPSec Web- . Web-
SERVER7, CLIENT2.

442
IV
IPSec
IPSec, ,
, SERVER7
IPSec Security Monitor ( IPSec) MMC. -
, :
1. Start Run () Run (
) mmc. OK.
2. MMC File () Add/Remove
Snap-in (/ ).
3. Add ().
4. IP Security Monitor ( IP),
Add, Close ().
5. , . 13.7, -
IP Security Monitor MMC. OK.
. 13.7. IP Security
Monitor MMC
6. MMC Console Root \ IP Security Monitor \ SERVER7

( \ IP\SERVER7).
7. SERVER7 -
Properties ().
8. 45 5
, OK. IP Security Moni-
tor MMC IPSec.

443
13
IPSec
IPSec Windows Server 2003
. SERVER7
.
1. Start All ProgramsAdministrative ToolsLocal Security
Policy ( -
).
2. Security Settings\IP Security Policies on Local Computer (-
\ IP ).
3. Server (Re-
quest Security) ( ( )) Assign (-
).
IPSec
IPSec:
Server (Request Security) ( ( )). -
, , IP-
Sec. , -
IPSec. -
, ,
IPSec , .
,
IPSec. -
IPSec, ,
IPSec.
Client (Respond only) ( ( )). -

IPSec.
Secure Server (Require Security) ( ( -
)). . ,
IPSec.
, IPSec, -
,
IPSec.
IPSec
CLIENT2 IPSec,
. -
Windows XP, .
1. Start All ProgramsAdministrative ToolsLocal Security
Policy ( -
). Administrative Tools
().

444
IV
2. Security Settings \ IP Security Policies on Local Computer (-

\ IP ).
3. Client (Respond Only) (
( )) Assign (), . 13.8.
. 13.8. IPSec
IPSec

IPSec CLIENT2, SERVER7
IPSec.
, - -
, , Web- -
SERVER7.
IP (. 13.9), -
MMC SERVER7, , IPSec -
.
IP -
IPSec, IPSec SERVER7 -
.
Event ID 541,
IPSec, . 13.10.
IPSec -
, . -
IPSec -
IPSec .

445
13
. 13.9. IP
. 13.10. -
IPSec
-
, ,
.
, .

446
IV
Windows Server 2003 Win-

dows 2000 -
, VPN, IPSec PKI.

, -
.

-
.
, -
-
.
Windows Server 2003 VPN L2TP,
-
.
IPSec

Internet, .

Windows
Server 2003
14
...
.NET

.NET

.NET Passport

Web-
.NET

.NET Passport

448
IV
Web-,
.NET. .NET
, , -
-
.
.NET .NET (,
) , , -
, Web-, .NET Passport. -
(Single Sign-In SSI)
Web-, intra-
net- , Web- .
.NET -
. -
Web-. , Web-
.NET, -
, Web- -
, .
SSI .NET Passport
Web- . -
Microsoft .NET Passport for Kids ( .NET),
Web-
(Childrens Online Privacy Protection Act COPPA). -
COPPA Web-
, , , -
.

.NET
-
. .NET
, , , , :
.NET -
.
SSI
-
.
.NET -
, .
.NET -
.
.NET ,
, Active Directory Web-, Outlook
Web Access (OWA).
Windows Server 2003
449
14
, ,
(, PIN-
). -
PIN- ,
.NET Passport.

.NET
.NET Passport .NET,
Microsoft. ,
, ,
.
.NET , -
.
, .NET Passport,
Microsoft,
Internet. .NET, -
:
Web- .NET Passport Micro-
soft (http://www.passport.com).

(Privacy Policy) .NET Passport (http://www.passport.net/Consumer/PrivacyPolicy.asp)
(Statement of Policy) Microsoft (http://www.microsoft.com/
info.privacy.htm). .NET Passport for
Kids ( .NET), -
.NET
(.NET Passport Kids Privacy Statement) (http://www.passport.net/Consumer/
KidsPrivacyPolicy.asp?lc=1033).
.NET Passport , -
(Preproduction ID, PREP). ,
, -
.
Web- .NET Passport ( -
) -
. -
Microsoft.
.NET Passport,
.
(Site ID),
. .NET Passport
( ).
, ,
.

450
IV
!
, , .NET Passport Development Kit (SDK) -
2.1 Windows Server 2003
.NET Passport.
IIS 6.0,
5.0. .NET Passport
PREP ID
.NET
Passport , .
-
.NET. ,
.NET Passport ,
(Site ID).
Web-
.NET (.NET Services Manager) Microsoft (https:/www.netservicesmanager.com),
. 14.1.
. 14.1. Web- .NET

:
.NET Passport /.
.NET.
.
, .
.
Windows Server 2003
451
14

.NET Passport, .
1. Create and Manage an Application (
). .NET Passport,
,
.NET Passport. .NET
Passport ,
.NET Passport.
2. ,
Accept Terms ( ).
User Information ( ), -
. ,
.
3. Create and Manage an Application Create
Application ( ).
4. Create Preproduction Application ( )
Submit ().
5. Add Service ( )
() /. -
: .NET Passport ( .NET), Kids Passport with SSI (
) Microsoft Alerts ( Microsoft).
Next (), .
6. -
. Web- -
.NET. General
.NET Passport Information ( .NET Passport). , -
Web Site Title ( Web-), Domain Name
( ), Default Return URL (URL- ) Privacy
Policy Location ( )
. , Next,
.
7. .
. Next, -
, .NET Passport (,
), . 14.2, -
.
8. Web- .NET Passport SSI. -
Expire Cookie URL (URL- cookie-) -
. , cookie-,
.NET Passport.
9. Kids Passport, ,
, -
( ).

452
IV
10. Submit ().

.NET Passport .
( ), -
, .
. 14.2. .NET Passport

.NET
(Passport Manager Ad-
ministration), . 14.3.
(PREP ID).
.NET Passport
SDK,
, .NET.
,
:
1. , Start () Run (),
Run ( ) MSPPCNFG.EXE.
2. Site ID ( ) -
.
3. : Return URL (URL- ), Cookie
Path ( cookie-) .
Windows Server 2003
453
14
. 14.3.
, -
, -
. (*.ppi), -
File () Save As ( ).

.NET Passport, -
.
.NET Passport.
, .
1. Web- .NET (.NET Services Manager)
Microsoft .NET Passport.
2. Applications () Manage
Applications ( ).
3. Next.
4. Download a Key ( )
Request Key ( ). Microsoft
, .
5. Create Your Security Key ( ), -
. 14.4, ,
, .
, .
Continue ().

454
IV
. 14.4.
6. , ,
Continue.
7. Security Key Sign-in ( ) -
Sign In (-
).
8. Download Key ( )
Web-, .
9. Download Key ( ).
Save ().
Key Download ( )
.
( ,
, Web- ):
) Services ().
IISAdmin. , IIS.
2. Start Run () ,
cmd.exe. ,
.
3. partner####_#.exe /addkey, #
.
4. partner####_#.exe /makecurrent /t 0.
5. IISAdmin , IIS
(, World Wide Web (World Wide Web Publishing)).
Windows Server 2003
455
14
.NET

.NET Passport -
.NET Services. -
.NET Passport .
, netservs@microsoft.com. -
.
,
.NET Passport,
Web- .NET Microsoft. ,
, -
/.
, .
1. Web- Microsoft .NET
.NET Passport.
2. Applications Manage Applications.
3. Next.
4. Submit Compliance ( ), -
.
5. Web- Go to
Manage Agreements ( ).
6. Microsoft
(Microsoft Services Agreement),
(Agreement Association). , -
Microsoft. -
-
(Agreement Association),
.

.NET Passport
.NET Passport -
, .
, .NET Passport for Kids ( .NET) .NET Passport
SSI, ,
Internet .
Web- ,
, ,
.NET . -
-
.

456
IV

-
.NET,
. , ,
.NET Passport -
.
.NET Passport.

.NET

,
.NET Passport. -
.NET, .

, , -
, -
.
.NET .
, -
.NET.

.NET Passport :
.NET Passport
(http://www.passport.com), . 14.5.
, -
.NET Passport Microsoft
( ).

MSN Hotmail (http://www.hotmail.com) MSN
Internet Access ISP, -
.NET Passport SSI.
.NET Passport (.NET
Passport Registration Wizard) Microsoft Windows XP.

.NET Passport -
.
@.com. , .
Windows Server 2003
457
14
. 14.5. .NET Passport

.NET :
. -
, :

/

Web-
.NET Web-
. Windows .NET
, , -
. .NET Passport -
Web- .
.NET Passport Web-
.NET Passport Outlook Web Access

458
IV
(OWA). OWA Microsoft Exchange, -

HTTP, Web -
Outlook. OWA IIS, -
.NET
.NET Passport.
.NET
.NET Passport Windows Pocket PC

2002 Phone Edition ( ) ,
Microsoft Mobile Explorer (MME) HTML, i-mode,
(Wireless Access Protocol WAP) -
(Handheld Device Markup Language HDML). -

. :
.
SSI.
.NET Passport for Kids ( ).
.

-
. .NET Passport -
(Secure Socket Layer SSL),
Web- .
.

, , -
.
, PIN-, -
.
- .NET Passport,
, -
.NET Passport.
, . ,
, ,
.
.
.NET
.NET , -
.NET Passport.
Windows Server 2003
459
14
, -
.NET Passport.
.NET Passport PUID .NET Passport.
.NET Passport PUID -
cookie- .NET Passport:
Cookie- . PUID .
Cookie- . .NET Passport.
Cookie- . , -
.NET.
.NET,

.NET Passport, , -
Microsoft . , -
. -
.NET Passport, -
, Microsoft.
cookie- ,
URL- , . Inter-
net Explorer (IE) cookie- .NET Passport.
,
cookie- . -
(Passport Manager Administration)
cookie-,
.
Cookie- .NET Passport

, ,
.NET Passport cookie-
. cookie- -
.
, cookie- .NET Passport
, .NET Passport
.
.NET Passport , -
.NET Pass-
port cookie- .
cookie-
.

. ,
,
.

460
IV

,
.NET Passport .
SSL, .
.NET Passport SSL Windows Server 2003, -
SSL . SSL Windows Server
2003 , SSL.
SSL -
Web-. -
(Network Interface Card NIC), -
()
SSL. -
Web-.
SSL -
, Web-
. SSL
.
.NET Passport
.NET Passport , -
, . -
. -
, Microsoft

.
Microsoft , ,
.NET Passport:
.NET Passport Privacy Statement ( .NET
Passport). Microsoft -
Web- .NET Passport .NET
Passport Web-
http://www.passport.net/Consumer/PrivacyPolicy.asp
Microsoft Statement of Policy ( Microsoft).
Web- http://www.microsoft.com/info/privacy.htm.
Microsoft
, , , , -
.
.NET Passport Kids Privacy Statement (
.NET). ,
http://www.passport.net/Consumer/KidsPrivacyPolicy.asp?lc=1033, -
.NET Passport .NET Passport
for Kids ( .NET). -
.
Windows Server 2003
461
14
Microsoft .NET Passport

(Fair Information Practices FIP),
, -
(Online Privacy Alliance),
(U.S. Federal Trade Commission),
(European Union Directorate General) -
.
, , -
, , . , .NET Passport,
Microsoft
,
.

.NET Passport,
.NET Passport SSI.
.
.NET Passport for Kids

.NET Passport for Kids ( .NET)
.NET Passport SSI COPPA -
. -
, , ,
. 13
, Web-.
.NET Passport for Kids, -
, ,
.NET. . 14.1.
14.1. .NET Passport for Kids

Deny ()
. -
.
Limited , -
() , . -
.
Full () , -
, ,
( ).

462
IV
.NET Passport for Kids (

) ,
COPPA. , -
. , -
, -
.

.NET Passport . -
, Web- .NET
Passport, .

-
.
.NET Passport ,
. .NET Passport -
.NET .

.NET Passport,
netservs@microsoft.com Web- http://www.microsoft.com/licensing/.
.
, -
,
Microsoft .
.NET Passport , -
. .NET
Passport -
, Windows Server 2003 .NET
Passport -. .NET Passport
,
. -
Web- , ,
, , . .NET
-
-
.
Windows Server 2003
463
14


, .
.NET Passport
.
.NET Passport Web-, Outlook Web
Access (OWA).
, -
(, PIN- -
).
.NET Passport (.NET
Passport Privacy Policy),
http://www.passport.net/Consumer/PrivacyPolicy.asp
Microsoft (Microsoft Statement of Policy),
http://www.microsoft.com/info/privacy.htm.
.NET Passport for Kids ( -
.NET), -
.NET (.NET Passport
Kids Privacy Statement):
http://www.passport.net/Consumer/KidsPrivacyPolicy.asp?lc=1033
, .NET Passport. -
-
.NET SSL.

15
...

466
IV
-
, -
. -
,
. ,
IT-,
,
.
-
.
. - , -
. -
, -
.
, -
. -
Windows Server 2003
. -

, -
, -
, . ,
, , -
(Health Insurance
Portability and Accountability Act HIPAA) -
, -
-- (Gramm Leach Bliley Act GLBA).

HIPAA GLBA -
http://www.cms.hhs.gov/hipaa/ http://www.senate.gov/~banking/conf/.
, , -
.
.
, , -
.

, ,
, (, -
, ), -
, .

467
15
-
, :
.
.
.
Exchange Server.
: -,
-
, , -, .
.

, -
. -
, -
.
, -
. , ,
,
, ,
.

-
, .
, -
.

. ,

:
.
( ,
).
(, -
-
).

468
IV
-
, .
.
IT-
, IT- -
, . :
.
,
.
-
, -
.

, -
. ( , ), -
, (
-) -
( ) -
. , , , ,
.
.

-
. -
-
.
-
-
. -
, , -
, .

, -
, -
, (National Institute of
Standards and Technologies NIST) (National
Security Agency NSA).
, Web-
(http://www.nist.gov http://www.nsa.gov, ).

469
15

, ,
. , -
,

.
,
-
(Virtual Private Network VPN) (Terminal
Services), , -
. , -

(, VPN L2TP IPSec).
-
. -
.
- -
Internet. ,
.
. -
.
,
. , -
. , -
,
. ,
Internet.
, ,
.
, -
,
.
. , , -
NetBIOS , -
NetBIOS.
137, 138 139.

(Intrusion Detection Systems IDS)
-
. IDS -
.

470
IV
IDS
, . , -
IDS , -
IT-, ,
Internet. -
.

,
IP-.
,
. , -
2 1433 1 -
. -
IP- .

. , -
.
,
.
( -
, , ).
-
. . -
-
Windows Server 2003. (authentication) , -
.
, , . -
, -
.
:
Kerberos.
.NET.
.
(Secure Socket Layer SSL).
HTTP.
S/MIME.

471
15
.
, Active Directory , ,
Kerberos.
, , :
, .
, SSL-, Web-
-
.
( -
),
.
, ,
. ,

Kerberos. , -
.
(authorization).
, ,
. -
(Access Control List ACL) .

NTFS (New Technology File System ). -

. -
(Encrypting File System EFS), -

.
NTFS,
.
Everyone ( ).
, .
, -
, .
, -
, ,
.
.

-
. -

472
IV
IIS, , NTFS
, . -
, , -
.
,
.
-

.
.
-
, ,
, .

,
. , -

.

:
,

.

.

.
,
.
(Group Policy Objects GPO)
, -
. , Run ()
.

Windows Server 2003 ( )
, .
, -
.

. -

473
15
, -
-
, .

-
, .

GPO. ,

, . -
, GPO , -
, , -
. GPO -
29.

. ,
, -
.
.
, .
-
.
, -
. .
-
. -
, . ,
, .
,
. ,
.

,
,
, -
.

474
IV

(Certificate Authority CA) -
(Public Key Infrastructure PKI). PKI -
, ,
. -
, ,
. ,
.

. -
, -
. , ,
, , -
.
Windows Server 2003
:
Add or Remove Programs ( -
).
Windows), Windows Compo-
nents Wizard ( Windows).
3. Certificate Service ( ).
Yes ().
Next ().
4. CA. :
Enterprise Root CA ( CA ).
Active Directory -
. -
.
Enterprise Subordinate CA ( CA ).
CA . -
Active Directory CA -
.
Standalone Root CA ( CA). -

. -
CA Active Directory.
Standalone Subordinate CA ( CA). -
CA
CA.
5. Use custom settings to generate the key pair and CA certificate
( -

475
15
CA) Next, -
(Cryptographic Service Provider CSP),
, . 15.1.
. 15.1.
6. CA .
CA ( ).
Next.
7. , .
Next.
8. CA Finish ().

Windows Server 2003 certutil.exe,
CA . Microsoft
, .
, ,
, -
,
. , ,
.

,
. -
. , -
,
.

476
IV
(Event Viewer)
, ,
, , .

. , 128 ,
.

,
( ).
-
. , -

. -
.
.
C
Microsoft (Microsoft Operation Manager MOM).
, ,

-
. -
, , , ,
. , LC4,
LOphtCrack, -
,
. -
-
.
Security Configuration and Analysis

(Security Configuration and Analysis) -
. -
.
,
.

477
15
,
.

. , X -
.
Security Configuration and Analysis,

:
1. Start Run () MMC.
OK.
2. File Add/Remove Snap-In (/ ).
3. Add ()
Security Configuration and Analysis ( ).
Add Standalone Snap-In ( )
Add.
4. Microsoft, Close (),
OK.
5. Security Configuration and Analysis .
-

.
6. , -
Security Configuration and Analysis -
Open Database ( ).
7. , ,
.
8. , Open ().
9. Import Template ( )
Open.
setup security.inf.
10. Action () Analyze Computer Now ( -
).
11. Perform Analysis () ,
. OK.
12. Security Configuration and Analy-
sis -
, . 15.2. -
,
Action Configure Computer Now ( ), -
.

478
IV
. 15.2. -
Security Configuration and Analysis -
. -
-
.

Microsoft
Microsoft (Microsoft Baseline Security
Analyzer MBSA) , -

Windows-. MBSA
Windows- Windows- ,
. ,
MBSA ,
Microsoft SQL Server Exchange, -
Windows,
, .
MBSA .
1. XML- MBSA.
,
.
2. ().

479
15
(Security Configuration Wizard SCW)

, Windows Server 2003 Service Pack 1,
.
, SCW , -
, . ,
, . -
, -
, .
SCW , -
:
. SCW .
. SCW -
.
. -
.
IIS. SCW IIS, Web Extensions
.
. ( , ,
, Web-, ), (
, ) -
-
. -
15.3 15.4. -
Exchange Server 2003, SQL Server
2000, ISA Server, SharePoint Portal Server 2003 Operations Manager (
).
IPSec. SCW IPSec.
. SCW -
LanMan, SMB,
NoLMHash LDAP
.
!
SCW .
, . -
.
.

480
IV
. 15.3.
. 15.4.
SCW -
, , -
. SCW
Microsoft ,
. , SCW ,
Security Configuration and Analysis,
, -
. , SCW -
, Group Policy
, . 15.5.

481
15
. 15.5. SCW

Windows
Windows (Rights Management Services RMS)
,
. -
:
.
, ,
,
.
, , -
.
RMS -
. , , -

,
. , RMS -
Web-. -
.
RMS -
Microsoft Office 2003, WRM , -
XrML (Extensible rights Markup Language
) . -
, RMS, , , -

482
IV
, .
,
. RMS -
.
Windows Server 2003

. -
, .
, , -
. -
-
.

-
, .
-
.
, -
, -
(Health Insurance Portability and Accountability Act HIPAA),
http://www.hipaa.org/.
-
-- (Gramm Leach Bliley Act GLBA)
http://www.senate.gov/~banking/conf/.
-
.
-
.
-
.
,
.

.
, -
.
, , NTFS.
Everyone ( ).

483
15
, -
.
,
, .
, -
,
.
.
Windows
Server 2003. ,

.
-
.

.
, , -
.
(GPO)
. , Run (-
) .
Windows Server 2003
( ) , -
.

.
, .
, -
. -
.
.
,
.
, -
.

.
-
Security Configuration and Analysis.

Windows
Server 2003
V
...
16. Windows NT4
Windows Server 2003
17. Windows 2000
Windows Server 2003
18.
Windows Server 2003
Windows NT4 Windows Server 2003
487
16

Windows
NT4 Windows
Server 2003 16
...
Windows
Server 2003
Windows NT4
Windows Server 2003

Windows NT4 Windows
Server 2003
Windows NT4

Active Directory Microsoft
Windows Server 2003
488
V

Windows NT4 .
-
.
, , -

Windows NT4 Windows Server 2003.
, -
.
Windows
Server 2003
, -
Ac-
tive Directory. . , -
,
.
, , -
- .
(inplace).

Active Directory.
NT4 NT4 -
Windows
NT4 Active Directory.
.
, -
Windows NT4 Active Directory.
: -
Active Directory.
, .

. -
. -
.
489
16

, -
Windows NT4. -
-
Windows Server 2003 Active Directory
NT4 Windows Server 2003 Active Directory. -
, -
, -
.
: ,
Active Directory Active Directory
Windows NT4 -
, . ,
-
. ,
-
, -
Windows, NT4. -
, ,
. -
Win-
dows NT4 Windows Server 2003 ,
.

Windows NT4 Windows 2003 -
NT4 . -
, -
, ,
( ) , ,
.
Windows
NT4 Windows Server 2003

Windows NT4. Windows NT4 -
Windows NT4.
Active Directory (Active Directory Migration
Tool ADMT) Windows NT4
Active Directory Windows NT4 -
Active
Directory, . 16.1.
Windows Server 2003
490
V
companyabc.com

NTDOMAIN1

NTDOMAIN2

Active Directory

Windows NT4, -
.

, . ,
Windows NT4 , -
, Active Directory .
-
, -
Active Directory. -
Windows NT4 Windows
Server 2003, -
-
.
, ,
?
, -
Active Directory ( -
Windows NT4), ,
, . Active
Directory , -
, , , -
. -

, , -
, , -
.
491
16
-
.
FSMO.
,
. , -
, , ,
, .
-
. - , -
,
Windows NT4. -
, -
DNS- . , Windows
NT4 CompanyX, Active Directory Win-
dows 2003 , , companyabc.com.
CompanyX NetBIOS, Active Directory DNS-.
,
, , -
, .
-
, ,
.
Windows NT4
Active Directory
Windows Server
2003 Active Directory,
. -
, -
Windows NT4. -
NT.
.
Active Directory,

, .
, -
, .
,
. -
, -
-
Active Directory. -

Active Directory.
Windows Server 2003
492
V
Windows NT4
Windows Server 2003
Directory
Windows NT4.
, Active Directory Windows Server
2003
Windows NT4 Windows Server 2003 -
, -
. ,
.
,
-

Windows
NT4 Windows Server 2003. -

(Compatibility Check) Microsoft, -

, -
Windows Server 2003, Web- Microsoft. -
http://www.microsoft.com/hcl.
-
.
-
.
, ,
Run () Windows. -
,
d:\i386\winnt32\checkupgradeonly, d: -
-.
Windows
Server 2003. Windows
493
16
Server 2003 Active Directory. -

.

-
-
-
, ,
. -
-


Windows NT4 -
Windows NT4. -
, -
:
Windows NT 4.0 Service Pack 5 .
Windows NT 4.0 Terminal Server Edition Service Pack 5 .
Windows NT 4.0 Enterprise Edition Service Pack 5 .



. -
-
:
x86. Windows Server 2003 -
Intel Pentium Celeron, AMD K6, Athlon Duron
133 . Microsoft
128 . -
. Microsoft
256 .
Itanium. -
733 , 1 .
Windows Server 2003
494
V
,
Windows NT4
, Windows NT4 -
, , ,

(Disk Manager) Windows NT4. -
Windows Server 2003
Windows NT4, Windows Server
2003 - . -
Windows NT4, -
, .

Windows NT4 , -
Windows Server 2003 Windows NT4.

,

.
,

-
, -
Windows NT4,
.
!
,
.
-
.
,
Windows NT4 Windows Server
2003 , -
(Primary Domain Controller PDC) Win-
dows NT4 .
, -
,
, . -
Windows NT4
(Backup Domain Controller BDC), ,
, .
495
16

Windows Server 2003

. Win-
dows NT4 Active Directory, Windows
Server 2003
.
: -
(Dynamic Host Configuration Pro-
tocol DHCP), Internet- Windows (Windows Internet Naming Service
WINS) (Domain Name System DNS).
- -
- -
, -
. Windows Server 2003 Active Directory
,
DNS DHCP.
,
.
SAM
NT 4.0
SAM (Security Account Manager
) Windows NT4 Windows Server
2003, :
1. Win-
dows NT4 Windows Server 2003 Active Directory, -
. SAM Windows
NT4 , .

.
2.
, .
Windows NT4
, .
Active Direc-
tory
Windows NT4 Windows Server 2003 Active Directory.
Windows NT4 -
SAM
Windows NT.
SAM -
(Server Manager) Windows NT.
Windows Server 2003
496
V

Windows
NT4 Windows Server 2003 Active Directory.
:
. -
Windows NT4 -
.
Windows NT -
, ,

, -
. SAM
,
Windows NT. -
SAM , -
SAM Windows NT4 .
. -

.
Windows NT4. , -
, , -
DCPROMO Windows Server 2003.
.
. -
,
. Win-
dows Server 2003 Active Directory DNS Microsoft.
TCP/IP TCP/IP- DNS-
, Active Directory.

Windows NT4
, .
1. - Windows Server 2003
. ,
Windows Server 2003 (Windows Server 2003 Setup
Wizard). , Windows
Server 2003 , Setup.exe -
497
16
2. Welcome to Windows Server 2003 Family ( -

Windows Server 2003) Install Windows Server 2003 (-
Windows Server 2003), -
Windows (Windows Setup Wizard), -
.
3. Welcome to Windows Setup ( -
Windows) . -
Upgrade (Recommended) ( ()).
Windows NT4
Windows Server 2003 Active Directory. Next ().
4. Microsoft,
Licensing Agreement ( ). -
.
I Accept This Agreement ( )
Next.
5. Windows Server 2003 ,
- Windows Server 2003. 25-
Next.
6. , -
Report System Compatibility ( ),
Details (). Next.
. -
. -
.
Active Directory
Active Directory (Active Directory Installation Wizard),
. 16.2.
Active Directory :
1. Next.
Windows NT4
Active Directory.

NT4 -
Active Directory. -
, -
Active Directory.
2. Operating System Compatibility (-

). Next.
Windows Server 2003
498
V

3. Create New Domain ( )
, Next.
. -
NT, ,
DNS Microsoft .
4. DNS-, Windows Server 2003 Active
Directory, Yes, I Will Configure the DNS Client (,
DNS).
5. DNS-, DNS-
Active Directory, No, Just Install and
Configure DNS on This Computer (,
DNS ). Next.
6. New Domain ( ) DNS- .
, 5 -
DNS- Active Directory. Next.
.
7. Active Directory Active Directory
Users and Computers ( Active Directory)
MMC .

Windows NT4 Windows 2000 Windows Server 2003.
, -
Windows NT4 Windows 2000. Windows Server
2003 Interim Forest ( Windows Server 2003) -
Windows NT4, -
Windows 2000 Domain ( Windows 2000)
Windows 2000 .
499
16
, Windows 2000 -
, :
8. Windows Server 2003 Next.
9. Database and Log Folders ( )
Active Directory .
Active
Directory , ,
, Next.
-
Active Directory.
10. SYSVOL,
, , Next. SYSVOL
. -
-
Active Directory.
11. Permissions ( ) Permissions Com-
patible Only with Windows 2000 or Windows Server 2003 Operating Systems (-
, Windows 2000
Windows Server 2003) Next. ,
Windows NT4.
Windows NT.
Windows Server 2003
.

, :
12. Directory Services Restore Mode ( -
), Directory Ser-
vices Restore Mode.
.
, Windows
Server 2003 Active Directory Di-
rectory Services Restore Mode.
Domain Administrator ( ) -
Enterprise Administrator ( ) Active Direc-
tory. , Next.
13. ,
, .
. - -
, Back
Windows Server 2003
500
V
(). , , ,
Next.
!
Next Active Directory Microsoft DNS,
.
Finish () , -
, - .

. ,
, -
.
Active Directory Users and Computers MMC,
Directory.

-
.

, -
, ,
.
-
Windows NT4 Active Directory -
.
, NT
. Windows NT4.
, ,
.
,
.
,
, DHCP WINS. -
-
.
501
16

- Windows Server
2003 .
, -
.
, Setup.exe - Windows Server 2003. -
.
1. Welcome to Windows Server 2003 Family ( -
Windows Server 2003) Install Windows Server 2003 (-
Windows Server 2003).
Windows (Windows Setup Wizard),
.
2. Welcome to Windows Setup ( -
Windows) .
Upgrade (Recommended) ( ()). -
Windows NT4 Windows
Server 2003. Next ().
3. Licensing Agreement ( ) -
Microsoft. -
. ,
I Accept This License Agreement ( -
), Next.
4. Windows Server 2003 25- -
. 25-
Next.
Windows
NT4 Windows Server 2003
. -
. -
.

Windows NT4
Windows Server 2003
Microsoft Active Directory -
Windows NT4 -
. Active Directory
, -
.
Windows Server 2003
502
V

Active Directory (Active Directory Installation Wizard).
, :
1. Next, Active
Directory.
2. Member Server ( ), -
. 16.3, Next. Active Di-
rectory Active
Directory.
. 16.3.
3. Network Connections ( ) Windows Server
2003 TCP/IP- DNS- Active Directory. -
DNS- Next. ,
-
DNS- . -
TCP/IP- DNS-
, Configure Domain Name Service Client (-
).
4. Network Credentials ( )
Domain Administrator ( )
.
5. Administrator Password ( )
Active Directory .
Next.
6. -
.
Finish, Active Directory
.
503
16
7. Active Directory ,

Active Directory.
Event Viewer ( )
,
. -
, ,
.

Windows NT4 Windows
Server 2003
-
, ,
Server 2003 , Windows 2000,
, -
Windows NT4 Active Directory, -
Active Directory (Active Directory Migration Tool) -
NT4 ,
, , -
.
Active Directory
NT4
Windows NT4 Active Directory. -
NT4 , -
, -
.

Windows Server 2003

Microsoft Active Directory. Windows Server
2003 Active Directory DCPROMO. -
Active Directory (Active Directory Installation Wizard), -
:
1. Start () Run (),
DCPROMO. Active Di-
rectory (Active Directory Installation Wizard), -
Windows Server 2003
504
V
Windows Server 2003. Operating

System Compatibility ( ) ,
, Next ().

Active Directory, (Compatibility Check),
. , -
Windows NT4, Active Directory -
.
Active Directory -
Active Directory. -
-
.
2. Next, -
Active Directory.
, Domain Controller Type ( )
Domain Controller for a New Domain (
). Active Directory,
.
3. , Create New Domain (
) Domain in a New Forest ( )
Next.
4. Install and Configure DNS ( DNS) -
DNS -
DNS- . -
, No, Just Install and configure the DNS Server
on This Computer (, DNS-
).
Microsoft DNS, TCP/IP ,
DNS.
5. DNS- Active Directory.
DNS- Windows NT
.
Next.
6. NetBIOS, Next.
NetBIOS , Windows NT4
Active Directory.
.
7.
Active Directory.
505
16


.
Active Directory
, .
Active Directory Browse ().
Active
Directory , RAID- .
8. SYSVOL Browse -
, , Next.
SYSVOL Active Directory. -

NTFS-. SYSVOL
. Active Directory

Windows Server.
9.
.
Active Directory -
Windows NT4. Permissions Com-
patible Only with Windows 2000 or Windows Server 2003 Operating Systems (-
, Windows 2000
Windows Server 2003) Next.
10. Directory Services Re-
store Mode ( ). Directory Ser-
vices Restore Mode
. -
, Windows Server 2003 Active
Directory Directory Services
Restore Mode. Domain Administrator
( ) - Enter-
prise Administrator ( ) Active Directory.
Directory Services Restore Password ( -
) Next.
11. Finish.
Active Directory.
, Restart Now (
). , , -
, -
, .
Windows Server 2003
506
V
Windows NT4 Active

Directory, -
,
.

Windows NT4
Windows Server 2003
NT4 Active Directory

Windows NT4. Windows NT4
(source domains), Active Directory Windows Server
2003 (target domains).
. -
Windows Server 2003 Administrator Tools (-
) Active Directory Domains and Trust Manager (-
Active Directory).
Action () Active Directory
Trust ().
Windows Server 2003 Active Directory -
(New Trust Wizard).
, , -
New Trust ( ). -
Next.
Trust Name ( )
Windows NT4, .
NetBIOS-, -
DNS- . Active Directory
Windows NT4. Next.

-
TCP/IP .
Internet- Windows (Windows Internet Naming Service
WINS) TCP/IP ,
WINS.
NT4, Windows Server 2003 Native ().
-
, Active Directory.
. Direction of Trust
( ) Two-Way (-
), ,
. Next.
507
16
, -
Domain-wide Authentication ( ). -
Windows NT4
Active Directory. Windows Server 2003 -
NT4 .
Administrator ()
, Active Directory
. Next.
.
-
, . -
Windows NT4
. Next.
.
Back, - ,
Next, -
, .
Next.
-
.
,
Windows NT4. ,
Windows NT4. Confirm Outgo-
ing Trust ( ) No, Do
Not Confirm The Outgoing Trust (, -
) Next.
Confirm Incoming Trust ( -
) No, Do Not Confirm The Incoming Trust (,
). Next,
. -
Finish, -
.
Windows
NT, . -
Windows NT,
(User Manager for Domains) Windows
NT4. Policies () Trust Relationships ( -
), Trust Relationships ( ) Windows NT4.
Trusted Domains ( ) Add (-
). ,
. ,
-
Domain Administrator ( ).
-
.
Windows Server 2003
508
V
Add
Trusting Domains ( ). , -
.
Windows NT4, -
Windows NT4 . Close
(), Trust Relationships ( ).

-
, . -
Administrator ()
-
. OK .

Windows Server 2003
Active Directory

Windows NT4 -
Active Directory, 5. ,
, -
Active Directory.
Active Directory Users and Computers ( Active Directory)
MMC .
Active
Directory -
Active Directory.
Active Directory -
Ac-
tive Directory (Active Directory Migration Tool), . 16.4.
,
Active Directory Microsoft.
Windows NT4 -
(Security Identi-
fier SID).

.
509
16

NTDOMAIN

Active Directory
NTDOMAIN

NTDOMAIN

. 16.4.
SID,
. SID -
, -
(, ) Windows
NT4 , .
-
SID . SID -
Windows NT4. -
Active Directory SID

.
Windows NT4
, , -
Windows NT4
Windows NT4. , -
. Windows NT4
Windows NT4.
Active Directory.
Windows Server 2003
510
V
-

Active Directory.

,
, , -
.
Windows NT,
Windows NT.

Active Directory Windows NT4 Active Directory
, . 16.5.
. 16.5.
-
Windows NT4
Active Directory -
Windows NT4.

Windows NT4
Active Directory
-
Windows NT4 Active Directory. -
Active Directory

Active Directory.
511
16
, -
, Windows NT4,
Active Directory
, .

Active Directory
-
Windows
NT4 Active Directory.
Active Directory -
Windows NT4.
, -
, Active Directory
Windows NT4. ,
-
. Win-
dows NT Active Directory
,
Active Directory Microsoft.

Active Directory (Active Directory Migration Tool ADMT)
, Windows Server 2003. ADMT
Windows NT4 -
:

.
-
.
-
.

.
-
.
Windows Server 2003
512
V

.
-
.

.
Active Directory ADMT
Active Directory .
Active Directory ,
Active Directory.
Active Directory
Active Directory, ,
.
Windows NT4 Active Directory
.
Active Directory Administrator ( Active Directory)
Domain Administrators ( ) Windows NT4.
Administrator () Windows NT4
Local Administrators ( ) Windows Server 2003.
Active Directory - -
Windows Server 2003. Windows
I386 -. ADMIGRATION.MSI,
ADMT, Active Directory
(Active Directory Migration Tool Installation Wizard).
Next.
(End User License Agreement)
Next, ADMT.
, Next.
Finish, Active Directory.

ADMT , -
. ADMT -
.
ADMT README.DOC
ADMT.

Active Directory
Active Directory
Active Directory .
513
16
,
Windows NT Active Directory:
1. Active Directory, ADMT -
Active Directory. -
Start Administration ToolsActive Directory Migration Tool (-
Active Directory).
2. Action ADMT User Account Migration Wizard ( -
ADMT), Next.
Active Directory.

, -
.
Active Directory, .
3. ,
Migrate Now ( ) Next.
4. Domain Selection ( ) -
. ,
Next.

Native (),
. ,
.
5. Add (), -
, .
, Advanced () -
. OK,
Advanced Select Users ( -
) User Selection ( ).
Next.
6. Organizational Unit Selection ( )
OU, -
.
. -
Browse ().
OK, Browse the Container ( -
) Organizational Unit Selection. -
Next.
7. NT,
ADMT.
,
ADMT.
Windows Server 2003
514
V
8. .
(Target Ac-
count State):
Enable Target Account ( ). -
Active Directory
.
Disable Target Account ( ). -
, -
Active Directory.
Target Same As Source ( -
).
, .
Enable Source Account ( ). -
.
Disable Source Account ( ). -

Active Directory. -
( )
.
Days Until Server Accounts Expires (
( )). -
. -
-
.
9. Disable Source Account.
.
10. SID ,
Migrate Users SID to Target Domain ( SID -
). SID
.
ADMT , -
.
, -
,
.
SID -
. ,
.
11. -
, Yes ().
12. SID , -
NTDomain. ,
, Yes -
.
515
16
13. Yes, -
TcpipClientSupport.
14. Yes,
.
OK PDC Windows NT.
15. SID , -
Administrator
() .
, Windows NT.
, . 16.1,

.

, , -
ADMT. -
.
16.1.
ADMT
Translate Roaming Profiles , Win-
( - dows NT4 -
) .

-
.
Update User Rights -
( - , Active Directory
) ,
Update User Rights.
,
,
Windows NT4.
Migrate Associated User -
Groups ( . ADMT , -

) .
Update Previously Migrated
Objects .
( - , -
) . , , -
Migrate Associated User Groups. -
-
Active Directory
Select How All Migrated Accounts Should Be Named (
).
Windows Server 2003
516
V
. 16.1
ADMT
Do Not Rename Accounts Active Directory
( , ,
) . -
, -
.
,
. -
-
.
-
. Naming Conflicts ( -
) ADMT , -
-
,
.
Rename with Prefix -
(, .
) -
-
Active Directory.
Rename with Suffix -
(, . Rename with Prefix,
) , -
, -
.
16. , User Options ( -

), . Next.
17. Naming Conflicts ( ) ,
ADMT
-
.

-
Ignore Conflicting Accounts and Dont Migrate (
) -

.

-
. -
Active Directory, -
SID, .
517
16
, -
.
,
, , .
Replace Conflicting Accounts ( -
) Remove Existing Members of Groups Being
Replaced ( ). -
-
.
Prefix Suffix User Options,
Rename Conflicting Accounts ( -
) -
, . -
-
, .
, .
Next. -
, .
. Finish, .
Migration Progress ( ) -
.
View Log ( ). ,
Close (), -
.
NT4 Active Directory

Windows NT4
Windows Server 2003 Active Directory. ,
ADMT,
.
NT, -
.
, Test the Migration Setting and Mi-
grate Later ( )
Test or Make Changes ( ) -
(Group Migration Wizard).
, , Action
.
, -
.
1. Action (Group Ac-
count Migration Wizard), Windows NT4.
2. Next. Test or Make
Changes ( ) Migrate
Now Next.
Windows Server 2003
518
V
3. Domain Selection ( )
. Next.
4. Group Selection ( ) -
, . -
Add (), Check Name (
). OK, Group Selec-
tion, Next.
OU, . -
Active Directory
Browse ().
OK , Next.
6. Windows NT4 ,
.
Group Options ( ),
, , :
Update User Right ( ).
NT4 .
Copy Group Membership ( ).
. ADMT
Windows NT, -
. -
. Update
Previously Migrated Objects ( )
-
.
Fix Group Membership ( ).
,

, .
Migrate Group SID to Target Domain ( SID -
). -
, . SID -
-
.
Do Not Rename Accounts ( ).
ADNT , . -
,
Windows NT4.
.
Rename with Prefix ( ). -
.
519
16

.
Rename with Suffix ( ). -
-
. Rename with Prefix, -
, , -
.
7. . -
Next.
8. ADMT , -
.
9. Naming Conflicts ( ) -
, ADMT
. ,
:
).
,
.
Replace Conflicting Accounts ( ).

,
.
Remove Existing User Rights ( ).
,
.
,
,
.
Remove Existing Members of Groups Being Replaced (
). ADMT

. ,
Replace Conflicting Accounts.
Move Replaced Accounts to Specified Target Organizational Unit (
-
). , -
.
Rename Conflicting Accounts by Adding the Following (
, ).
, -
,
. , -
Windows Server 2003
520
V
ADMT . -
Next.
10. ,
. ,
Finish. Migration Progress -
. View
Log ( ),
.
Close (),
.

Active Directory
Active Directory
, .
(Computer Migration Wizard) -
.

ADMT .
, -
.
1. Active Directory, -
Action ADMT Computer Migration Wizard (
). -
(Computer Migration Wizard) Next.
2. Test or Make Changes ( )
Migrate Now () Next.
3. Domain Selection ( ) -
.
Next.
4. Computer Selection ( )
.
-
Add (). Next.
,
. Browse (),
Active Directory -
, .
Next.
521
16
6. Translate Objects ( ) -
, -
:
Files and Folders ( ).
Active Directory
. -
,
Windows NT, , Active
Directory .
Local Groups ( ). ADMT -
,
Active Directory .
Printers (). -
, Active Directory

Windows.
Registry (). Active Directory
.
Shares ( ). Active
Directory .
User Profiles ( ).
, .
User Rights ( ).
Active Directory.

. ,
.
7. User Profiles,
-
. Next.
8. Security Translation Options ( ) -
-
, :
Replace (). SID
.
,
.
Add (). SID -
ACL , -
Windows NT.
Windows Server 2003
522
V
Remove (). SID

ACL . -
Win-
dows NT4.
9. , Security
Translation, Next.
10. Computer Options ( ) -
, ,
.
Next.
11. Naming Conflicts ( ) ,
ADMT -
.
,
:
).
-
, .
Replace Conflicting Accounts ( ).
-

, .
Remove Existing User Rights ( ).
,
, -
. ,
-
, , .
Remove Existing Members of Groups Being Replaced (
). ADMT

.
Move Replaced Accounts to Specified Target Organizational Unit (
-
).
, -
.
-
Rename with Prefix (-
, ) Rename with Suffix (, -
). , ADMT -
.
523
16
,
Task Description ( ). -
. Back,
. -
, Finish.

Active Directory
-
, Microsoft Exchange

(Service Account Migration Wizard) ADMT
Active Directory.
1. ADMT (Service
Account Migration Wizard), Action Service Account Migration
Wizard ( ).
2. , ,
, . Next.
3. Update Service Account Information (
)
. -
, Yes, Update the Information (,
). No, Use Previously Collected Information
(, ) . -

.
4. Service Account Selection ( )
,
. ,
, Add
(). OK.
5. Active Directory Migration Tool Monitor ( -
Active Directory).
ADMT .
6. Service Account Information ( )
, -
. -
Skip/Include (/).
Update CSM Now ( -
).
Next.
7.
. -
Windows Server 2003
524
V
,
. Finish, -
.
Active Directory Active Di-
rectory Windows NT4. -
,
.

. -
, , -
Microsoft .
, -
,
. ,
, , -
Windows NT4 ,
Active Directory. -
Windows NT4
Active Directory. ,
. -
. , -
, , .


Windows NT4
-
Microsoft (Microsoft Compatibility Check Tool), -
, , -
, -
,
, -
.
, -
.
Windows NT4 Windows
2003
525
16
, , , -
.
-
.
Windows
Server 2003 Active Directory Active Directory Users
and Computers.
,
,
,
.
Active Directory ,
-
.
Active
Directory , -
.
Active Directory
, RAID-
.
-
, -
Active Directory.
ADMT ,
.
,
.
-
, ,
Naming Conflicts ADMT.
, ,
Group Options.

Windows
2000 Windows
Server 2003 17
...
Windows Server 2003

Active Directory
Windows 2000
Active
Directory

Active
Directory 2.0
Windows 2000
Windows Server 2003
ADMT 2.0
Windows Server 2003
528
V
Windows Server 2003

,
. -
,
,
Windows NT 4.0.
- Windows Server 2003 -
,
. Active Directory, -
,
Active Directory Windows 2000.
, : , -
,
.
, -
Windows 2000 Windows Server 2003. -
, -
(Mixed-Mode Domain Redirect) -
Active Directory (Active Directory Migration Tool ADMT),
.

,
, ,
.
.

-
. .
, , -
Windows 2000, -
Windows Server 2003
. : -
, .
, -
. -
, ,
. ,
, , Windows
529
17

, -
, , . -
,
. -
.
:
. ,
. -
.
, -
, , -
.
. .
, ,
, -
.
. Windows Server 2003 Windows 2000,
: , -
Active Directory.
. -
,
. -
, Windows 2000
Windows Server 2003. Active Directory
(DC)
(OM).
Active Directory
. -
.
. () , -
,
,
. -
, -
, .
. -

. ,
, . -
, -
.
Windows Server 2003
530
V
. , -
,
(). , -
.
Windows
Server 2003 2.

, -
Windows 2000. -
, ,
Windows 2000. -

. -
, , .
-
. Windows 2000
, , , -
Windows 2000. , Windows 2000,

- , , , -
.
. -
, , -
, , ,
.
:

, -
: ,
. , ,
Windows 2000 Windows Server 2003;
, , Windows 2000.
,
Windows Server 2003
Windows 2000. -
531
17
-
, Windows 2000 Windows Server
2003 . -
Windows 2000 , .

, Windows Server 2003 Windows 2000 -
,
. NT 4.0 , Windows,

.

Windows Server 2003. Windows
2000 WINS, DNS DHCP,
WINS,
DNS DHCP. -
, -
, .
.
,
. -
, -
, -
. , -
, .

,
-
Windows Server 2003
Web- (Hardware Com-
patibility List HCL) Microsoft,
http://www.microsoft.com/whdc/hcl.
Microsoft ,
Windows Server 2003
532
V
, -
- ,
. Microsoft
Windows Server 2003 :
Intel Pentium III 550 .
256 .
1,5 .
, -
,
.

, -
(redundancy). , , -

.

, ,
.
, -
. , Win-
dows Server 2003, . -
, , Windows Server 2003,
. -
, , , -
Windows 2000, -
.
, -
. Windows 2000 Windows
Server 2003 Standard Server, Windows Server 2003 Enterprise Server.
Windows 2000 Advanced Server Win-
dows Server 2003 Enterprise Server. , , Windows 2000 Datacenter Server
Windows Server 2003 Datacenter Server.

, , . -
, -
. , -
,
. , -
- .
533
17

.
:
2. . ,
Start () Run ()
d:\Setup, d: -.
3. Install Windows Server 2003 (Enterprise Edition) (
Windows Server 2003 (Enterprise Edition)).
4. Upgrade (), -
. 17.1, Next ().
. 17.1. Win-
dows Server 2003
5. I Accept This Agree-
ment ( ) Next.
6. 25- . -
- Microsoft. -
Next.
7. Windows
Server 2003. -
. No, Skip This Step and Con-
tinue Installing Windows (,
Windows). Next.
8. . ,
Windows Server 2003. , ,
IIS, . 17.2. IIS -
, -
Windows Server 2003
534
V
.
Next.
. 17.2.
9. , ,
. -

IIS.
.
Active Directory
Windows 2000
Windows 2000
Active Directory. Active Directory -
Microsoft, -
. , , Windows Server
2003, Active Directory, -
.
Active Directory
.
, . -
, Active Directory
Windows Server 2003:
. Active Directory Windows Server 2003
NetBIOS- LDAP/DNS- Active
535
17
Directory. Active Direc-

tory, , -
. Windows
Server 2003 -
, Active Directory.
Windows 2000
,
.
. -
Active Directory -
, -
. -
-
,
.
(Inter-Site Topol-
ogy Generator ISTG). Windows Server 2003 ISTG -
. -
, ISTG -
, .
. Windows
2000 5000 5001 -
, -
.
(). ,
, (Time to
Live TTL) , ,
, . Windows Server
2003
.
Active Directory DNS .
Windows Server 2003 DNS -
AD- .
-
.

, Active Directory,
-
4, 5, 6 7.
Windows Server 2003
536
V

Active Directory, -
Windows Server
2003. , Active
Directory Windows Server 2003 ,
. , -
Windows 2000/Windows Server 2003.
Windows 2000 Service Pack 2 ,

.
, ,
. -
-
. :
Windows Server 2003
- , .
.

. 17.3, , ,
, ( -
) . -
.

X
()
Win 2000

Win 2000
Win 2003

()

Win 2003
. 17.3.
537
17
Active Directory
adprep
Windows Server 2003 Active Directory Windows
2000
Active Directory . ,
. - Windows Server 2003
adprep, , -
. -
adprep forestprep domainprep.
Active Directory Windows 2000 1006 (.
17.4). adprep forestprep -
. 17.4. ADSI Edit -

forestprep
adprep - Windows Server 2003
, \i386. adprep
forestprep , (Opera-
tions Master OM) , .
1. Schema Master ( ) Start
Run, cmd <Enter>, -
.
3. D:\i386\adprep /forestprep, D: -
-, <Enter>.
Windows Server 2003
538
V
4. , Active Directory
Windows 2000 Service Pack 2 , C
<Enter>.
5. forestprep AD Windows 2000, .
17.5.
. .
. 17.5. adprep forestprep

. 17.6,
forestprep Active Directory 256 -
, 1262 . -
domainprep.
. 17.6. ADSI Edit

forestprep
539
17
adprep domainprep
. ,
(Operation Master OM). -
:
1. Operation Master ( ) -
. Start Run,
cmd <Enter>.
3. D:\i386\adprep/domainprep, D: -
-, <Enter>.
4. exit, .
forestprep domainprep Active Directory -
Windows Server
2003. 256 -
.

adprep - Windows
2000 , , Exchange 2000/2003. -
, .

Windows
Server 2003 . , , -
. -
.
, -
. - -
, -

Active Directory -
, , -
, -
. , -
Windows 2000,
DCPromo.
Windows Server 2003
540
V

(Configure Your Server Wizard),
. ,
Active Directory Windows 2000.
1. , Start All
ProgramsAdministrative ToolsConfigure Your Server Wizard (
).
2. , . 17.7, Next.
. 17.7.
3. Next.
4. Domain Controller ( ) -
Next.
5. Summary ()
Next.
6. Active Directory (AD Installation Wizard)
Next.
7. Operating System Compatibility ( -
) Next, -
Microsoft, Windows 95.
8. Additional Domain Controller for an Existing Domain (-
)
Next.
9. Administrator () Active
Directory Next.
10. Active Directory
Next.
541
17
11. Active Directory (

, -
) Next.
12. SYSVOL Next.
13. (Directory Services
Restore Mode), ,
Next.
14. Next.
-
, . 17.8.

15. Finish ().
16. Restart Now ( ), -

Active Directory.

,
/
. ,
.
(Operation Master OM) -
(Flexible Single Master Operation FSMO). -
OM:
.
.
RID.
.
.
Windows Server 2003
542
V
, OM, Win-
dows Server 2003, , -
.
ntdsutil. OM Windows
Server 2003 ntdsutil, .
1. , Start Run, cmd
<Enter>.
2. ntdsutil <Enter>.
3. roles <Enter>.
4. connections <Enter>.
5. connect to server <_>, <_> -
OM, <Enter>.
6. quit <Enter>.
7. transfer schema master, . 17.9,
<Enter>.
. 17.9. OM ntdsutil
8. OM Yes ().
9. transfer domain naming master <Enter>.
10. OM Yes.
11. transfer pdc <Enter>.
12. OM OK.
13. transfer rid master <Enter>.
14. OM OK.
15. transfer infrastructure master <Enter>.
16. OM OK.
17. exit, .
543
17

Windows 2000
Windows 2000
Windows Server 2003 OM ,
-
.
Windows 2000
dcpromo. -
, .

Windows 2000
Active Directory,
. - -
- .
Windows Server 2003
. Active Directory Sites and Services
( Active Directory) . -
ADSI
Edit. ADSI Edit -
.
1. ADSI Edit Support Tools ( ),
- Windows Server 2003, .
2. Configuration\CN=Configuration\CN=Sites\CN=<_>\
CN=Servers\CN=<_>, <_> <_>
.
3. CN=NTDS Settings
Delete (), . 17.10.
4. Yes.
5. ADSI Edit.
, NTDS Settings ( NTDS),
Active Directory Sites and Services.

Windows Server 2003
, . -
Windows Server 2003 Windows NT 4.0, Win-
dows 2000 Windows Server 2003, -
, -
Windows Server 2003
544
V
. 17.10.
Active Directory
:
Windows 2000. Win-
dows Server 2003 Active Directory Windows 2000,
, ,
Windows NT Windows 2000. -
,
, ,
. , -
.
Windows 2000. Windows Server
2003 Active Directory Windows 2000, -
Windows 2000, Win-
dows 2000. Win-
dows 2000 Windows Server 2003.
Active Directory Windows Server 2003 , -
Windows NT 4.0.
. , -
NT 4.0 Active Directory Windows Server 2003,
, Active Directory Windows 2000. -
NT
.
545
17

, Active Directory
Windows Server
2003 ,
:
1. , Windows
Server 2003.
2. Administrative Tools () Active
Directory Domains and Trusts ( Active Direc-
tory) MMC.
3. Active Directory
Domains and Trusts Raise Domain Func-
tional Level ( ).
4. Select an Available Domain Functional Level (
) Windows Server 2003, -
Raise ().
5. OK, OK.
6. 15 .
7. , 3 -
Raise Forest Functional Level ( )
(. 17.11).

.
, , -
Windows 2000. Windows
Server 2003, - Ac-
tive Directory Windows 2000.
. 17.11.
Windows Server 2003
546
V
Active Di-
rectory Active
Directory, Windows Server 2003.
, , -
, -
.
AD- DNS

AD- DNS -
, Windows Server 2003 DNS.
.
1. DNS MMC, Start All Programs
Administrative ToolsDNS ( DNS).
2. DNS\<_>\Forward Lookup Zones (DNS\
<_>\ ).
3. , , -
Properties ().
4. Change () .
5. To All DNS
Servers in Active Directory Forest ( DNS- Active Directory)
To All DNS Servers in the Active Directory Domain ( DNS- -
Active Directory), . 17.12.
Finish.
6. AD- .
. 17.12. AD-
547
17

Active Directory

Active Directory, Windows 2000,

. -
, (Mixed-
Mode Domain Redirect).
, -
Active Directory,
.
, -
.

Active Directory
Windows 2000. ,
Windows 2000,
Active Directory (Active Directory Migration
Tool) 2.0 .
,
Windows 2000/XP/2003 Active Directory, -
.
, ,
, ,
NT Active Directory.
.
Windows NT 4.0 .
, -
, , ,
.

, ,
: Active Directory Windows NT 4.0,
Windows Server 2003
548
V
Active Directory ,
. 17.13.
companyxyz.com
companyabc.com
COMPANYXYZ
(
NetBIOS)
companyxyz.companyabc.com
. 17.13.
-
. , -
.
CompanyABC CompanyXYZ, -
Windows 2000 Com-
panyXYZ Windows Server 2003 CompanyABC. Com-
panyXYZ Windows 2000, ,

, -
.

Windows 2000

, . -
, -
.
-
Windows 2000 Active Directory. (Windows
2000 Advanced Server) dcpromo -
-
Windows 2000. ,
.
SFDCTEMP01 -
Windows 2000 Service Pack 3 Win-
dows 2000 companyxyz.com, ,
. 17.14. SFDC01,
SFDC02, LADC01 SDDC01.
.
549
17
companyxyz.com
SFDCTEMP01
SFDC01 SFDC02 LADC01 SDDC01
. 17.14.

OM -
.
ntdsutil. OM
.
OM
SFDC01 SFDCTEMP01, OM PDC, RID -
SFDC02 SFDCTEMP01.

Active Directory ,
dcpromo -
. , -
, -
.
. 17.15 , SFDC01, SFDC02, LADC01 SDDC01 -
,
SFDCTEMP01.
NT 4.0

NT. (BDC) NT. -
NT, -
. -
, :
netdom add SFDCTEMP02 /domain:companyxyz.com /DC
Windows Server 2003
550
V
companyxyz.com
SFDCTEMP01
SFDC01 SFDC02 LADC01 SDDC01
. 17.15.
,
Windows 2000, ,
BDC
. , -
Windows NT
4.0 BDC. -
Windows 2000, -
NT.

SFDCTEMP02 , -
SFDCTEMP01 -
netdom. -
SAM SFDCTEMP02.

Windows 2000 , -
Windows 2000.
, Active
Directory. -
- ,
, .
. 17.16, SFDCTEMP01 -
Active Directory companyxyz.com. NetBIOS COMPANYXYZ
SAM NT SFDCTEMP02.
551
17
companyxyz.com companyxyz
X
SFDCTEMP01 SFDCTEMP02
NetBIOS
. 17.16.

NT
BDC NT PDC, , ,
NT NetBIOS. -
Active Directory.
NT SFDCTEMP02
NT COMPANYXYZ, -
Windows Server 2003 companyabc.com.
NT
Windows Server 2003

PDC NT Active Directory Windows Server 2003.

Active Directory - .
-
SDFDCTEMP02 - Windows Server 2003 -
Active Directory Ac-
tive Directory. CompanyXYZ
companyabc.com, companyxyz.companyabc.com,
. 17.17.

-

.
DCPromo .
, .
, -
, DCPromo -
Windows Server 2003
552
V
. SFDC01, SFDC02, LADC01 SDDC01

, (.
. 17.17).
COMPANYXYZ
companyabc.com

DCPromo
SFDCTEMP02
NetBIOS
SFDCTEMP02
companyxyz.companyabc.com
. 17.17. CompanyXYZ CompanyABC

NT.
DCPromo, , .
-
.
SCDCTEMP02 CompanyXYZ DCPromo,
. -
,
Windows 2000 -

Active Directory 2.0
Active Directory (Active Directory Migration Tool ADMT) -
, - Windows Server
2003. ADMT 2.0 , -
, Active Directory NT -
. Win-
dows 2000 ADMT 2.0 -
553
17
Active Directory Windows Server 2003,

, .
ADMT 2.0
ADMT , -
. -
Exchange. , -
- .
ADMT :
ADMT. ADMT , -
. -
, , -
, .
. ADMT -
, -
. ,
.
SID . -
SID
,
. -
.
. -
ADMT 2.0 , -
.
. ,
, , -
.
Windows 2000
Windows Server 2003
ADMT 2.0
ADMT 2.0 , -
, . , -

.
, , -
ADMT: , -
, .
,
.
ADMT .
Windows Server 2003
554
V
ADMT
ADMT 2.0 .
, -
, -
. , -
-
.
, -
, -
, .
ntdsutil -
(Operations Manager OM),
, , -
ADMT.
ADMT 2.0
ADMT , -
. -
:
1. - Windows Server 2003 -
.
2. Start Run.
d:\i386\admt\admigration.msi
d: -,
<Enter>.
3. , . 17.18, Next.
. 17.18. ADMT
555
17
4. (End
User License Agreement EULA) Next.
5.
Next.
6. Next,
.
7. Finish, .

ADMT
,
ADMT .

, -
.
, ADMT -
.
, -
.

. ,
ADMT .

, ADMT ,
Builtin\Administrators (\) -
. ,
Administrators (-
) . -
, -
.
ADMT -
.
(Organizational Unit OU)
.
Windows Server 2003
556
V
OU, OU -
.

Windows, Windows Server
2003 Everyone
( ). . -
ADMT ,
.
. , .
1. , Start All Pro-
gramsAdministrative ToolsDomain Security Policy ( -
).
2. Security Settings \ Local Policies \ Security Options (
\ \ ).
3. Network Access: Let Everyone Permissions Apply to
Anonymous Users ( :
).
4. Define This Policy Setting ( -
) Enabled (), . 17.19.
OK.
. 17.19. -

5. Domain Controller Security Policy
( ).

128- -
, . -
SID .

, ADMT, :
557
17
1. , . ( -
, ).
2. ADMT, cd C:\program files\active directory
migration tool <Enter>, C:
.
3. admt key <__> a: <>,
<__> NetBIOS- , a:
, <> , . -
. 17.20. <Enter>.
. 17.20.
4.
.
DLL-

DLL -
. (Password Export
Server) . -
:
1.
.
, .
3. , Start Run
d:\i386\ADMT\Pwdmig\Pwdmig.exe, d: -
-.
4. Next.
5. , . ,
A: (. . 17.21). Next.
Windows Server 2003
558
V
. 17.21. DLL-
6. , ,
Next.
7. Next.
8. Finish.
9. , -
Yes. -
, .

,
.
-
. -
:
1. ,
Start Run Regedit.
2.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
3. AllowPasswordExport DWORD.
4. 0 1.
5. OK .
6. ,
.
ADMT ,
.
559
17

.
,
. -
, . -
ADMT 2.0 -
(Group Account Migration Wizard):
1. ADMT MMC, Start All Pro-
gramsAdministrative ToolsActive Directory Migration Tool (
Active Directory).
2. Active Directory Migration Tool -
Group Account Migration
Wizard ( ).
3. Next.
4. , . 17.22, -
. ,
, .
. Migrate Now (-
) Next.
. 17.22.

5. Next.
6. .
, Add () -
. ,
Next.
Windows Server 2003
560
V
7. Browse (),
OU, .
Next.
8. , -
. -
Help (). -
, . 17.23. Next.
. 17.23.
9. , -
, . 17.24. ,
SID. Yes.
. 17.24.
10. ,
. SID -
. ,
Yes.
11. SID
SOURCEDOMAIN$$$. , ,
, . 17.25.
Yes.
561
17
. 17.25.
12. TcpipClientSupport
. -
SID. Yes.
13.
.
, Yes.
14. , . 17.26,
-
. -
, OK.
. 17.26. -

15. -
. - ,
. ,
Next.
16.
.
Next.
17. .
, .
, . 17.27, -
.
XYZ-.
Next.
18. , -
- . ,
,
2003. , Finish.
Windows Server 2003
562
V
. 17.27.
19. .
(Refresh rate), . 17.28,
. ,
View Log ( ). Close (-
), .
. 17.28.

. ADMT 1.0
, -
. ADMT 2.0 -
563
17
,
. -
.
1. ADMT MMC,
Start All ProgramsAdministrative Tools
Active Directory Migration Tool ( -
Active Directory).
2. Active Di-
rectory Migration Tool
User Account Migration
Wizard ( -
), . 17.29.
3. . 17.29. -
Next.

4.
. ,
. -
, Migrate Now,
Next.
5.
Next.
6. -
. Add -
, .
Next.
7. , . 17.30, -
.
Browse OU, Next.
. 17.30.
Windows Server 2003
564
V
8. ADMT 2.0
. Migrate Passwords ( ), -
, DLL-
(. DLL-
). Next.

, , -
,
,
. 914 -
.
9. , -
.
Help (). -
, . 17.31. Next.
. 17.31.

10. , , -
Domain Admin ( ). -
Next.
11. . ,
Help.
. 17.32.
Next.
12. . -
, .
, Next.
565
17
. 17.32.
-

13. . -
, . 17.33,
.
Next.
. 17.33. -

14. -
.
. Next.
15. Migration Progress ( ) -
-
. -
Windows Server 2003
566
V
, View Log ( ) -
. , -
, . 17.34.
Close ().
. 17.34.

, , -
. Active Directory,
, -
. ADMT -
-
, .
.
1. ADMT MMC, Start All Pro-
gramsAdministrative ToolsActive Directory Migration Tool (
Active Directory).
2. Active Directory Migration Tool -
Computer Migration Wizard
( ).
3. Next.
4. , -
.

.
, Migrate Now,
Next.
567
17
5.
Next.
6. , Add ()
, .
Next.
7. , -
, Next.
8. -
.
Help (). ,
. 17.35. Next.
. 17.35.
9. , , -
.
. Next.
10. , -
Add (). Next.
11. .
( ), .
, -
, . 17.36.
Next.
12. ,
.
Next.
13. . -

, . -
Next.
Windows Server 2003
568
V
. 17.36.
14. Completion () -
. , ,
Finish. , .
15. ,
View Log. Close.
16. . -
-
, -
. ,
. 17.37.
17. , Close.
. 17.37. -

569
17

, -
, .
, -
, . -
, ADMT 2.0:
(Security Translation Wizard).
(Reporting Wizard).
(Service Account Migration Wizard).
Exchange (Exchange Directory Migration Wizard).
(Retry Task Wizard).
(Trust Migration Wizard).
(Group Mapping and Merging Wizard).
ADMT 2.0 , -
.
, -
Active Directory.
Windows 2000
, , Windows Server 2003.
Active Direc-
tory . ,
,
ADMT 2.0, Windows
Server 2003 .

,
IIS , .

, -
, -
.
, -
(Hardware Compatibility List)
Microsoft.
Windows Server 2003
570
V

, ,
Windows 2000.
, , -
.
ADMT -
.

...

Windows Server 2003
572
V
-
. -
, Windows Server.
,
, , -
,
. ,
.

.

, , -
, -
. -
, ,
,
. ,
,
,
Windows NT4 Windows 2000 Windows Server 2003. ,
, ,
,
, -
.
-
, - -
.
Windows Server 2003, , , -
Windows NT4 Server Windows 2000 Server,
. II
Active Directory Windows Server 2003, -
Windows-, -
, ,
.

, ,
.
, -

.
Windows Server 2003
573
18

, .
,
, -
.
!
,
, ,
,
.
, -
.
, ,
,
, Windows Server 2003 - -
. Active Directory
Windows 2000,
, , -
, NT4 Server, Novell NetWare. -
Windows 2000 -
, Windows NT4,
-
, -
. -
, .
, -

( ),
.
-
, 2, -
, -
. , -
.
, , -
-
. , .
, -
, , -
,
.
Windows Server 2003
574
V
,
, -
.
, Windows Server 2003 Web, Standard, Enter-
prise Datacenter. Stan-
dard,
Enterprise .
,
Windows Server.

, .

Windows Server 2003 Standard ,
Enterprise, .
Standard Enterprise -
. Windows
2003 Enterprise Edition , -
Enterprise Edition Standard Edition.
, Enterprise Edition, -
Standard, .
. -
:
, , -
. -
:
.
.
.
(Customer Relationship Manage-
ment CRM).
.
.
.
.
,
, . , -
, ,
, ,
Windows Server 2003
575
18
, . -

,
. , -
, -
, .
, -
. -
Outlook,
.
-
, .
Internet -
.

. 18.1.
18.1. ,

1 ( )
:

:
:
:
:
SAN

/

Internet? /
Windows Server 2003
576
V
,
. , -
, ,
, . -
,
.
, -
,
.

, .

Windows? -
. -
, -
.
, -
, , -
. -
, - -

.
,
.
,

X /.
, , , ,
, ,
. -
. -
. -
.

, .
, -
Windows 2003 . -
, -
.
Windows Server 2003
577
18

-
, ,
.
, ,
, -
, .
. -
,
.
. -
, , , -
, .
, ,
. -
, , -
, . -
Windows, -
.

-
$X.
, ,
. -
,
( Microsoft, )
.
, -
. ,
, - ,
.

/ .

( -
), -
100% .
-
,
. .
Windows Server 2003
578
V

, -
.
,
,
. -
,
.

, , -
, , -

, -
, -
. , ,
, .
, Windows
Server 2003 ,
, -

. -
-
, . -

.
-
,
;
.
-
, -
.
,
. ,
.

IT-
( ) .
IT-
, -
Windows Server 2003
579
18
, .
, ,
.

, -
, -
.

-
/ .
, .
, -
Windows .
,
.
, , -
,
, -
.

-
/ .

(Customer Relationship Management CRM), , -
-
, -
( , ).

-
, , /
.
,
,
.

. ,
, .
Windows Server 2003
580
V
, , -
, -
. -
, ,
(, ), ,
. ,
.
,
, -
- . -
, , -

,
. ,
, -
.
-
. -

-
.
, -
, .

, , -
.

, ,
, , -
. , ,
, , , ,
.
,
, .
Windows Server 2003
581
18
, , -
, . -
. 18.2.
18.2.

(/) (/)
A DC, DNS, DHCP Windows 2000 SP3
B Exchange Server Windows 2000 SP3
C Windows NT4
D Web- Windows 2000 SP3

, , -
, .
, , -
, -
.
, , , -
, -
. ,
. (Systems Manage-
ment Server SMS) -
, .

, ,
,
. -
, ,
, .
.

Windows
,
Windows Server 2003. , Win-
dows Server 2003, , -
, , -
, , SQL, Exchange, .
Windows Server 2003
582
V
, .NET Windows,
-
(), .
Microsoft -
. Microsoft, Windows
Server 2003, , Microsoft,
. -
Microsoft TechNet Web-
Microsoft. , ,
Microsoft,
Microsoft. -
, -
.
, , , -
-
.

.
, , . -
, -
.

:
.
.
.
?
?
Windows Server 2003 (/)?
, .
(, , ,
, , -
).
, ,
, .
, , ,
,
, .
Windows Server 2003
583
18
Web- , -
, .
, , -
.

-
, -
.
,
, ,
.
-
, .
, -
.
( ) . , -
, .

, -
, -
Web- .
-
, -
. ,
. -
,
(, ), -
.

Windows Server 2003 (
100%); -
:
.
.
( ).
( ).
-
, ,
Windows, ,
Windows Server 2003
584
V
( , , ,
).
-
, , . -
:
.
.
.
: , , -
.
Windows Server 2003: // .

.
: , /,
, , , -
.
: Windows Server 2003, Windows
2000 Server, Windows NT Server, .
( , URL-,
, ).
,
Web- -
. , URL- , , -
, .
, , -
, .

,

.
-
:
1. Windows
Server 2003.
2. Windows
Server 2003 .
Windows Server 2003
585
18
3. Windows Server
2003 .
4. Windows Server
2003 , -
Windows Server ( )
5. Windows Server
2003 .
6. Windows Server
2003 , ,
, , Windows Server 2003,
.
.
,
Windows Server 2003
- , -
, Windows
Server 2003 URL- -
. -
, , -
Windows Server, .
,
. -
Windows 2003
,
, . -
(-
, )
-
, .
,
Windows Server 2003, , ,
Windows Server 2003
; ,
.

, , -
Windows ,

. -
-
Windows, , ,
. ,
, -
Windows Server 2003
586
V
, , -
, .
. , Win-
dows Server 2003 ,

Windows 2000 -

Windows Server 2003. Windows NT4 -
, Novell Netware Linux.
-
, Internet . -
readme, ,
-
,
.

, ;
,
, .
,

, Windows NT4 -
, , -
, -
. ; -
.
, -
, , , , -
. , -
,
Windows
. IT-
- -
.
, -
, -
SAN.
Windows Server 2003
587
18
, , , -
, . -
30120 .
,

Windows,
- Windows
2000, -
.
, -
Windows NT4 Windows 2000, , , -
.
,
,
. -, -
, ,
.
,

, -
, ,
. ,

.
,
, -
. -
,
. , - -
, , , -
.
,
, ,
, -
.
Windows
Windows Server 2003
588
V
Server 2003. ,
.
, -
, -
. , ,
, , ,
.
,
Windows Windows Server 2003.
,
, -
.

-
, , -
.
. 18.3 .
18.3.

Windows 2003: :
1) ()
2) ()
3) ()
/ 4) ()
1 Veritas BackUp Exec v.x 2
2 Veritas Open File Agent v.x 3
3 TrendMicro InterScan v.x 3
4 Microsoft Exchange 2003 1
,
, , -
.
, , -
,
, .

, -
-
Windows Server 2003
589
18
, . , -
-
(, , , -
).
-
, .
-
, .
-
, -
.
,

.

-
.
,
, ,
.
, (-
) .
, -

; -
,
.
-
, . -
, -
, ,
.
-
(, -
, (), , -
), . ,
,
Windows Server 2003
590
V
, , , -
. -

.
,
,
, -
. -
, -
, , .
-
, , -
, , ,
.

Windows Server 2003
, ,
-
, . -
, , -
- . , -
, ,
,
, .

, .
, -
, , , -
.
, ,
,
, -
.
, Ghost,
, -
.

, .
Windows
-
Windows Server 2003
591
18
. , -
, ,
.
,
, -
. -
, -
. -
, ,
, -
, .
,
. ,
,
.

, , -
, ,
, ,
, -
.
IT-, ,
.
, -
.
Microsoft , -
(Application Compatibility Toolkit ACT),
,
, Windows 2000 2003. -
, -
-
, ,
, . -
,
; Win-
dows, .
:
Microsoft, Windows .
(Application Compatibility Analyzer), -
. 18.1, , ,
, -
Microsoft .
Windows Server 2003
592
V
. 18.1. Microsoft
Windows (Windows Appli-
cations Verifier) , -
,
, -
Certified for Windows Server 2003 ( Windows Server
2003) .

http://www.microsoft.com/downloads (
application compatibility toolkit).

.
,
, ,
, -
. 16 17, Windows Server 2003 -
.

. , -
. , -
,
Windows Server 2003
593
18
. , -
,
.
,
-
, .
, -
, , -
-
. -
,
, .
, , , -
, -

: , , ,
, -
.
, -
,
.
,
-
,
, .
,
, -
. -
, -
, -
,

. ,
,
-
.
, .
, .
Windows Server 2003
594
V

, ?
-
?
, -
? -
?
Windows
,
Windows ?

?
( -
, -
)?
, , -
, .
Windows Server 2003

. -
( ) -
.
,
. -
, -
. Windows Server,
, ,
, , -
.
, , -
. -
, ,
. -
, , -
, -
. -
, .

,
.
, , ,
.
Windows Server 2003
595
18

( -
?), (
?).
, , -
.
;
, .
, -
. , -
.

, -
, , -
.

Windows Server 2003
VI
...
19.
,
Windows Server
2003
20.
Windows Server 2003
21.
Windows Server 2003
22.
Windows
Server 2003
23.

Windows Server 2003
24.
Windows Server 2003
25.
Microsoft
Windows Server 2003
,
599
19

,
Windows
Server 2003
19
...

Active Directory

Active Directory
Windows Server 2003

Windows Server 2003
600
VI
Windows Server 2003

,
.
, : , -
. ,
-
, ,
-
.
, , ,

, .

Active Directory (AD) Windows Server 2003 Active
Directory .
, -
IT-
. -
.
IT- IT- -
,
.
, -
. ,
. , -
-
. ,
, -
, .

, ,
, . -
, IT- -
, , -

.

: IT--
, -
. Web- -
,
601
19
, . -
-
IT- . , -
Microsoft Exchange 2000, -
,
. -
,
Exchange Server
2003, , -
.

, IT- IT-, -
. -
/
. , -
DNS DHCP. -

.
,
. , -
, .
, ,
, -
, .

-
, , -
. , -
-
,
, -
, . ,

.

Active Directory
- , . Active Directory

Windows Server 2003
602
VI
.
, - -
, .
Active Directory.
AD ,
.
-
. AD
, ,
,
. -
, ,
- , -
, . -
Active Directory
. AD ,
, -
, .

, , -
.
; ; ; -
, ; , , , , -
. , ,
.
(Distributed File Sys-
tem DFS) ,
.
-
, , -
.
, ; -
Active Directory.
Active Directory, -

, -
. -
.

Active Directory -
. -
,
603
19
, RPC, IP SMTP -
.
( )
Active Directory -
. Active Directory
Sites and Services ( Active Directory) Microsoft (Mi-
crosoft Management Console MMC)
. Windows-, NT4, Windows 2000
Windows 2003 -
. ,

.

/ . -
, -
. -

-
, -
.

,
-
.
, , , DNS-,
DHCP- , , WINS. -
-
, .
, -
.

,
Active Directory, -
, . ,
Active Directory ,
, -
, Active Directory
, ,
, , -
Windows Server 2003
604
VI
. -
, Ac-
tive Directory
.

Active Directory
AD . -

IP- , .
. -
IP-, -
, .
AD , ,
.
.
1. Windows XP -
(Administration Tools) Windows Server 2003. -
, ;
.
2. Start () All ProgramsAdministrative ToolsActive
Directory Sites and Services (
Active Directory). , -
, 7.
3. Start Run (). MMC.exe
.
4. File () Add/Remove Snap-in (/ -
).
5. Add/Remove Snap-in Add ().
6. Add Stand-alone Snap-in ( )
Active Directory Sites and Services ( Active Directory)
Add (). Add/Remove Snap-in
Close (), .
7. Active Directory Sites and
Services ( Active Directory).
8. Sites ()
New Site ( ).
9. ,
. 19.1. .
10. ,
.
, , , .
,
605
19
. 19.1.

. -
:
1. Subnets (-
) New Subnet ( ).
2. ,
,
. , , IP-
, .

,
, -
. -
, -
.
1. Windows XP -
, ;
.
2. Start All ProgramsAdministrative ToolsActive Directory
Sites and Services (
Active Directory). ,
, 7.
3. Start Run. MMC.exe
.
4. File Add/Remove Snap-in.
5. Add/Remove Snap-in Add.
Windows Server 2003
606
VI
6. Add Stand-alone Snap-in Active Directory Sites

and Services Add. Add/Remove Snap-in
Close, .
Services.
8. , .
, Sites, -
Servers, . 19.2.
. 19.2.
9. , ,

Move ().
10. ,
.
11. ,
Servers .
,

(Inter-Site Topology Generator ISTG) 15 .
ISTG 7.

Active Directory -
. -
, -
. -
,
,
607
19
Licensing () .
.
:
1. Windows XP -
, ;
.
Sites and Services (
Active Directory). ,
, 7.
.
Close, .
Services.
8. . -
Licensing Site Settings ( -
) Properties (), -
. 19.3.
. 19.3. -

Windows Server 2003
608
VI
9. Licensing Site Settings

, ,
Change () .
10. Select Computer ( )
.
11. Licensing Site Settings,
.

/

.
, -
Licensing (),
. 24 , -
.

Windows , ,
BackOffice, Exchange SMS -
, -
.
. -
, , -
, , -
.

-
Active Directory.
Active Directory, , Group Policies
SYSVOL -
, .
7.
IP .
1. Windows XP -
, ;
.
Sites and Services. , ,
7.
,
609
19

.
Close, .
Services.
8. Sites Inter-Site Trans-
ports ( ).
9. IP
New Site Link ( ).
10. , , Active
Directory Add. ,
, . 19.4.
. 19.4.
11. .
12. Active Directory Sites and Services,
-
Properties.
13. . ,
A B. , .
14. .
.
Windows Server 2003
610
VI
15. Change Schedule ( ) -

.
16.
.
Active Directory

.

, -
Active Directory,
Active Directory.
-
Active Directory .

(Delegate Control Wizard),
.
.
1. Windows XP -
, ;
.
Sites and Services. , ,
7.
.
Close, .
Services.
8. Sites -
Delegate Control ( ).
9. (Delegate Control
Wizard) Next ().
10. Add () ,
, ,
Next. Active Directory, -
,
611
19
, Network Configura-
tion Operators ( ).
11. Active Directory Object Type ( Active Directory) -
This Folder, Existing Objects in This Folder and Creation of New Objects in
This Folder ( , , ,
),
, Next. -
Sites.
, 8
.
12. Permissions () ,
, , , .
13. Next, Finish () -
.
Active
Directory Windows Server 2003
Active Directory (, -
,
). -
, -
. , -
, , .

Active Directory Windows Server 2003 :
. -
,
.

,
.
.
(Discretionary Access Control List
DACL),
, (Access Con-
trol Entry ACE). -
DACL.
, -
, .
Windows Server 2003
612
VI

-
-
Active Directory. -
.
, ,
- ,
, .

. , 1
,
2
.
,

. -
, .
Active Directory
, -
. , , -
,
. -
, ,
.

-
, -
. ,
. -
, .

, .
, ,
-
,
.

, ,
.
, . -
, -
,
613
19
.
, , -
. -
.

,
Windows 2000 Native Window Server 2003.
, ,
, .

-
. -
, , .
: -
, -
, -
. , -
.

-
,
.
, -
, -
. -
, -
.

,
. , -
-
, .
,
.

IT- ,
Windows 2000 Mixed, Domain
Windows Server 2003
614
VI
Admins ( )
Administrators () . , Administrators
A Domain Admins A, B C.
, -
.
Windows 2000 Na-
tive Window Server 2003 Native Domain, -
Forest Admins ( ) Domain Admins -
. ,

. , -
, -
-
.

, -
. -

,
. .
.
Windows 2000 Mixed ().
Windows
2000, Windows NT 4.0 Active Directory. -
,
, .

Windows 2000 Native Windows Server
2003 Native.
Windows 2000 Native ().
, -
.
Windows Server 2003 Native.
.
Windows Server 2003 Native ().
Windows 2000 Native -
-
.
Windows Server 2003 Interim (). Windows Server 2003
Interim Active Directory Windows Server 2003 -
, Windows NT 4.0 -
,
615
19

, NT 4.0 Active Direc-
tory Windows Server 2003.
Windows Server 2003 Native. ,
NT 4.0 Win-
dows Server 2003.
AD
, , , -
, .
.
1.
. -
.
Users and Computers.
3. , , Users
(). -
NewGroup ().
4. ,
. 19.5. ,
.
. 19.5.

.
, , .
Windows Server 2003
616
VI
:
1.
. -
.
3. , .

Properties.
4. General () ,
Members ().
5. Add () .
6. Select Users, Contacts, Computers or Groups ( , -
, ) ,
, , -
. , Advanced
(), , -
.
7. Members ,
, .

; , -
, , . ,
Exchange 2000 Active Directory
.

Outlook.
Outlook, -
(Administration Pack)

.
1. .
3. , . -
-
Properties.
4. Security (). , -
Active Directory Users and Computers MMC
View () Advanced Features ( -
,
617
19
). ,
Security.
5. Advanced ().
6. Advanced Security Settings ( -
) Permissions ().
7. Add (). Select User, Computer or Group
( , ) ,
, .
8. Permissions Entry for Group ( )
Properties ().
9. Apply Onto ( ) Group Objects (
).
10. Permissions () Allow ()
Read Members ( ) Write Members ( ),
. 19.6. .
11. , Advanced Security Settings.
12. , .
File ExitNo (to save console settings) ( ( -
)), Active Directory Users and Com-
puters .
. 19.6.

Windows Server 2003
618
VI
, -
. ,
, . -
, -
, -
,
-
. , .
, -

, -
,
.

, -
. ,
Internet Explorer, -
, , -
, ,
. -
-
.

,
.
, , -
,
.

-
. -
. -
, .
, , -
.
,
619
19

, , -
, .

. -
.
, , -
.

,
.
, . .
, 15
15 . ,
400 Internet-,
10 /c. -
, Internet Explorer Internet-
. -
.

.
, -
-
,
.

, , -
, ,
.
, -
, , Internet-.

. , , -
Ntuser.dat Ntuser.man.

Windows 2000 Windows XP,
, -
. ,

. -

.
Windows Server 2003
620
VI

,
. -
-
. , , ,
.
, , -
, -
, .
, , -
.
All Users
(All Users) , -
, . -
( ) -
. -
All Users
. .

, -
, , ,
, -
.
. -
-
.
, ,
, , .

:
, , , ,
Internet. -

, ,
, , -
,
.
:
1. -
, , -
,
621
19
.
TemplateUser1.
2. , . ,
Internet , .
3. . -
c:\Documents and Settings\TemplateUser1.

- ,
.
.
1. Administrator ().
3. System ().
4. Advanced () Set-
tings () User Profiles ( ).
5. , . 19.7,
Copy To ( ).
6. Copy To ( ) .
, Browse (). -
c:\Documents and Settings\Default User.
7. Permitted to Use ( ) ,
, .
. 19.7.
Windows Server 2003
622
VI

Windows Server 2003
. Active Direc-
tory -
,
.

. , -
,
. -
, , -
Windows XP. 15 -
,
, -
.

Active Directory
.
Group Policy Object Editor ( )
MMC ,
.
, .
1. Windows Server 2003 XP -
Administration Pack.
.
3. ,
Run ( ) runas /user:administrator
mmc.exe , MMC -
. Administra-
tor, -
.
4. , runas, -
. <Enter>.
5. MMC, File Add/Remove Snap-in.
,
623
19
7. Add Stand-alone Snap-in Group Policy

Object Editor ( ),
Add.
8. (Select Group Policy Wizard), -
, .
, .
-
Browse ().
9. ,
. 19.8, .
. 19.8.
10. Finish , Close
Add Stand-alone Snap-in, Add/Remove
Snap-in .

, -
, , . , -
, ,
. -
SYSVOL -
, .

,
,
. -
,
-
. ,
Windows Server 2003
624
VI
,
.
, .
Active Directory Users and Computers Active Directory Site and Services -
MMC , -
, (Organizational Unit
OU). -
.
1. Windows Server 2003 XP -
Windows Server 2003 Administration Pack.
.
3. ,
Run runas /user:administrator mmc.exe -
, MMC -
. Administrator,
-
.
4. , runas, -
. <Enter>.
5. MMC, File Add/Remove Snap-in.
7. Add Stand-alone Snap-in Active Directory Users
and Computers Add.
8. Close Add Stand-alone Snap-in,
Add/Remove Snap-in -
.
9. ,
.
Active Directory Users and Computers -
Connect to Domain ( ).
10.
. , Browse
.
11. .
Properties.
12. Group Policy ( ),
New (). .
13. <Enter> .
14. ,
Properties.
,
625
19
15. Security () Authenticated

Users ( ).
16. Permissions Apply Group Policy (
) Allow .
17. -
, -
.
18. Add .
, Advanced
(), Find Now ()
. , -
.
19. .
20. , -
Allow Apply Group Policy, . 19.9.
.
21. Apply ()
, General ().
22. General Computer or User Settings (-
)
. -
, , . -
, .
. 19.9.

Windows Server 2003
626
VI
23. ,
Edit (),
. -
Close.

.
. , -
, , -
. -
. , -
,
-
. , -
Properties. General () -

, .
, -
.
Resultant Set of Policies ( -
) MMC, Resultant Set of Policies
MMC. ,
X -
, X.
: , ,
, .
,
. -
,
, ,
OU Block Policy Inheritance ( -
).
, , No
Override ( ).

Block Policy Inheritance

, OU.
,
Active Directory .
.
,
627
19
1. AD Users and Computers

MMC OU, AD Sites and Services
MMC .
2. , , -
Properties.
3. Group Policy ( )
Block Policy Inheritance ( ),
. 19.10.
4. .
. 19.10. -
OU
No Override
No Override ( ) -
-
. ,
AD -
.
No Override -
:
1. AD Users and Computers MMC.
2. -
Properties.
3. Group Policy ( ),
Options ().
4. ,
.
Windows Server 2003
628
VI

,
, .
, -
. -
,
, , ,
. OU, -
OU, OU, , , OU, -
Active Directory ( ).
LSD-OU (local, site, domain, OU) , , , OU.
, ,
,
Windows Server 2003 Resultant Set of Policies (RSoP) -
MMC GPResult.exe,
RSoP.
Resultant Set of Policies MMC

RSoP (Resultant Set of Policies )
MMC
,
. , -
.
, ,
RSoP :
1. , .
.
5. Add Stand-alone Snap-in Resultant Set of Policy
( ) Add.
Close, Add/Remove Snap-in.
6. Resultant Set of Poli-
cy Generate RSoP Data (
RSoP).
7. Next.
8. Mode Selection ( ) Logging Mode
( ) Next.
9. Computer Selection ( ) This
Computer ( ) Next.
,
629
19
10. Users Selection ( ) Display

Policy Settings For ( ), Select a
Specific User ( ), . 19.11.
. 19.11. , -

11. Summary of Selections ( )
Next .
12. , Finish
.
, ,
. , -
, -
Computer Configuration ( ), User Con-
figuration ( ) Proper-
ties , .
, Active Directory
,
.
, -
.
5 6 ( Active Directory), 21 29 (
) 23 (
).
Windows Server 2003
630
VI

,
, ,
.
(-
, ), , -
.
.

,
.
, , -
, , DNS-, DHCP-
, , , WINS.
.
, ,
.
, .

.
-
.

.
-
.
RSoP GPResult.exe -
.

Windows Server 2003
20
...
Windows Server 2003
Windows Server 2003

Windows Server 2003
632
VI

, ,
Windows 95.
(Registry), . -
, .ini .dat, -
Microsoft.
, ,
. , -
, , , -
.
, . ,
. - -
, ,
.
,
, -
. , , , ,

. ,
, ,
. -
,
(
).
Windows Server 2003
, -
. ,
. , -
,
.
-
.
.
.
Windows Server 2003

, , , -
. -
. , , (-
), , , , ,
. (value entry) -
Windows Server 2003
633
20
, (value)
.
,
, -
(hive) . , -
. 20.1, ( Windows Server
2003). , ,
.
. 20.1.
. 20.1.
20.1.
()
HKEY_CURRENT_CONFIG .
HKEY_CLASSES_ROOT OLE.
HKEY_CURRENT_USER ,
, ,
.
HKEY_USERS .

.
HKEY_LOCAL_MACHINE :
,
.
Windows Server 2003
634
VI

.
. 20.2.
20.2.
( )
HKEY_CLASSES_ROOT HKEY_LOCAL_MACHINE\SOFTWARE\Classes
HKEY_CURRENT_CONFIG HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\
Hardware Profiles\Current
HKEY_CURRENT_USER HKEY_USERS ( )
(key). -

(subkey). .

Windows Server 2003 : .
, -
, :
%SYSTEMROOT%\System32\Config
.sav .log. -
.
HKEY_LOCAL_MACHINE
HKEY_LOCAL_MACHINE ,
(, , , ) -
. . 20.2,
:
HARDWARE
SAM
SECURITY
SOFTWARE
SYSTEM
.
HARDWARE
(HARDWARE ), -
HARDWARE .
, -
. HARDWARE .
Windows Server 2003
635
20
. 20.2. HKEY_LOCAL_MACHINE
NTDETECT.COM. -
HARDWARE. -
, :
.
.
.
.
.
.
.
HARDWARE , -
, NTDETECT.COM:
HARDWARE\ACPI ACPI
, Plug and Play, -
(Advanced Power Management APM).
HARDWARE\DESCRIPTION .
HARDWARE\DEVICEMAP
.
HARDWARE\RESOURCEMAP , -
(, ).

-
Plug and Play API- Plug and Play.
Windows Server 2003
636
VI
SAM
SAM, 20.3,
HKEY_LOCAL_MACHINE\SECURITY , .
, -
. , -
.
. 20.3. HKEY_LOCAL_MACHINE\SAM
SECURITY
SECURITY ,
.
.
, , ,
. -
,
Mixed Windows NT 4 .
SOFTWARE
SOFTWARE ,
, , . -
HKEY_LOCAL_MACHINE,
( ).
, -
HKEY_CURRENT_USER\Software.
, -
, . , HKEY_LOCAL_MACHINE\
SOFTWARE\Microsoft\ ,
Microsoft.
Windows Server 2003
637
20
SYSTEM
SYSTEM. :
.
, -
. -
. ,
: ,
Windows Server 2003, OSLoaderPath
SystemPartition.
.
, , RAID-
. Disk Management ( ) -
.
HKEY_CLASSES_ROOT
HKEY_CLASSES_ROOT ,
HKEY_LOCAL_MACHINE\SOFTWARE\Classes.
, , OLE -
. , ,
. , -
. , , -
Windows .doc Microsoft Word. -
Microsoft Word, -
. . 20.4.
HKEY_CURRENT_USER\Software\Classes -
Windows 2000 , .
(per-user
class registration). , -
-
.
.
HKEY_CURRENT_CONFIG
HKEY_CURRENT_CONFIG ,
.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Hardware Profiles\Current. -
, ,
,
, .
Windows Server 2003
638
VI
. 20.4. ,
HKEY_CLASSES_ROOT
, , ,
, -
.
.
HKEY_CURRENT_USER
HKEY_CURRENT_USER .
, , , -
, HKEY_USERS\<SID>, SID (Security ID -
) . ,
.

, .
( , , -
,
). -
.
HKEY_CURRENT_USER , -
:
AppEvents ( ).
Console ().
Control Panel ( ).
Environment ().
Windows Server 2003
639
20
Identities ( ).
Keyboard Layout ( ).
Printers ().
Session Information ( ).
Software ( ).
Unicode Program Groups ( Unicode).
Volatile Environment ( ).
HKEY_USERS
HKEY_USERS -
. ,
: , ,
. :
.DEFAULT. , -
.
, .
<>. SID (Security ID
); , -
.
<_Classes>. -
, .
,
. :
%SystemDrive%\Documents and Settings\<_>
%SystemDrive%\Documents and Settings\Default User\
Windows Server 2003

Windows Server 2003 :
REGEDIT.EXE REGEDIT32.EXE.
, ,
. , Microsoft
, -
. (REGEDIT.EXE REGEDIT32.EXE) -
, ,
. 20.5. Windows Server 2003 -
, -
.
Windows Server 2003
640
VI
. 20.5. HKEY_USERS

( ) -
. , , -
. , -
.
, , . -
,
.

.
:
.
(HKEY_LOCAL_MACHINE HKEY_USERS).
HKEY_LOCAL_MACHINE\SECURITY ( ).
, .
1. , Run ( ) -
regedit regedit32.
2. , ().
3.
NewKey ().
4. . Default ( -
).
Windows Server 2003
641
20

- ,
( ) , . 20.3.
.
20.3.

String () , -
.
Binary ( ) , -
(hex) .
.
DWORD ( ) 32- , -
, .
Multi-string ,
( ) . ,
.
Expandable string -
( , -
) . -
, .

-
, ..
:
1. , , -
.
2. .
3. .
4. .

, , ,
. <Delete>,
Delete () Edit ().

regedit,
. ,
.
Windows Server 2003
642
VI
1. My Computer ( ).
2. Edit Find ().
3. Find () ,
, .
4. , (, ) -
.
5. Find Next ( ), .
Favorites
Favorites () Internet Explorer, Favorites
()
. Favorites,
.

:
1. , regedit regedit32.
2. File Connect Network Registry ( -
).
3. Select Computer (: ),
. 20.6, .
4. Check Names ( ) -
.
5. .

HKEY_LOCAL_MACHINE HKEY_USERS, , -
.
. 20.6.
Windows Server 2003
643
20

, , -
, . -
.
Microsoft
, .
. -
. , HKEY_LOCAL_MACHINE\SAM
HKEY_LOCAL_MACHINE\SECURITY -
DAC.
, -
, . -
,
.
NTFS.
.
1. ,
, Permis-
sions ().
2. Per-
missions for <> ( <>). Allow (-
) Deny () Full Control ( ),
Read () Special permissions ( ).
3. , Advanced (-
) Advanced Security Settings for <> (-
<>). ,
.

:
Full Control .
Query value .
Set Value .
Create Subkey .
Enumerate Subkey .
Notify .
Create Link .
Delete .
Write DAC .
Write Owner .
Read Control .
Windows Server 2003
644
VI

-
. ,
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg.
-
, LOCAL
SERVICE.
,
. -
Administrators ()
Backup Operators ( ) -
.

,
. -
.
, .
-,
(Group Policy Object GPO), -
( ). GPO
21.
, .
GPO .
1. Active Directory Users and Computers ( -
Active Directory) MMC, Start () All
ProgramsAdministrative ToolsActive Directory Sites and Services ( -
Active Directory).
2. -
Properties ().
3. Group Policy ( ).
4. Default Domain Policy ( )
GPO, .
5. Edit () Computer Configura-
tionWindows SettingsSecurity SettingsLocal PoliciesAudit Policy (-
Windows -
).
6. Audit object access ( ).
7. Define These Policy Settings (
), Success (),
Failure ().
Windows Server 2003
645
20
8. Apply (), ,
GPO.
:
1. Local Security Policy ( ) (
Default Domain Controllers Security Setting ( -
)), Start All ProgramsAdminist-
rative Tools ( ).
2. Local Policies ( ) Audit
Policy ( ).
3. .
4. Define These Policy Settings , ,
Success, Failure.
5. Apply, ,
GPO.
, -
. .
1. ,
, Permis-
sions.
2. Advanced, Advanced Security Settings
for <>. , .
3. Auditing () Add ().
4. Select User or Group ( ) -
, . -
, auth, Check Names (-
) Authenticate Users (-
).
5. . Auditing Entry for <>
( <>).
6. Successful () / Failed () -
. ,
Successful Failed Full Control
.
7. Apply These Auditing Entries to Objects and/or Containers
Within This Container ( / -
), -
.
8. , .
9. .
Windows Server 2003
646
VI

(Event Viewer),
. 20.7. , , -
.

Windows Server 2003 131 072
(128 ). .
.
. 20.7.

Windows Server 2003
. , -
.

Windows -
. -
. Windows XP, .
, -
. Windows Server 2003 , , -
.
.
Windows Server 2003
647
20

, . -,
, -
. 25% .
.
.

. , , -
. , , ,
( ) -
.
, , ,
, .
.
- -
, - Windows Server 2003.
Windows .NET -
, -
, -
. , ,
, -
.
, , -
, ,
.

, -
, . -
. -
. ,
.
Microsoft -
RegClean.
( ). -
. -
, ,
.

.
Windows Server 2003
648
VI

Add/Remove Programs ( ),
. 20.8 .
.
,
.
. 20.8. Add/Remove Programs
(MSICUU.EXE) Windows
(Installer Cleanup Utility) Windows -
, , -
Windows Installer.
, . -
deploy.cab, Administrative Tools ( -
) .
MSICUU, . 20.9,
,
Windows.
MSICUU, -
- Windows Server 2003 :
1. MSICUU <Enter>.
2. MSICUU
, .
-
.
Windows Server 2003
649
20
. 20.9. -
Windows
Windows Installer Zapper (MSIZAP.EXE)

Windows Installer Zapper ( ), -
MSIZAP, MSICUU.
, MSICUU ,
, .
(Access Control List ACL) -
, .
MSIZAP :
MSIZAP [*] [A] [P] [T { }] [!]
:
* , -
DLL- Windows Installer.
T .
P In-Progress ( ).
S .
A ACL Admin Full Control.
! Yes .

MSIZAP .

.
, -
.
Windows Server 2003
650
VI

. , , -
. -
-
.
Windows Server 2003

Backup Utility (NTBACKUP.EXE), . 20.10.
Start All ProgramsAccessoriesSystem Tools ( -
). Backup Utility , -
Windows 2000, :
(Emergency Repair Disk ERD) -
(Automated System Recovery ASR). -
, , -
.

. System State Data ( -
). AD, SYSVOL,
, ,
COM+ .

%SYSTEMROOT%\Repair\Regback.

Windows Server 2003
651
20

Windows Server 2003 ERD -
(Automated System Recovery ASR). -
( ERD),
. ASR, -
ASR, .
20.11. Microsoft ASR -
. Last
Known Good ( ) Safe Mode Boot ( -
).
. 20.11. ASR
ASR ASR,
, .
ASR -
, -
. , ;
, -
.
ASR , -
. ,
. ASR
<F2> . ,
, ASR . -
, .
Windows Server 2003
652
VI

(.reg).
.

.
.
-
, ,
Export (). -
( .reg). , , Save (-
), .

. regedit
regedit /e <c:\__.reg>,
.

:
.
; .reg ,
.

:
1. , Run
regedit.
2. File Import ().
3.
Open ().
, -
.
. -
, -
.
Windows Server 2003
653
20

,
-
. , ,
.
Favorites
.
, -
:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg
.
Windows Install Cleanup
.
-
.

Windows Server 2003
21
...

GPMC
Resultant Set of Policies
Windows

Group Policy

Group Policy
Windows Server 2003
656
VI
, ,
Windows. Win-
dows Server 2000, Windows Server 2003, -
. (Group Policy GP)
,
, . ,
Active Desktop
.

Win-
dows 2000 Professional, Windows XP, Windows 2000 Server Windows Server 2003.
, Windows, Unix
, Windows Server
2003. , , -
. :
.

,
-
.
. , -
:
.
.
,
.
, MSI,
, -
. .

. -
, , , -
.
, -
.
.
.
.
Windows Server 2003
657
21

-
. -
90 , -
(- 30 ), 5 .
Group Policy, -
:

Computer ConfigurationAdministrative Templates
SystemGroup Policy ( -
).

User ConfigurationAdministrative TemplatesSystemGroup Policy (-

).
,
(Group Policy Object GPO) GPO, -
. -
, GPO:
, .
, .
, .

16 , -
.

. -
, , .
,
. -
,
.
Windows Server 2003
658
VI
, :

,
. ,

,
. , -

. , GPO
SYSVOL ,
, .

(RSoP)
(Group Policy Management
Console GPMC)
. -
, -
-
. -
GPMC
.

.
, -
. ,
-
. , -
GP
.

, -
,
. -
, , -
, .
, -
.
Windows Server 2003
659
21
GP
-
. , -
, -

AD.
:
GPO.
WMI.
WMI.
GPO.
, GPO -
(scope of management SOM).
-
, , -

. -
, , -
-
. .

.
-
, .

(
OU -
), .
, OU , -
.
. -
New Group Policy ( -
). ,
.
.
.
Windows Server 2003
660
VI

, -
( ) Windows 2003.
, , -
, . -
, -
(. ).
-
, -
, .
!
, OU,
SAM, Active Directory.
Active Directory -
.
, -
, .

-
, . -
, -
, Microsoft .

:
OU. OU -
OU , ,
OU OU . -
-
, OU , -
, OU -
. -
, , OU.
-
, -
.
Windows Server 2003
661
21

, -
. ,
Active Directory. AD -
:
.
.
.
.
.
GPO OU OU, -
.
-
Not Configured ( ), . -
-
, . ,
GPO GPO OU GPO OU.
AD OU GPO,
, , . GPO
, , , -
GPO . , OU -
(Contacts) ,
( . 21.1), -
:
.
.
.
, -
, . -
, -
,
.

, . GPO
(Enforcement).
-
OU. , -
, GPO.
Windows Server 2003
662
VI
. 21.1.
GPO (Block Poli-
cy Inheritance). AD, GPO,
GPO ,
( GPO -
).
, , , -
, (Link Enabled) GPO.

Link Enabled, -
. . 21.2
Contacts Temporary Policy.

(loopback) -
, -
AD. ,
, , , -
. , -
. -
, ,
, -
, GPO . -
, GPO, ,
GPO , -
GPO .
Windows Server 2003
663
21
. 21.2.

,
. , ,
Microsoft -
, .

Microsoft Windows Server 2003 , -
; -
,
. ,
. , -
, , -
, GP . -
,
.

, , -
.
Windows Server 2003
664
VI

ping 32 2048- , 500 K/.
K/ (Kbps) Microsoft -
:
16000 / = Kbps
, 32 -
:
16000 / 32 = 500 Kbps
, , -
DC,
. 2048- ,
:
ping l 2,048
.
, , ,
500 K/ , , -
.

Microsoft,
-
, Group Policy:
Computer ConfigurationAdministrative TemplatesSystemGroup PolicyGroup
Policy Slow Link Detection Properties ( -

). ( 0, -
,
.)
User ConfigurationAdministrative TemplatesSystemGroup PolicyGroup Poli-
cy Slow Link Detection Properties ( -
-
). ( 0, -
,
.)
-
, , , ,
Group Policy. ,
Computer ConfigurationAdministrative TemplatesSystemGroup Policy (-
-
) (Policy Processing).
Windows Server 2003
665
21

, -
,
.

- -
, , ,
, .
.
SYSVOL .
.
GPO. GPO -
, .
. -
GPO, -
, GPO.
Group Policy
ADUC GPMC -
, ,
, , -
FMSO PDC. -
, -
,
PDC- DC.
GPMC Group Policy
, : User ConfigurationAdministrative
TemplatesSystemGroup PolicyGroup Policy Domain Controller Selection (-

).
Use Any Available Domain Controller ( -
) Inherit From Active Directory Snap-ins (
Active Directory), DC,
. , PDC Use the Primary
Domain Controller ( ). . 21.3
Inherit From Active Directory Snap-ins.

, GPO
User Configuration ( )
Computer Configuration ( ), GPO
Windows Server 2003
666
VI
. -
,
.
. 21.3.
Active Directory Users
and Computers .
1. .
2. Properties ().
3. General ().
4. , , Disable
Computer Configuration Settings ( -
), Disable User Configuration Settings (
).
GPMC
.
1. GPMC .
2. Details ().
3. Details.
4. , ,
Computer Configuration Settings Disabled (
), User Configuration Settings Disabled
( ).
Windows Server 2003
667
21

-
. ADUC GPMC
, -
. , -
, , -
. . 21.4 -
GPO Show Configured Policies Only
( ).
. 21.4.
,
ADUC GPMC.
1. ADUC GPMC.
2. .
3. Computer Configuration/Administrative Template (-
/ ) User Configuration/Administ-
rative Template ( / ).
4. Administrative Templates (-
) ViewFiltering
().
5. Only Show Configured Policy Settings (
), . 21.5.
Windows Server 2003
668
VI
. 21.5. -
GPMC

GPO : .
.

, , -
.
. GPO
, . SYSVOL
Active Directory.
, , -
SYSVOL -
. ,
, -
, .
Group Policy ADUC,
: Remove the Link From the List ( -
) Remove the Link and Delete the Group Policy Object Permanently (-
).
GPMC ,
Group Policy Object , .
Do you want to delete this link? This will not delete the GPO itself (
? GPO ),
GPO .
.
Windows Server 2003
669
21
GPO GPMC Group Policy Objects

( ). GPO
Delete (). Do
you want to delete this GPO and all links to it in the domain? This will not delete links in
other domains ( GPO ?
). .

GPO, ,
- . GPMC ADUC.

Group Policy
-
. (, SMS)
(,
),
Group Policy. ,
, -
. -
. -
, -
:
MSI -
.

Installing Managed Software ( ).
.
Add/Remove Programs (-
) , -
.
Windows Server 2003
670
VI

(Group Policy Management Console
GPMC) ,
Group Policy Windows 2003.
Group Policy AD Users and Computers.

ADUC Group Policy, You
have installed the Group Policy Snap-in so this tab is no longer used (
Group Policy, ) Open () -
GPMC.
GPMC Windows Server 2003 Windows XP.

GPMC.msi :
GPMC All ProgramsAdministrative
ToolsGroup Policy Management (
) Start ().
C
GPMC Windows 2000,
Windows XP.
GPMC ;
.
GPO: ,
,
Group Policy -
( ) . Group Policy -
. , -
, .
Active Directory, GPO WMI
( WMI ) IP-
. ,
GUID GPO. -
GPO, GPO.
GPO -
, , ,
, . -
, .
Windows Server 2003
671
21
GPO , -
, , -
GPO.
GPO.
OU , -
() GPO OU, GPO, -
GPO. GPO -
. GPO . -
, .
, , -
GPO.
, -
Stored User Names and Passwords (
). , GPO -
GPO, GPO.

-
, GPO.
.
, , -
. -
.

GPO -

.

GPMC
. -
, , -
GPMC. GPO
- .
.

. -
, -
, ViewOptions (
), General () Enable Trust Delega-
tion ( ).
Windows Server 2003
672
VI
Group Policy , ,
Stored User Names and Passwords (-
). , Start
Control PanelUser AccountsAdvancedManage Passwords (
) Windows
XP Start Control PanelStored User Names & Passwords (-
) Windows Server 2003.
Stored User Names and Passwords ,
. 21.6.
. 21.6. -

HTML-
Settings
Settings ()
GPMC. GPO HTML.
HTML- ,
GPO. , ( -
) ,
Show All ( ). ,
.
WMI
WMI -
. -
, WMI WMI -
true/false (/), -
Windows Server 2003
673
21
. false ,
GPO , true GPO.
WMI GPO, -
GPO GPO Scope (
GPO). GPO WMI. ,
WMI Windows XP
, Windows 2000 Microsoft.
GPMC
GPMC -
GPO. GPMC
, , GPO, WMI, -
( ), -
GUID GPO.
GPMC
Resultant Set of Policies (RSoP )
GPMC, , -
,
, .

RSoP -
, , ,
. , -
. -
GPO
.
RSoP -
Group Policy Modeling ( ) -
Group Policy Modeling Wizard ( -
). , -
, WMI .
Group Policy Modeling.

RSoP
RSoP , -
.
,
Windows Server 2003
674
VI
. -
, .
RSoP GPMC -
Group Policy Results ( ), -
Group Policy Modeling Wizard (
) .

Windows
Windows (Windows Management Instrumentation WMI)
Microsoft (Web-based Enter-
prise Management WBEM) Web, -
Windows.
Microsoft , WMI
: WMI, -
WMI.
WMI
Group Policy
Windows, - . -

WMI-. .
.
.
.

.
,
Visual Basic .
, WMI- ,
, , .
Microsoft , -
. -
Windows (Windows Script Development Center)
http://msdn.microsoft.com/library/default.asp?url=/nhp/Default.asp?contentid=28001169
, , , -
.
, .
fabrikam cn ( ) ou
( ) OU , -
,
. ,
Windows Server 2003
675
21
, ,
.
Const ADS_PROPERTY_APPEND = 3
Set objGroup = GetObject _
("LDAP://cn=Sea-Users,cn=Users,dc=NA,dc=fabrikam,dc=com")
objGroup.PutEx ADS_PROPERTY_APPEND, "member", _
Array("cn=Scientists,ou=R&D,dc=NA,dc=fabrikam,dc=com", _
"cn=Executives,ou=Management,dc=NA,dc=fabrikam,dc=com", _
"cn=MyerKen,ou=Management,dc=NA,dc=fabrikam,dc=com")
objGroup.SetInfo
-
. ,
,
, , OU
, OU -
.
WMI
WMI
WMI.
, WMI

.

WMI
WMI,
:
1. Active Directory Users and Computers.
2. OU, -
.
3. Properties
Group Policy ( ).
4. -
, Properties.
5. WMI Filter ( WMI).
6. This Filter ( ),
Browse/Manage (/).
7. Advanced ().
8. New (), -
, Delete (), .
.
Windows Server 2003
676
VI

,
.
2. OU, -
.
3. Properties
Group Policy ( ).
4. -
, Properties.
5. WMI Filter.
6. This Filter, Browse/Manage.
7. Advanced. Import ()
, -
, Export ().
.
MOF-,
WMI, .

Group Policy
Group Policy
.
,
(, , ),
-
.
,
. -
, ,
, , -
, .
, -
.
, -
OU . , -
-
, ,
,
, .
Windows Server 2003
677
21

Microsoft Group Policy -
, (
). -
,
. -
.
, , -
, , ,
.
, , -
.
. : ,
.
Securews.inf, Securedc.inf.
. (Hisecws.inf
Hisecdc.inf)
-
. ,
.
. (Rootsec.inf)
-
C. ,
. -
, ,
; -
.
. (Compatws.inf) -
. -
, , -
Microsoft ,
. Power Users.

, ,
OU, SAM, Active Di-
rectory. Active Directory
(Account Policy) (De-
fault Domain Policy). ,

AD, Group Policy:
Windows Server 2003
678
VI
Password Policy ( ).
Account Lockout Policy ( ).
Kerberos Policy ( Kerberos).
:

, Administrators Power Users, .
, . -
, -
-
. -

, Group Policy.
, OU,
.
,
, OU. -
,
. .
.
1. Group Policy.
2. Computer ConfigurationWindows SettingsSecurity Settings
Restricted Groups ( Windows-
).
3. Restricted Groups
Add Group ( ).
4. Browse ().
5. .
6. Add Group.
7. Members Of This Group ( )
Add ().
8. Browse.
9. ,
. -
.
21.7.
10. , .
Windows Server 2003
679
21
. 21.7.

(Group Policy Object Editor) -
Folder Redirection ( )
. ,
, Documents and
Settings. User Configuration (-
) .

. .
,
.

UNC (Universal Naming Convention
) \\server\share\%username%\MyDocuments -
, , \\server\share,
Folder Redirection
. Folder Redirection
.
, -
:
Windows Server 2003
680
VI
1. , , -
, ,
.
2. Folder Redirection (-
), , -
.
3. (,
Desktop My Documents) Properties.
4. Target () Settings ()
Basic Redirect Everyones Folder to the Same Location (
).
5. Target Folder Location ( )
Create a Folder for Each User Under the Root Path ( -
).
6. Root Path ( ) UNC- ( \\servername\sharename),
.
7. Properties .

(My Documents)
Windows Server 2003 My
Documents .
, -
.
, .
My Documents -
.
1. , , -
, ,
.
2. Folder Redirection, -
My Documents.
3. My Documents -
Properties.
4. Target Settings Basic
Redirect Everyones Folder to the Same Location.
5. Target Folder Location Redirect to the Users Home
Directory ( ),
.
Windows Server 2003
681
21

Active Directory
. -
Active Directory .
, ,
; .

-
, -
, -
. , -
Windows 2000.
- , -
.
1. , , -
, ,
.
2. Folder Redirection -
, .
3. (, Desk-
top My Documents) Properties.
Redirect Everyones Folder to the Same Location.
5. Target Folder Location Redirect to the Following
Location ( ).
6. Root Path ( ) UNC (, \\sever\share).
(, C:\somefolder).
.

, %userprofile%\< >.
-
:
1. , , -
, ,
.
Windows Server 2003
682
VI
2. Folder Redirection -
, .
3. (, Desk-
top My Documents) Properties.
Redirect Everyones Folder to the Same Location (. 21.8).
. 21.8.
5. Target Folder Location Redirect to the Local
User Profile Location (
), .

Properties () Not Config-
ured ( ) -
. Not Configured , .

,
, , -
. , , ,
, , -
. (
), , -
, , .
, -
, , .
Windows Server 2003
683
21
, , -
, , .
!
, ,
ASL,
. , -
, .

ADUC GPMC, Microsoft -
.
Web- Microsoft Windows 2003 Resource Kit.
gpupdate.exe
gpupdate.exe Windows 2003
secedit/refreshpolicy Windows 2000 Server.
,
AD . -
.
:
Gpupdate [/target:{computer | user}] [/force] [/wait:] [/logoff] [/boot]
-
:
Gpupdate /?
gpresult.exe
gpresult.exe Microsoft Win-
dows 2003 Resource Kit. , ,
. gpresult.exe
, -
, . , -
gpresult.exe,
, .

gpmonitor.exe .
-
. ,
Windows Server 2003
684
VI
. gpmonitor.exe
(Deployment Kit) Windows Server 2003.
GPOTool.exe
GPOTool.exe Group Policy
.
,
, SYSVOL
, , .
,
GPO. GPOTool.exe Windows
2003 Resource Kit Microsoft Windows 2000, Web-
Microsoft.
FRSDiag.exe
(File Replication Service FRS) , -
.
, -
, .
Microsoft
FRSDiag , -
RFS. -
, ,
NTFRSUTL , REPADMIN /showreps REPADMIN /showconn
FRS. -
. -
, DC , -
, , .
cab-. FRSDiag.exe -
:
FRSDiag , Canary File Tracer (-
). ,
SYSVOL\_\policies ( ,
Share Root) .
,
, SYSVOL\_\policies
,
-
. -
,
, . -
.
Windows Server 2003
685
21
1. Target Server ( ) -
.
2. File Output ( ) None ().
3. Tools () Canary File Tracer ( -
).
4. : _\policies\*.*.
5. Expected Number of Hits ( )
(, 135).
6. Go ().
-
. , -
, . -
.
. 21.9
.

Windows 2000, -
.NET Framework v. 1.1.
. 21.9. -

Sonar.exe
Sonar.exe :
,
FRS ,
Windows Server 2003
686
VI
Group Policy. Sonar

,
: ,
, FRS
. Sonar
DFS, FRS.
Group Policy.
Windows 2000 XP.
\HKEY_LOCAL_MACHINE (HKLM)
HKEY_CURRENT_USER (HKCU) ,
HKLM HKCU:
\SOFTWARE\POLICIES
\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES
-
Group Policy,
ACL.
-
. Microsoft ,
, Group Policy, , ,

Group Policy.

(preferences), (policies) . -
,
. -
.
,
ACL. Group Policy , , -
,
- . ,
. -
.
- , -
, - , , -
, , .
, -
. .
Windows Server 2003
687
21

Microsoft
Microsoft -
Microsoft Office Office Resource Kit.
-
Microsoft Office.
Group Policy Windows Ac-

tive Directory, Microsoft Exchange 2003 ,
Group Policy, GPO -
Microsoft Outlook 2003. ,
Group Policy Microsoft,
-
,
.
,
Microsoft Outlook 2003
.
, Group Policy -
Outlook, Outlook, -
Exchange -
.
Outlook

, Outlook 2003, Office Resource Kit
(ORK) Outlook
Windows.
Outlk11.adm -
,
Outlook.
Outlk11.adm -
:
Outlook. , -
, , Op-
tions, Tools Outlook.
,
Outlook. ,
, , -
.
Windows Server 2003
688
VI
Exchange. -
, -
.
SharePoint.
Outlook,
Outlook SharePoint.

Outlook
,
Outlook .
Outlk11.adm ORK ,
ORK.
Outlook, -
, , -
GPMC. Microsoft ORK , -
.
C
Office 2003 Resource Kit Web- Microsoft Office :
http://www.microsoft.com/downloads
ORK Outlk11.adm -
C:\Windows\Inf ( C: , -
Windows) , ORK.
Outlook Outlk11.adm -

.
C
Outlk11.adm -
.
1. , ,
Group Policy, Start All ProgramsAdministrative Tools
Group Policy Management (
).
2. , -
Outlk11.adm, . 21.10.
3. Action () Edit ();
(Group Policy Object
Editor).
Windows Server 2003
689
21
. 21.10.

4. Administrative Tem-
plates ( ) User Configuration (-
) , , -
Add/Remove Templates ( ),
. 21.11.
. 21.11. Add/Remove Templates

5. Add/Remove Templates Add ().
6. , 2 Outlk11.adm. -
OUTLK11.ADM Open ().
7. Add/Remove Templates ,
OUTLK11 , Close ().
Administrative Templates ( ), -
, Microsoft Out-
look 2003.
Windows Server 2003
690
VI

-
Windows, -
Microsoft Outlook
. GPMC -
, -
.
Outlook 2003
.
GPMC -
Outlook . -
-
Active Directory.

:
GPO.
WMI.
WMI.
, GPO.
, GPO
(SOM).
GPO
, GPO, -
Active Di-
rectory . , , Edit
Group Policy Objects Only ( ).
1. GPMC, Domain FolderYour Domain
Group Policy ObjectsDefault Domain Policy ( -
).
2. Domain Group Policy Object (
) Delegation ().
3. Add (),
.
4. , ,
(Edit), . 21.12,
.
GPO .
, -
.
Windows Server 2003
691
21
. 21.12. -

Outlook
Group Policy GPO.
Exchange
Outlook,
OU ,
.
1. GPMC ,
GPO.
2. Action Link An Existing GPO (
GPO).
3. Select GPO ( GPO)
, -
.
C
GPO GPMC Active Direc-
tory Users and Computers (ADUC). , ,
Group Policy ( ).
Outlook
, -
Outlook, -
, -
.
- , -
.
- Out-
look, , -

.
Windows Server 2003
692
VI
Outlook Saving Sent

Items ( ), Spell Checking Messages Before Sending
( ) Auto Archive Settings
( ) -
Outlook, -
.

,
Group Policy.
HTML/Microsoft Word message format ( HTML/Microsoft
Word). Outlook
HTML/Microsoft Word. -
.
Junk Email Filtering ( ). -
.
OST/PST Creation ( OST/PST).
OST PST -
.
Empty Deleted Items Folder ( ). -
, -
, , -
.
Auto Archive ( ). , -
-
GPO.
Email Accounts ( ). -
-
.

-
,
Outlook:
Reminders Display Options ( ).
.
Working Hours and Work Week ( ).
.

Outlook
. ,
. , (Display Name)
Windows Server 2003
693
21
, [], (First, [Middle], Last Name), File

As ( ) (Last, First).
Outlook . -
Outlook
.
Outlook

Outlook.
Outlook
.
Outlook,
Group Policy. , -
Web- SharePoint, -
.
Web
Preferences () -
Outlook -
Web- Microsoft SharePoint Portal (
SharePoint) Internet Information Services ( Internet):
Custom Outlook Today ( Outlook ). -
URL- Custom Outlook Today Properties
( Outlook ), Web-
,
Outlook Today.
Folder Home Pages Settings ( ).
Web-.
SharePoint Portal Server ( SharePoint).
Outlook 2003 Group Policy -
SharePoint Outlook.

Outlook
, , -
GPMC -
Outlook 2003.
, .
-
Outlook OU Active Direc-
tory. , Outlook -
Internet- -
.
Windows Server 2003
694
VI
GPMC, Start All ProgramsAdmini-

strative ToolsGroup Policy Management ( -
), :
1. , ForestDomains-
__Group Policy Objects (__-
).
2. Default Domain Policy ( ), -
GPMC Action () Edit (-
). .
3. User Configuration ( ) Ad-
ministrative Templates ( ),
Microsoft Outlook 2003.
, GPO -
. GPMC,
RSoP OU. -
HTML/Microsoft Word Email Editor (
HTML/Microsoft Word) Outlook , -
Web- www.CompanyABC.com. -
.
1. Microsoft Outlook 2003 ToolsOptionsMail
FormatMessage Format ( -
).
2. Message Format Editor ( -
) Message Format Policy
( ).
3. . 21.13, Enabled ()
HTML/Microsoft Word. .
. 21.13. -

Windows Server 2003
695
21
4. Outlook Today (Outlook ), Micro-

soft Outlook 2003Outlook Today.
5. URL- Custom Outlook Today
Properties ( Outlook Today).
6. Outlook -
Enable () URL- -
, . 21.14. .
. 21.14. -
Outlook
7. GPMC , .
GPMC Default Domain Policy ( )
Outlook (. 21.15).
. 21.15. Outlook GPMC

Windows Server 2003
696
VI
, Group Policy , -
, :
8. , Default Domain
Policy ( ) Add ()
Security Filtering ( ).
9. Select Users, Computers, or Groups ( -
, ) ,
, .
10. Security Filtering ( ) , .
-
, GPO, Action/GPO Status
(/ GPO).

Group Policy
-
-
. -
Group Policy
GPMC ADUC , Group Policy. -

, .
, ,
, .
, User Computer,
. -
-
.
,
( common.adm, Windows 2003). -

Group Policy.
,
. -
Windows 2000,
.
Group Policy, -
, .
Windows Server 2003
697
21
Group Policy
,
,
. Group Policy, -
Active Directory. -
Active Directory, ,
.
Active Directory
Users and Computers, :
2. -
, .
3. Properties Group
Policy ( ).
4. -
OU.
Micro-
soft Management Console (MMC), :
1. Microsoft, Run ( )
mmc.
2. File () Add/Remove Snap-in (
).
3. Standalone () Add ().
4. Available Standalone Snap-ins ( ) -
Group Policy Object Editor ( -
), Add.
5. Select Group Policy Object properties ( -
) Local Computer ( )
,
Browse (), ,
.
6. Finish (), Close (), , -
, . -
.

,
, -
Allow Focus of the Group Policy Snap-In To Be Changed When Launching from
the Command Line ( Group Policy -
) Select Group Policy Object properties (
).
Windows Server 2003
698
VI
, ,
. 21.16, -
. , GPO
GPO.
. 21.16.

.
1. , .
2. ,
Details ().
3. Details , -
.

, -
Start Run, gpedit.msc .

, :
1. , -
.
Windows Server 2003
699
21
2. , -
,
.
, , -
Active Directory Users and Computers Active Directory Sites
and Services.
3. Properties Group
Policy.
4. New (), ,
Close.

GPO . , -
GPO. -
GPO Group Policy, .

-
, , -
, , -
. ,
, .
1. Active Directory Users and Computers Active Directory
Sites and Services ( Active Directory).
2. , -
.
3. Properties Group
Policy.
4. , ,
Add, Add a Group Policy
Object Link ( ).
5. All (),
, ,
Delete ().
6. Yes, Cancel (),
Close.

, ,
, OU , .
GPO.
Windows Server 2003
700
VI
, OU -
:
1. Active Directory Users and Computers,
2. , -
, -
.
, .
3. Properties Group
Policy.
4. , ,
Delete ().
5. Delete Remove The Link From The
List ( ), . 21.17.
, Close.

Delete Remove The Link And Delete The
Group Policy Object Permanently ( -
), ,
, -
, .
. 21.17. GPO

, -
, ;
-
, .
.
.
1. Active Directory Users and Computers,
2. , -
, .
Windows Server 2003
701
21
3. Properties Group
Policy.
4. ,
, Disabled (),
Yes. Disabled
Active (), Disabled .

-
. GPO User Configuration ( )
Computer Configuration ( )
, ,
. -
, .

Group Policy
Group Policy MMC
MMC. : Administrative Templates ( -
), Scripts (), Security Settings ( ), Software Installa-
tion ( ), Folder Redirection ( ), Remote Instal-
lation Services ( ) Internet Explorer Maintenance (-
Internet Explorer).
. , Security Settings -
. , MMC
Group Policy, .
Group Policy GPO , .

: Com-
puter Configuration ( ) User Configuration (-
).
Group Policy. , , -
. ,
, .

Computer Configuration User Configuration
: Software Settings ( ), Windows Settings (
Windows) Administrative Templates ( ). Software
Settings Windows Settings Computer
Configuration User Configuration .
Windows Server 2003
702
VI
Computer Configuration\Software Settings ,

, .
Software Installation ( ) , -
.
User Configuration\Software Settings , -
, , . -
Software Installation. -
.
Windows
Windows Settings ( Windows) Computer Configu-
ration, User Configuration . Computer Configura-
tion\Windows Settings Windows, -
, . User Configuration\Windows Settings
Windows, , -
. : Folder Redirection (-
), Security Settings ( ) Scripts ().

-
: Remote Installation Services ( ), Internet Explorer Main-
tenance ( Internet Explorer) .

Security Settings ( ) -
,
.
.
Security Settings Group Policy, . 21.18, -
: Security
() (, , ) Lo-
cal Users and Groups ( ) Computer Man-
agement ( ).
.
,
.
Account Policies ( ).
, -
Kerberos Windows Server 2003 Windows 2000.
Local Policies ( ).
, .
,
, , , -
.
Windows Server 2003
703
21
. 21.18. GPO
Event Log ( ). -
, . -
.
Restricted Groups ( ). -
, , ,
. -
, -
, ,
. , -
, -
.
. (-
, - ), -

.
System Services ( ). -
( ) -
, , -
, Internet intranet .
Registry (). -
: , .
Security Settings (-
) , -
Windows Server 2003 2000 (-
, Active Directory NTFS). -

Windows Server 2003
704
VI
,
.
, -
.
File System ( ).
: , -
.
Wireless Network Policies ( ). -

, .
Public Key Policies ( ). -
, -
-
. -
.
.
-
.
Software Restriction Policies ( -
). -
/ .
IP Security Policies on Active Directory ( IP- Active
Directory). IP- (IPSec) GPO
Active Directory. IPSec
, .

Windows Server 2003 Administrative Templates ( )
Group Policy (.adm) -
, -
Group Policy.
Administrative Templates Group Policy, -
. Group Policy Windows
2000 Windows Server 2003, . ,
, ,
User , HKEY_CURRENT_USER (HKCU).
, , Local Machine -
, HKEY_LOCAL_MACHINE (HKLM).
Windows Server 2003
Web ,

. Extended () .
, Windows 2000,
, Windows
Windows Server 2003
705
21
. , , Windows Server
2003 Group Policy 220 .

, Standard ().
,
, :
1. .
2. Administrative Templates (-
), ,
.
3. Details () Extended
(). , . 21.19.
. 21.19.
4. Settings () -
, .
5. ( ) -
.
6. Settings :
Not Configured ( ) .
Enabled () , .
Disabled () , .
7. , Settings ,
.
8.
Previous Setting ( ) Next Setting ( -
).
Windows Server 2003
706
VI
Software Installation ( ) -

.
.
, , -
,
-
. ,
. -
.
, Start () ,
, -
. -
-
. -
Start, , .
, -
, . -
, ,
. . -
Active Directory.
, -
Add/Remove Programs ( )
, ,
. , ,
, -
(, .xls-, Microsoft Excel).

, -
. Windows Scripting Host (
Windows), , Visual
Basic Scripting Edition (VBScript) JScript.
-
:
Scripts (Startup/Shutdown) ( (/)).
, Computer Configura-
tion\Windows Settings, ,
. -
, , ,
.
Windows Server 2003
707
21
Scripts (Logon/Logoff) ( (/)). -

, User Configuration\Windows
Settings, ,
. -
, . ,
/.
, -
/ / -
-
. -
, :
1. -
.
2.
Scripts (Startup/Shutdown) ( . 21.20. logon.bat
(/)).
3. Details () Startup ().
4. Startup Add ().
5. Add a Script ( )
:
Script Name ( ) , -
. 21.20, Browse (),
Netlogon .
Script Parameters ( )
, , .

-
,
.
Windows Server 2003

, Windows 2000. Windows Server 2003
-
, -
. -
, Active Directory,
, -
, -
.
Windows Server 2003
708
VI

GPO .
GPO.

.
GPO -
OU.
No Override ( ) Block
().
My Documents , -
.
, -
.
Synchronize All Offline Files Before Logging Group
Policy ( Group Policy), -

.
(UNC) , \\server\share.
; -
.
RSoP
.
.msi;
Group Policy.

,
OU. OU,
OU.

Computer Configuration ( ), User Configuration
( ).

MSI (Distributed File
System DFS). DFS ,
.
.
(
DOS VBScript), ,
, -
, .
Authenticated Users
( ) -
. , Authenticated Users
, .

...
Windows Server 2003

Windows
Server 2003

Microsoft

Windows Server 2003

Windows Server 2003

Windows Server 2003
710
VI
Windows Server 2003 IT- .

, -
. -
. -
IT- .
; ,
, -
, ,
.
Windows Server 2003 , .
, ,
. -
-
. -
.
,
Windows Server 2003

IT-.
,
.
Microsoft .
Windows, Win-
dows Server 2003 , -
.

Windows Server 2003
. -
, -
. , -
. -
, Windows
Server 2003.

.
, . -
-
(Disk Defragmenter), . 22.1.

.
Windows Server 2003
711
22
. 22.1.
, -
.
. -
, .
-
. , -
, . 22.2.
, -
.
. 22.2.
Windows Server 2003
712
VI

,
, -
.
-
.
, ,
, . Internet,
Web-
.
:
.
.
.
.
.
.
,
:
.
.
.
.
.
.
.
.
.
.
.
, , -
-
. , , -
, ,
, -
.
Windows Server 2003
713
22
Web-
Internet: HTTP, FTP, SMTP . ,
, , .
, :
IIS. IIS IIS.
IIS - , ,
IIS (. . 22.3). ,
IIS Manager ( IIS) ActionAll Tasks
Backup/Restore Configuration ( -
).
Web- . Web-, ,
, IIS.
: ASP-, -
.
IIS. IIS -
Web-. -
Web-.
. 22.3.
IIS

. , -
Exchange , ,
. Exchange -
(System Monitor).
,
Exchange.
Exchange Exchange,
Active Directory Users and Computers ( -
Active Directory) MMC. , -
Windows Server 2003
714
VI
Active Directory Users and Com-

puters, Exchange
(Exchange management).

Windows Server 2003
, .
, . -
, :
.
Add/Remove Programs ( ),
.
.
.
, -
. ,
, -
. -
.
.
.

(Domain Controller DC) Active Directory
(AD), , , Windows Server 2003.
AD Windows Server 2003,
(, ), ,
, .
AD ,
, AD , -
. Active Directory Domains and Trusts, Active Directory Sites and Ser-
vices, Active Directory Users and Computers . ,
:
.
.
.
.
(OU).
.
, -
(Support Tools) Windows Server 2003 Windows Server 2003 (Re-
source Kit). ,
AD .
Windows Server 2003
715
22

-
, .
.
-
. , -
, . Windows Server
2003
.

Windows Server
2003. -
, , -
. -
. ,
. , -

, .
.
, ,
.
-
. , :
.
.
-
, ,
, , -
.
.
, .
.
Active Directory,
(System Access Control List SACL), -
.
.
.
Windows Server 2003
716
VI
.
- (, -
).
. ( -
, , -
) .
. -

, .
.
. ,
, . -
.
. -
, , .
-
, , -
. Computer Configuration\Windows Set-
tings\Security Settings\Local Policies\Audit Policy, . 22.4.
, ,
. , -
.
Windows Server 2003
717
22

-
, .
, ,
,
, .

, -
. -
.

Windows Server
2003 . ,
, -
, -
. .
, .
1. Windows
Properties ().
2. Security (),
Advanced ().
3. Advanced Security Settings ( ),
. 22.5, Auditing ().
. 22.5.
Windows Server 2003
718
VI
4. Add (), Select User or

Group ( ).
5. , -
. Check
Names ( ).
6. , Auditing Entries ( ).
7. Auditing Entries, . 22.6, ,
.
8. , .
. 22.6. Auditing Entries
-
. Object Access ( -
). . 22.7.

, -
. ,
. , -
. :
.
.
.
.
.
.
.
Windows Server 2003
719
22
. 22.7.

Windows Server 2003
Windows Server 2003
. , -
, -
, .
.
.
Microsoft (Microsoft Management Console MMC). MMC
,
, ,
. , -

, .
(Remote Desktop for Admini-
stration).
, .
.
Windows (Windows Scripting
Host WSH). Windows Server 2003 -
.
.
.
.
Windows Server 2003
720
VI

, Windows,
, , -
.
Windows Server 2003
,
Support Tools ( ) Resource Kit ( ),
. , :
PowerCfg.exe. -
ACPI/.
WHOAMI.EXE. -
, , , ,
, , -
.
WHERE.EXE. ,
. , WHERE
.
FORFILES.EXE.
, -
.
FREEDISK.EXE. . -

.
GETTYPE.EXE. SKU () Windows
%ERRORLEVEL% ,
Windows.
INUSE.EXE. .
SETX.EXE. .
TIMEOUT.EXE. -
-.
CHOICE.EXE. , -
.
TAKEOWN.EXE. ACL .

Visual Basic -
. ,
VB-,
. -
, ,
.
Windows Server 2003
721
22

(Remote Desktop for Administration),

(Terminal Services Remote Administration),
Windows Server 2003 , .
-
.
, -
, , -
.
.

-

Remote Desktop.
,
, :
1. (Control Panel) System
().
2. Remote ( ), . 22.8.
. 22.8. Remote
-

Windows Server 2003
722
VI
3. Remote Desktop ( ) -
Allow Users to Connect Remotely to This Computer (
).
4. Select Remote Users ( )
Remote Desktop Users (
).
5. Add () Select Users ( -
).
6. , .
7. , .

Windows 2003
(Remote Control) Active
Directory Users and Computers. -
Active Directory MMC
.
.
Active Directory Users and Com-
puters -
Windows 2003. :
Telnet

Telnet. Tel-
net ,
, Telnet Server
( Telnet). , -
, -
, .
!
Telnet .
Windows Server 2003
723
22

,
. -
, -
. , -
, , , , , -
, .
Windows Server 2003
, -
. , , , -
, .
,
, .
.

. , -
, - ,
, . -

. , , -
.
, -
.
. Windows Server 2003 , -
: Licensing
Licensing,
StartProgramsAdministrative Tools ().
Licensing ()
Microsoft BackOffice . ,
, .

.
Licensing () Administrative Tools (-
) ,
. , ,
, :
.
.
.
Windows Server 2003
724
VI

Microsoft
Microsoft (Microsoft Operations Manager MOM)
Windows .
Windows ,
, -
. -
.
-
. MOM 25.
MOM , :
.
,
.
.
.
Microsoft.
Web- .

Windows Server 2003
-
. -
.

, , ,
. -
-
,
.
DHCP WINS
DHCP WINS Windows Server 2003,
, , ,
.
WINS NetBIOS
(Extensible Storage Engine ESE).
Windows Server 2003
725
22
WINS .
WINS -
, - . -

WINS, -
. WINS.
, WINS
Windows Server 2003 . WINS
.
1. WINS Manager ( WINS) Mappings (-
) Back Up Database ( ).
2. . -
WINS
24 .
WINS ,
WINS. WINS ,
. WINS , -
, WINS
MappingsRestore Database ( ).
WINS , -
.
. Windows Server 2003, 1000 ,
Microsoft .
WINS :
1. %systemroot%\systems32\wins, -
Net Stop WINS.
2. JETPACK WINS.MDB TEMP.MDB.
3. NET START WINS.
DHCP , WINS. DHCP

15 . ,
DHCP .
DHCP.mdb. DHCP.
DHCP.tmp.
.
J50.log J50#####.log. -
DHCP.
J50.chk. .

10.
Windows Server 2003
726
VI

DNS
WINS DHCP, DNS
. DNS
.
DNS
.
-
, .
DNS. -
, , DNS -
Action () Set Aging/Scavenging
( /). Server Aging/
Scavenging Properties ( / ) -
, . 22.9.
. 22.9. /-
DNS
(Service Pack SP) -

, -
, , . Microsoft -
SP .
SP
: -, , ( 22.1
22.2), Windows (Windows Update) -
Microsoft (Software Update Server SUS).
Windows Server 2003
727
22

-
,
. ,
, .
22.1. Update

Update.exe
f .
n .
.
o OEM.
q Quiet (); .
s Windows Server 2003.
u .
z .
22.2. Hotfix

Hotfix.exe
f .
l .
m Unattended ().
n .
.
q Quiet (); .
y .
z .
Windows Update
Windows Update, . 22.10, Web-,
,
. Windows Update -
, .
, -
.
Windows Server 2003
728
VI
. 22.10. Web- Windows Update

, Windows Update ,
,
, , Microsoft
(Software Update Services SUS)
,
. SUS . 22.11. SUS
Microsoft
.
, SUS, -
(),
. -
SUS .

SUS
http://www.microsoft.com/windows2000/windowsupdate/sus/.

- .
SUS. SUS,
Windows Server 2003
729
22
Microsoft
. , , :
QChain. , -
-
.
Microsoft (Microsoft Security
Notification Service). -
, .
Microsoft (Microsoft Security Advisor MBSA).
MBSA , -
, ,
HFNetCHK. -
( Windows, IIS, SQL Server, Internet Explorer Office),
.
. 22.11.
Windows Server 2003

. , ,
. -
, .

Windows Server 2003
730
VI

, .
, , -
; ,
, -
IT-.

, .

. , , -
. , -
, ,
. .

,
.
, -
:
?
? -
?
(
, )?
?
?

, -
. -
. -
IT- . -
, ,
IT- -
. -
-
.
Windows Server 2003
731
22
,
. -
-
, .
-
, .
, -

.

, . 22.12,
, ,
.
:
. 22.12.
. (Security log)
, .
.
. , , -
(Application log).
, .
. , -
:
. , -
(File Replication Service).
Windows Server 2003
732
VI
. , Active Directory,
, -
.
DNS-. DNS- ,
DNS.
: -
, . , -
. 22.13.
. 22.13.

. ,
, . -
, - - .

.
.
.
.
, ,
,
. -
, , ,
.
, -
.
Windows Server 2003
733
22
:
1. , Start All Programs
Administrative Tools ( ).
2. , .
3.
ViewFilter ().
4. , . 22.13,
.
5. , .
.
, -
.
, , ,
.
C

.

, , -
,
.

. -
. -
.
,
. -
,
.
, -
, :
.
.
.
.
.
.
Windows Server 2003
734
VI
, ,
25%.
!
,
, , .

, . -
(Mean Time Between
Failures MTBF) (Mean Time To Repair MTTR).
, .
, , ;
, , .
, , -
.

. , -
, -
,
.
- , -
, . -

.

-
,
.
.
, -
, . ,

. ,
.
logarchive.vbs
. -
( )
, , . -
WAN-,
.
Windows Server 2003
735
22
Set WS = CreateObject("Wscript.Shell")
Set FSO = CreateObject("Scripting.FileSystemObject")
DateString = CurrentDate()
ServerName = "HOFS01"
Purge = True
on error resume next
StartTime = Now
Output ""
OutPut ": " + CStr(Now)
Output ""
Set System = GetObject("winmgmts:{(Backup,Security)}\\" + ServerName
+ "\root\CIMV2")
If Err.Number = 0 Then
Set colLogs = System.ExecQuery("select * from Win32_NTEventLogFile",,&H30)
For Each refLog In colLogs
LogName = ServerName+ "_" + LogFileName(refLog.LogFileName) + "_"
+ DateString
If FSO.FileExists("C:\Logs\" + LogName + ".evt") Then _
FSO.DeleteFile("C:\Logs\" + LogName + ".evt")
If Purge Then
RetVal = reflog.ClearEventlog("C:\Logs\" + LogName + ".evt")
Else
RetVal = reflog.BackupEventlog("C:\Logs\" + LogName + ".evt")
End If
If RetVal = 0 Then
Output vbTab + "Log was archived in .evt format: " + LogName + ".evt"
If Purge Then Output vbTab + " "
Set WS = CreateObject("Wscript.Shell")
DateString = CurrentDate()
ServerName = "HOFS01"
Else
Output vbTab + " .evt."
End If
Next
Else
Output vbTab + " "
End If
Set colLogs = Nothing
Set refLogs = Nothing
Set System = Nothing
Output ""
OutPut ": " + CStr(Now)
Output ""
Output ""
Set WS = Nothing
FullLog.Close
Set FullLog = Nothing
Set FSO = Nothing
Windows Server 2003
736
VI
Function CurrentDate
Today = Date
If Month(Today) < 10 Then
CurrentDate = "0" + CStr(Month(Today))
Else
CurrentDate = CStr(Month(Today))
End If
If Day(Today) < 10 Then
CurrentDate = CurrentDate + "0" + CStr(Day(Today))
Else
CurrentDate = CurrentDate + CStr(Day(Today))
End If
CurrentDate = CurrentDate + CStr(Year(Today))
If Hour(Time) < 10 Then
CurrentDate = CurrentDate + "0" + CStr(Hour(Time))
Else
CurrentDate = CurrentDate + CStr(Hour(Time))
End If
End Function
Function LogFileName(LogName)
Select Case LogName
Case "Application"
LogFileName = "app"
Case "Directory Service"
LogFileName = "dir"
Case "DNS Server"
LogFileName = "dns"
Case "File Replication Service"
LogFileName = "rep"
Case "Security"
LogFileName = "sec"
Case "System"
LogFileName = "sys"
End Select
End Function
Sub Output(Text)
wscript.echo text
FullLog.writeline text
End Sub
logarchive.vbs logarchive.ini.
, , -
:
T .
F .
servername,T
servername,F
servername,F
Windows Server 2003
737
22
logarchive.vbs :
1. , logarchive.vbs logarchive.ini ,
PATH.
2. logarchive.ini
, .
3. Start Run () cmd,
.
4. cscript logarchive.vbs.
4 ,
logarchive.ini. , -
. :
__.log
, sfdc01_sec_12262004.log
SFDC01, 26 2004 .
:
_sec_ .
_app_ .
_sys_ .
_rep_ .
_dns_ DNS-.
_dir_ .

logarchive.vbs .

.
, -
. NTFS - ,
,
.
, . 22.14,
. -
.
, -
.
, , -
. -
,
.
Windows Server 2003
738
VI
. 22.14.
.
1. , Start All ProgramsAcces-
soriesSystem Tools ( ).
2. .
3. Analyze () Defragment ()
. ,
Defragment -
.
C
Diskeeper. -
, Diskeeper,
.
, .

(Domain Controller Diagnostic Utility
DCDIAG), Windows Server 2003,
(DC).
, DC :
.
.
.
.
Netlogon.
.
.
.
Windows Server 2003
739
22
DCDIAG DC
. DCDIAG :
dcdiag.exe /s:<_> [/u:<>\<_>
/p:*|<>|""] [/h:{}] [/q:{}] [/v:{}]
[/n:<_>] [/f:<>] [/ferr:<_>]
[/skip:<>] [/test:<>]
.
/h .
/s <_> .
DCPromo RegisterInDns,
.
/n <_> -
. NetBIOS, DNS
(Distinguished Name DN).
/u <>\<_>
. /p.
/p <> . -
/u.
/a .
/e . -
/a.
/q ; .
/v ; .
/i ; .
/fix ; .
/f <>; /ferr -
.
/ferr:<_>
<_>.
/c ; , , -
DCPromo RegisterInDns. /skip.
/skip:<> . -
/test.
/test:<> .
. /skip.
, , :
Connectivity , DC DNS , -
ping LDAP/RPC.
Replications
.
Windows Server 2003
740
VI
Topology ,
DC.
CutOffServers , -
.
NCSecDesc ,
.
NetLogons , -
.
Advertising , DC
DC.
KnowsOfRoleHolders , DC,
FSMO.
Intersite ,
.
FsmoCheck , , -
.
RidManager , RID -
.
MachineAccount ,
. -
/RecreateMachineAccount.
, /FixMachineAccount.
Services , DC.
OutboundSecureChannels
DC , /testdomain.
/nositerestriction
.
ObjectsReplicated ,
DSA. /objectdn:<dn> /n:<nc>
.
frssysvol SYSVOL
(FRS).
kccevent ,
.
systemlog .
DCPromo DNS
.
RegisterInDNS , -
DNS- . -
DNS, -
<_DNS__Active_Directory>. ,
Windows Server 2003
741
22
- DNS. -
/DnsDomain:<_DNS__Active_Directory>.
CheckSDRefDom ,
.

Topology, CutoffServers OutboundSecureChannels .

, ,
.

CHKDSK
, .
CHKDSK.
FAT, FAT32
NTFS, CHKDSK . CHKDSK -
.
1. , .
2. CHKDSK ,
.
3. CHKDSK /f,
.

(,
) -
, , -
, (). ,
, -
, . , -
.

,
, .

.

,
. , -
Windows Server 2003
742
VI
, , -
.

(Automated System Recovery
ASR) ,
, , Windows
Server 2003. ASR, . 22.15, -
(Emergency Repair Disk ERD), -
Windows.
. 22.15. ASR

ASR ( ). -
ASR . -
ASR .

.
ASR :
1. (Backup) Windows Server 2003, -
Start All ProgramsAccessoriesSystem Tools ( -
).
2. (Backup
or Restore Wizard) (Advanced Mode).
3. Automated System Recovery Wizard ( -
).
Windows Server 2003
743
22
4. (Auto-
mated System Recovery Preparation Wizard) Next ().
5. Next.
6. Finish ().

,
.
-
.

IT- -
.
, :
.
.
.
.
.
.
.
.

.
IT-, -
.
,
.

, -
. -
, , .
-
. ,
, , .

, ,
. ,
25% .
Windows Server 2003
744
VI

.
, , -
.

(90 ).
, .
,
: , , .
AD
Active Directory Windows Server 2003. AD
, -
, , OU .
AD;
. . 22.16 -
AD.
. 22.16. -
AD
NTDSUTIL
AD. AD,
, -
(Flexible
Single Master Operations FSMO).
Windows Server 2003
745
22

AD .
AD NTDSUTIL -
.
1. .
2. F8.
3. Windows Advanced Options ( Windows)
Directory Services Restore Mode (Windows domain controllers only) (
( Windows)).
4. Windows Server
2003.
5. Windows Server 2003.
6. .
7. NTDSUTIL files.
8. File Maintenance ( ) compact to
%s, %s .
Esentutl.exe, -
. . 22.17.
. 22.17. NTDSUTIL
9. ntds.dit
%systemroot%\NTDS %systemroot%\NTDS .
10. quit.
11. .
NTDSUTIL , ,
:
Info. , -
.
Windows Server 2003
746
VI
Integrity. ,
. AD ,
. ,
-
Recover ().
Recover. .

.

. 22.3 , -
.
22.3. Windows Server 2003

- - - - ,
?

( ,
)
-

-
(DCDIAG.exe)

CHKDSK , -

NTDS.DIT
Windows Server 2003
747
22

, - -
, . -
, -
, , -
.

,
.
.
-
, , -
.
-
.
-
Microsoft (MMC),
(Remote Desktop for Administration), .
MOM Windows Server 2003.
,
.
WINS -
WINS.

, -
.

-
.
(Software Update Services) -
, ,
.
, -
SUS .
:
, -
.
Windows Server 2003
748
VI

: , ,
,
DCDIAG.

: , -
, , ASR
.
-
: ,
AD.

Windows
Server 2003
23
...

VBScript

Active Directory

Active Directory
Windows
Server 2003

Windows Server 2003
750
VI

,
. -
. , -
-
. ,
. , -
, , -
.
, -
, ,
Microsoft Visual Basic Scripting language, -
VBScript.
Windows Server 2003
WMI, ADO, CDO ADSI.

.

, ,
.
, (IT) ,
.
.
, ,
. -
, ,
, -
. ,
, , .
, -
.
, , -
. -
, ,
. , ,
. ,
, , ,
, -
, .
IT- , -
,
, -
. , , -
- , -
Windows Server 2003
751
23
, , -
. -
,
.
, , .
, -
-
, . -
;
. , -

:
1. DNS-.
2. Start () Run ().
3. cmd.exe ,
.
4. Nslookup <Enter>.
5. Server, DNS-, -
. , Server ns1.companyabc.com. <Enter>.
6. Internet- www.microsoft.com <Enter>.
7. quit. exit, -
.
-
, , : ,
, DNS- DNS.
, -
, IT-,
, . -

. . -
, , -
DNS, :
Internet, DNS Internet-
ns1.companyabc.com.
, , ,
.
, -
. , -
, -
Windows Server 2003
752
VI
-
, -
.

.
, ,
BIOS.
, , -
, -
. -
-
, NTFS.
,
, , . -
, -
. Windows Server 2003, -
Windows
(Microsoft Windows Management Instrumentation WMI) Microsoft.

. , -
, -
. -
-
,
.

.
, -
, . -
-
Visual Basic Script -
, ,
.

,
IT-. -
, ,
Windows Server 2003
753
23
.
-
. ,
, ,
.
-
-
. -
, .
, -
, .
, -
-
. ,
, -
-
, . -

, -
.
, .
: -
-
. -
( HTML Visual Basic)
. , -
. , -
, -
, ,
.
, -
.
,
.

, . -
VBScript
, ActiveX Data Objects (ADO) Windows Management Instrumenta-
tion (WMI). -
-
, -
( )
, -
Windows Server 2003
754
VI
. , ,
-
.
VBScript
VBScript , -
Microsoft. VBScript.
Visual Basic .NET
Visual C++, () , -
, -
VBScript.
, -
, , VBScript
, .
VBScript , -
VBScript,
, .
VBScript ,

DLL- . VBScript
Windows (WSH) Web-, -
.
VBScript- .VBS, -
Wscript.exe. VBS-
, .EXE- .
-
Cscript.exe.

Visual Basic
Visual Basic ,
,
, , . -
VBScript , Windows Script-
ing Host HTML- ASP- Web-,
VBScript. , VBScript Visual
Basic C
, VBScript.
Windows Scripting Host

, VBScript JScript,
-
Windows (Windows Scripting Host WSH). WSH -
Cscript.exe
Windows Server 2003
755
23
Wscript.exe.
Windows Scripting Host.
VBScript, -
:
1. ,
C Scripts.
2. Start Run. notepad.exe
VBScript-. -
,
<Enter>:
Dim CurrentTime
CurrentTime = time
Wscript.echo "The current time is " & CurrentTime & "."
Dim CurrentTime, -
. CurrentTime -
time, . -
, Wscript.echo, , , -
CurrentTime.
& : -
Wscript.echo,
.
3. .VBS, c:\Scripts\VBtime.vbs,
.
4. Start Run. cmd.exe, -
.
5. c:\Scripts.
6. Wscript.exe VBtime.vbs <Enter>. ,
, Wscript.exe
.
7. ,
.
8. Cscript.exe VBtime.vbs <Enter>. -
,
,
Wscript.exe.
, -
, Wscript.exe Cscript.exe. -
-
. , VBtime.vbs , -
Wscript.exe, Cscript.exe:
Dim CurrentTime
CurrentTime = time
MsgBox "The current time is " & CurrentTime & "."
Windows Server 2003
756
VI
Wscript.exe Cscript.exe -
: .
, (MsgBox) ,
Wscript.echo .

Wscript.echo , -
Cscript.exe.
.
Active Server Pages

Active Server Pages (ASP, ), -
Internet (Internet Information Services
IIS) Windows Server 2003, Web- -
HTML-. , -
, .
, , VBScript -
, proxy-
VBScript- . -
, -
.
, .
Web- ASP , -
Microsoft
FrontPage. Web- ASP ,
, VBScript. , ,
WSH Wscript.echo; -
Web-, response -
write . Web- ASP,
, :
1. IIS. Windows Web-
ASPscripts. ,
Anonymous.
,
. c:\inetpub\wwwroot.
2. Start Run. notepad.exe
, VBScript-.
:
<HTML>
<HEAD>
<TITLE>
My ASP page Using Vbscript!
</TITLE>
</HEAD>
<BODY>
<P>
Windows Server 2003
757
23
<%
DIM CurrentTime
CurrentTime = time
response.write "The current time is " & CurrentTime & "."
%>
</P>
</BODY>
</HTML>
3. IIS- C:\Inetpub\ASPscripts\VBtime.asp.
4. IIS- Internet Explorer
:
http://localhost/ASPscripts/VBtime.asp,
. 23.1.

Web-, 4, Active Server Pages. -
ASP.NET Web- Help and Support (
). , 11.
. 23.1. Web- ASP, -

VBScript
ASP- ,
HTML VBScript. ASP- -
. ASP
VBScript. ASP
<%, %>.
VBScript. JScript
JavaScript ASP.

Active Directory
Active Directory, -
Windows Server 2003
758
VI
, , VBScript-
, .
,
,
.
, , Active Directory
SamAccountName. -
, SamAccountName -
Get Put. Active Directory (Active Directory Ser-
vices Interface ADSI) Get, GetEx GetInfo
Active Directory Active Directory.
Put,
PutEx PutInfo. Microsoft ,
,
.
Active Directory
Active Directory ,
. ,
, , , -
.
VBScript
-
.

(Application Programming Interface API)
, . ,
Active Directory Active
Directory . -
ADSI
. -
, Active Directory (Active Directory
Schema). Active Directory , -
. , -
,
. , Last Name ()
. Active Directory ,
, 128 .

Active Directory,

.
-
, , -
Windows Server 2003
759
23
, . -
, , -
-
.
.
Active Directory
ADSI ,
. ADSI -
: Microsoft Exchange 5.5, Novell NetWare NDS Micro-
soft Active Directory. ADSI , -
, -
.
,
ADSI ADO, CDO, WMI VBScript.
Active Directory
,
Active Directory.
. ,
. , Active Di-
rectory LDAP ADSI
, .
"LDAP://CN=Users,DC=Companyabc,DC=com"
ADSI Get, Users
Companyabc.com. -
, , ,
. -
,
, ,
.

Active Directory
(object properties) (object attributes). -
. ,
. , -
Active Directory Us-
ers and Computers MMC, , -
, . ,
Address () City ().
ADSI Edit
City l, location () (. 23.2).
Windows Server 2003
760
VI
. 23.2. -
Active Directory

, . -
Active Directory Users and Computers MMC
Saved Que-
ries ( ).
,
.
, , MMC ADSI Edit.
MMC ADSI Edit

MMC ADSI Edit ( ADSI) MMC -
Active Directory -
. ADSI Edit
.
!
ADSI Edit Active Directory ,
. ADSI Edit , ,
, Active Directory Users and Computers
, . , ADUC
SMTP. ADSI Edit -
, SMTP,
.
. , ADSI Edit -
.
ADSI Edit ,
MMC Active Directory Users and Computers.
, . -
Windows Server 2003
761
23
. Active Directory Domain Naming Context

( Active Directory) .
1.
.
2. Windows Server 2003 -
-. ,
D:\Support\Tools\SUPTOOLS.msi, D , -
-.
3. Start
Run.
4. MMC , -
Microsoft.
5. File () Add/Remove Snap-in (
).
6. Add/Remove Snap-in Add (), -
.
7. Add Standalone Snap-in ( )
ADSI Edit Snap-in ( ADSI Edit) Add (-
).
8. Add/Remove Snap-in ADSI Edit,
Close () Add Standalone Snap-in
Add/Remove Snap-in.
9. MMC, -
ADSI Edit Connect To ( ).
10. Active Directory
. ,
Active Directory Users and Computers, -
Select A Well Known Naming Context ( -
). , . 23.3.
11. Computer () , -
.
12. .
13. File Save ().
14. ADSI Edit
Save ().
15.
Active Directory.
,
Pager () :
Windows Server 2003
762
VI
. 23.3.
-

1. MMC Active Directory Users and Computers
.
General () Office () - -
, , ZZZZ.
.
2. ADSI Edit,
Start All ProgramsAdministrative ToolsADSI Edit ( -
ADSI Edit). ,
, .
3. .
4. -
Properties ().
5. Attribute Editor ( ) Values
(). -
, .
6. ZZZZ.
7. , .
8. ZZZZ , ,
, Refresh ()
.
MMC Active Directory Users and Computers -
, Office PhysicalDelivery-
OfficeName. ,
Office, .
Windows Server 2003
763
23
MMC Active Directory Schema

MMC Active Directory Schema ( Active Directory)
Active Directory.
-
. , Pager -
, MMC Schema
Pager , ,
, -
.
MMC Schema
.
1.
.
2. Windows Server 2003, 4.
3. Administration () -
- Windows Server 2003. Administration -
Windows XP Professional. , -
D:\i386\Adminpak.MSI, D ,
-.
4. Administration Start
Run.
5. Regsvr32.exe schmmgmt.dll .
-
. , MMC Schema .
, .
6. Start Run.
7. MMC , -
Microsoft.
9. Add/Remove Snap-in Add,
.
10. Add Standalone Snap-in Active Directory Schema
Snap-in ( Active Directory Schema) Add.
11. Active Directory Schema Add/Remove Snap-in,
Close Add Standalone Snap-in, -
Add/Remove Snap-in.
12. File Save.
13. Schema
Save.
MMC Schema , -
, . ,
Pager, :
Windows Server 2003
764
VI
1. MMC Schema , Start All Pro-

gramsAdministrative Tools ( )
Schema.msc. , , -
.
MMC MMC Schema.

,
Schema Admins ( ).
2. Attributes;
Pager. , -
.
3. Pager
Properties, .
4. - , -
-
.
Schema Admins. -
MMC Schema.
MMC Schema Active Directory,
, , .
.
Windows Server 2003, Help and Support Win-
dows Server 2003. Internet,
Microsoft Knowledge Base, .

Active Directory -
. -
AD .
,
-
. . -
, SamAccountName.
,

SamAccountName.
-
.
, . ,
Windows Server 2003
765
23
Smith,
SamAccountName, -
Smith. -
, .

Last Name () sn, Surname.

AD ADSI VBScript -
:
1. .
2. .
3. .
4. .
Active Directory ADSI,
ADO. , -
CDO (Collaborative Data Objects -
). -
CN. , DN
( ) .
, :
set obj= GetObject("LDAP://cn=users,dc=companyabc,dc=com")
set usr = obj.Create("user","cn="& "TestUser")
usr.SetInfo
:
1. ADuser.vbs C:\Scripts, -
.
2. Start Run.
3. cmd.exe ,
.
4. cscript c:\scripts\ADuser.vbs,
.

ADuser.vbs ,
.
ADuser.vbs TestUser Users

Companyabc.com. ADSI -
Users . GetObject , -
.
Windows Server 2003
766
VI
Users. -
, .

.
;
GetObject, ADSPath.
ADS , , , ADSI -
. ADSPath -
, DistinguishedName.
DistinguishedName Users Companyabc.com
ADSI Edit, MMC ADSI
Edit . .
1. , -
, ADSI . -
(Domain Admins).
2. Start All ProgramsAdministrative ToolsADSI Edit (
ADSI Edit). , -
, ,
MMC ADSI Edit.
3. , -
DistinguishedName.
4.
Properties.
5. Attribute Editor ( ) Show
Mandatory Attributes ( ) Show Optional
Attributes ( ).
6. DistinguishedName -
Users Companyabc.com, . 23.4.
DistinguishedName Users
"CN = Users,DC = companyabc,DC = com". DC .
DC.
OU. , , , ,
CN. ADSI.
ADSPath -
(Distinguished Name DN) Active Directory, -
DN LDAP://.
. 23.4.
DistinguishedName Users
Windows Server 2003
767
23
Active Directory
.
, .
:
usr.pager = "9999999999"
usr.SetInfo
usr.setpassword =""
usr.SetInfo
VBS- Cscript.exe,
. , -
,
, .

,
, , .
, -
. , -
,
, -
. ,
.
-
:
Dim ProfilePth
ProfilePth = "companyabc.com\Profiles\%Username%"
set usr = obj.Create("user","cn=" & "TestUser")
usr.pager = "9999999999"
usr.ProfilePath = ProfilePth
usr.SetInfo
usr.setpassword =""
usr.SetInfo
ProfilePth = ""
, , .
. ProfilePath
, ProfilePth. , , -
.
Windows Server 2003
768
VI
ADSI Edit, ADSI . , -

-
, ,
.
AD
:
1. , .
2. .
3. Active Directory.
4. Active Directory (-
, OU), .
Exchange 2000 Active

Directory
Active Directory Exchange 2000 Ex-
change 5.5 Active Directory (Active Directory Connector ADC), -
-
.
-
,
(Collaborative Data Objects CDO).

CDO
Exchange 5.5 2000 ,
VBScript, , -
Visual Basic Visual C. CDO -
, Exchange -
. ,
Active Directory,
Exchange 2000.
, -
VBScript-, Active Directory, -
ADSI CDO
. Active Directory , -
Exchange 2000, .
1. , -
Active Di-
rectory.
Exchange 2000 View Only Admin ( ) -
Exchange 2000. -
Exchange 2000 -
Exchange 2000.
Windows Server 2003
769
23
2. Windows Server 2003 Adminpak.msi , -

Exchange 2000 (Exchange 2000 System Tools).
Adminpak , -
MMC Active Directory Users and Computers,
. Exchange Sys-
tem Tools CDO.dll,
CDO.
3. -
, :
usr.pager = "9999999999"
usr.SetInfo
usr.MailEnable "smtp:" & usr.cn & "@domain.com"
usr.setpassword =""
usr.SetInfo
,
Pager, (

Exchange) , , .

, , -

. IT- -
,
. LDIF, -
- (comma-separated value CSV) -
(tab-separated value TSV).
VBScript, (File System Object FSO).
LDIF CSV, -
Active Directory -
Ldifde.exe Csvde.exe. , , -
, -
, ActiveX (ActiveX
Data Objects ADO), ADO .
Ldifde.exe Csvde.exe
Ldifde.exe Csvde.exe
, -
LDIF CSV.
, OU (-
Windows Server 2003
770
VI
, ); , , -
.
,
.
Ldifde.exe -
Users Companyabc.com, :
1. Companyabc.com -
.
2. Start Run.
3. cmd.exe ,
.
4. <Enter> :
ldifde -f UserContainer.txt d "cn=users,dc=companyabc,dc=com"
,
User .
5. ,
LDIF, .
-
. : .

-
VBScript. -
(FSO).
, -
. , ,
, . -
, boot.ini Win-
dows Server 2003;
, , -
.
Dim FSO, TheFile, Line
Set TheFile = FSO.OpenTextFile("C:\boot.ini", 1)
Do While NOT TheFile.AtEndOfStream
Line = TheFile.ReadLine
MsgBox Line
Loop
MsgBox " ."
boot.ini. -
. -
, .
Windows Server 2003
771
23
Active Directory
Active Directory
, -
. ,
, , -
. ,
,
, . -
, -
. , -
, ,
. Active
Directory ADSI,
ActiveX (ADO).
ActiveX
ADO ,
/ Web-. ADO
, -
, .
ADO -
SQL-. -
SQL- ,
.
ADO
ADO Active Directory -
. ,
ADSPath .
, , .
ADO ,
ADO. Active
Directory, ADO -
. -
-
. Active Directory
Companyabc.com
findpc.vvs, .
Dim DomainDN, ComputerName
DomainDN = "dc=companyabc,dc=com"
Set oConnection = CreateObject("ADODB.Connection")
oConnection.Provider = "ADsDSOObject"
oConnection.Open "DS Query"
Set oCommand = CreateObject("ADODB.Command")
Windows Server 2003
772
VI
Set oCommand.ActiveConnection = oConnection

oCommand.CommandText = "Select cn from 'LDAP://" + DomainDN
+ "' where objectClass='computer'"
Set rsComputers = oCommand.Execute
Wscript.echo " ."
Do While NOT rsComputers.EOF
ComputerName = rsComputers.Fields("cn")
Wscript.echo ComputerName
rsComputers.MoveNext
Loop
Active Directory, -
DomainDN -
, .
ADO,
, CommandText. -
, -
, , ,
, .
MMC Active
Directory Users and Computers
, , -
. MMC Active Directory
Users and Computers Windows Server 2003 Saved
Queries ( ).
-
City
(). , ,
Active Directory Users and Computers.

, Saved Queries, -
ADO. ADO, -
ADO.
Windows
Server 2003
Windows Server 2003
Active Directory ADSI ADO.
, , -
Windows (Windows Man-
agement Instrumentation WMI). WMI -
. ADSI
, Active Directory LDAP
Windows Server 2003
773
23
(GC). ,
-
.
Windows Management
Instrumentation
, Windows Management Instrumentation.
WMI Microsoft
Web (Web-Based Enterprise Management WBEM) -
, -
. WMI -
-
,
. WMI -
WMI.
WMI
, -
, , ,
. ,
WMI
. WMI -

, :
1. -
, .
2. Start Run.
3. notepad.exe . -
:
Set oWMIService = GetObject("winmgmts:{impersonationLevel=impersonate}!
\\dc1.companyabc.com\root\cimv2")
Set colDisks = oWMIService.ExecQuery ("Select * from Win32_LogicalDisk")
For Each oDisk In colDisks
If oDisk.DriveType = 3 Then
Wscript.echo oDisk.Name & vbTab & CStr(Round(oDisk.Size/1048576))
End If
Next
4. 3, dc1.companyabc.com -
.
5. diskinfo.vbs c:\Scripts
.
6. Start Run.
Windows Server 2003
774
VI
7. cmd.exe ,
.
8. c:\scripts\diskinfo.vbs
<Enter>. -
.
, -
, oDisk.Size oDisk.FreeSpace. , -
, , .

. -
, WMI -

OU . , , ,
dc1.companyabc.com ,
World Wide Web (World Wide Web Publishing):
Set oService = GetObject("winmgmts:{impersonationLevel=impersonate}!
\\dc1\root\CIMV2:Win32_Service.Name=" + Chr(34) + "W3SVC" + Chr(34))
If oService.Started Then
oService.StopService
Wscript.echo " ."
Wscript.sleep 5000
oService.StartService
Wscript.echo " ."
Else Wscript.echo " ;
."
End If
Set oService = Nothing
dc1.companyabc.com
.
, Web- IIS.
, , -
wscript.sleep, 5000 -
, 5 . -
(, , , -
).
.
,
W3SVC . -
, Services (),
, General (). -
, .

, -
,
Windows Server 2003
775
23
. , ,
.
,
( ).

,
- .
.vbs- (, OrphanedGP.vbs).
Dim GP(10000,2)
Set oGPList = FSO.OpenTextFile("OrphanGP.txt",2,True)
Set RootDSE = GetObject("LDAP://RootDSE")
DomainNC = RootDSE.Get("RootDomainNamingContext")
Set con = CreateObject("ADODB.Connection")
con.Provider = "ADsDSOObject"
con.Open "DS Query"
Set command = CreateObject("ADODB.Command")
Set command.ActiveConnection = con
Command.Properties("searchscope") = 2
wscript.echo " ..."
command.CommandText = "select GPLink,Name,ADsPath from 'LDAP://" & DomainNC & "'
where objectclass='organizationalunit' or objectclass='container' or
objectclass='site' or objectclass='domain'"
Set rs = Command.Execute
wscript.echo " ..."
i = 0
Do While NOT rs.EOF
tempGPLink = rs.Fields("GPLink")
GPList = ParseGPLink(tempGPLink)
'GPList
' Split()
GPArray = Split(GPList,vbTab)
For j = 0 To UBound(GPArray)
GP(i,0) = "{" & Split(GPList,vbTab)(j) & "}"
GP(i,1) = rs.Fields("ADsPath")
i = i + 1
Next
rs.MoveNext
Loop
Ngp = i
wscript.echo " ..."
command.CommandText = "select cn,DisplayName,name from 'LDAP://" & DomainNC & "
' where objectclass='GroupPolicyContainer'"
Set rs = Command.Execute
Windows Server 2003
776
VI
wscript.echo " ..."

Do While NOT rs.EOF
GPName = rs.Fields("DisplayName")
If TypeName(GPName) = "String" Then
OUFound = False
' GP GP
' ,
'Dictionary,
'
For i = 0 to Ngp - 1
If rs.Fields("name") = GP(i,0) Then
OUFound = True
End If
Next
If NOT OUFound Then
wscript.echo GPName
oGPList.WriteLine GPName & vbTab & rs.Fields("cn")
End If
End If
rs.MoveNext
Loop
Function ParseGPLink(GPLink)
' GPList :
'"[LDAP://CN={217E2467-F743-4300-812C-2F87FBF9AFD3},CN=Policies,CN=System,
DC=mydomain,DC=com;2][LDAP://CN={3CEF68F7-0201-407F-87E9-DF6CF8255E2D},
CN=Policies,CN=System,mydomain=domain-name,DC=com;0]"
'
' :
'"217E2467-F743-4300-812C-2F87FBF9AFD3 3CEF68F7-0201-407F-87E9-DF6CF8255E2D"
'
Dim j, TempArray
ParseGPLink = ""
If TypeName(GPLink) = "String" AND Trim(GPLink) <> "" Then
TempArray = Split(GPLink, "{")
For j = 1 To UBound(TempArray)
ParseGPLink = ParseGPLink & Left(TempArray(j),
InStr(TempArray(j),"}") - 1) & vbTab
Next
ParseGPLink = Left(ParseGPLink, Len(ParseGPLink)-1)
End If
End Function

, ,
. Macromedia
Windows Server 2003
777
23
Flash Player, -
. , Query:
Query = "SELECT * FROM Win32_QuickFixEngineering WHERE HotFixID='Q329115'"
( Q329115 ).
Set ws = CreateObject("WScript.Shell")
Set oSoftwareScan = FSO.OpenTextFile("SoftwareScan.csv",2,True)
Set con = CreateObject("ADODB.Connection")
con.Provider = "ADsDSOObject"
con.Open "DS Query"
Set command = CreateObject("ADODB.Command")
Set command.ActiveConnection = con
Command.Properties("Sort on") = "cn"
Command.Properties("searchscope") = 2
command.CommandText = "select cn,ADsPath from 'LDAP://" & DomainNC & "
' where objectclass='computer' and operatingsystem='Windows 2000 Professional'"
Set rs = command.Execute
Query = "SELECT * FROM Win32_Product WHERE Name='Macromedia Flash Player'"
Do While NOT rs.EOF
ComputerName = rs.Fields("cn")
Version = ""
If Online(ComputerName) Then
Set WMIRef = GetObject("winmgmts:{impersonationLevel=impersonate}!\\"
& ComputerName)
Set colProducts = WMIRef.ExecQuery(Query)
Status = "Not installed"
For Each oProduct In colProducts
Version = oProduct.Version
Status = "Installed"
Next
Else
Status = "Offline"
End If
wscript.echo ComputerName & vbTab & Status & vbTab & Version
oSoftwareScan.WriteLine ComputerName & "," & Status & "," & Version
ComputerName = Null
Status = Null
rs.MoveNext
Loop
oSoftwareScan.Close
Function Online(HostName)
' ping
' Windows 2000
Windows Server 2003
778
VI
' Windows Server 2003

' Win32_PingStatus
Dim ReturnCode, Results, Line
Online = False
Returncode = ws.Run("%comspec% /c ping " & HostName & ".domain-name.com
-n 1 -w 500 > ping.tmp",0,"True")
set Results = fso.OpenTextFile("ping.tmp",1,False)
Do While NOT Results.AtEndOfStream
Line = Results.ReadLine
If (InStr(Line, "Reply from") > 0) AND (InStr(Line, "unreachable") = 0)
Then
Online = True
End If
Loop
Results.Close
Set Results = Nothing
FSO.DeleteFile "ping.tmp"
End Function

.
Active Directory ,
, ,
Computers. , Marketing
Computers, , .
, -
, MarketingAdmins -
. , .

.
, Option
Explicit . , -
, .
Option Explicit .
Option Explicit
Dim RootDSE, DomainNC, ws, WNetwork, CompName, Department
Dim AdminGroup, AdminGroupFound, oUser, oGroup
Const EventERROR = 1, EventWARNING = 2, EventINFORMATION = 4
Set ws = CreateObject("WScript.Shell")
Set WNetwork = Wscript.CreateObject("WScript.Network")
CompName = WNetwork.ComputerName
' ,
Department = GetDepartment(CompName)
Windows Server 2003
779
23
If Department <> "" Then

AdminGroup = Department & "-Admins"
Else
AdminGroup = "IT-Admins" '
' XXX-Computers, IT
End If
'
Set oGroup = GetObject("WinNT://" & CompName & "/Administrators,group")
AdminGroupFound = False
For Each oUser in oGroup.Members
If oUser.Name = AdminGroup Then
AdminGroupFound = True
End If
Next
If Err.Number <> 0 Then
'
ws.Logevent EventERROR, "
"
wscript.quit
End If
' Admin
'
If NOT AdminGroupFound Then
oGroup.Add "WinNT://" & AdminGroup & ",group"
ws.Logevent EventERROR, " "
& AdminGroup & " "
Else
ws.Logevent EventINFORMATION, " "
& AdminGroup & " "
End If
End If
Set oGroup = Nothing
Set ws = Nothing
Set WNetwork = Nothing
Function GetDepartment(ComputerName)
Dim oConnection, oCommand, rs, MemberOf, oGroup, oComputer, i
oCommand.Properties("searchscope") = 2
oCommand.CommandText = "Select ADsPath,cn From 'LDAP://" & DomainNC & "
' Where name='" + ComputerName + "' and objectclass='computer'"
Set rs = oCommand.Execute
GetDepartment = ""
Windows Server 2003
780
VI
If NOT rs.EOF Then

Set oComputer = GetObject(rs.Fields("ADsPath"))
MemberOf = oComputer.GetEx("memberOf")
' MemberOf ( - )
Err.Clear
Exit Function
End If
If TypeName(MemberOf) = "String" Then
' MemberOf ( )
Set oGroup = GetObject("LDAP://" & MemberOf)
If Instr(oGroup.cn,"-Computers") > 0 Then
GetDepartment = Left(oGroup.cn, Len(oGroup.cn) - 10)
End If
Else
' MemberOf (
)
For i = 0 To UBound(MemberOf)
Set oGroup = GetObject("LDAP://" & MemberOf(i))
If Instr(oGroup.cn,"-Computers") > 0 Then
GetDepartment = Left(oGroup.cn, Len(oGroup.cn) - 10)
Exit For
End If
Set oGroup = Nothing
Next
End If
End If
End Function

Active Directory
AllPrinters.csv. -
.
( Win9x -
) .

LDAP.
.
Win32_Printer WMI.
:
Option Explicit
Dim RootDSE, DomainDN, FSO, oFullLog, oConnection, oCommand, rsServers,
rsPrinters
Windows Server 2003
781
23
Dim Sep, PrintServer, oPrinter

DomainDN = RootDSE.Get("RootDomainNamingContext")
Set oFullLog = FSO.OpenTextFile("AllPrinters.csv", 2, True)
oCommand.Properties("Sort on") = "cn"
oCommand.CommandText = "Select cn,ADsPath from 'LDAP://" & DomainDN &
"' Where objectClass='computer' and OperatingSystem=
'Windows 2000 Server' OR OperatingSystem='Windows Server 2003'"
Set rsServers = oCommand.Execute
Sep = Chr(34) & "," & Chr(34)
On Error Resume Next
Do While NOT rsServers.EOF
PrintServer = False
oCommand.CommandText = "Select PrinterName,cn from '" &
rsServers.Fields("ADsPath") & "' where objectClass='printQueue'"
Set rsPrinters = oCommand.Execute
Do While NOT rsPrinters.EOF
If NOT PrintServer Then
Wscript.echo rsServers.Fields("cn")
PrintServer = True
End If
Set oPrinter = GetObject("winmgmts:{impersonationLevel=impersonate}!
\\" & rsServers.Fields("cn") & "\root\cimv2:Win32_Printer.DeviceID=
" & Chr(34) & rsPrinters.Fields("PrinterName") & Chr(34))
Wscript.echo vbTab & rsPrinters.Fields("PrinterName") & vbTab &
txtPrinterStatus(oPrinter.PrinterStatus)
oFullLog.WriteLine Chr(34) & rsServers.Fields("cn") & Sep &
rsPrinters.Fields("PrinterName") & Sep & oPrinter.DriverName &
Sep & oPrinter.Location & Sep &
oPrinter.Description & Sep & txtPrinterStatus(oPrinter.PrinterStatus)
& Chr(34)
Set oPrinter = Nothing
rsPrinters.MoveNext
Loop
Set rsPrinters = Nothing
rsServers.MoveNext
Loop
Windows Server 2003
782
VI
Set rsServers = Nothing

Set oCommand = Nothing
Set oConnection = Nothing
oFullLog.Close
Set oFullLog = Nothing
Set FSO = Nothing
Set RootDSE = Nothing
Function txtPrinterStatus(PrinterStatus)
Select Case PrinterStatus
Case 1 : txtPrinterStatus = ""
Case Else txtPrinterStatus = " "
End Select
End Function

CSV-
Users Active Directory.
Users.csv. -
.
: SamAccountName ( ) CN (
). , , . , -
, (
Users.csv ):
SamAccountName,CN,GivenName,SN,Initials,Password
vserduchka,Vera Serduchka,,,,
apugacheva,Alla Pugacheva,,,,
,
Active Directory. , , -
, ADSI Edit.
, . -
,
SamAccountName . ,
. , , -
.
.
Option Explicit
Dim RootDSE, DomainDN, oContainer, FSO, oUserList
Dim Line, Header, SamaccountnameIndex, CnIndex, PasswordIndex,
AttributeValue, oUser, i
DomainDN = RootDSE.Get("RootDomainNamingContext")
Windows Server 2003
783
23
Set oContainer = GetObject("LDAP://CN=Users," + DomainDN)

Set oUserList = FSO.OpenTextFile("Users.csv",1,False)
Line = LCase(oUserList.ReadLine)
Header = Split(Line,",")
SamaccountnameIndex = 1
CnIndex = 1
PasswordIndex = 1
For i = LBound(Header) To UBound(Header)
If Header(i) = "samaccountname" Then
SamaccountnameIndex = i
ElseIf Header(i) = "cn" Then
CnIndex = i
ElseIf Header(i) = "password" Then
PasswordIndex = i
End If
Next
If SamaccountnameIndex = 1 OR CnIndex = 1 Then
Wscript.echo " : ."
wscript.quit
End If
Do While NOT oUserList.AtEndOfStream
Line = oUserList.ReadLine
AttributeValue = Split(Line,",")
Wscript.echo AttributeValue(CnIndex)
set oUser = oContainer.Create("user","cn="& AttributeValue(CnIndex))
oUser.samAccountName = AttributeValue(SamAccountNameIndex)
oUser.SetInfo
Wscript.echo vbTab + " "
Else
For i = LBound(Header) To UBound(Header)
If i <> CnIndex AND i <> SamaccountnameIndex AND i <> PasswordIndex
Then
oUser.Put Header(i),AttributeValue(i)
ElseIf i = PasswordIndex Then
oUser.SetPassword AttributeValue(i)
End If
Next
oUser.AccountDisabled = False
oUser.SetInfo
Err.Clear
Else
Windows Server 2003
784
VI

End If
End If
Set oUser = Nothing
Line = Null
AttributeValue = Null
Loop
oUserList.Close
Set oUserList = Nothing
Set FSO = Nothing
Set RootDSE = Nothing

WMI, -
.
( ) .
, , LDAP.
Windows (Windows
Management Instrumentation) ,

(File System Object).
Option Explicit
Dim oRootDSE, DomainDN, FSO, oLogFile, oConnection, oCommand, rsServers
Dim ComputerName, oWMIService, colDisks, oDisk
Dim PercentFree
Set oRootDSE = GetObject("LDAP://RootDSE")
DomainDN = oRootDSE.Get("RootDomainNamingContext")
Set oLogFile = FSO.OpenTextFile("FreeSpace.csv",2,True)
oCommand.CommandText = "Select ADsPath,cn From 'LDAP://" & DomainDN & _
"' Where objectClass='computer' and OperatingSystem='Windows 2000 Server'
OR OperatingSystem='Windows Server 2003'"
Set rsServers = oCommand.Execute
On Error Resume Next
Do While NOT rsServers.EOF
ComputerName = rsServers.fields("cn").value
Windows Server 2003
785
23
Wscript.echo ComputerName
Set oWMIService = GetObject("winmgmts:{impersonationLevel=impersonate}!
\\" & ComputerName & "\root\cimv2")
Set colDisks = oWMIService.ExecQuery ("Select * from Win32_LogicalDisk")
For Each oDisk In colDisks
If oDisk.DriveType = 3 Then '
PercentFree = Round(oDisk.FreeSpace/oDisk.Size*100)
Wscript.echo oDisk.Name & vbTab & _
CStr(Round(oDisk.FreeSpace/1048576)) & "/" & _
CStr(Round(oDisk.Size/1048576)) & vbTab & CStr(PercentFree) & "%"
oLogFile.WriteLine ComputerName & "," & oDisk.Name & _
"," & CStr(Round(oDisk.FreeSpace/1048576)) & "," & _
CStr(Round(oDisk.Size/1048576)) & "," & CStr(PercentFree)
End If
Next
Wscript.echo " " & ComputerName
Err.Clear
End If
Set oWMIService = Nothing
Set colDisks = Nothing
rsServers.MoveNext
Loop
Set rsServers = Nothing
Set oCommand = Nothing
Set oConnection = Nothing
oLogFile.Close
Set oLogFile = Nothing
Set FSO = Nothing
Windows Server 2003 Active Directory -

IT-. Microsoft

, -
, . -
, ,
, IT-.

Wscript.echo,
Cscript.exe.
Windows Server 2003
786
VI
,
, Active
Directory Users and Computers ADSI Edit.
,
,
.

.
Ldifde.exe Csvde.exe -
,
LDIF CSV.

WMI.

Windows
Server 2003 24
...

Active Directory

Windows Server 2003
788
VI
Windows Server 2003

.
, .
:
/ ( ).
(
).
( ).
( ).
,
, -
, .
, .
-
. , ,
( IT- ),
, -
.
, -
,
, -
.
,
,
.
,
, .

, -
.
, -
. ,
, .
, Exchange, -
Exchange, , -
-
. , -
, ,
, , -
(Service Level Agreement SLA).
,
,
.
Windows Server 2003
789
24
-

, -
. -
, -
, , , ,
,
.
, ,
, , ,
. ,
.
,
, ,
, Windows
Server 2003 .
, -
,
.
, ;
. , -
, , ,
intranet-.
C
, -
, intranet-, SharePoint Portal Server,
Windows SharePoint, .
, -
-
. -
,
.

Windows Server 2003
. -
. , ,
, -
, , , -
. , -
Windows Server 2003
790
VI
, ,
-
. , , -
, -
-
.

-
, ,
.
(baselining) Windows
Server 2003, -
. ,
,
(
).

, ,
. -
IT-
.

,
, -
. -

, . -
, -
, .

, , -
.

2 , -
. -
, ,
, .
Windows Server 2003
791
24

. .
, ,
, -
. .
.
.
, .
.
. -
,
, . ,
, -
; -
Windows Server 2003 Enterprise Edition -

.
, -
, ,
. , -
, IT-,
. -
-
. -
-
.
-
-
. ,
. -

, .

, Windows
Server 2003. ,
. -
,
, -
.
Windows Server 2003
792
VI

.
, .

Windows Server 2003

I
II
III
IV
V

Active Directory
Windows NT
Windows 2000

Windows Server 2003

, .
,
( ), ,
, .
(. 24.1) -
-
.
-
. , -
,
, .

( ) -
.
.
Windows Server 2003
793
24
. 24.1.

-
. -
(, -
), .
-
. Win-
dows Server 2003 .

-
/-
.
, , ,
.
, -
. -
, , -
, .
C
,
.
Windows Server 2003
794
VI
:
.
(SP) , -
.
( DNS DHCP) -
.
(, SQL
Server) .
.
, ().
,
.
, .

,

. Windows XP -
, -
. , -
Windows XP, -
.
, ;
:
.
() ( , -
-
).
.
.
.
.
.


( , , ). -
.
Windows Server 2003
795
24
-
. -
-
. ,
, -
.
, , -
. -
, -
, , -
, -
. . ,

? ?

. -
.
. -
. ,
.

BIOS
RAID
Windows Server 2003 Enterprise Edition

,
Smart UPS
: :
Active Directory
Active Directory Windows Server 2003. -
AD -
. AD , -
, :
Windows Server 2003
796
VI
: DNS, NetBIOS, -
.
(DC) -
(GC).
(FSMO) DC GC.
, , .
(OU).
(, ).
.
DNS, AD.
AD.
(GPO).

, , AD,
.

-
,
DNS, .
, .
,
.

-
(Wide Area Network WAN). :
Internet, -
.
(, , ISDN, OC-12).
.
(Committed Information Rate
CIR).
, .
WAN,
CIR.
,
, .
Windows Server 2003
797
24

, , ,
. , -
.
,
, -
Web. -
.
(, -
). ,
, -
. , -

.

-
. .

( )
, -
(as-built),
.

Windows Server 2003

.
.
, ,
.
.
,
.

RAID
Windows Server 2003 TCP/IP

Windows Server 2003
798
VI

( )

.

, -
, . -
.
, , , Windows Server 2003
: , ,
Web-, , -
. -
.

-
. 22, -
, , .
, ,
, -
.

. -
. -
, ,
, .
, -
. ,
,
. , -
, , -
, , -
, .
Windows Server 2003
799
24

,

. , -
.
, , -
Exchange. ,
.

-
.
.

,
Microsoft
Visio .
, , ,
, .
. ,
, , -
, , . -
-. -
.
, - -
(, , , , -
), ,
.
.
.
,
:

Windows Server 2003
800
VI

Active Directory

Exchange
RAID 5
RAID 1

NIC RAID-

-
. ,
, .
, , -
.
, -
. , -
,
. , -
. -
, -
.

, ,
, . -
, , -
.
, , .
Windows Server 2003
801
24
-
, .
-
.

. , -
(,
, , ).
, -
, , (FAQ) .
, -
.
-
. -
. -
. -

.

, -
(Net-
work Load Balancing NLB), ,
.
.
-
,
.

, -
,
. IT-, , ,
-
.
-
IT, , -
, -
. -
, ,
.
Windows Server 2003
802
VI

, , -
.
,
. -
-
, Microsoft (Microsoft Operations
Manager MOM) ( PerfMon BMC
Patrol). , -
: , -
; Windows Server 2003 -
.

, -
, . ,
, , . -
-
.

Microsoft
Excel, -
MOM. , MOM
-
.

, ,
, .
; , -
.
, ,
. , -
, -
Exchange Server , -
5% , 10
. , -
, , -
. -
,
, ,
.
Windows Server 2003
803
24

,
, .
. ,
.
, -
.

, -
-
, .
,
, -
.
, , -
, .
, -
.
, .
(SP) .
.
proxy-.
.
, NTFS.
(Encrypting File System EFS).
(, ).
, GPO.
.
.
.

, -
. , -
-
.
Windows Server 2003
804
VI
-
. , - -
, .
, -
,
. , -
, -
. -
.

, -
, , , -
. ( MOM)
.
.
-
. , MOM
, ,
.

-
. , -
, . -

. -
, .

. ,
-
, , ,
,
, . -
,
.

-
. -
. -
, ,
Windows Server 2003
805
24
,
.

, -
, .

.

, -
.
, IT-. -
,
, -
. -
, IT- ,
, -
, 5:00 9:00 .
, , Win-
dows Server 2003. , ,
. ,
, -
, , , .

-
, , , -
. , , -
,
.
.

.
, -
,
.
Windows Server 2003
806
VI

-
.
, -
-
.
, -
-
.
, ,
,
.
.
.

Microsoft Windows
Server 2003
25
...

Microsoft
MOM
MOM
MOM

MOM
MOM
MOM

MOM
Windows Server 2003
808
VI

Microsoft
Microsoft (Microsoft Operations Manager MOM) 2000 SP1
-
Windows Server 2003 Windows 2000. MOM, -
MOM
, .
MOM
Microsoft Knowledge.
-
Microsoft
Knowledge, . MOM
Windows- , -
Windows: Windows (Windows Management
Instrumentation WMI) Windows. , MOM -
,
. -
, , -
.
MOM Windows Server 2003 .
Windows 2000 Server , -
.
-
Windows Server 2003. , MOM
, ,
Windows Server 2003/Windows 2000.
MOM Win-
dows Server 2003. MOM
MOM. ,
MOM.
MOM
MOM
,
, . -
Windows Server 2003 Windows 2000 ,
MOM -
, .
MOM : -
-
.
809
25

MOM Windows Server 2003
. , -
Windows Server 2003
. MOM -
. MOM -
MOM
(, )
( , -
), , -
.
MOM , ,
.

MOM -
-
. , ,
,
SQL, , Web- IIS, -
.
: , , -
(Simple Network Management Protocol
SNMP) .
MOM IT-. -
, , , -

. , MOM -
-
.
MOM
MOM : ,
, / MOM. MOM -
, ,
. ,
MOM , -
. Microsoft -
, OSI,
, - .
MOM, . 25.1.
Windows Server 2003
810
VI
MMC/Web
. 25.1. Microsoft
MOM, Web-
. - -
/ , . , ,
.
MOM.
MOM
. ,
, -
.
, MOM.

Service Pack 1 MOM 2000
: , -
.
MOM
MOM
Microsoft SQL Server.
, .
,
(management pack). -
MOM , -
. SQL- -
MOM.

MOM MSDE, -
MOM . -
SQL, -
MSDE .
811
25
MOM
(Data Access Server DAS) MOM,
MOM. -
MOM. DAS -
(
),
.
(consolidator)
MOM.
, -
. DAS -
.

(agent) ,
.
-
, .

MOM (configuration group). -
MOM
MOM. -
:
.
/ (CAM).
(DAS).
.
, -
MOM, MOM
. MOM
,
. 25.2.
, MOM
MOM,
. 25.3. -
MOM. -
Windows Server 2003
812
VI
,
, .

: -
-
. -
, .

MMC/Web MOM
. 25.2.
MOM

MOM 1 MOM 2

MMC/Web MMC/Web
. 25.3.
813
25
MOM
MOM . -
: Microsoft Management Console
(MMC) Web-. -
MOM. MOM -
; , MOM .
-
.
MOM
, -
MOM .
MMC, MOM. -
,
, . 25.4.
MMC, Web- -
Web-, Microsoft Internet Explorer ( 4.01 ),

MOM. Web-, . 25.5, -
,
. , .
. 25.4. MMC MOM

Windows Server 2003
814
VI
. 25.5. Web- MOM
MOM
MOM . -
-
.
.
. MOM HTML, -
Web- Web-, -
. 25.6. -
.
. 25.6. Web-
815
25

MOM
. MOM
,

, . -
,
,
-
. MOM
Web-, . 25.7.
. 25.7.

MOM , -
. , -

, ,
. ,
. MOM -

. ,
- -
, MOM
,
. -
MOM.
Windows Server 2003
816
VI
(management pack) -
, MOM , -
. -
.
MOM , -
Windows:
Windows 2000/2003.
Active Directory.
(File Replication Service FRS).
(Domain Name System DNS).
Internet- Windows (Windows Internet Naming Service WINS).
Internet (Internet Information Services IIS).
(Dynamic Host Configuration
Protocol DHCP).
(Routing and Remote Access
Server RRAS).
Microsoft (Microsoft Transaction Service MTS).
Microsoft (Microsoft Message Queuing MSMQ).
Microsoft (Microsoft Distributed
Transaction Coordinator MSDTC).
(Systems Management Server SMS).
Microsoft (Microsoft Operations Manager MOM).
(Terminal Server).
Microsoft Windows NT 4.0 ( ).
Microsoft ,
. -
(, Microsoft SQL Microsoft Exchange 2000). -
,
, -
, Windows 2000 Windows Server
2003. -
NetIQ. -
, Microsoft:
Exchange 5.5/2000/2003.
SQL Server 2000.
SQL Server 7.0.
Application Center 2000.
Internet Security and Acceleration (ISA) Server 2000.
Proxy Server 2.0.
817
25
Site Server 3.0.

Commerce Server 2000.
SNA Server 4.0.
Host Integration Server (HIS) 2000.
SharePoint Portal Server 2003.
Microsoft .NET Framework.
(Network Load Balancing).
Windows Server.
Microsoft (Microsoft Identity Integration
Server MIIS) 2003.
Microsoft
(Dynamic Systems Initiative DSI)
Microsoft.
http://www.microsoft.com/mom/downloads/managementpacks/default.asp.
, -
.
- -
Windows 2003 Exchange 2003.
.

,
. , -
.
,
.

.
-
(Simple Network Management Protocol SNMP). ,
, -
SNMP
.
MOM
. -
.
MOM SNMP , SNMP,
SNMP, -
. , MOM syslog
Unix-.
Windows Server 2003
818
VI

MOM
, -
(Extended Management Packs XMP). -
MOM
. , -
XMP,
, , ,
, .
,
, -
MOM. XMP MOM -
, Microsoft.
, . -
XMP (
):
Novell NetWare.
Linux.
Compaq Insight Manager.
Oracle RDBMS.
Trend, McAfee Norton.
Tivoli, MicroMuse, Hewlett-Packard NetIQ.
MOM 2000
Resource Kit
MOM , -
.
:
(Server Status Monitor SSM). -

, SNMP HP
OpenViews Network Node Manager ( HP OpenView).
RunMOMScript. , -
MOM. , MOM,
.
Pocket MOM. Pocket PC, MOM
Pocket PC.
MOM-Tivoli. MOM 2000 SP1
Tivoli Enterprise Console (TEC).
EventSim. MOM, -
MOM Windows
MOM.
819
25
ConfigureEventLogs. -
, MOM.
MOM DTS. Microsoft Operations Manager Data Transformation Services
Package ( Microsoft)
MOM -
. -
.
MOM
MOM , ,
MOM, -
. ,
, MOM, -
.

, MOM,
, MOM.
, -
. -
,
- . ,
, , , -
,
.
, , ,
. -
Microsoft ,
MOM 2000:
Pentium III 550 .
5 .
512 ().
MOM
,
MOM. MOM
.

MOM Windows Server 2003 Windows 2000 Service
Pack 2 . MOM -
( , Windows Server 2003).
Windows Server 2003
820
VI

MOM Windows Server 2003 Enterprise DataCen-
ter ( Windows 2000 Advanced Server DataCenter). Windows
Server 2003 MOM.
MOM Microsoft SQL Server 2000 (

). , MOM,
-
. MOM MSDE (
), - MOM -
SQL.
MOM Active
Directory Windows Server 2003 ( Windows 2000), , -
. -
MOM
, .
, MOM:
, Windows NT, WINS.
-
, MOM,
Microsoft Access 2000 .
Microsoft Outlook 98
.
MOM
MOM -
.
, , -, .

. :
, SQL, -
(CAL) SQL.
MOM
, MOM
,
. -
MOM, -
MOM. -
MOM
, -
Microsoft.
,
MOM.
821
25
,
MOM SQL -
,
SQL. -
MOM -
, MOM
. -
MOM .
MOM
MOM
MOM.
, .
NetBIOS, , -
.
(wildcards). , ,
, .

MOM,
, . ,
, , MOM , ,
.
MOM
MOM -
. , ,
-
MOM.
DCAM D-DCAM
, MOM
. -
MOM ,
MOM. MOM:
. MOM -
, SQL Server 2000 MOM.
MOM. SQL
Server 2000 -
SQL. ,
, DAS ,
(CAL).
Windows Server 2003
822
VI
DCAM. DCAM.
MOM, . DCAM -
DAS, . ,
. ,
DCAM MOM -
MOM, .
DCAM -
,
.
D-DCAM. D-DCAM MOM, -
MOM, . ,
MOM D-DCAM MOM, -
.

, MOM
,
SQL MOM, DCAM -
. -
,
.

MOM ,
MOM.
. -
, , ,
. , -

,
.

, ,
MOM .
MOM ,
.

MOM . -
(WAN), ,
WAN .
WAN
. ,

823
25
MOM, -
. , -
, -
. ,
, -
MOM
, WAN .
, , -
, -
, WAN -
. -
.
MOM
. ,
-

.
, -
MOM
. MOM -
-
.
, MOM
, -
, . , -
MOM
.

, -
, MOM .
, ,
,
MOM, , . Microsoft -
5 ,
. , -
-
, .
Windows Server 2003
824
VI
MOM
, Microsoft
MOM,
, . , ,
, 40%, MOM -
40% .
(((e * s) 1440) g)
:
e , , -
;
s , ;
1440 ;
g ( ).
,
. , MOM -
40% , -
, , -
. MOM -
:
. , ,
, . MOM -
. -
, -
. -
.
. -
, -
. , -
-
. , -

.
MOM , -
.
, MOM -
, .

, MOM , -
. -
, , -
. :
825
25
. MOM
, . ,
-
, -
SQL. MOM -
-
, .
DCAM . MOM
DCAM .
DCAM, -
-
. DCAM
,
.
700 DCAM. DCAM
700 DCAM.
DCAM 200,
, -
.
30 DCAM. MOM -
Web- MMC 30 DCAM.
MOM
MOM , -

. ,
DCAM
. MOM -
.
MOM . -
D-DCAM. -

DCAM, 100 .
DCAM ,
. 25.8.
, -

, -
MOM.
MOM -
.
Windows Server 2003
826
VI
DCAM DCAM DCAM
DCAM DCAM
DCAM
. 25.8. DCAM

, MOM,
. MOM -
MOM MOM.
DCAM -
.
DCAM , DCAM -
, DAS -
. , -
-
DCAM, . 25.9.

MOM, , (single point of
failure) . Windows Server
2003 -
SQL MOM.
MOM
,
. , Windows Server 2003, -
, ;
, . -
,
.
,
. MOM -
.
827
25
MOM/

MMC/Web-

SQL- MOM

MOM
MOM MOM
DCAM1 DCAM2
\\SQL \\IIS \\Exchange
. 25.9. MOM
MOM
,
.
MOM, , -
, -
. , -
, -
.
, MOM
. -
-

. , MOM
Active Directory MOM.
MOM -
. -
, -
.
MOM
, MOM
DCAM MOM, . -
, 12, -
Windows Server 2003
828
VI
MOM. MOM -
, DCAM
.
, -
, IPSec,
,
MOM, MOM .
IPSec 13.

MOM, , -
, .
1270, MOM,
MOM . , MOM
-
(DMZ), DMZ .

, MOM -
-
MOM. , DAS ,
, -
.
: SQL , -
, CAL.

MOM
Windows Server 2003 Windows 2000 -
-
MOM.
MOM,
. -
MOM.
MOM
XYZ 500 , -
, .
Active Directory Windows Server 2003 companyxyz.com. -
Windows Server 2003
: Active Directory, DNS, DHCP, WINS, Exchange
2000 .
829
25
-
Microsoft 2000, -
,
.
XYZ 46, -
D-DCAM
MOM, -
MOM .
, MOM, -
-
.
SQL Server 2000. -
, MOM Prerequisite Checker (-
) , MOM.

MOM 2000, MOM. AD
, DAS MOM.

DNS DHCP. ,
, , Exchange 2000.
MOM XYZ, . 25.10.

MOM D-DCAM
. 25.10. MOM XYZ

MOM -
, -
XYZ. , -
.
MOM XYZ ,
MOM
Windows Server 2003
830
VI
. ,
MOM , ,
.
MOM
ABC 10
000 , . -
-, , , ,
. -
100 200 ,
, 10 . -
Windows Server 2003 Windows Server 2000, -
Windows NT, Novell NetWare Linux.
, ABC -
Active Directory Windows Server 2003, Active Direc-
tory. ABC, . 25.11,
na.companyabc.com, eu.companyabc.com asia.companyabc.com, -
companyabc.com.
companyabc.com
asia.companyabc.com na.companyabc.com eu.companyabc.com
. 25.11. ABC
,
ABC, -
.
Microsoft.

,
MOM -
. -
, , -
-,
( ).
831
25
DCAM, -
300
.
DCAM, -
, -
, .
MOM Windows Server 2003 -
MOM.
, -
-
MOM -
.
,
ABC, , MOM,
. Microsoft XMP,
NetIQ, .
, .
DCAM MOM ABC ,
DCAM .
, -
,
.
Microsoft 2000 Windows 2000

-
, . MOM Windows Server
2003
. , -
MOM,
MOM , MOM

MOM -
.
MOM Microsoft SQL Server 2000 ( ),
MSDE.
MOM -
, -
.
, Windows NT, WINS.
Windows Server 2003
832
VI

MOM Microsoft Access 2000.
Microsoft Out-
look 98.

, .
MOM .
5 , -
.
MOM,
.
.

.
MOM .

VII
...
26.

27.
Windows Server 2003

835
26

26
...

Windows Server 2003

Windows
Server 2003

RRAS
VPN
PPTP L2TP/IPSec

RRAS

836
VII
Internet , -
. -

, .
(Routing and Remote Access RRAS) Microsoft
Windows Server 2003
Microsoft Windows: -
LAN-LAN, LAN-WAN,
(Virtual Private Network VPN) (Network Ad-
dress Translation NAT). RRAS
; -
, -
: Ethernet, FDDI, ATM, Frame Relay, xDSL
. , RRAS , -
(Application Programming Interface API),

.

Windows Server 2003
, Windows NT 4.0 Windows 2000. -
Windows.
Windows NT 4. 0 :
RIP 2 IP.
Open Shortest Path First (OSPF) IP.

: , ISDN
(Point-to-Point Tunneling Protocol PPTP).
Internet
(Internet Control Message Protocol ICMP).

(Remote Authentication Dial-In User Service RADIUS).
IP- IPX-.
PPTP VPN-.

Routemon.

837
26
Windows 2000 :
, -
IP, IPX AppleTalk.
Internet (Internet Group Management Protocol
IGMP) .
(Network Address Translation NAT),
Internet (SOHO)
.
2 (Layer 2 Tunneling Protocol L2TP) -
Internet (Internet Protocol Security
IPSec) VPN- .
IP IPX -
,
, ISDN, VPN-, PPTP
L2TP c IPSec.
RRAS,
RRAS NAT.
RRAS Windows Server 2003
.
Windows 2000 Windows Server 2003:

Ethernet (Point-to-Point Protocol over Ethernet PPPoE).
(Background Intelligent
Transfer Service BITS).
NAT Traversal Plug and Play (Uni-
versal Plug and Play UPnP).
(Quarantine Policy Check).
, -
Microsoft Management Console (MMC)
Netsh.

Ethernet
PPPoE Dial-On-Demand -
Ethernet (Point-to-Point Protocol over Ethernet PPPoE)
, PPPoE
RRAS NAT Internet. PPPoE RRAS -
Internet DSL, -
. , -
Ethernet, .

838
VII

1.5
(Background Intelligent
Transfer Service BITS)
. BITS -
-
. ,
-
. , , .
-
, .
BITS 1.5
, -
. -
BITS, Windows Server 2003 -
Windows 2000.
NAT Traversal
Universal Plug and Play
NAT Traversal ,
NAT. NAT Traversal -
-
NAT: Internet (Internet Connection
Sharing ICS) Internet, UPnP. -
IP-
NAT -
, . -
(Independent Software Vendors ISVs)
, -
NAT, UPnP.

Windows 2003 Resource Kit
Remote Quarantine Client ( ). -

, -
, .
,
-
,
.

839
26

, ,
API-. ,
,
- - -
Windows.
. 26.1 , -
, , -
.

SNMP
API

IP-
IPX-- IPX--
AAA ( PPP) API

TAPI

IPX- IPX-
IP IP- IP-
N DIS
NDIS
NDIS WAN Miniport Ethernet TA FDDI
L2TP PPTP Async X25 ISDN ATM X25
. 26.1.
SNMP RRAS
RRAS, Windows Server 2003,
(Simple Network Management Protocol SNMP) -
(Management Information Base MIB). SNMP -
SNMP.
SNMP, ,
RRAS.

RRAS Routing and Remote Access (-
) Netsh.

840
VII
, -
.
,
, (Authentication, Authorization, and Accoun-
ting AAA) , -
, RRAS,
Windows Windows. RRAS -
RADIUS,
AAA . AAA -
Internet (Internet Authentication Service IAS).

(Mprdim.dll)
(Dynamic Interface Manager) -
(Remote Procedure Call RPC)
SNMP, , -
Routing and Remote Access. -
-
( IP-
IPX-). -
, , -
IP--IP.

(Connection Manager) -
WAN TAPI.
PPP,
(Extensible Authentication Protocol EAP), -
Multilink (Bandwidth Allocation Pro-
tocol BAP).
(Telephony Application Pro-

gramming Interface Telephony API TAPI) -
, . TAPI -
-
.

841
26
IP- (Iprtmgr.dll)
IP- (IP Router Manager) -
.
IP-, -
Windows Server 2003 RIP IP OSPF.
IP- IP-, -
IP- IP-
TCP/IP. IP- IP-
. ,
, .
IPX- (Ipxrtmgr.dll)
IPX- (IPX Router Manager)
-
IPX-.
IPX- IPX-,
IPX- IPX-. IPX-
IPX-
(RIP IPX, SAP IPX). ,
, -
.

RRAS -
:
RIP IP (RIP for IP Iprip2.dll). RIP IP-
, RIP for IPX, -
(Route Table Manager). Winsock -
RIP for IP API-
MIB IP-.
OSPF (Ospf.dll). OSPF
, OSPF,
(Route Table Manager). Winsock
OSPF, API-
MIB IP-
.
RIP IPX (RIP for IPX ipxrip.dll). RIP for IPX
, RIP for IPX, -
RIP for IPX. API-
MIBs -
IP-.

842
VII
SAP IPX (SAP for IPX ipxrip.dll). SAP for IPX

, SAP for IPX, -
SAP for IPX, API-
MIBs -
IP-.

IP-
IP- RRAS -
IGMP ( 1, 2 3). IGMP -
(Multicast Group Manager).
Winsock IGMP API-
MIB -
.
(Rtm.dll)
(Route Table Manager)
.
API- , ,
. ,
. -
( IP-
) .
IP IPX.

(Multicast Group Manager)
-
(Multicast Forwarding Entries MFEs) IP-.
IP-
.
IP- (Ipfltdrv.sys)
IP-
IP- IP-, IP-
.
IP-
IP- (IP Unicast Forwarder), -
TCP/IP (Tcpip.sys), -
IP-. IP -

843
26
, .
-
IP.
IP-
IP- (IP Multicast Forwarder), -
TCP/IP (Tcpip.sys), -
, IP-
.
-
. , IP-.
IPX- (Nwlnkflt.sys)
IPX-
IPX- IPX-, IPX--
.
IPX- (Nwlnkfwd.sys)
IPX-
IPX- IPX- -
, . IPX-
,
IPX.
Windows
Server 2003
(Virtual Private Network VPN) -
, ,
Internet. VPN Internet -
, .
, . 26.2, , (tunnel); -
, -
, Internet.
-
; , Internet, ,
.
VPN
. VPN-
Internet
. ,
.

844
VII
Web-

Internet
VPN-
CK-

. 26.2. Internet
,
VPN-
VPN- VPN-
. -
, , . 26.3.
Intranet
VPN
Internet
VPN- VPN-
. 26.3. VPN-
VPN-
VPN- , VPN- VPN-.
, VPN-, ,
VPN-. VPN-
Windows NT 4.0, Windows 9x, Windows 2000 Windows XP.

845
26
Windows NT Server 4.0, Windows 2000 Server Windows Server 2003,

RRAS, VPN-
VPN- Windows Server 2003. VPN-
PPTP L2TP, Microsoft IPSec.
VPN-
VPN- , VPN- VPN-.
VPN-
VPN-. IP- VPN- ,
.
VPN-
, . VPN-
, .
VPN-.

, , VPN-, -
Internet , .
Internet/intranet
VPN- -
. Windows Server 2003 IP-
, Internet IP- intranet- .

RRAS
, -
, , -
. -
Windows Server 2003. Windows Server 2003 -
, ,
PPP- :
(Password Authentication Protocol PAP).
(Chal-
lenge Handshake Authentication Protocol CHAP).
Microsoft
(Microsoft Challenge Handshake Authentication Protocol MS-CHAP).
MS-CHAP 2 (MS-CHAP v2).
Message Di-
gest 5 (Extensible Authentication Protocol-Message Digest 5 EAP-MD5).

(Extensible Authentication Protocol-Transport Level Security EAP-TLS).

846
VII

PPTP
PPTP (MS-CHAP, MS-CHAP
v2 EAP-TLS)
VPN-, VPN-. Microsoft (Microsoft Point-
to-Point Encryption MPPE) PPTP,
VPN-. MS-CHAP MS-CHAP v2
, .
(Certificate Authority CA) -
MS-CHAP v2,
, MS-CHAP. MS-CHAP v2 -
, VPN-
VPN-, VPN- VPN-.
, ,
( ), -
, . -
-
Active Directory.
EAP-TLS
EAP-TLS (Extensible Authentication Protocol-Transport Level Security
) -
,
-. EAP-TLS VPN- -
, VPN- -
. , -
. CA,
IAS- -
(Server Authentication certificate purpose),
(certificate usage) -
(certificate issuance policy). -
(Object Identifier OID). OID -
1.3.6.1.5.5.7.3.1, , -
Windows 2000
(OID 1.3.6.1.5.5.7.3.2).

L2TP/IPSec
L2TP/IPSec ,

VPN- VPN-, (Security
Association SA) IPSec.
MS-CHAP v2 EAP-TLS.

847
26

-
VPN-.
-
. -
-
.
, -
VPN-:
-
, , PPTP-,
L2TP- -
EAP-TLS. -
. , EAP-TLS VPN-
, Windows XP Windows 2000.
, , -
MS-CHAP v2 -
. MS-CHAP v2 -
, EAP-TLS, , Win-
dows XP, Windows 2000, Windows NT 4.0 Service Pack 4 , Windows Me,
Windows 98 Windows 95
Windows Dial-Up Networking 1.3 .
VPN
PPTP L2TP ,
. , -
VPN- , , -
. Windows Server 2003 PPTP L2TP.
,
. -
2 (Layer 2), 3 (Layer 3),
(Open
System Interconnection OSI). 2
. PPTP L2TP
2, Internet -
PPP. 3
. IPSec 3, -
IP- Internet IP-.

Windows Server 2003
2 (PPTP L2TP) ;
-
. -

848
VII
, , -
.
.
3 , -
, .
. 2 (PPTP
L2TP) , .
.
-
. , . 26.4,
, -
.
Internet, -
. ,
-
. , -
, .

Internet

VPN- VPN-
. 26.4. VPN-

(PPTP) 2, -
PPP IP- Internet. PPTP
VPN-.
TCP
(Generic Routing Encapsulation GRE)
PPP. -
PPP / . . 26.5 -
PPTP, .
2
2 (Layer 2 Tunneling Protocol L2TP)
(PPTP) 2
(Layer 2 Forwarding L2F) , Cisco Systems, Inc.
L2TP PPP, IP, X.25, Frame Relay ATM.
PPP
/ . Internet L2TP
(User Datagram Protocol UDP),
. 26.6.

849
26

IP GRE PPP PPP
PPP
. 26.5. PPTP
UDP

IP UDP L2TP PPP PPP
PPP
L2TP
. 26.6. L2TP
L2TP L2TP
. L2TP L2TP.
L2TP PPP PPP.
PPP / -
PPP.
Windows Server 2003 L2TP PPP
Microsoft (Microsoft Point-to-Point Encryption MPPE). -

(Encapsulating Security Payload ESP) IP Security (IPSec).
IP Security
IP Security ( Internet, IPSec)

IP. IPSec, . 26.7,
, -
, . -
IPSec :
. IPSec
(Authentication Header

850
VII
AH), -
(Encapsulating Security Payload ESP). -
IPSec .
, ,
, .
UDP

IP UDP L2TP PPP PPP
PPP
L2TP
. 26.7. IPSec
PPTP L2TP/IPSec
VPN Windows Server 2003
: L2TP/IPSec PPTP. VPN- Windows
XP Windows 2000
L2TP/IPSec, PPTP. -
PPP,
Internet. PPTP L2TP -
PPP , ,
PPP Internet . -
PPTP,
L2TP PPP.
PPTP L2TP . -, -
PPTP -
PPP, , PPP.
L2TP/IPSec PPP
IPSec. -, PPP MPPE -
, RC-4 --
(Rivest-Shamir-Aldeman RSA) 40-, 56- 128- .
, .
L2TP/IPSec Data Encryption Standard (DES)
, 56- DES, 56- -
3-DES. ( DES
64- ). , , PPTP
PPP. L2TP/IPSec -

851
26
,
, .
L2TP/IPSec PPTP
PPTP -
L2TP/IPSec, , -
L2TP/IPSec, , , -
,
VPN- L2TP/IPSec.
L2TP/IPSec PPTP.
IPSec (,
),
(, ),
( -
) ( -
). PPTP -
.
L2TP/IPSec ,
, -
PPP.
PPP, ,
, PPP
L2TP/IPSec IPSec.
, PPP -
PPP, -
. ,
PPP, ,
.
PPTP L2TP/IPSec
L2TP/IPSec , VPN
PPTP, , PPTP,
L2TP/IPSec. PPTP L2TP/IPSec.
PPTP . L2TP/IPSec

VPN- ( ) -
VPN-.
PPTP Windows (Windows
XP, Windows 2000, Windows NT 4.0, Windows Millennium Edition (ME), Windows
98 Windows 95 Windows
Dial-Up Networking 1.3). ,
L2TP/IPSec , VPN- -
Windows XP Windows 2000.

852
VII
IPSec TCP/IP. -
-
.
. IP-,
,
.

Windows Server 2003, RRAS
Add or Remove Programs (
) . Windows Server 2003
RRAS .

, -
. :
1. Start () ProgramsAdministrative ToolsRouting
and Remote Access ( -
), . 26.8.
. 26.8.

2.
Configure and Enable Routing
and Remote Access ( -
), . 26.9.

853
26
. 26.9. -

3.
Server Status ( ) Add
Server ( ). Add Server ,
. -
Configure
and Enable Routing and Remote Access ( -
).
4. -
Next ().
5. , Next.
6.
, (. 26.10).
7. -
. -
Routing and Remote Access.

,
. -
, -
.
:
Windows 95/98, Windows NT4, Windows 2000 Windows XP, Macintosh, UNIX
Internet- . -
-

854
VII
: ,
.
. 26.10. -

, -
, -
.
VPN-
VPN- , -
. VPN- -
-
. , -
VPN- :
Windows.
.
VPN- ,
-
Internet, VPN- intranet -
.
, , -
(Connection Manager), -
:
(Connection Manager Client Dialer).
(Connec-
tion Manager Administration Kit).
(Connection Point Services).

855
26

(Connection Manager CM) -
, .
-
. CM ,
.

.
, , -
.
VPN-
.

, , .
CM ( CM) -
,
(Connection Manager Administration Kit).
CM VPN -, -
, Web- . CM -
VPN-. -
Windows : Windows XP, Windows
2000, Windows NT 4.0, Windows Millennium Edition Windows 98.

(Connection
Manager Administration Kit CMAK) -
CM. CMAK, -

. , CMAK
, (Connection
Manager Installation package), .

(Connection Point Services CPS) -
. -
(Point of
Presence POP), POP , -
Internet.
POP,
Internet. CPS
POP.

856
VII
CPS :
Phone Book Administrator ( ). -
-
.
Phone Book Service ( ). Microsoft
Internet (Internet Information Services IIS),
IIS Windows Server 2003. -
-
.
(Connection Manager
Administration Kit CMAK) (Connection Point Service
CPS) Windows Server 2003.
CMAK CPS :
1. Start Control PanelAdd or Remove Programs (
).
2. Add/Remote Windows Components ( -
Windows).
3. Windows Manage-
ment and Monitoring Tools ( ).
4. Connection Manager Administration Kit Connection Point Service.
5. , Next,
. Finish ().

(Single Sign-on SSO) -

, .
Active Directory Windows /
- , -
, Windows.
, Logon by Using Dial-Up Networking (
) Windows XP Windows 2000,
VPN- .
VPN- Internet,
VPN-. Internet
VPN- .
NAT Traversal

NAT Traversal , -
, NAT,
IP- -

857
26
NAT , . -
, -
. NAT Traversal ,
, Universal Plug and Play Forum.
UPnP ,
Internet .
NAT NAT Traversal IPv6, -
IP-.
NAT Traversal
L2TP/IPSec RRAS. Windows 2000 L2TP/IPSec -
, , , -
Internet, -
, NAT. , Internet
, , Internet- -
, Internet -
IP-. Network Address Translation, -
10.x.x.x -. Win-
dows 2000 L2TP/IPSec .
Windows Server 2003 NAT Traversal L2TP/IPSec -
-
VPN-. Windows Server 2003
, NAT Traversal RRAS.
RRAS
Windows Server 2003
. -
, -
RRAS:
MMC Routing and Remote Access.
Netsh.
.
.
.
MMC Routing and Remote Access

Routing and Remote Access ( ), -
. 26.11, Administrative Tools ()
RRAS
RRAS , -
. -
, Routing and
Remote Access. . 26.1 Routing and
Remote Access, .

858
VII
. 26.11. RRAS -
Routing and Remote Access
26.1. Routing and Remote Access

TCP/IP information IP Routing/General/Interface TCP/IP, -
( (IP-//
TCP/IP) ) .
Multicast bounda IP Routing/General/Interface
ries (- (IP-// TCP/IP.
) )
Multicast statistics IP Routing/General , -
( (IP-/) , -
) .
Address translations IP Routing/General/Interface -
( (IP-// (Address
) ) Resolution Protocol ARP).
IP addresses IP Routing/General/Interface IP-, -
(IP-) (IP-// .
)
IP routing table IP Routing/General/Static Routes IP--
( (IP-// .
IP-) )
RRAS Clients Remote Access Clients ,
( RRAS) ( ) -
TCP.
UDP listener ports Ports () UDP,
( UDP) .
Areas () IP Routing/OSPF -
(IP-/OSPF) OSPF.

859
26
. 26.1

Link state database IP Routing/OSPF -
( (IP-/OSPF) OSPF.
)
Neighbors (OSPF) IP Routing/OSPF OSPF-
( (OSPF)) (IP-/OSPF) .
Virtual interfaces IP Routing/OSPF
( (IP-/OSPF)
) .
Neighbors (RIP) IP Routing/RIP RIP-
( (RIP)) (IP-/RIP) .
DHCP Allocator IP Routing/NAT/Basic Firewall
information (IP-/NAT/ -
( - ) DHCP.
DHCP)
DNS Proxy informa- IP Routing/Network Address
tion ( Translation (IP-/ -
DNS Proxy) ) DNS.
Mappings IP Routing/NAT/Basic Firewall/ -
() Interface (IP-/NAT/ Network Address Translation.
/)
Group table IP Routing/IGMP , -
( ) (IP-/IGMP) -
IGMP.
Interface group table IP Routing/IGMP/Interface , -
( (IP-/IGMP/
) ) IGMP.
IPX parameters IPX Routing/General IPX, -
( IPX) (IPX-/)
, -
.
IPX routing table IPX Routing/Static Routes -
( - (IPX-/ IPX.
IPX) )
IPX service table IPX Routing/Static Services SAP.
( (IPX-/
IPX) )
RIP parameters IPX Routing/RIP for IPX
( RIP) (IPX-/RIP RIP for IPX.
IPX)
SAP parameters IPX Routing/SAP for IPX
( SAP) (IPX-/SAP SAP for IPX.
IPX)

860
VII
Netsh
Netsh ,
Windows Server 2003
. , Netsh Windows
Server 2003
. Netsh
Netsh , DLL-
DLL- Netsh, -
-
Windows Server 2003. DLL- Netsh -
.
; ,
IP IPX, IP-
IPX-.
Netsh.
a <>. . -
Netsh , -
Netsh .
Netsh , -
, , .
c <>. ,
DLL-.
. Netsh, .
f <>. , Netsh
.
r < IP- >. , Netsh
, IP-
.
Netsh , . -
, ro ip s hint routing ip show interface. -
Netsh . -
Netsh
. , , .
Netsh . 26.2.
Netsh : (Online)
(Offline). Netsh . -
, Netsh,
commit.
flush . Netsh -
. f
Netsh exec.

861
26
26.2. Netsh

.. .
? help .
show version Windows Netsh.
show netdlls
DLL- Netsh.
add helper DLL- Netsh.
delete helper DLL- Netsh.
show helper DLL-
Netsh.
cmd .
online .
offline .
set mode .
show mode .
flush , .
commit , .
set audit-logging .
show audit-logging .
set loglevel .
show loglevel .
set machine , Netsh.
show machine , Netsh.
exec , Netsh.
quit bye exit Netsh.
add alias .
delete alias .
show alias .
dump .
popd .
pushd .
dump , -
RRAS.
Netsh. -
RRAS .

862
VII
Netsh -
:
ras ras.
aaa AAA, -
Internet,
aaa.
routing IP IPX -
routing.
interface -
interface.

PPP. -
, , -
-
. , -
.
, .
( -
) , %systemroot%\System32\LogFiles.
Internet (Internet Authentication
Service IAS) ,
. -
( ). -
Local File
( ) Remote Access Logging ( )
Routing and Remote Access.

RRAS Windows Server 2003 -
. -
.
:
( ).
.
.
.

863
26
General ()
:
IP Routing/General (IP-/).
IP Routing/NAT/Basic Firewall (IP-/NAT/ ).
IP Routing/OSPF (IP-/OSPF).
IP Routing/IGMP (IP-/IGMP).
IPX Routing/General (IPX-/).
IPX Routing/RIP for IPX (IPX-/RIP for IPX).
IPX Routing/SAP for IPX (IPX-/SAP for IPX).

,
.
( ).
RRAS Windows Server 2003 -

, .
, -
, .
-
RRAS.
!
. -
, ,
Windows.
-
, OSPF RIPV2.
, -
; , .
-
. .
. -
Microsoft -
, -
:
1. regedit.exe :
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\<>
(<> , -
).

864
VII
2. , .
3. EnableFileTracing, -
Modify () 1 (
0).
4.
:
-
FileDirectory, Modify
.
, .
%windir%\Tracing.
,
FileTracingMask, Modify
.
0 0xFFFF0000. -
0xFFFF0000 ( ).
, -
MaxFileSize, Modify
. 0x00100000,
64 .

(Resource Kit) Windows Server 2003
-
. , -
, .
VPN -
,
. -
-
. , , -

, -
. , -
.

-
,
, -
. -
,

865
26

. -

. , -
, Web-
, , -
.
, -
,
.
Quarantine Policy Check rqc.exe,
rqs.exe rqs_setup.exe Windows 2003 Resource Kit.
RRAS Windows 2003 VPN
/
rqs_setup, rqs. rqs -

.

,
Windows Active Directory, -
.
Windows 2003 RRAS Windows NT4 -
-
, , Windows 2003, ,
Active Directory,
Active Directory.
, .
Windows Active Directory ( -
).
(RRAS) Windows 2003.
.
RADIUS, ( ).
, .
, ,
:
Windows XP Professional.
Windows 2000 Professional.
Windows Millennium Windows 98 Second Edition ( -
).

866
VII

Windows Millennium Windows 98 Second Edition -
, ,
Windows Windows 2003. -
-
. , -
Windows 2000 XP Professional Windows 2000/2003 Server.
RQS.EXE RRAS
-
Windows 2003 Resource Kit Windows 2003, RRAS
. Windows 2003 Resource Kit :
http://www.microsoft.com/windowsserver2003/downloads/default.mspx
-
: RQS.EXE, RQC.EXE RQS_Setup.BAT.
:
1. , Start Run (), Notepad
OK. RQS_Setup.BAT.
2. Version1\0, Edit () Find
(). REG ADD %ServicePath% /v
AllowedSet /t REG_MULTI_SZ /d QScript1.0a.
3. REM , .
4. , File () Save ()
, File Exit ().
5. RQS_Setup /install, -
,
.
RQS_Setup /install
c:\system32\RAS .

RQS_Setup /install ,
.
RRAS.
RQS -
CM -
.

RQS.EXE , RQS_Setup
/remove, ,
.

867
26

.
, -
.
-
, ,
.
. %1,
%2, %3 %4. -
.
@echo off
REM script.bat
echo RAS = %1
echo = %2
echo = %3
echo = %4
set MYSTATUS=
REM
REM , Internet Connection Firewall.
REM (), ICFCHECK 1.
REM (), ICFCHECK 2.
REM
REM ,
REM .
REM (), VIRCHECK 1.
REM (), VIRCHECK 2.
REM
REM Rqc.exe.
REM
if "%ICFCHECK%" == "2" goto :TESTFAIL

if "%VIRCHECK%" == "2" goto :TESTFAIL
rqc.exe %1 %2 7250 %3 %4 Version1
REM %1 = %DialRasEntry%
REM %2 = %TunnelRasEntry%
REM 7250 TCP, Rqc.exe
REM %3 = %Domain%
REM %4 = %UserName%
REM Version1
if "%ERRORLEVEL%" == "0" (
set MYERRMSG=!
) else if "%ERRORLEVEL%" == "1" (
set MYERRMSG= .
.

868
VII
) else if "%ERRORLEVEL%" == "2" (

set MYERRMSG= .
http://www.companyabc.com/VPNDenied.htm .
) else (
set MYERRMSG= . .
)
echo %MYERRMSG%
goto :EOF
:TESTFAIL
echo
echo .
echo Internet Connection Firewall,
echo
echo .
echo .
echo http://www.companyabc.com/remote_access_tshoot.htm.
echo
:EOF
, script.bat
. -
.

(Connection Manager CM)
(Connection Manager Administration
Kit CMAK) Windows 2003. CM
, -
script.bat ,
, ,
.
CMAK Windows- Windows Server 2003. CMAK
:
1. Start SettingsControl PanelAdd/Remove Programs
( ).
Windows) .
3. Management and Monitoring Tools ( -
) Details ().
4. Connection Manager Administration Kit ( -
), ,
Next, .
5. Finish.

869
26
CMAK , ,
, -
. -
.
1. CMAK, Start ProgramsAdministrative Tools
Connection Manager Administration Kit ( -
).
2. Next.
3. Service Profile Selection ( ) New Pro-
file ( ) Next.
4. Service and File name ( ) -
(, CompanyABC Connection) (,
cmprof), Next.
5. , , Do Not Add A
Realm Name To The User Name ( -
) Next.
6. , ;
Next.
7. -
VPN-, VPN Phone
Book From This Profile VPN ( ), -
Server Name Or IP Address ( IP- VPN-)
VPN, ,
Next.
8. VPN Entries (
VPN).
Next.
9. ,
Phone Book File location ( -
), Automatically Download
Phone Book Updates ( -
) Next.
10. ,
, , pbook, Connection
Point server name ( ) URL- -
. Next.
11. Dial-up Networking entries ( )
.
Next.
12. , -
, Next.

870
VII
13. -, -
Automatic Proxy Confirmation ( -
-); Next.
14. , , Custom Actions for the Quarantine Policy
Check ( ),
New () New Custom Action ( -
).
15. (, Quarantine Policy Check), (-
, script.bat) (%DialRasEntry% %TunnelRasEntry% %Domain%
%UserName%). (Action type) Post-connect ( -
), Run this custom action for ( -
) All Connections ( )
. ,
. 26.12. .
. 26.12. -

16. Next, Logon Bitmap (
), , -
, Next.
17. Phone Book Bitmap ( )
,
Next.
18. Icons ()
Next.
19.
Next.
20. ,
Next.

871
26
21. , ,
: (510) 555-1234,
, ,
. Next.
22. Connec-
tion Manager v1.3, Installation (), -
Connection Manager v1.3. -
Next.
23. -
: , , -
.
( ) Next.
24. , Add (-
) rqc.exe \Program Files\Windows Resource
Kits\Tools\. Next.
25. Advanced customization ( ),
Next, -
. RQS_Setup.bat -
Version 0, Version 1 Test. -
, Test,
. 26.13. Apply (),
Next. DOS, -
.
26. Finish.
. 26.13.
CM , RRAS
\Program Files\Cmak\Profiles\cmprof, -
, . CM -
, , ,

872
VII
Microsoft (Systems
Management Server SMS).
CM

CMAK CM

( cmprof.exe
).
,
.
,
, CMAK. -
, -
, , . 26.14.
,
script.bat, ,
. ,
, CMAK, Web-,
,
, , -
.
. 26.14.

873
26

-
.
RRAS RRAS .
, ,
.
Windows.
,
:
. -
, -
RRAS- . , -
. 26.15, RRAS- -
, intranet- .
. 26.15.
RRAS-
Windows (Windows Terminal Services WTS). -

Windows -
Windows-, Windows
Server 2003. WTS , -
,
. WTS Windows Server

874
VII
2003 -
,
. -
WTS- ,
Internet Explorer ( ActiveX) -
Windows. -
27.
VPN-. ,
Internet, VPN-
intranet- . VPN -
RAS-
. VPN- -
-
Internet. VPN Internet -
-
VPN-. VPN-
PPTP L2TP ,
. 26.16. , PPTP -
Windows,
, L2TP/IPSec. L2TP/IPSec
, -
.
. 26.16. :
PPTP, L2TP

875
26

VPN- -
Internet -
. VPN- Internet -
WAN. -
VPN :
.
,
RRAS- Internet -
Internet. -
VPN
Internet Internet -
.
.
RRAS- RRAS-
, Internet -
Internet. -
VPN Internet VPN -
Internet, . 26.17.
DSL DSL
ISP Internet ISP
VPN- VPN-
. 26.17. Internet

, Internet, .
, VPN-, -
Internet . VPN-
VPN- 24 .
,
, , , -
. , -

876
VII
, , -
. (RRAS)
Windows, ,
.
RRAS , -
, ,
, -
.

EAP-TLS PPTP,
L2TP.
- ,
, EAP-TLS.
, ,
MS-CHAP v2
.
IPSec
(, ), -
(, -
), (
) (-
).
L2TP/IPSec ,
, -
PPP.
PPTP . L2TP/IPSec

VPN- ( ) VPN-.
PPTP Windows, Windows 2000
Windows XP.
VPN-
-
.
-
,
.
-

Windows, ,
.
.

Windows
Server 2003 27
...

878
VII

,
,
. -

-
. -
, -
.
-
, , , COM-
-
. -
,
.
-
, ,

, -
. -
, -
, ,
, -
. , -
, -

.
, , -
-
, .

,
.
,
. -
(LAN), ,
Internet, -
.
-
-
Windows XP Professional
Remote Desktop.
Windows Server 2003
879
27

Windows XP Professional Windows Server
2003,
.
, ,
(Application Service Provider ASP)
, .
-
.

,
. -
IT-,
, . IT-
,
. -
-
.
-
, , -
Windows,
.
, , -
, .
!
, Windows Server 2003 Win-
dows, .
.

. -
, ,
.
-
, , -

880
VII
,
. -
,
.
-

-
. ,

, -
, -
.

, -
, ,
.
,
, -
. ,
.

-
.
-
-
.
, -
-
. -
, ,
.

.
, -
, -
.
Windows Server 2003
881
27

, , -
,
. , -
, -
Windows Server 2003
,
. ,
-
, -
.
,
,
, -
.

Windows Server 2003
.

( -
lsreport.exe Windows Server 2003 Resource Kit) -
, , -
. -
Performance () MMC,
Windows Server 2003. , Microsoft
(MOM) -
.

- , -
, -
.
,
, .
-
, .
TCP (3389),
.
, -
28,8 /.
, -
, 256,
128- , .

882
VII

Windows Server 2003
. -
(Remote Desktop for Administration mode),
(Terminal Server mode).

Windows Server 2003 ;
. -
, , -
.
, -
. -
, , -
.
-
, -
. -
, -
.
,
. -

, -
, ,
. Windows Server 2003,
Windows XP Professional.

-
.

(Client Access License CAL)
. CAL -
,
. -
Windows Server 2003 Enterprise DataCenter. -
-
- .
Windows Server 2003
883
27

, -
Windows Server 2003 Resource Kit -
Terminal Server Client License Dump ( )
(TscTst.exe).
-
,
. -
; -
,
.
-
,
.

Windows Server 2003 Web edition.

Windows XP Professional ,
(Remote Desktop).
XP
, ,
. ,
,
-
.
-

. ,
.

(Remote Assistance) , Windows Server
2003 Windows XP Professional. -
,
. -
. -
-
, . -
,
.
(Remote Desktop Protocol RDP), -
.

884
VII

(Remote Desktop Connection) -
. -
-
, ,

. -
, -
.

, -
-
.

, ,
.
, -

, -
, , . -
,
. , -
Windows, -
.
,

() . -
-
. -
.

, -
Windows ,
on () , C on workstation5.
: ,
-.
, -
. .
Windows Server 2003
885
27
:
\\tsclient\_. UNC -
,
. -
:
1. .
2. net use * \\tsclient\c, C: ,
. -
, Z: -
.
3. Z: <Enter>,
-
.
4. , net
use Z: /delete, Z: .
5. .
!
tsclient. -
.
tsclient,
.

.
, ,
. , -
LPT-,
. -
-
, .
,
. -
. -
, -
. :X, X
, workstation1:lpt1.

.
, -
, .

886
VII

(Session Directory server) -
. -
. -
-
,
. ,
. , -
, .
-

.

, , -

. ,
.
-
,
. ,
, -
. , -
, -
, -
. ,
, ,
.
Windows Server
2003 Enterprise DataCenter. ,
. -
-
.

, . ,
,
, Session Directory Computers
( ) .
C
-
-
. -
Terminal Services Configuration ( , TSC).
Windows Server 2003
887
27

-
. , -
, . -
, -
Terminal Services Configuration, ,
. -
, , -
, , -
. -
, ,
-
Full Security ( ).

. ,
,
. , -
-
. -
, -
,
.

Windows 2000
(Network Load Balancing NLB), -
. Win-
dows Server 2003
- NLB -
.

Microsoft (MSCS), - -
. Microsoft MSCS, NLB
, , MSCS,
.

888
VII

,
. -
: -
, , , , -
, ,
.

, -
, -
.
Internet (DMZ) -
, IP-
, -
. , -
, -
.
-
. -
, ,
,
.

-
, , , -
, . ,
, -
. -
, , 10
3% .
, -
, 40 , , -
. -

.
Windows Server 2003
889
27
, , -
.
, -
.
, ()
, -
.
, Windows Server
2003. -
, -
. , -
-
.

. -
-
, -
. ,
, , -
, .

, -
. , -
.
,
. , , ,
, -

.

-
. , ,
, ,
.
, -
, :
.
-

890
VII

. Win-
dows NT 4.0, . -
. ,
,
.
, -
.
, -
, . , -
-
, ,
: , , -
. 27.1. -
. -
, -
, .
Nic1 Nic2
. 27.1. -

Windows Server 2003
891
27
, -
Microsoft Windows Server 2003.
-
, ( ) -
Windows Server
2003.

. ,
.

-
.
, ,
. -

, -
, ( -
) .

.
, -
. -
, -
, -
.
,
, , -
, ,

. ,
.

NLB 31.

892
VII

, ,
(Client Access License CAL)
. ,
(Terminal Services License server), -
. -
, -
, . -
, .
-
. -
,
,
Web- ( 800) Mi-
crosoft Clearing House.

, . -
120 , -
.
,
.
-
, CAL , -
.

-
.
,
IT- .
-

.
-
Start () Windows Server 2003. ,
Start, :
1. Start -
Properties ().
2. Start Menu ( ) Start Menu (
), . 27.2, .
Windows Server 2003
893
27
. 27.2. Start

. :
1. .
2. Start (), -
My Computer ( ),
Properties ().
3. Remote ( ) Remote Desktop
( ) Allow Users to
Connect Remotely to This Computer ( -
), . 27.3.
4. Remote Sessions ( ), -
, -
; .
5. System Properties.

.
1. .
2. Start, My
Computer Properties.

894
VII
. 27.3. -

3. Remote Remote Assistance ( -

) Turn On Remote Assistance and Allow Invitations to
Be Sent from this Computer ( -
).
4. Advanced (), , -
,
, . 27.4.
5. Advanced,
System Properties.
. 27.4.

Windows Server 2003
895
27
-
Group Policy. -
Computer Configuration\Administrative Templates\System\Remote Assistance (. 27.5).
Solicited Remote Assistance ( ).
, Remote
System, .
.
Offer Remote Assistance ( ).
Group Policy. -
-
. -
,
.
. 27.5. Group Policy -

-
Configure Your Server
Wizard ( ) :
1. .
2. - Windows Server 2003 -
.
Server Wizard ( -
), . 27.6.

896
VII
. 27.6.
4. Next ().
5. , , Preliminary Steps
( ) Next.
6. Server Role ( ), . 27.7, -
Terminal Server ( ) Next.
7. Summary of Selections ( )
Install Terminal Server (
). , Next.
. 27.7.
Server Role
Windows Server 2003
897
27
8. , -
, .
9. ,
.
10. -
. -
, .
11. , -
(This Server Is Now a Terminal Server),
Finish (), .

-
. , , -
.
-
, Application Install ( ). -
, -
Add/Remove Programs ( -
).
Add/Remove Programs
Execute (). -
.
:
Change user /Install .
Change user /Execute .
Change user /Query , .
-
, -
. Microsoft -
(, Eudora Version 4) -

, -
. -
%SystemRoot%\Application Compatibility Scripts\install, %SystemRoot%
, . -

.

898
VII

,
. -
. , -
, , -
. -
, .
Local Security Policy

Local Security Policy ( )
, . -
: Allow Logon Through Terminal Ser-
vices ( ) Deny Logon Through
Terminal Services ( ). -
Security Settings \ Local Policies \ User Rights Assignment.

(Local Administrators Remote Desktop Users)
(Remote Desktop Users).
Computer Management
-

Computer Management ( ). Local Users
and Groups ( ) -
: -
, . -
, -
.

, Computer
Management, .
-
Sessions (), Environment (), Remote Control (
) Terminal Services Profile ( ), -
. 27.8. -
, .
Terminal Services Con-
figuration (Tscc.msc). Computer Management
Start All ProgramsAdministrative ToolsComputer Management (
).
Windows Server 2003
899
27
. 27.8. Terminal Services Profile

MMC
Active Directory Users and

Computers (Dsa.msc)
-
Active Directory Users and Computers MMC, -
-
, Computer Management,
. -

.
Terminal Services Configuration

(Tscc.msc)
MMC Terminal Services Configuration (
) . -
.
: Connections () Server Settings ( ).
-
.

900
VII
Server Settings
MMC Terminal Services Configuration -
:
Delete Temporary Folders on Exit ( ).
-
. , (
Yes) .
Use Temporary Folders per Session ( ).
. -
,
.
Licensing (). -
. -
.
Active Desktop ( ). -
. -
,
, -
.
Permission Compatibility ( ). -
Full Security ( ), Relaxed
Security ( ).
, ,
, . -
.
Restrict Each User to One Session (
).
. , -
, -
, .
, -
.
Session Directory ( ). ,
; -
.
Connections
Connections Terminal Services Configuration
: -
, , -
, , ,
, , -
.
Windows Server 2003
901
27
-
:
General ().
. 56-
; , , -
;
,
; , , ,
FIPS , .

128-
, -
, -
.
Logon Settings ( ).
.
,
, .
, -
.
Sessions (). Sessions, -
. 27.9, ,
. -

.
. 27.9.
Sessions

902
VII
Environment (). ,
, .
Remote Control ( ).
, -
, -
.
Client Settings ( ). Client Settings
,

. , ,
, -
-
, ,
.
Network Adapter ( ). -
,
.
Permissions ( ). ,
/ -
.

, Terminal Services Configura-
tion, , .
Group Policy
Group Policy -
,
Active Directory. -

, -
Active Directory. -
.
Group Policy -
Active Directory, -
.
, -
, , -
:
Computer Configuration\Windows Settings\Security Settings\Local Policies\User
Rights Assignment
Allow Logon Through Terminal Services ( -
)
Windows Server 2003
903
27
Deny Logon Through Terminal Services ( -

)
Computer Configuration\Administrative Templates\Windows Components\Ter-
minal Services
. -
, -
, Group Policy.
User Configuration\Administrative Templates\Windows Components\Terminal Services
.
.
GPO
OU GPO
OU. Computer Configuration \ Administrative
Templates \ System \ Group Policy \ User Group Policy ( \-
\\ \ -
) , GPO,
. ,
. GPO GPO -
, ,
, .
GPO,
:
. 20
5 .
-
.
, -
.
.
, -
.

, , ,
.
.
1. .
.

904
VII
4. Add/Remove Programs ( )
.
Windows).
6. Windows (Windows Component Wizard)
Terminal Server Licensing (
) Next.
7. Terminal Server Licensing Setup ( -
) ,
-
, Active Directory,
.
8. , -
Next, -
.
9. Finish -
Windows.
10. Add/Remove Programs.

, Web-
Internet -
( 800) Microsoft Clearing House. -
, Microsoft Clearing House,
. -
:
1. .
2. Start All ProgramsAdministrative ToolsTerminal Server
Licensing ( -
).
3. Terminal Services License server
( ) -
Activate Server ( ).
4. Next.
5. Next.
6. Web- -
, -
. Finish.
7. , -
Microsoft Clearing House -
Next .
Windows Server 2003
905
27
8. Start Terminal Server Client Licensing

Wizard Now ( )
Next, .
-
.

(Client Access Licenses CAL). Windows 2000 -
CAL , CAL Windows 2000 .
CAL , :
1. -
.
Licensing ( -
).
3. Terminal Services License server
( ) Install Li-
censes ( ).
4.
Next, CAL
Microsoft , .
5. -
Next. ,
Retail (), Open () Select Licensing from Microsoft
( Microsoft), . 27.10.
. 27.10. -

906
VII
6. Licensing Program ( )
-
Next.
7. Program and License Information ( -
) Windows Server 2003 Windows 2000
:
Windows Server 2003 Per User CAL ( Windows
Server 2003). .
Windows Server 2003 Per Device CAL ( Windows Server
2003). ,
.
Windows 2000 Per Device CAL ( Windows 2000). -
,
.
Windows 2000 Internet Connector CAL ( Internet-
Windows 2000).
Internet , .
8. Next.
9. CAL
Finish, CAL.
, ,
, .

: .
, .
1. .
Configuration ( -
).
3. Server Settings ( ).
4. Licensing setting ( -
).
5. Licensing Mode ( ) -
-
.
6. , .
Windows Server 2003
907
27

,
Windows Server 2003 / Windows Server 2003.

-
(Network Load Balancing NLB),
Windows Server 2003. NLB
,
-
, .
NLB Windows Server
2003 -
, NLB. , -
, ,
. NLB
,
.
NLB , Windows
Server 2003, :
1. .
2. .
3. Internet Protocol (TCP/IP) Advanced ( -
Internet (TCP/IP)) IP-
, .
4. General ()
Network Load Balancing ( ).
5. - -
, Properties ().
6. IP- Internet- Cluster Parameters
( ), Host Parameters ( ) -
Priority ( ) IP-.
7. Port Rules ( ) ,
TCP 3389 (RDP), Affinity () -
Single Class C. None (), -
.

908
VII
8. ,
.
. 27.11. Next,
Finish.
. 27.11. -

, -

, 31.

, -
. NLB Microsoft
, .
Windows
Server 2003 Enterprise DataCenter. -
.
1. Services () , -
. -
, Windows
Server 2003 Enterprise DataCenter.
2. (Terminal Services Ses-
sion Directory service) .
3. General Startup Type ( )
Automatic ().
Windows Server 2003
909
27
4. Apply (), ,
Start (), .
, , .
5. , -
,
Session Directory Computers (
). Local Users and Com-
puters ( ) Computer Manage-
ment ( ) , -
;
Active Directory Users and Computers,
.
,
. -
Terminal Services Configuration, Server Settings (
) :
1. Restrict Each User to One Session (
) Yes ().
2. Session Directory ( ),
. 27.12, Join Session Directory (
).
. 27.12.
3.
.
4. , IP-
IP- . -

910
VII
IP- . -
.
5. , Terminal Ser-
vices Configuration.

-
, .

, Micro-
soft, (NIST)
(NSA). NIST, NSA -
,
Web- (http://www.nist.gov http://www.nsa.gov, ).
(Full Security
compatibility mode),
(Relaxed Security Permission compatibility mode),
, . -
-
, -

- . -
, -
.
,
.
RDP
,
RDP TCP- 3389. , -
, ,
:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\
WinStations\RDP-Tcp\PortNumber

, RDP
5.1 . , -
.
Windows Server 2003
911
27

, -
. -
.
, ,
, . , -
, , -
.

. -
:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server
KeepAliveEnable ( )
1.
KeepAliveInterval ( )
1.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
KeepAliveInterval ( ) -
.
KeepAliveTime ( ) .
TcpMaxDataRetransmissions (
TCP).
Terminal Services Configuration ( -
) Sessions () Override Users
Settings ( ), -
Disconnect from Session ( ).

, -
.
, .
, -
, ( ) .
, -
.

, -
.
, . , -
-
, , .

912
VII
NTFS,
. -
.
-
.
. -
. -
, .

%SystemDrive%\Documents and Settings\%Username%, -
. ,
:
1. Documents and Settings.
2. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\
CurrentVersion\ProfileList\ProfilesDirectory Reg_Sz .
3. .
4. Default () All Users ( )
.

GPO
Group Policy , -
GPO.
, , -
, , Remote Con-
trol, -
. GPO -
.

, -
, , -
, , -
.
.
,
, .
. -
, ,
, ,
.
Windows Server 2003
913
27

, ,
,
.
, -
. , -
( ,

), ,
.
.
, , ,
. , , -
, , -
. -
,
, , -
.

-
Microsoft Windows Server 2003 Terminal Server Capacity and Scaling
( Windows Server 2003).

-
.
-
-
, , -
MSCS. , -
:
1. ,
Automatic ().
2. , :
. ,
.
IP-. IP-, .
. , .
-
Kerberos.
, , Enable

914
VII
Kerberos Authentication ( Kerberos) DNS Regist-

rations Must Succeed ( DNS ).
3. File () New Resource ( ).
Generic
().
4. Next .
5. . Physical Disk (
) Network Name ( ).
6. . Service Name ( -
) (TSSDIS) Use Network Name for
Computer Name ( ).
7. . Add
System\CurrentControlSet\Services\Tssdis\Parameters.
8. Finish.
9. .

MSCS 31.

. , , -
, -
. ,
, ;
. , , -
, , ,
.

:
.
-
.
, Windows
Server 2003.
-
.
Microsoft (MOM)
.
Windows Server 2003
915
27

.

Web-.
Web-, .
,
, .
cookie- Web-.

-
Performance () MMC.
, ,
Terminal Services ( ) Terminal Services Session ( -
).
Terminal Services : ,
. -
, Server Memory \ Available Bytes ( \
) Processor \ % Idle (\% ), -
.
,
, . -
, ,
, -
.
Terminal Services Session -
, -
.
, -
. -
, , -
.

Windows
Windows (Windows System Resource
Manager WSRM) -
. -
, , -
. -

.
Windows 35.

916
VII

;
, -
,
.

(Terminal Server Manager)
. -

. -
, -
.
-
.

Windows Server 2003
,
.
20 .
Windows Server 2003; -
:
tskill.exe. -

.
Shadow.exe. -
.
Query.exe {Process, Session, Termserver, User}.
, -
.
TSShutdn.exe. -
.
.
Windows Server 2003
917
27

WMI
Windows Management Instrumentation (WMI),
. WMI- -
. WMI
-
,
Terminal Server Manager Terminal Services Configuration.
WMI , . -
%SystemRoot\system32\Wbem\tscfgwmi.mof.

Windows Server 2003 XP Professional Remote
Desktop Users ( ).
Administrators ()
Domain Users ( ) Re-
mote Desktop Users,
, .
, -
, .

Remote Desktop Users, -
.

, Allow Logon Through
Terminal Services ( ),
.
, Domain Universal ( )
Global Security ( )
Allow Logon Through Terminal Services ( -
) .

, -
( ), -
Deny Logon Through Terminal Services (
) Everyone, . 27.13.

918
VII
. 27.13. -
Group Policy

, , -
, .
-
, ,
, -
.
,
-
. , -
, , -
.

.
-
Shadow.exe.

-
, -
. -
, , -
Windows Server 2003
919
27
, -
.

, .
-
, ,
. ,
, -
.
Windows Server 2003
24, 32 33.

Windows Server 2003
. 32- Windows, 16-
DOS Web- ActiveX.

32- Windows- RDP
Windows Server 2003 Windows XP Professional 32-
, Remote Desktop Connection
( ). -
-
, , -
, -
, COM- . Remote Desktop Connection
28,8 /.
RDP Web-
Microsoft.

Web-
Web-,
Web-. ActiveX
.
Web- Web-
, TCP- 3389 . Web-
(Remote Desktop Pro-
tocol RDP), Windows Server 2003.

920
VII
-
, Web-, Web-, -
.
Web- , -
Web-
Web-.
Web- Web-
:
1. Start Control Panel.
2. Add/Remove Programs .
3. Add/Remove Windows Components.
4. ,
, Application Server
.
5. Internet Information Services (IIS),
.
6. World Wide Web Service ( World Wide
Web) .
7. Remote Desktop Web Connection (Web- -
) ,
Next, .
8. Finish
Add/Remove Program. Web- -
http://servername/tsweb.
MMC Remote
Desktops (Tsmmc.msc)
Remote Desktops ( ) , -
. -
RDP -
, -
, , . ,
,
.

(Remote Desktop Con-
nection) MMC Remote Desktops. ,
,
.
Windows Server 2003
921
27
MMC Remote Desktops -

, -
, . 27.14. -
.
. 27.14. -

!
, / -
. , .
.
Remote
Desktop Connection mstsc.exe
/console, .

. -
,
,
.
,
.

922
VII

Windows , -
.
-
.
,
,
Group Policy .
Win-
dows Server 2003
.
Remote Desktop for Administration -
, .
,
Windows .NET.

, -
, ,
.
, -
, .
, , -
Microsoft Windows Server 2003.

-
,
, .

, -
, ,
128- .

VIII
...
28.

Windows Server 2003
29.

925
28

28
Windows Server 2003
...

Windows XP

Windows XP

XP 2000

Windows XP

926
VIII
IT- Active Directory,

, ,
. Active Directory
( , )
-
, -
,
, -
.
, -
Microsoft Windows XP Profes-
sional .
. , -
.
-
Windows 2000 Professional, , -
Windows XP.
Microsoft Windows
.

, MS Client.
,
,
, . Win-
dows 2000 Windows XP Microsoft,
.

Windows XP Windows 2000 , -,
. -
.
- Windows
,
, . -
,
, .
Windows XP Windows XP
. -
, . -

927
28
- Windows XP
.

.
, -
,
.
,
-. - -
. -

. , ,
, ,
.

-.
-
,
.

-
. -
, Windows -
.

(Remote Installation Services RIS)
2000 Windows XP. , Windows Server 2003,
RIS . -
, -
-
. RIS ,
-
.

, ,
-. , -
() ().

928
VIII

, -
, .

.
-

. ,
, . -
.

, (Remote Installation Ser-
vices RIS). Windows 2000, RIS -
, -
Windows 2000 Professional. Windows Server 2003,
.
, -
, . -
,
.
RIS
RIS Windows Server 2003 -
, RIS
. , RIS, ,
RIS-. ,
- RIS ,
, (Pre-boot Execution Environ-
ment PXE) . RIS-
, , -
RIS- ,
RIS- .
, -

, . -
, RIS , -
. -
, ,
, Single Instance Storage (SIS,

929
28
). SIS ,
, RIS. -
RIS-,
, RIS-
.
RIS RIS ,
.
RIS
-
RIS. RIS- Active Directory, ,
DHCP. RIS
:
1. RIS- , -
, .
3. Add/Remove Programs ( ).
Windows).
5. Remote Installation Services (
).
6. Next () RIS, -
Finish ().
7. .
RIS
RIS- .
RIS-
. ,
.
. ,
RIS- Windows Server 2003 -
Windows 2000 Professional. RIS .
1. RIS- , -
, .
2. Start All ProgramsAdministrative ToolsRemote Instal-
lation Services Setup (
).
3. RIS ,
RIS, .
Next.

930
VIII
4. , RIS.
-
. -
.
Next.
5. RIS- -
. ,
RIS- ,
Respond to Client Computers Requesting Service (
), Next.
6. .
.
- Windows, , -
I386 Intel.
7. . -
, -
, WINNT WINDOWS. Next. -
(Friendly Descriptive name) -
(Help Text) , Next.
8. , . 28.1, -
Finish .
Finish RIS ,
. -
, RIS-
( ). -
DHCP,
RIS-.
. 28.1. RIS

931
28
DHCP RIS
RIS- DHCP -
, RIS- . -
066 067;
.
DNS,
Startrom.exe. , .
1. DHCP .
2. Start All ProgramsAdministrative ToolsDHCP (
DHCP).
3. Local DHCP Server ( DHCP)
.
4. Scope Options (
). DHCP -
, RIS ,
Scope Options, .
5. Scope Options ( -
) Configure Options ( ).
6. Available Options ( ) 066, -
Boot Server Host Name ( ) -
RIS-.
7. 067 Bootfile Name ( -
) RemoteInstall\Admin\I386\Startrom.com
DHCP RIS. , Scope
Options.

RIS-,
. RIS- , -
(Pre-boot Execution Environment PXE) -
. ,
, , ,
. , -
,
(Remote Boot Floppy Generator, Rbfg.exe), -
. Rbfg.exe RIS-
%systemroot%\System32\Reminst. -
:
1. RIS- .
2. RIS- .
3. Windows c:\windows\system32\reminst,
Rbfg.exe. , RIS-,

932
VIII
RIS . RIS
, RIS
,
.
4.
Microsoft Windows (Microsoft Windows
Remote Boot Disk Generator), -
Create Disk ( ), -
. 28.2. -
. -
RIS

. 28.2.
,
.
(Network Interface Card NIC) Web-. -
TCP/IP DOS, DHCP
RIS-
.
Windows XP
RIS -
Windows XP,
, , , -
. ,
,
,
.
,
.
RIS -
, Windows
XP .

. -

.
Microsoft -
,
. , ,
, , ,
.

933
28

, -
. -
Windows XP -
(Remote Desktop), (Remote Assistance)
(Automatic Update). -
, -
: , Start. -
( ) -
, ,
C:\Documents and Settings\Default User ( Windows XP
C:).

Windows 2003 Resource Kit Delprof.exe, -
.
, -
, , -
, . Windows 2003 Resource
Kit ,
http://www.microsoft.com/windowsserver2003/downloads/tools/default.mspx.

-
. -
15, 21 29.

-
. ,
, ,
, -
, .
, -
,
-
. , -
, ,
,
, , ,
.

934
VIII

Windows XP
Windows XP ,
. -

,
Windows XP.
,
.
, ,
. -
Windows XP

.

(Setup Manager, setupmgr.exe) -
Windows XP , -
. -
:
Windows Unattended Installation ( Windows).
Unattend.txt -
,
, -
.
SysPrep Install ( SysPrep).
sysprep.inf, , -
( sysprep.exe).
Remote Installation Services ( ). -
Remboot.sif,
RIS- -. ,
RIS- , Windows XP.

(System Preparation Tool) Sysprep.exe -
, ,
,
, : -
, .
-
. -
, -
.

935
28

sysprep.exe :
1. Windows XP Profes-
sional, -
.
2. sysprep.exe,
- Windows XP,
Support, Deploy.CAB. -
, sysprep.exe.

.
3. sysprep.exe ,

.
, . 28.3. -
. sysprep.exe
.
4. Shutdown () Quit (
), . 28.3.
5. Reseal (), SysPrep
.

- (MiniSetup) -
: , -
. MiniSetup Reseal , -
.
6. , SID -
. ,
SysPrep.
Windows XP
Windows XP
Windows XP, Deploy.CAB. - Windows XP
Support\Tools Windows XP. -

.

RIS
RIS-
Windows 2000 Professional, Windows XP Professional Windows Server 2003.
-

936
VIII
. -
, .
IP-,
sysprep.exe, . -
;
,
.
Windows-
, RIS- -.
RIS-.
Riprep.exe. RIS- RemoteInstall\Admin\I386. -
, -
:
1. Riprep.exe.
2. Riprep.exe Next.
3. DNS- RIS
Next. ,
, Next.
4. Friendly Description ( ) , , Help Text
( ), Next.
5. , , Next.
riprep.log.
6. Settings summary ( ),
Next.
7. Riprep.exe Finish.

Windows XP -
, -
Setup Manager ( ).
.
1. Windows XP Professional -
.
2. setupmgr.exe, - Windows
XP, Support, Deploy.CAB. -
, setupmgr.exe.
.
3. Next.
4. Next.
5. Windows
Next.

937
28
6. Platform ()
Next.
7. ,
. -
Provide Defaults Hide
Pages Often. , -
, -
.
8. Next, Next,
.
9. , -
- .
Next.
10. , ,
. Next.
11.
Next, .
12. Finish.
13. , unattend.txt,

.
14. , unattend.txt
.

-
, sysprep.exe.
sysprep.exe -
. -
, sysprep.exe .

Windows XP
-
I386 . ,
, -

. Windows
I386
, I386
, , , -
, . -

938
VIII
S, -
. , -

.
RIS
, ,
, .
Microsoft ,
. -
,
. ,
Add/Remove Programs ( ) -
, . -
,
.
, -
. , -
.
, -
, .
, -
(, ) .
, -
.
, , -
, , -
.
, -
.
-
.

XP 2000
, -
, -
. ,
,
Windows XP. -

939
28
, -
, Mi-
crosoft .

Microsoft -
.
-
. MSI,
. , , -
, ,
, .

,
. -
-
, , -
.
/ Microsoft -
Qchains.exe, -
.

(Auto Update) -
,
. IT-
IT-, -
, , -
. ,
.
,
, , -
. -
-
. -
,
, -
. -
, ,
, Microsoft, -
.

940
VIII

.
SUS Windows Server 2003 ( Windows 2000),
Internet (Internet Information Services).
intranet- SUS -
.
SUS , -
(Systems Management Server
SMS), , -
. SUS
. -
SUS 12.

.
, -
.
-
: , . Windows
Server 2003 , ,
, , Win-
dows XP ,
-
.
. ,
Windows XP Active Directory .
.
,
Group Policy Active Directory. -
/ -
/ . , ,
, -
, Remote Desk-
top ( ) Windows XP Windows Server 2003.
. -
. -
Windows . -

941
28

, . ,
.
.
.

, Windows Active Directory
. -
-
readme-.

Group Policy
Group Policy, -
.
Active Directory. -
-
, .
Group Policy
Group Policy
, Windows
(Windows Installer Package, *.MSI). -
.
, .
-
. -
. , , -
, Add/Remove Programs
.
Group Policy -
,
(Transform files), -
, .
-
Windows Server 2003
Help Desk Security ( ). -
:
1. Windows
Server 2003. ,
,
.

942
VIII
2. Windows Server 2003

I386 AdminPak.MSI.
3. AdminPak.MSI , -
. \\Server7\software.
Users and Computers (
Active Directory). , -
Run ( ) MMC.exe
.
5. , -
Properties ().
6. Group Policy ( )
. -
, , -
, .
7. Properties (),
Group Policy (Group Policy property).
8. Security () Add (-
). (Help Desk) -
.
9. Help Desk Allow
() Apply Policy ( ).
10. , .
11. , -
, Edit ().
12. Computer Configuration ( )
Software Settings ( ).
13. Software Settings, -
Software Installation ( )
New Package ( ).
14. MSI, Open ().
15. , -
Assigned (), Advanced (), -
. 28.4. Assigned
, -
.

Group
Policy, -
Windows (Windows Installer Package). -

943
28
, -
. -
. -
, Internet
MSI packager Windows installer packager.
. 28.4. -

-
,
. Windows Server 2003 Windows XP -
. ,
, ,
.
,
(Remote Desktop) -
(Remote Assistance),
.

-
.
XP -
, , -
, . -
XP -
All
ProgramsAccessoriesCommunication ( ),

Connect ().

944
VIII

, -
, - -
, . , -

. -
.
,
.
Add/Remove Program ( ) ,
Run As ( ) -
, , .

Windows XP
- , -
-
, , -
Windows XP.
,
, . -
BIOS. , -
BIOS , ,
, . -
.
Windows Server 2003 Windows XP, -
, , ,
(Computer Management). -
:
, -

. .

Windows Server 2003
-

945
28
Active Directory Users and Computers. -

Active Directory MMC -
.
Terminal Ser-
vices/Remote Desktop ( / ).
Active Directory Users
and Computers ,
Windows 2003, :

Windows Server 2003
, -
, -
(Remote Desktop Connection), -
Windows Server 2003 Windows XP,
.
Active Directory Users and Computers,
Active Directory Users and Computers MMC, -
.
-
, -
Remote Desktop .
Windows Server
2003 , -
Windows Server 2003, :

Server 2003 Microsoft -
, . -
Windows XP, -
, -
,
.

946
VIII

, -
.
, -

.

Sysprep.
MiniSetup Reseal , -
.
, -
.
,
.
, , -
, , -
.
, -
.
Qchains.exe, -
Microsoft /
.
, -
.

29
...

948
VIII
, Windows Server
2003, -
, -
,
.
, -

() , -
.
,
. -
-
. -
, ,
.

-
. , -
-
.

, ,
. ,
-

. Windows Server 2003 Micro-
soft Office -
.
-
, .

,
Windows 2000, -
Windows XP, Windows 2000 -
Windows -
Group Policy, Administrative
Tools ( ) Windows. ,

949
29
(Group Policy Mana-

gement Console GPMC), 21.
Group Policy Management ( )
-
Windows.

, -
, Windows.
, -
-
, ,
, Management. GPMC -

Windows-.

GPMC Windows
2000 GPMC Windows XP
.
GPMC Windows Server 2003 Windows XP. -

GPMC.msi :
http://www.microsoft.com/Windowsserver2003/downloads/featurepacks
Start (), Administra-
tive Tools ( ) Group Policy Management.
!
,
-
(Resultant Set of Policies) .
,

.

: .
,
.
, ,
.
, , -
(Access Control List ACL).

, , -
. , -

950
VIII
, , , -
, .
, -
, ,
-, , .
,
, .
-
-
.
, Microsoft
,
.

, .
Windows Server 2000 Windows Server 2003,
(GPO),
, -
, .
-
, - -
.
, -
, , ,
,
Exchange Server 2003.

-
. ,
AD, ,
Active Directory. AD :
.
.
.
.
OU OU, -
.

951
29
AD , OU -
GPO, , . ,
GPO, , -
GPO .

-

. -
90 .

, -
. GPMC,
, -
:
Computer ConfigurationAdministrative TemplatesSystemGroup Policy (-

)
.
User ConfigurationAdministrative TemplatesSystemGroup Policy (-

) .
, GPO, -
.
-
, GPO:
, -
.
, -
.

, . -
, .

, ,
-
.

952
VIII

-
.

.
Windows Server 2000

. ,

.
, Exchange, -
.
GPMC
-
Group Policy:
GPO.
WMI.
WMI.
GPO.
, GPO ( -
(Scope Of Management SOM)).
GPO
.

GPMC -
(Resultant Set of Policies RSoP) -

. RSoP , -
,
, ,
. RSoP GPO,
GPO
.

953
29
RSoP -
Group Policy Modeling ( )
Group Policy Modeling Wizard ( -
). , -
, WMI . -

Group Policy Modeling.
C

, -
RSoP .

:
OU: OU
, ,
OU OU . -

OU , , OU
-
. -
, OU.
-
, -
.
, ,

-
( ) Group
Policy . GPMC -
,
.
, -
. Active Directory,
GPO , WMI
TCP/IP - , -
.
Group Policy -
-
.

954
VIII
GPMC -
Group Policy , -
. , .
Group Policy ,
, .
GPO
, -
.
-
GPO.
(OU) ,

OU. -
. .
,
. -
,
. -
-
.

, . -
Windows Server 2003
, -
. -
, :
.
, , -
,
. , -
Resultant Set of Policy (RSoP).

(Block Policy Inheritance) (No Override). -
-
,

955
29
. ,
.
(GPO). -
, -
. :
, -
.
, .
. -,
-
.
.

, -
, ,
(WAN),
(Systems Management Server SMS).
, -
. -
:

Active Directory. -
,
, -
.
, ,
(Access Control Entry ACE) .

. -
,
, , -
, . -
-
, .
. -

Microsoft Windows (Microsoft Windows Installer MSI), -
, Setup.exe. -
,
Windows.
.
Add/Remove Programs (-

956
VIII
) . -
, , -
.

,

. My Documents ( -
), Documents and Settings. -
Group Policy, ,
.
Group Policy.
. -
, .
My Documents . ,
,
. -
.
. -
.
. -
, -
.
(UNC) . ,
\\\_.
c:\_, -
, .

,
-
, .
Microsoft MSI,
, -

, GPO.

957
29

-
-
:
. -
,
. .
. -

Start. .
C
,
Group Policy -
.
. -
.

. -
, .
MSI-
-
(Administrative
Installation Point) .
!
, . -
-
.

Group Policy,
.
, -
:
MSI-. -
.
, -
MSI- -
, .

958
VIII
-
.
, -
.

, -
, -
.
-
, . -
,
.
-
, (Distributed File System
DFS), -
, .

-
,
. -
-
.
,
. GPMC, Start All
Programs Administrative Tools Group Policy Management ( -
). -
,
.
1. ,
ForestDomainsGroup Policy Objects (
).
2. Default Domain PolicyActionEdit ( -
). ,
.
3. Computer Configuration ( )
Software SettingsSoftware Installation ( -
).
4. Action () NewPackage ().
5. Open () ,
MSI, MSI-.
Open.

959
29
C
,
, ,
.
Yes ().
6. Deploy Software ( -
) Advance () . Windows -
; ,
.
7. -
, Action Properties (-
).
8. Package properties ( )
Deployment (). ,
Assign () Install This Package At Logon (-
). .
. , -
, . -
,
, Action All TasksRedeploy Application (
).

,
, -
.
, -
:
MSI,
.
Add/Remove Programs (
) , -
.

,
, -
-
. -
. -

960
VIII
, , -
. -
,
. , Windows Server 2003,
, . -
, -

. -
-
.

, ,
. -
, -
. -
, -

. Win-
dows Server 2003 -
.
, -
, -
. , , -
, . -
,

.
-
, . -
(Offline Files) IntelliMirror -
,
, . Windows 2000 XP
, , -
,
.
, :
1. ,
.
2. File () Make Available Offline (
).
3. (Offline Files Wizard)
Next ().

961
29
4. ,
Next.
5.
Finish ().
, .

.
Windows Tools () Folder Options
( ). Offline Files ( ),
Enable Offline Files ( ), .

. My Documents -
, , -
.

.
.
.
My Documents -
.
1. , -
, .
2. Configuration / Windows Settings (/
Windows) Folder Redirection (-
) , .
3. ( -
My Documents), Properties.
4. Target () Setting ()
Basic Redirect Everyones Folder to the Same Location ( -
).
5. Target Folder Location ( ) -
Redirect to the Following Location ( -
). Root Path ( ) UNC- (-
, \\\_). -
.
-
. , , -
. -
, -
,

962
VIII
, -
(LAN).
-
. -
Computer Configuration/Administra-
tive Templates/System/Group Policy ( / -
// ) User Configuration/Administrative
Templates/System/Group Policy ( / -
// ).
-
. , ,
,
. ,
,
-,
.

,
. -
.
.
-
, ( -
) -
DSL . -

,
DSL .
, ,
-
. , , -
, -
( ).
-

.
-
,
(Virtual Private Network VPN). VPN
(Point-to-Point Tunneling Protocol PPTP)
2 (Layer 2 Tunneling Protocol L2TP) Windows
Server 2003, .
VPN , -
, .

963
29
Active Directory ( VPN_Users)

, VPN-.
. -
-
Control Access through Remote Access Policy ( -
).
, ,
-
. Windows Server 2003 VPN
Routing and Remote Access, -
:
1. Routing and Remote Access -
Remote Access Policies ( ),
Server (), New Remote
Access Policy ( ).
2. (New
Remote Access Policy Wizard) Next.
3. Use the Wizard to Set Up a
Typical Policy ( ), -
VPN authentication. Next.
4. Access Method property ( ) VPN.
5. User or Group Access property ( -
) , VPN.
6. Authentication Methods ( ) -
, -
, Next.
7. Policy Encryption Level property ( -
) Strong () Strongest ( ).
8. Policy Encryption Level , Finish.
9.
Policy conditions ( ) Called-
Station-ID ( ) IP- VPN-
. , . 29.1.

-
,
. ,
- IT-. -
.

. -
, -
, .

964
VIII
. 29.1. -

, . ,
, ,

, , -
, .
(OU) -
, , -
.

.
.
,
. -
( -
). , -
. -
, ,
.
.
-
, ,
, . -
, :

965
29
,
. -
, .
User Configuration/Administrative
Templates ( / ) -
Start Menu and Taskbar ( ).

, OU -
Group Policy Object ( ).
Start, -
. Network Neighborhood (
) , .
. 29.2 , , -
Start .
. 29.2. Start
.
.
. -
.
, .
1. , -
.
2. User Configuration / Windows Settings
Folder Redirection , -
.

966
VIII
3. (
My Documents) Properties.
4. Target Setting Basic Redirect Every-
ones Folder to the Same Location.
5. Target Folder Location Redirect to the Fol-
lowing Location. Root Path UNC- (,
\\\_).
.

,
. ,
, , :
1.
Properties.
2. Properties Quota ().
3. Quota Enable Quota Management (
).
4. Limit Space To ( )
.
.
Computer Configuration/
Administrative Templates/System/Disk Quotas ( /
// ).
, -
, .
,
-
. -
:

Properties.
2. Properties Profile ().
3. Profile Path ( )
, , ,
\\_\_\%_%.

, -
, -
. , -
.

967
29
,
. -

. ,
-
.
,
.
. -
-
. -
.
, . -
-
.
-
.
-
.
, , -
,
. ,
.
Power Users ( ).
-
, , -
Power Users .
, -
. -
-
. -
:

Properties.
2. Properties Profile.
3. Profile Path ,
, , \\_\_\%_%.
-
. Power Users ,
, -
.
-
. -

968
VIII
, ,
. -
Group Policy
Computer Configuration/Windows Settings/Security Settings/Local Policies/User
Rights Assignments ( / Windows/-
/ / ).
plug-
and-play,
( ).
, -
.
MSI , -
. , -
,
.
,
. -
.
.
1. , -
.
2. User Configuration / Windows Settings
Folder Redirection , -
.
3. (
My Documents) Properties.
4. Target Setting Basic Redirect Every-
ones Folder to the Same Location.
5. Target Folder Location Redirect to the Following
Location. Root Path UNC- (, \\\_).
-
.

,
. -
. , -
.
. -
. -
, , -
, .

969
29
Windows Server 2003 IV,

, -

.
, ,
, ,
.
, ,
-
. , -
. -
Internet (Internet
Protocol Security IPSec) , Windows Server 2003. IPSec -
, ,
.
IPSec IP Security
Policy Management ( Internet-), -
Microsoft (MMC). IPSec -
, .
, -
Secure Server ( ), -
.
Client (Respond Only) ( ) , -
.
-
.
( ).
IPSec Client (Respond Only) -
, :
1. IP Security Policies on Active Directory ( IP
Active Directory) Computer Configuration/Windows Settings/Security Set-
tings ( / Windows/ ).
2. Client (Respond Only).
3. Action Assign ().
(
) , -
, , -
.
, -
. , , -
.
, -
, User Configuration/Administra-
tive Templates/Network ( / /
). . 29.3 , .

970
VIII
. 29.3.

, -
(Encrypting File System EFS). EFS
, . -
, , , -
-
. 12.
.
1. Windows ,
,
Properties.
2. General () Advanced ().
3. Encrypt Contents to Secure Data (
).

. ,
. -
. -
,

, .
Windows Server 2003
, EFS . -
Windows Server 2003
(DC) .
DC
.

971
29
, -
.
(Certificate Authority CA)
, . EFS
CA -
-
, .

,

. , -
.
. , -
,
.
, , -
(. 29.4). -
.
. 29.4.
Active Directory, ,
, , -
,
. , ,

972
VIII
, , , -
. -
. ,
, -
, .
.
, -
, ,
. -
, ,
.
Run As ( ) Windows Server 2003 Windows 2000

-
. ,
, Active Directory Users and
Computers Run As, -
.
Run As :
1. <Shift>, -
.
2. Run As ( ).
3. Run As Other User ( -
) , -
.

, .
-
, .

-
.
1. User Configuration/
Administrative Templates/Control Panel/Display ( /
/ /).
2. : Screen Saver Executable Name ( -
), Password Protect the Screen Saver (
) Screen Saver Timeout (
). . 29.5.

, -
, Domain Admins ( ) Enterprise
Admins ( ),
.

973
29
. 29.5. Control Panel / Display

, , -
,

.
, . , -

, , -
. -

.

-
. , -
. , -
, ,
.
,
-
.
,
.

974
VIII

, -
,
.
(Block
Policy Inheritance) (No Override).
,
-
. , -
.
. -
, -
. :
, .
,
.
. -, -
-
.
.
-
Active Directory.
, -
, -
.
-
. -
, -
, ,
, .
-
, .
. -
-
Microsoft Windows (MSI), ,
Setup.exe.
. ,
.
My Documents . ,
,
. -
.

975
29
. -
.
. -
,
.
(UNC) , ,
\\\_.
c:\_, -
, .
-
IntelliMirror ,
,
.

. -
.
(Virtual Private Network VPN),
-
.
, ,
, -
. -
, -
.
-
.
Power Users ( ).
Power Users , -
, -
.
, ,
IPSec EFS.
-
-
, . -
.

IX
...
30.

31.
(

)
32.
Windows Server 2003
33.

979
30

30
...

Windows Server 2003

:

DFS
DFS
DFS

DFS
DFS

980
IX
-
, .
, , -
. -
, -
, -
, , ,
. -
-
,

.
, .
.
,

.

Windows Server 2003
-
, -
, ,
, ,
.

, -

Windows Server 2003 (Distrib-
uted File System DFS). DFS -
, -
, -
. , \\companyabc.com\home
\\server3\home$ \\server2\users. DFS ,
, -
.
DFS -
.

981
30

(File Replication Service FRS) -
. Windows 2000
Windows Server 2003 FRS -
, SYSVOL: , -
, , , -
SYSVOL Netlogon.
FRS
.
. SYSVOL -
.
SYSVOL
, . -
Active Directory, FRS
SYSVOL , Active Directory. FRS
SYSVOL , . DFS
RFS , -
.
FRS DFS -
,
, .

(Volume Shadow Copy VSS) -
, Windows. VSS -
, , -
, .
Windows ,
, -
. Windows Server 2003 VSS -
-
VSS. VSS , ,
,
, .

, -
(Remote Storage), Windows 2000 Server.
-

-

982
IX
.
, Remote Storage
, -
, -
.

Remote Storage , FRS, -
. FRS
, ,

. , -
.

Windows Server 2003 , RAID-
. -
(Redundant Array of Inexpensive Disks RAID)
, , -
NT (NTFS)
, . -
RAID, -
RAID-, .
.

IDE, SCSI RAID-. RAID-
, ,
.
RAID , RAID-
RAID-. RAID- -
, . -
, RAID, Windows Server
2003, RAID-,
.
, Windows Server 2003 : -
. , -
FAT, -
Microsoft, MS-DOS Windows 95,
NTFS Windows NT, Windows 2000 Windows Server 2003.

983
30
, RAID- -
.

Microsoft Windows Server 2003 -
Microsoft Windows MS-DOS. -
, . :
, -
. -
.
. ,
.
FAT, FAT32
NTFS. .

,
.
(Virtual Disk Service VDS). -
, ,
32.
Windows
Server 2003 Web-, FTP-, -
.

. -
(simple volume). , -
.
(spanned volume). ,
.
, , -
.
.
, ,
, -
. , -
, , -

.
, ,
. , ,
.

984
IX
(striped volume). ( -
), , RAID 0, -
.
, -
. ,
, . -
.
-
. ,
4 , 2 -
.
RAID 5 (RAID 5 volume). RAID 5 -
( . .)
, . , -
RAID , .
RAID 5
, . -

, -
-
. RAID 5
,
:
(N 1) * S = T
N , S ,
T . ,
RAID 5 10 ,

(5 1) * 10 = 40
10 .
(mirrored volume). , RAID 1,
,
.
.
, -
.
C
,
RAID-.
,
.

985
30

NTFS, FAT FAT32. FAT
MS-DOS Microsoft Windows,
MS-DOS, 2 . FAT32 -
Microsoft Windows 95,
MS-DOS, Windows for Workgroups Windows NT. NTFS- Windows Server
2003 Windows NT 4.0 Service Pack 6a
Windows 2000, Windows XP Windows Server 2003.
, NTFS
: , , , -
.

, . -
MMC Disk Management ( -
) ,
diskpart.exe.
MMC Disk Management

, ,
MMC Disk Management. Com-
puter Management, -
Microsoft (MMC). Disk Management -
, .
Windows Server 2003, Disk Management -
.
. Windows Server
2003 -
, -
.

diskpart.exe
diskpart.exe
. ,
Disk Management, .
diskpart.exe , , Disk Management
. diskpart.exe -
, .

986
IX
diskpart.exe.
c:\drive info.txt, -
:
Select Volume 2
Extend
Exit
-
<Enter>, <Enter>.
:
Diskpart.exe /s c:\drive_info.txt
2 -
.

diskpart.exe , -
, ,
. .

RAID-
. RAID-
RAID- -
. RAID- -
Disk Management
diskpart.exe.

,
. -
:
1. -
.
2. Start () All ProgramsAdministrative ToolsCom-
puter Management ( -
).
3. Computer Management (local) (-
), .
4. Storage ().
5. Disk Management ( ).
6. , , ,
.

987
30
7. ,
Computer Management, File () Exit ().
8. , -
Convert to Dynamic Disk (
). , , -
,
Convert ().
9. ,
, , RAID 5.
10. , ,
: -
, .
, . -
.
11.
Computer Management Disk Management, ,
.


RAID 5. :
1. -
.
2. Start All ProgramsAdministrative ToolsComputer Ma-
nagement.
3. Computer Management (local),
.
4. Storage.
5. Disk Management.
6. -
Add Mirror ( ).
7. ,
, ,
Add Mirror ( ).
8. ,
,
.
Resynching () Healthy ()
Computer Management, File Exit.
9. .

988
IX
RAID 5 Windows Server 2003 ,

,
. RAID 5 Disk Management -
.
1. -
.
nagement.
.
4. Storage.
5. Disk Management.
6. Disk Management -
NewVolume ().
7. (New Volume Wizard)
Next ().
8. Select Volume Type ( ) RAID 5
Next.
9. Available () Select Disks ( ) -
, RAID 5, Add ().
10. ,
Selected ().
11. Selected, -
,
. 30.1. Next -
, Next.
. 30.1. RAID 5

989
30
12. Assign Drive Letter or Path ( -

) ,
. ,
NTFS . , -
, Next.
13. Format Volume ( ) , -
. Next.
C
RAID 5 , , -
, .
14. Completing the New Volume Wizard (

) Finish (), -
.
15. ,
. Computer Man-
agement .
16. ,
, Yes () No
() .
C
, -
MMC Disk Management.

(file share)
,
, Windows Server 2003. Windows Server 2003
, -
.
. , ,
FAT FAT32,
, NTFS .
FAT
. ,
. -
,
.

990
IX
NTFS ,
FAT- -
, -
.
, -
. NTFS Remote Storage, -
,
, -
, -
.

(file share) FAT, FAT32
NTFS.
: , , ,
,
. , -
(Share a
Folder Wizard).
-
:
1. -
.
nagement.
.
4. System Tools ( ), -
Shared Folders ( ).
5. Shares ( )
New Share ( ).
6. (Share a
Folder Wizard) Next.
7. , ,
Next.
8. ,
Browse (),
. Folder Path ( )
Next.
9. Name, Description, and Settings (, ) -
, ,
. 30.2.

991
30
. 30.2.
10. -
, . -

, Change (), -
.
Next.
11. Permissions ( ) , -
.
.
Finish. ,
Permissions Customize (), -
, Finish.
12. ,
. Close ().
13. Computer Management, -

Properties ().
14. General () .
15. Active Directory, -
Publish () Active Directory.

Active Directory.
16. NTFS, Security
(). .
17.
Share Properties ( ), .
18. Computer Management .

992
IX
,
.
, Everyone ( -
). , -
,
, , -
, .
, , ,
-
.
C
:
, Everyone (
) (Domain Users) -
.

NTFS
, -
.
(client-side caching CSC), -
(offline files).
. -
, -
.
-
. -
, .
1. -
.
2. Start My Computer ( ).
3. , .
4. ,
Sharing and Security (
).
5. Offline Settings ( )
.
6. ,
. 30.3, , Offline Settings.
7. Folder () , , -
.

993
30
. 30.3.

!
, -
, -
. -
-
. ,
.
. Computer Configuration \ Administrative
Templates \ System \ User Profiles.

NTFS , , -
.
, , -
. ,
. ,
-
, ,
. -
, -
, . -
, 700
, ,
500 . -
.
NTFS :
1. -
.

994
IX
2. Start My Computer.
3. NTFS, .
4. , -
.
, -
.
5. NTFS
Properties.
6. Quota () Enable Quota
Management ( ).
7.
, ,
. 30.4.
8. , NTFS.
9. , ,
Yes, Cancel () .
10. NTFS My Computer
.
-
Quota Entries ( ) Quota -
NTFS. ,
.
. 30.4.

995
30

-
, .
Performance () -
, ().
Performance
Performance Administrative Tools (-
),
( ), (
, ). -

, ,
.

Fsutil.exe
Fsutil.exe
: ,
. , -
-
. , Fsutil.exe -
-
, Telnet.

, -
.
/, , -
. ,
.
Local Se-
curity Settings ( ); Active Directory -
Group
Policy.
Audit Object Access ( ) -
Group Policy , . 30.5.
NTFS
, -
. -
.

996
IX
. 30.5. -

1. -
.
3. NTFS, , .
4. , -
Properties.
5. Security () Advanced
().
6. Auditing () Add (),
.
7. , -
, . , Everyone -
, Everyone.
8. , , -
: , .
9. .
10. , ,
Advanced Security Settings.
11. Folder Properties.

, .

. ,
-
.

997
30

NTFS ,
. -
Quota Entries ( ), ,
Quota Entries ( ) Quota () .
:
1. -
.
3. NTFS, .
4. NTFS
Properties.
5. Quota Quota Entries.
6. Quota Entries
.
7. Quota Entries.
8.
, My Computer
.

:
Microsoft
Windows.
Designed for Windows Server 2003 (-
Windows Server 2003), - -
. -
, -
, Windows Server
2003, Microsoft Windows, -
.
Windows
Windows (Windows File Protection)

. -
Microsoft, Windows.
,
Microsoft, , -
, .

998
IX
Windows -
, -
, -
. DLL-,
Windows , -
Microsoft
, Microsoft, Micro-
soft. ,
,
Web-.
Win-
dows .
,
(File Signature Verification) -
(System File Checker). -

.

Windows Server 2003
, . -
Microsoft -
(Independent Hardware Vendors IHVs), Windows Server 2003 Windows
XP -
. IHVs -
Microsoft, -
Microsoft; ,
(Hardware
Compatibility List HCL) .
, -
.
1. -
.
2. Start Control PanelSystem ( -
). Control Panel ( ) Start -
, Control Panel
System ().
3. System Properties ( ) Hard-
ware ().
4. Device Manager ( ) Hardware (-
) Driver Signing ( ).
5. , -
, . 30.6.

999
30
. 30.6. -

6. , Driver Signing Options,
System Properties.
Windows
Windows (Windows Hardware Quality Lab)
, , Designed
for Windows. IHVs -
,
Microsoft. Microsoft
IHVs , -
Microsoft, -
.
. Windows Server 2003, -
, Micro-
soft .
(Sigverif.exe)
(File Signature Verification) -
, , , -
-
. ,
Microsoft. -
, , ,
.
Start Run () -
Sigverif.exe. , Start
(), .

1000
IX
(Sfc.exe)
(System File Checker) -
, ,
. ,
, -
. -
, -
. . -
, Sfc.exe , -
Windows Server 2003, Windows -
DLL-. -
- Windows Server
2003.

Sfc.exe , -
. , -
; ,
.
Sfc.exe Group Policy, Computer

Configuration \ Administrative Templates \ System \ Windows File Protection.

-
Microsoft (Distrib-
uted File System DFS). DFS , -
, ,
. DFS -
.
DFS
DFS ,
, -
. DFS ,

DFS, . 30.7. . 30.7, -
\\SERVER2\UserData, , -
. DFS
\\Server99\downloads, -
.

1001
30
. 30.7. DFS
,
-

, DFS. DFS -
, -
.
; , -
. DFS -
, -
.
DFS , ,
. -
DFS, -
Active Directory,
. DFS, -
, -
.
DFS
DFS, , -
DFS. ,
, DFS, -
DFS.
DFS (DFS root). DFS, -
DFS . DFS -
: (standalone) (domain) . -
, .
, -
. DFS -

1002
IX
, DFS.
.
DFS (DFS link). , -
. DFS,
. DFS -
.
(target). , .
DFS
. , -
. DFS -
,
, .
DFS (DFS tree). . , DFS
DFS .
(referral). , DFS -
. -
. -
.
FRS
DFS (FRS)
, DFS, , -
. ,
FRS. -
.
(replication).
. -
.
(replication connection). , -
. -
, , -
.
.
(replication partner). ,
.
, . -
,
.
(replica). , ,
FRS.
(replica set). , -
.

1003
30
(multimaster replication). ,
, - -
.
(master), (slave).
FRS , -
-
(master-slave).
DFS
DFS ,
-
. , ,
DFS, . ,
DFS DFS
, ,
, -
. , DFS NTFS, -
NTFS .
, -
DFS FRS Windows Server 2003.
DFS, -
FRS, , -
.

NTFS
DFS
DFS
NTFS . ,
-
, ,
. , -
, -
. -

NTFS -
, DFS.
DFS
, DFS : .
, DFS -
, DFS. -
DFS, DFS, DFS.

1004
IX
DFS
DFS , -
DFS. ,
. -
, .
, , RFS
. ,
Active Directory.
DFS
DFS, -
Active Directory. DFS
, ,
. DFS FRS -
.
DFS
,
DFS.
DFS
. , DFS
FRS, -
.
C
DFS; DFS
. DFS -
, DFS.

DFS
,
. , , -
. , , -
, ,
. -
,
, , -
.
.

DFS ,
(File Replication Service FRS). , -

1005
30
, (replica).
. -
, , -
,
, .
, server1 server2,
server1 server2
server2.
.
server1 , NTFS.
FRS server1 -
server2, -
, . -
RFS -
. server2 ,
,
server1.
.
, . -
,
server2, .

(staging folder) , , -
RFS, ,
RFS. -
DFS,
, .
, , ,
, -
.

-
-
. ,
- (hidden
folder) Do_NOT_REMOVE_NrFrs_PreInstall_Directory .

DFS Windows Server 2003 -
, -
DFS . -
, , ,
DFS -
Active Directory .

1006
IX

(hub-and-spoke) .
- (hub) , (spoke
) .
: . -
, .

(full mesh), ,
. -
, -
. , -
.

(ring) :
- . -
, -
, -
. ,
.

(custom)
. -
, , -
-, . 30.8.
A B C
- 1 - 2
( )
. 30.8.
--

1007
30

(latency), , -
, .
-
. . 30.8,
15 , -
30 . , -
A C , -
15 , 30 ,
C.
DFS
DFS, DFS.
-
, .
.
DFS
DFS . DFS
.
, DFS;
, .
-
DFS. ,
DFS . -
NTFS DFS, -
, NTFS
DFS.
DFS, , -
, .

DFS
NTFS, . -
, DFS -
NTFS.
DFS
DFS, .
1. Start All ProgramsAdministrative ToolsDistributed File
System ( -
).

1008
IX
2. Distributed File Sys-

tem ( )
New Root ( ).
3. (New Root Wizard)
Next.
4. Next.
5. ,
, Next. ( -
, .)
6. Host Server ( ) -
, DFS,
Next. , , Browse ().
7. Root Name ( ) -
, Next.

DFS
. , , -
. -
, .
8. Completing the New Root Wizard ( -

) Finish, .
DFS
DFS DFS.
.
NTFS.
DFS, , -
. -
:
System.
2. , , -
, Distributed File System
Show Root ( ).
3. Show Root DFS. , -
, DFS. -
, DFS.
4. DFS
New Link ( ).
5. New Link , (UNC- -
), ,
. . 30.9.

1009
30
. 30.9. DFS
, -
, , DFS , .

DFS
. DFS .
.
System.
2. ,
Distributed File System -
Show Root.
, DFS. -
, DFS.
4. DFS
New Root Target ( ).
5.
Next.
-
, .
6. Completing the New Root Wizard ( -
) Finish, -
.
.
1. DFS ,
.

1010
IX
2. DFS -
DFS.
3. DFS -
New Target ( ).
4. New Target .
5. New Target Add This Target to the Replication
Set ( ). ,
.
, .
6. , .
DFS
DFS
(Configure Replication Wizard). DFS
NTFS.
, DFS, DFS . -
FAT FAT32 ( ), -
.
(File Replication Service)
NTFS. FRS
Microsoft http://support.microsoft.com.
, :
System ( -
).
2. , -
Distributed File System ( )
Show Root.
, DFS. -
, DFS.
4. DFS .
5. DFS DFS.
6. DFS -
Configure Replication ( ).
7. (Configuration Replica-
tion Wizard) Next.
8. .
, -
. ,
-
,
.

1011
30
9. Next.
-
. -
NtFrs_PreExisting___See_EventLog.

, .
10. Topology ()
.
11. , -
Finish, -
.
12.
Replicate Always ( ),
DFS DFS
Properties.
13. Replication () Customize
(),
. -
.
14. Link Replication ( ),
Schedule (),
. .
15. ,
.
16. , .
DFS Active Directory

DFS Active Directory,
. ,
Active Directory.
Active Directory,
.
1. DFS .
2. -
Properties.
3. Publish Publish This Root in Active
Directory ( Active Directory).
4. , , -
, .
5. , Properties.

1012
IX
DFS
DFS -
, .
-
, -
, .
, -
.
DFS, -
.
DFS, , DFS.
DFS,
, . -
, . -
, DFS -
.
, ,
DFS. FRS
.
DFS, ,
,
, , ,
.

. , ,
,

. -
.
, , DFS
, . -
.

, , -
DFS.
, , -
,
.
- ,
, DFS
.

1013
30
DFS
DFS , -
DFS. DFS
DFS. -
-
, -
. -
.
660 ; 4,2 .
, -
(Staging Space Limit)
HKey_Local_Machine\SYSTEM\CurrentControlSet\Services\NtFrs\Parameters.
.
, 1 1024 , 1000 .
FRS,
DFS FRS.
DFS
DFS.
.
DFS, ,
-
. ,
.
DFS :
1.
DFS Windows Server 2003
(ntbackup.exe).
2.
DFS . ,
NTFS
, -
.
-
, Restore to Alternate Location (-
).
Windows Server 2003 Backup -
33.
4. DFS
, .

1014
IX

(, ),
. -
, ,
.
, -
Windows Server 2003 Backup.
, -
. FRS
.
, -
. , -
.

DFS
DFS DFS, Ad-
ministrative Tools ( ) Windows Server 2003.
DFS ,
DFS. DFS -
, , . 30.10.
. 30.10. DFS
FRS

DFS FRS.
Windows Server 2003
. :

1015
30
FileReplicaConn. -
. ,
, FRS
.
FileReplicaSet. -
. :
,
.
FRS SONAR
SONAR ,
FRS.
SYSVOL , -
- . -
SONAR, , .NET Framework.
SONAR :
http://www.microsoft.com/windows2000/techinfo/reskit/tools/new/sonar-o.asp
SONAR Windows Server 2003 Resource Kit.

SONAR ,
Windows 2000 . SONAR
, Ntfrsapi.dll %SystemRoot%\System32
. SONAR.
SONAR
Windows Server 2003 Resource Kit ,
, . 30.11. ,
View Results ( ) , ,
. SONAR
FRS Windows Server 2003 Resource Kit, -
FRS, .
. 30.11. SONAR

1016
IX
DFS

DFS , FRS. DFS -
(Process Performance object),
Select Instances ( ) dfssvr.
, , -
.

,
, DFS-.

.
1. DFS .
2. DFS , , -
.
3.
Enable or Disable Referrals (/ ),
. 30.12. .
. 30.12. DFS

4. -
DFS , .
5. ,
.
. -
.

1017
30
6.

DFS.

, ,
- -
,
.
-
. -
, , ,
. -

, .
,
, ,
, .
,
-
. -
.

. -
, , -
.
,
.
Enable () ,
,
.
FRS
, -
Windows Server 2003 , DFS,
. -
,
FRS.
DFS

DFS. :

1018
IX
. , -
.
.
DFS. DFS -
, -
DFS. DFS -
, -
DFS. DFS FRS
Active Directory. Active Directory -
.
DFScmd.exe
DFScmd.exe
DFS.
.
DFS DFS.
,
Apps <Enter>:
DFScmd.exe /View \\domain\Apps /Batch /Batchrestore >> DFSrestore.bat

. DFS,

DFS , DFScmd.exe, -
.
DFS.
DFScmd.exe,
,
DFScmd.exe /? <Enter>.

(Remote Storage)
NTFS . Remote Storage ,

. Remote
Storage , ,
(junction point).
, , -
.
Remote Storage
.

1019
30

, Remote Storage, -
, . -
, , Remote
Storage, . , -
, -
, .
, , -
.
,
.
, DFS, , Remote
Storage . DFS
, DFS.
-
. -
.
Remote Storage
Remote Storage -
, :
1. -
.
2. , ,
, , Remote
Storage. , Remote Sto-
rage, (Hardware Compatibility
List) Windows Server 2003 Web- Microsoft.
3. Start Control PanelAdd or Remove Programs (
).
4. Add/Remove Windows Components
( Windows).
5. Remote Storage
Next, .
6. Windows Server 2003 , ,
. .
7. Finish -
Windows (Windows Components Wizard) Yes, -
.

1020
IX
Remote Storage
Remote Storage -
, -
. Remote Storage :
, Remote Storage.
, Remote Storage.
Remote Storage .

Remote Storage
. , Remote
Storage, , -

Remote Storage . -
, Remote Storage,
. -
-
, -
, . -
,
, Remote Storage -
. , -
-
Removable Storage.
Remote Storage -
,
.
, .
1. Windows Server
2003. -
.
2. -
.
3. Start All ProgramsAdministrative ToolsComputer
Management.
.
5. Storage.
6. Removable Storage ( ).
7. Libraries ().
8. ( -
) Properties.

1021
30
9. General () Device Properties ( )

Enable Drive ( ), . 30.13,
. -
, .
. 30.13. -

. 30.13 -
DLT (digital linear tape
). Remote Storage ,
, , -
. -
, Remote Storage, -
.

-
.
( ), -
.
, -
: , . -
, -
Windows Server 2003 Backup .

1022
IX

:
1. , . -

Inventory ().
2.
.
.
3.
Properties.
4. Media () Media Properties ( ),
Location (), .
. 30.14 , Import\DLT.
5. Cancel (), Media Properties.
. 30.14. -
Import\DLT

, , Remote Storage -
. Remote Storage -
. -
, -
,
.
-
, -

1023
30
Free (). -
, ,
, . ,
Yes, No, -
.

Remote Storage
-
. -
.
1.
.
2. Start All ProgramsAdministrative ToolsRemote Storage
( ).
3. Remote Storage
,
(Remote Storage Wizard).
Next.
4. Volume Management ( ) -
, -
. Manage All Volumes ( -
), Next.
5. Manage Selected Volumes ( -
), , , -
Next.
6. Volume Settings ( ) -
, .
7. ,
Remote Storage; -
, Remote Storage -
. Next. . 30.15 ,
Remote Storage ,
10% , 12 -
120 .
8. Media Type ( ) ,
,
Remote Storage. Media
Types ( ).
9. . -
02:00.
Change Schedule ( ), ,
Next, .

1024
IX
. 30.15. -

10.
Finish .
Remote Storage (
). -
: -
, ,
.
. Remote
Storage 32 33.

(Volume Shadow Copy VSS) Windows Server
2003 , NTFS.
VSS -
. -
,
. VSS -
NTFS. NTFS, -
.
VSS ,
. , -
.

1025
30
VSS ,
. , DFS
DFS Windows
Server 2003 Backup
DFS Windows
Server 2003 Backup, VSS -
. -
. Backup
,
.
. VSS
Windows Server 2003 Backup 32 33.

. -

.
, , ,
.
-
RAID- (, RAID 1+0).
,
, . -
, NTFS.
:
1. -
.
Management.
.
4. Storage.
6. Disk Management, -
All Tasks ( ) Configure
Shadow Copies ( ).
7. Shadow Copies ( ) ,
,
Settings ().

1026
IX
8. Settings .
, . 30.16.
. 30.16. -

9. ,
.
10. , 07:00 12:00.
,
Schedule () .
11. -
Shadow Copies.
12.
;
, Create Now ( ).
13. -
, Create Now.
14. , -
Shadow Copies, Computer Management
.

32 33.

,
, . , -
, , -
, , .

1027
30

(Shadow Copies for
Shared Folders Restore, VolRest), Windows Server 2003
Resource Kit, , -
. -
,
(Shadow Copies for Shared Folders).

.
1. Windows Server 2003 Windows XP
SP1 ,
.
2. Start Run.
3. Run ( )
\\_\_, _ NetBIOS
, -
. ,
.
4. File and Folder Tasks ( ) View
Previous Versions ( ), . 30.17.
5. Previous Versions property
( ) , -
, View ().
. 30.17. -

1028
IX
6. , -
. ,
, -
Copy ().
7. .
8. Share Property ( ),
.
9. ,
,
Paste ().
10. .

,
, -
. Shadow Copies ( ), -
,
Vssadmin.exe.

:
1. -
.
Management.
.
4. Storage.
5. Disk Management.
All Tasks Configure Shadow Copies
( ).
7. Select a Volume ( ) .
8. Shadow Copies of Selected Volume ( -
) , ,
Delete Now ( ).
9. , Shadow Copies,
.
D: ,
<Enter>:
Vssadmin.exe Delete Shadows /For=D: /Oldest

1029
30
Vssadmin.exe
. 32 33.

Windows Server 2003 Resource Kit
(Volperf) VSS -
.

,
. -
Windows -

. ,
, -
, -
.
,
.

-
.

.
Remote Storage ,
FRS, .

, RAID-.
RAID 5, -
,
.
NTFS.
.
,
.

1030
IX

, Everyone Domain
Users .
, -
,
.
NTFS ,
.
-
Fsutil.exe.
.

.
, , DFS.
DFS
.
DFS
NTFS, . ,
DFS -
NTFS.
DFS, -
.
DFS, -
. -
, . , -
, , DFS -
.
, ,
DFS.
DFS , -
.
, , DFS -
, .
.
,
, -
DFS.
, , -
, -
.

(

31
)
...

Windows Server 2003

NLB-

1032
IX
-
-
-. , -
-
.
, ,
, .
,
Enterprise DataCenter. 30
, (DFS) -
. -
(Network Load Balancing NLB)
Microsoft (Microsoft Cluster Service MSCS). -

,
. -
. -
, .
Windows Server 2003, NLB MSCS, -
,
,
.
,
, . , -
,
NLB MSCS.

-
, . -
, -
. , -
,
. , , -
, :
, , .

-
() ,
, -
.

1033
31
,
-
. ,
, -
. -
,
-
, -
.
,
, -
. -
,
, ,
, , , -
. -
, ,
,
.

-
,
-
. (load balancing) -
, -
. (failover)
-
.
Ethernet,

, -
. -
, ,
.

-
.
- -
(Network Interface Card NIC) NIC. , -
NIC
. , -
,
.

1034
IX

Windows Server 2003
NLB- NIC .

/
, ,
.
(Redundant Arrays of Inexpensive
Disks RAID) , -
RAID- -
, RAID- -
, -
.
RAID, , , RAID,
RAID -
RAID-, .
RAID ,
,
-
.
RAID- Windows Server 2003 -
22. RAID- RAID-
.

-
, . -
; -
. -

. - , Windows Server
2003, , . Windows
Server 2003 Enterprise DataCenter -
, -
.

1035
31

Windows Server 2003
Enterprise DataCenter. (clustering) -
, -
. ,

,
.
, -
.
(Cluster Service), Microsoft
(Microsoft Cluster Service MSCS). -
(failover).
-
-
, -
. -
, ,
.
(Network Load Balancing NLB), -
Web- Web-, ,
VPN- . NLB -
,
, . -
, ,
, , -
Web-, -
. - -
.

Microsoft MSCS, NLB

.
,
MSCS- NLB-,
, .
:

1036
IX
(cluster). -
, .
(node). , .
(cluster resource). , -
. -
, IP-,
.
(cluster resource group). -
, ,
.
. -

, .
(cluster virtual server). -
,
IP-. -
(DNS)
NetBIOS, IP-. IP-
, ,
.
(cluster heartbeat). ,

. -
500 , , -
, .
(cluster quorum disk).
. MSCS

. -
, , ,
, -
. ,

- .
,
. MSCS -
.
(local quorum resource). -
, .
, -
, -
. -
, -
.

1037
31
MNS (MNS resource). (Majority

Node Set MNS) , -
. MNS
. MNS -

. Windows Server
2003 Forcing the Quorum in a Majority Node Set Cluster (-
).
(generic cluster resource). -

. -
. -
; ,
. -
,
.
, (Help and Support) Win-
dows Server 2003 , generic cluster resources
( ).
(cluster-aware application).
, -
,
. -
, -
, , -
.
(cluster-unaware application). -
,
. , -
. -
, , ,
. ,
, -
. -
,
(Help and Support) Windows Server
2003 , generic application resource type ( -
).
(failover). -

. -
,
.

1038
IX
(failback). -
,
. , -
. -
.
,
.
, -
,
.

.
,
.
-
- (active/passive clustering) ,
,
,
. , -
, ; -
, -
.
, -
,
. -
, -
, .
, -

.

-
. ,
-
.
, , -
.
-
- (active/active clustering) , -
.
-
. - - -

1039
31
, -
. ,
100%,
100% , -
. -
, -
.
-
,
,
. TCP/IP-, ,
Web-, VPN- , NLB.
, -
NLB. Windows Server 2003 -
,
, .
Microsoft NLB,
MSCS,
, NLB -
MSCS
, , -
.
Microsoft
Microsoft (Microsoft Cluster Service MSCS)
,
, .
, ,
, , .
, ,
, -
, (cluster resource).
, -
.
,
, . , -
, . -
,
,
.

1040
IX
.
, -
. , -
, -
, . -

, .
,
BIOS , -
Power () . , -
, ,
, .
, -
, , ,
, (heartbeats).

.
,
. -
, .
.

,
Windows Server 2003 Enterprise Dataenter
(Network Load Balancing NLB). NLB -
-
. NLB-
,
.
: -
, NLB- -
. NLB 32 ,
, -
DNS .
, NLB-
. NLB ,
.
Microsoft
(Microsofts Application Center) -
, NLB.

.

1041
31

, , -
.
, -
. : ,
. -

.

-
, -
.
- 1 2
,
, . 31.1.

, -

. . 31.1.
-
,
. -
, ,
, -
.
. -
, -
, .

. -,
,
.
,
. -
, .
,
.
,
, .
.

1042
IX

(Majority Node Set Cluster MNS)
, . 31.2. MNS
, . -
MNS
. Windows Server 2003 Enterprise
, DataCenter .
, -
, MNS
MNS ,
IP- , -
, (VPN)
(NAT), -
IP-.
500 ;
.
MNS ,
(majority) . , -
, . ,
, . -
,
. ,
.
VPN

A B C D

A B

. 31.2.

1043
31
MNS -
. -
, -
,
.
MNS
MNS .
,
A B. B
. A -
, ,
, .
B A. A
, ,
B . -
A B -
. , -
MNS .

-
. -
,
MNS , ,
.
MNS
,
:
500 -
.
VPN,
IP-
. -
.
.
MNS .
, , -
-
.
MNS ,
. Microsoft -
MNS , -
-
MNS.

1044
IX

, -
. MSCS,
. ,
. ,
, , -
:
IP,
( ) IP.
, ,
.
-
.
,
.
,
-
.
-
.

.
-
-,
.
, -
, -
. , Windows Server 2003, -
, . -
, -
.

, -
, , Microsoft, -
Windows Server
2003;
.

-
Microsoft Windows Server 2003. -

1045
31
, -
.
(Storage Area Network SAN) ,
. ,
SAN, -
Windows Server 2003 . Windows Server 2003 -
SAN ,
.
. SCSI- SAN -
, -
-
.
Windows Server 2003
, , SAN.
SAN , , -
-
. , SAN ,
-
. -
SAN, SAN -
Cluster HCL Web- Microsoft.
(shared nothing archi-
tecture), ,
. -
SAN,
.
SAN , SAN
, SAN
(Logical Unit Number LUN), . Win-
dows Server 2003 LUN; -
SAN
SAN.
/
Windows Server 2003 /
(Multipath I/O) , SAN.
,
. -
-
.

(Volume Shadow Copy VSS)
. -
,

1046
IX
. , -
, ,
-
. ,
Microsoft SQL 2000,
, , -
,
.

, -
, SAN. . 31.1 -
-
, .
31.1.

Windows Server 2003 2, 3, 4, 5, 6, 7 SCSI, (-
Enterprise Server 8 ).
Windows Server 2003 2, 3, 4, 5, 6, 7 SCSI, (-
DataCenter Edition 8 ).
64- Windows 2, 3, 4, 5, 6, 7 .
Server 2003 Enterprise Server 8
64- Windows 2, 3, 4, 5, 6, 7 .
Server 2003 DataCenter Edition 8

.

(Cluster Administrator).
-
, Cluster.exe. -
, Cluster.exe -
. Cluster.exe -
, ,
(Help and Support)
cluster.exe. cluster.exe /?. -
Cluster.exe , -
.
, -
: (-

1047
31
), ( ) -
, ( ). , -
, -
(Mixed Network).
-
,
.
, MNS.

:
1. .
2. IP-
.
3. , -
( ).
.
4. , -
, , Cluster Private Nic ( NIC ) Cluster
Mix Nic ( NIC ) , . 31.3.
5. , , -
. ,
. -

- , ,
(Add Computer Accounts to the Domain).
6.
.
. 31.3.

1048
IX

-
. .
.
.
1. .
2. -
.
3. NIC -
.
4. ,
.
5. . , -
,
. , 6 1 -
7 2.
6. .
7. ,
.
8. , -
IP-.
, -
, IP- .
, DNS, , BIOS (,
Microsoft) WINS . , DNS Advanced
TCP/IP Settings ( TCP/IP) Regis-
ter This Connections Address ( ), -
. 31.4.
, -
, TCP/IP .
9. , -
.
10. Start () Administrative ToolsCluster Administrator
( ), . 31.5.
11.
Create New Cluster ( ) .
12. (New Server Cluster
Wizard) Next ().
13. (Domain) .
14. Cluster Name ( ) -
Next.

1049
31
15. Next.
, -
. -
, . 31.6.
, ,
.
. 31.4. DNS TCP/IP
. 31.5.

1050
IX
. 31.6.
16. , -
Re-analyze ( ) Next.
17. IP- Next.
18.
. Next.

-
, -
, :
.
19. Proposed Cluster Configuration

( ) -
-
, Quorum
(), . 31.7.
MNS
Quorum Proposed . 31.7.
Cluster Configuration,
Majority Node Set ( ) .
SAN, -

NTFS. , -
.

, Local Quorum ( )
.
20. Next .

1051
31
21. Next, Finish (-

),
.
Cluster.exe.
cluster1 Server1
.
clustersvc@companyabc.com, IP- 192.168.100.10 C.
, Cluster Mix Nic.
:
Cluster.exe /CLUSTER:cluster1 /CREATE /NODE:server1
/USER:clustersvc@companyabc.com
/PASSWORD:password /IPADDRESS:192.168.100.10,255.255.255.0, "Cluster Mix Nic"
<Enter>.

. -
.
:
1.
.
2. Start Administrative Tools Cluster Administrator.
3. Add
Nodes to a Cluster ( )
Cluster Name ( ). .
4. (Add Nodes Wizard)
Next.
5. Add ().
6. , -
Selected Computer ( ).
Next. -
.
7. ,
Next.
8. Next.
9. Proposed Cluster Configuration (-
) Next, -
.
10. Next,
Finish, .
11. File () Close () -
.

1052
IX

. Microsoft -
: ,
.

, . 31.8, -
. -
, ,
,
. ()
.
. 31.8.
Cluster.exe
Cluster.exe , -
-
. , -
. , -

.

(Cluster Automation Server) -

(ISVs)

1053
31
.
Microsoft
(Component Object Model COM),
.

-
.
,

. ;
. -
-
, .

-
.
, :
1. Start Administrative ToolsCluster Administrator.
2. Open
Connection to Cluster ( ) -
Cluster Name ( ). . -
,
(.), ,
.
3.
Properties ().
4. Failover ( ) -
, .
( . 31.9
10) , Period (-
), .
5. Next, Finish,
.
6. File Close, -
.

.
, .

1054
IX
. 31.9.

2. Open
Connection to Cluster Cluster Name.
.
3. -
Properties.
4. General Modify (), -
. ( ),
,
General .
5. Failback ( ),
Allow Failback ( )
.
6. Next, Finish, -
.
7. File Close
.

-
, ,
, -
, , . 31.10.

1055
31
. 31.10. -

,
-
, .
, ,
.
, ,
.
, -
.

Clusdiag.msi,
Windows Server 2003 Resource Kit. -
, , -
.

-
:
1. ,

Take Offline ( ).

1056
IX
2.
Move Group ( ). -
, , -
.
3.
Bring Online ( ).
4. , 2.
13 .
5. -
.

.
, -
.
.
1. .
2. , -
, Properties.
3. Advanced () , -
, -
.
4. .
5. ,
, Initiate
Failure ( ).
6. , ,
.
7. -
.

:
1.
.
2. Start Control Panel.
3. Network Connections ( ).
4. -
Disable
().

1057
31
5. .
7. -
, File Open Connection (-
).
8. Active () Open Connection to
Cluster, Cluster or Server Name (
) (.) , .
9. , ,
.
10.
.
11. -
.

, . -
, -

. ,
, .

,
, .
1. ,
, .
2. , , -
.
4.
, Cluster Server (
) .
.
5. , -
, .
6. Active Groups ( ).
7. - ,

Move Group. -
, ,
.

1058
IX
8. 7 .
9.
Pause Node ( ).
10. .
, , -
. , -
.
.

-
. -
.
1. , ,
.
3.
, Cluster Server
. -
.
4. , , -
Resume Node (-
).
5. .
6. Groups ().
7. , -
,
Move Group. ( , -
.)
8. 7 ,
.
.

,
. ,

. , -
.

1059
31

, :
2. Open
Connection to Cluster Cluster Name .
.
3. ,
New (), Group (), . 31.11.
4. , .
5. Next, Finish.
6. File Close, -
.
. 31.11.

.
2. Open
Connection to Cluster Cluster Name .
.
3.
New Resource ( ).
4. .
5. , -
.
6. , ,
Next.

1060
IX
7. , ,
Next.
8. , -
, .
, IP-, -
IP-,
.
9.

.
10. File Close
.

Change Password ( -
). Services () -
.
. -
Active Directory Users and Computers Windows,
.
Cluster.exe
:
Cluster.exe /cluster:_ /changepass:_, _
<Enter>.

, , -

-
,
.
, -
.
, ,
.
- ,
Move Group (-

1061
31
).
, , .

,
.

MNS ,
, .
:
2. Open
Connection to Cluster ( )
, .
3. Active
Groups ( ).
4. - ,
.
5.
Stop Cluster Service ( ).
6.
Evict Node ( ), . 31.12.
. 31.12.
7. , Yes (),
.
8. :
Cluster.exe /cluster:_ node _ /evict

1062
IX
9. <Enter>, .
10. File Close, -
.

-
, -
,
, -
,
. -
32 33. -
.

.
1. (, MNS ) -
:
.
.
, -
.

.
2. , -
1, :
-
: , , -
, , SCSI IRQ. , -
, .
RAID-
: , ,
, ,
LUN.
.
-
Windows Server 2003
(ntbackup.exe).
32 33.

1063
31

. , -
:

-
.

, , ,
.
, -
, ,
.
, -
, MSCS (ClusterRecovery), -
Windows Server 2003 Resource Kit.
, -

.
ASR
, . , -

.

(Automated System Recovery
ASR) : ASR ASR. -
ASR
,
. -
, -
ASR.
,
, -
, .
ASR ( ) -
; : , , -
COM+, -
, ,
.

1064
IX
ASR
Windows Server 2003 Backup.
ASR, -
.
-
- , , -
-
. -
ASR. ,
ASR ,
. , -
C:, D: MS Office,
. -
,
.
Windows Server 2003 Enterprise -
ASR 1,3 .
ASR :
1. -
(, -
, , -
).
2. Start All ProgramsAccessoriesSystem ToolsBackup
( ).
3. , -
. Advanced Mode ( -
), . -
, . 31.13.
), -
.
5. Next.
6. . -
, -
. Next.
7. , ,
. 31.14, .
8. Finish,
.
9.
ASR , -
.
.

1065
31
. 31.13. Windows
. 31.14.
10. ,
ASR. .
11. ASR Close
Backup Progress ( ),
, Report (),
.
ASR ,
, -
. , -
ASR, .
ASR , asr.sif asrpnp.sif, -
ASR .

. -
-
-
. ,

1066
IX
. -
, .

, -

, . -
, ,
COM+ , . -
Active Directory SYSVOL.
-
:
1. -
(, -
, , -
).
2. Start All ProgramsAccessoriesSystem ToolsBackup.
3. , -
. Advanced Mode, -
.
, . 31.13.
4. Backup Wizard (Advanced) ( ), -
.
5. Next.
6. What to Back Up ( ) -
Only Back Up the System State Data ( -
), . 31.15, Next.
. 31.15.

1067
31
7. . -
, -
. Next.
8. , -
.
9. Finish -
.
10. -
, Close Backup Progress.

, -
, . ,
, .
-
.
1. -
(, -
, , -
).
3. , -
. Advanced Mode, -
.
, . 31.13.
4. Backup Wizard (Advanced), -
.
5. Next.
6. What to Back Up Back Up Selected Files,
Drives, or Network Data ( ,
) Next.
7. Items to Back Up ( ), . 31.16,
Desktop \ My Computer ( \ ) -
.
8. . -
, -
. Next.
9. , -
.
10. Finish -
.

1068
IX
11. -
, Close Backup Progress.
. 31.16.

. , .
,
, Backup Selection .
-
; , , ,
. -
, -
,
. -
.
, CLUSTER1 SERVER1 SERVER2
Q F , -
\\cluster1\F$ \\cluster1\Q$.
, SERVER1, -
UNC
\\cluster1\F$ \\cluster1\Q$.
, ,
, , .

,
.

1069
31

CLUSDB. -
CLUSDB
CHKxxx.tmp MSCS .
CLUSDB, :
1. -
(, -
, , -
).
2.
. , ,
, -
.
3. -
, Start All Programs
Administrative ToolsServices ( ).
4. Services Cluster Service ( ) -
.
5. General ()
Startup Type ( ). ,
.
6. , CLUSDB.
7. -
.
8. Start Run.
9. UNC
\\<_>\<__>$. , -
cluster1 Q \\cluster1\Q$.
10. MSCS.
11. View () Details ().
12. CHKxxx.tmp ,
. 31.17.
13.
Copy (). .
14. Start Run.
15. . -
C:\windows\cluster, C , windows
%SystemRoot%.

1070
IX
. 31.17.
16. CLUSDB,
Rename ().
17. CLUSDB.old <Enter>.
, , -
.
18. Edit () Paste (). -
CHKxxx.tmp C:\windows\cluster.
19. CHKxxx.tmp,
Rename.
20. CLUSDB <Enter>.
, , -
.
21. .
22. Start All ProgramsAdministrative ToolsServices.
23. Services Cluster Service .
24. General
(Startup Type) Automatic ().
.
25. Cluster Service -
Start ().
26. -
.

, -
, :
2. , -
. Advanced Mode, -
.
, . 31.13.

1071
31
3. Restore Wizard (Advanced) ( ), -

.
4. Next.
5. What to Restore ( ) -
,
System State ( ), .
31.18. Next.
. 31.18.
6. , -
.
-
1.

, , -
33.
7. Completing the Restore Wizard ( -

) Finish, -
.
8.
, Close.
9. .
10.

.

1072
IX

- , - -
,
.
. -
.

-
, ,
, , ,
.
:
1. .
2. .
4. -
, File Open Connection.
5. Active Open Connection to Cluster.
Cluster or Server name (.)
.
6.

Evict Node.
7.
.

.
8. Windows Server 2003
Enterprise DataCenter.
9.
IP- ,
. -
.
10. , -
.
11. , -
.
12.
.

1073
31

ASR
ASR,
.
1. .
2. -
.
4. -
, File Open Connection.
5. Active Open Connection to Cluster.
Cluster or Server name (.)
.
6. ,
. -
.
7. ASR, ,
, ASR.
ASR ASR
8. - -
.
9. , <F6>,
.
-
10. <F2>, -
.
11. ASR <Enter>.
12. -
, -
. ,
<F3>, <Enter>.
13. , -
-.
14. , <F6>,
.
-
15. <F2>, -
.

1074
IX
16. ASR <Enter>.

17. -
, -
. ASR -
. ASR.
.
18. UNC- -
-
. ASR -
, -
, .
19. , Next. -
ASR.
20. ASR ASR
- , -
.
22. , -
. Advanced Mode, -
.
, . 31.13.
23. Backup Wizard (Advanced) .
24. Next.
25. What to Restore
, -
. Next.
26.
, . -

, 23.

33.
27. Completing the Restore Wizard Finish,

.
, ASR,
.
28.
.
29.
.

1075
31
30. ,
.
31. -
.

, , -
. ,
, -
. , -
. :
, -
, . , Cluster1
Server1 Server2, , -
, -
.
-
, , -
, , -
,
.

, . -
-

ASR, -
, .

.
1. -
(, -
, , -
).
3. , -
. Advanced Mode, -
.
, . 31.13.
4. Restore Wizard (Advanced), -
.

1076
IX
5. Next.
6. What to Restore
, System State, -
. 31.18. Next.
7. -
, . -

, 4.
8. Completing the Restore Wizard Advanced (-
), .
9. Where to Restore ( ) -
Next.
10. ,
. .
11. How to Restore ( ) -
Leave Existing Files (Recommended) ( -
) Next.
12. Advanced Restore Options ( -
) Restore the Cluster Registry to the Quorum Disk and All
Other Nodes ( -
), . 31.19, Next.
. 31.19.
13. , ,

. Yes.
.

1077
31
15. ,
Close.
16. .
17. -
-
.
18.
.

,
.
, -
, , , .
, :
1. , , -
.
2.
, .
, , -
.
, -
.
,
Windows Server 2003 Recover from a Corrupted
Quorum Log or Quorum Disk (
).
, ,
.
1. .
2. ASR,

ASR. , -
.
3.
.
4. ASR -
, -
.

1078
IX

Microsoft . -
Windows Server 2003 Windows NT 4.0 -
, Windows 2000
(rolling upgrade). -
, ,
.

, , IIS, FTP,
DHCP, WINS, SMTP NNTP. -
, ,
Windows Server 2003 resource behavior during rolling upgrades
( ) last node rolling upgrades
( ).

-
, -
.
(inplace upgrade). -
-
. -
, ,
.

, , -
. ,
-
.

, -
, ,
. -
, , -
, . -
. -
.

, .

1079
31

NLB-
(Network Load Balancing Manager),
Windows Server 2003. NLB- -

NLB.exe. NLB-,
,
, . ,
Web- TCP- 80, -
TCP- 3389.
NLB
-

. NLB
, , -
, . ,
, -
,
, ,
, .
, NLB- Web-, -
, -
, NLB-. , -
NLB- Windows Server
2003, VPN, Internet (Internet Security and
Acceleration) .
NLB ,

,
. -
, . -
, cookie- -
, -
. ,
, , -
,
. , -
.

1080
IX

NLB- -
. ( ) ,
. Port Rules Filtering (-
)
. IP-
, ,
.
NLB- IP-, -
. ,
, , -
.
TCP UDP,
.
,
IP- , ,
, , -
, ,
. , -
IP- , -
.

NLB
. , -
.
: (Single Host), (Disable Port
Range) (Multiple Host).

(Single Host) -
. -
Web- IIS, SSL (Secure Sock-
ets Layer ) Web-. -
, TCP- 443 ( SSL)
, .

(Disable Port Range)
, , -
.
, -
.

1081
31

(Multiple Host) , ,
, , , .
. -
,
.
:
None (). -
. -
, .
Web- -
FTP-, .
Class C ( C). -
C NLB-. -
, , -
. , -
.
Single (). -
. -
,
. ,
.

NLB- ,
MAC- , -
, . -
MAC-, IP- ,
,
. , -
, .

NLB VLAN, -
VLAN.
VLAN , -
.

: (Unicast) -
(Multicast). -
:
. -
. -

1082
IX
, , -
. -
, Web- , Internet- -
Internet.
NLB
NLB-
.
NLB,
TCP/IP .
-
,
. , -
NLB , , -

TCP/IP -
NLB.exe. , IP- -
IP- ,
IP-.
NLB- -
, NIC
NIC . NIC -
.

-
. NLB -
IP-
. , -
: ,
IP-.
,
, NLB
, .
:
1.
.
2. Start All ProgramsAdministrative ToolsNetwork Load
Balancing Manager ( -
).
3. Cluster () New ().
4. IP- .

1083
31
5. Full
Internet Name ( Internet-).
6. ( NLB -
(Unicast)).
7. NLB-
NLB.exe,
Next.
8. IP-, -
, Next.
9. IP- ;
.
10. -
, .
, -
Next Port Rules ( ). . 31.20 -
NLB-
.
. 31.20.
NLB
11. Connect () Host ()
, , Con-
nect ().
12. Interface Available ( ) NIC, -
IP- , Next.
13. Host Parameters ( ) -
. , -
, 1.

1084
IX
14. NIC ,
, IP- . -
IP-, .
15. , ,
Started (). -
,
Stopped () Suspended (),
.
16. Host Parameters -
Finish, .
17. , -
DNS HOST A .
DNS , .

NLB-
, -
, ,
.
, :
1. , -
) Network
Load Balancing Manager ( ).
3. Run as ( ) -
.
4. Cluster Connect to Existing ( -
).
5. Host IP-
Connect.
6. Clusters () , -
, Finish.
7. -
Add Host to Cluster ( ),
. 31.21.
8. Connect Host , -
, Connect.
9. Interface Available ( ) NIC,
IP- , Next.

1085
31
. 31.21. ,
10. Host Parameters .
,
, 1.
11. NIC ,
, IP- . -
IP-, .
12. , -
, Started.
, -
Stopped Suspended, -
.
13. Host Parameters -
Finish, .
NLB-
NLB
NLB.exe. NLB ,
, -
. -
, -
Robocopy.exe, Windows Server
2003 Resource Kit.

NLB -
, Windows Server 2003 Resource
Kit. Wlbs_hb.dll wlbs_rc.dll.

1086
IX

NLB
NLB
. ASR
,
(-
). NLB -
. , -
-
ASR.
, 32 33.

NLB-
, -
. , , -
(drainstop)
. -
. -
.
,
, .
,
.
1. , -
2. Start All ProgramsAdministrative Tools -
Network Load Balancing Manager.
3. Run as -
.
4. Cluster Connect to Existing.
5. Host IP-
Connect.
6. Clusters , , -
Finish.
7. ,
. , -
,
Control HostDrainstop ( ),
. 31.22.

1087
31
. 31.22.
8. , -
,
. -
Host Status ( ).
9. , ,
, , .
10. . -
.
11. , NLB

Start. , -
Initial Host State ( ) -
. , -
,
.
12.
NLB .
13. File Close, -
.
NLB-
, 110
, :
1.
Delete Host ( ).
2. , .
Yes .

1088
IX

, , -
. -
, ,
Delete Cluster ( ),
. 31.23.
. 31.23.

. -
-
, -
.

-
.
.
RAID.
MSCS, NLB, Micro-
soft -
.

1089
31
, -
. -
, .
, , -
. - -
, .
NLB
TCP/IP, , Web-, VPN-
.

, .

BIOS , Power
.
, -
.
MNS
.
, Microsoft, -

Windows Server 2003; -
.
:
( ),
( ) ,
( ).
, -
, -
.
.

Active Directory Users and Computers Windows,
.
MNS -
.
.
ASR
, -
.

1090
IX
, ,
.
, IP-
, ,
.
NLB ,
Robocopy.exe, Windows Server 2003 Resource Kit
Application Center.

...

:

Windows Server 2003

Windows Server 2003

Windows Server 2003
Backup (ntbackup.exe)
Remote Storage

Windows Server 2003

Remote Storage

Windows Server 2003

1092
IX

, , ,
, Web- .
, , -
, IT-
, , -
, , , -
.
,
,
.
, . -
: -
? ? -
:
? , :
, .

. , ,
,
.
, , -
. -
,
.
, -
, -
. ,

. -
, .
, , -
.

. -
, , ,
Windows Server 2003
1093
32
-
. , , -
.
.

,
. -
, , , -
. -
, , , -
. ,
-
.
26.

.
,
- . 2001 -
, (), -
, -
,
. , -
.

, -
Internet , -
, , . -
, ,
Internet,
. -
, , -
.

, -
, , -, . -
, ,
, , , ,
, . -
, -
.

1094
IX

. Win-
dows Server 2003 ,
, .
Windows Server 2003 : , -
, ,
.
, , , ,

,
.

RAID
, ,
.

. (ACL) ,
, - -
. , , -
, ,

.
:
,
. -
, -
, -
, . -
,
-, . -
, - ,
, , -
. ,
-, .

-
, , , -
. -
Windows Server 2003
1095
32
, -
.
, , IT-
.

-
, -
. -
,
. Windows Server 2003 Active Directory
-
(Flexible Single Master Operations FSMO). -
Active Directory -
. FSMO 7.

,
, ,
, .
-
, , -
.
, , Web-,
, ,
. , ,
-
.
, ,
Web- . ,
, -
. ,
, .
, ,
, - . ,
.
, -
.

, .

1096
IX
,
,
.
CAD/CAM, -
, , .
,
, -
(). -
-
,
. , -
-
.
-
, -
IT- .
-
IT-; -
. IT- -
, ,
, .
-
IT- ,
. , , -
, -
, (Service Level
Agreement SLA), ,
. ,
. ,
, -
,
, , , -
.
- : -
, .
, , -
, . , -
, -
Windows Server 2003
1097
32
, . -
, -
.

, .
, , -
, IT-
, . , , -
,
IT-, .

, , ,

-
. -
,
, . -

.

Windows Server 2003 24.

-
, .
,
, ,
. -
,
,

. -
, .

. -
, . ,
,
,
. ,

1098
IX
IT- ,
, -
.

-
, .
(Systems Management Server SMS) Microsoft, -
-
.
.
, -

.

.
.
WAN
(Wide Area Network WAN) -
, , IT-
.
, , , A,
B.
WAN, , ISP, -
ISP .

WAN.
,

, -
, -
. ,
.

,
, .
,
, -
.
Windows Server 2003
1099
32

,
, . -
-
, ,
. 33.

, -
. -
, ,
. , -
,
, -
, -
. -
, -
, ,
, -
. , -
, , -
.

-
, ,
, . -
IT-,
, ,
.

, -
, -
;
. -
-
, ,
.
, .

1100
IX
IT-
,
. , -
, ,
.

.
IT- , -
, -
.
,

IT-.

.
,
, , , , -
, ,
. -
,
-
, IT-.

.
,
.
, -
. , -
-

.
Windows Server 2003
1101
32

(Service Level Agreement SLA)
.
. , SLA ,
FP01
. -
-
, SLA . -
, ,
, SLA.
SLA, IT-, -
, ,
. SLA , -
. ,
, . SLA ,
-
.
, -
, , -
, -
, .
SLA, .
SLA
SLA , - IT- -
, -

. SLA -
, IT- , SLA -

(, ) .
,

. IT-
, -
, , -
. ;
-
, -
.
.

1102
IX
Windows Server 2003

Windows RAID 1 -
, ,

,
boot.ini, , -
. , -
, boot.ini
. boot.ini -
(secondary plex):
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="C: Windows Server 2003,
Enterprise" /fastdetect
multi(0)disk(0)rdisk(1)partition(1)\WINDOWS="Boot Mirror C: - secondary plex"
boot.ini Windows
Server 2003, RAID 1 .
, -

.
, -
, .
. ,
, -
boot.ini, NTLDR NTDETET. BIOS -
, -
, .

Windows Server 2003
,
-
. -

.
-
.
.
Windows Server 2003
1103
32

. -
,
, . -
, , -
. ,
. -
, -
24 .
,
.
- 15 .
,
Web- FTP-, .

-
, -
.

,
,
. -
,
. ,
, , .
,
Web-, . -
.
, .

, -
.

Windows Server 2003
Windows Server 2003
,
-

1104
IX
. -
.
Windows
Server 2003 Backup (ntbackup.exe) .

Windows Server 2003 , , -
, COM+. -
,
. -
.
, -
. -
.
Internet (IIS), -
, , -
.
, ,
. -
. -
33.
,
, .

, -
.

.
-
. Restore () , Active Directory
. -
, Restore, ,

. ,
, .
Restore -
. , ,
ntdsutil.exe, . 32.1. -
. 32.1
dc1.companyabc.com.
Windows Server 2003
1105
32

ntdsutil.exe

Windows Server 2003
-
,
. Windows Server 2003 Backup
.

. , ,
(Remote Storage)
, .
Remote Storage , -
Windows Server 2003 Backup,
Remote Storage , -
.

(ntbackup.exe)
Windows, ntbackup.exe, -
,
. -
, , -
, , , -
, .
Windows Backup
(ntbackup.exe).

1106
IX
ntbackup.exe -

. -

, .
,

ASR .
Remote Storage
Remote Storage ( ) Windows Server 2003
. -

,
. -

, (junction point).
-
, .
- ,
,
;
.

Windows Server 2003 Backup; -
Remote Storage , -
. Remote Storage -
Remote Storage.

(Volume Shadow Copy VSS)
.
,
-

. -
, .
, -
, , ,
. -
. -
, . -
Windows Server 2003
1107
32
Windows Server 2003

.
-
.

Windows
. -
SAN NAS ,
. , -
-
. Windows Server 2003 (Virtual Disk Service
VDS) , .
VDS
. , ,

.
VDS -
, ,
. ,
,
, .

VDS ,
. , ,
.
-
.
Windows Server 2003

VDS; VDS .
VDS LUN.

Windows Server 2003
Backup (ntbackup.exe)
,
, Win-
dows Server 2003 Backup. -
, ntbackup.exe.

1108
IX

Microsoft, Windows Server 2003,
, -
-
.
,
. -
,
.

Windows -
: .
, :
1. :
.
2. , -
.
3. , , -
.
4. , .
, , , -
-
, .
, -

. , -
Windows Server 2003 Backup, .

-
. ;
; -
: , , -

, .
:
1. Start () All ProgramsAccessoriesSystem Tools
Backup ( ).
Windows Server 2003
1109
32
2. , -
. ,
Advanced Mode ( ).
3. Backup Wizard (Advanced) ( ), -
.
4. Next ().
5. What to Back Up ( ) Back Up
Selected Files, Drives, or Network Data ( ,
) Next.
6. Items to Back Up ( ) Desktop\
My Computer ( \ )
, . 32.2. -
Next.
. 32.2.
7. .
, ,
. Next.
8. , ,
.
9. ,
.
10. Advanced () Completing the
Backup Wizard ( ),
.
11. , ,
.
,
Next.

1110
IX
12. , ,
Next. Disabling Volume Shadow
Copy ( ),
, .
13. Media Overwrite ( )
Next.
14. When to Back Up ( ) -
. -
Now (), 18.
15. , Set Schedule
( ).
16. Schedule Job ( )
, , . 32.3, -
. Settings () -
.
. 32.3.
.
17. Set Account Information ( )
, -
, .
18. When to Back Up, Next.
19. Finish (),
.
20. -
, Close
() Backup Progress ( ).
Windows Server 2003
1111
32

(Automated System Recovery ASR)
,
. ASR
,
. ASR ,
,
ASR. ASR , ,
.
ASR, -
: ,
. , ASR
, , . -
, C:, MS Office
D:, , -
D:. -
, -
ASR.
Windows Server 2003 Enterprise -
ASR 1,3 45 .
ASR -

. ASR ,
.
, -
ASR , -
.
ASR
ASR -

ASR :
1. -
(, ,
).
3. , -
. ,
Advanced Mode.
), -
.
5. Next.

1112
IX
6. .
, -
. Next.
7. , -
, . Next.
8. ,
.
9. Finish,
.
10.
. -
.
11.
ASR. .
12. ASR Close
Backup Progress, -
, Report ()
.

, ASR, .
ASR asr.sif asrpnp.sif -
, -
ASR .
ASR
ASR, -
, ASR , -
, . ,
ASR -
, .
60 , -
Active Directory.
ASR . -
ASR 1,35 . -
,
.
Remote Storage
, Remote Storage Win-
dows Server 2003, -
NTFS- . Remote Storage ,
-
Windows Server 2003
1113
32
-
. Remote Storage -
, (junction point). -
, -
,
. Remote Storage
.
, -
Remote Storage -
,
,
. Remote Storage -
30.
Remote Storage
NTBackup -
, , Remote
Storage , . ,
, -
.
, -
. -
, -
, -
.
Remote Storage, , -
, Remote Storage.
Remote Storage, -
:
1. -
(, ,
).
( ).
3. Remote
Storage Properties ().
4. Media Copies ( ).
5. Number of Media Copy Sets ( ) -
0, 1 2. , , -
.
6. , , Remote
Storage .

1114
IX

Windows Server 2003
(Volume Shadow Copy Service VSS), -
, , -
. Win-
dows Server 2003, VSS; , -
,
. , VSS
, -
.

. , -
, -
. -
, , . -
, -
NTFS.
:
1. -
.
nagement ( ).
3. Computer Management (local)
( ), .
4. Storage ().
All Tasks ( ) Configure
Shadow Copies ( ).
7. Shadow Copies ( ) , -
, Settings
().
8. Settings .
.
9. ,
.
Windows Server 2003
1115
32
10. :
07:00 00:00. ,
Schedule () .
11. ,
, Shadow Copies.
12.
;
, Create Now ( ).
13. ,
Create Now.
14. , -
Shadow Copies,
.

, -
.
. ,
, -
, , .
, -
, .
.
. , , -
.
-
. -
-
Windows Server 2003 Backup. -
,
.
,
(File Protection) Windows
.

vssadmin.exe
-
vssadmin.exe. -

1116
IX
, . -
vssadmin.exe , -
. , -
vssadmin.exe
00:00.
vssadmin.exe , -
.
1. -
.
2. Start Run ().
3. cmd.exe , .
4. vssadmin.exe delete shadows /For=C: /Oldest /Quiet -
<Enter>, C:.
5. exit <Enter>, ,
.

, , 4, <Enter>. -
.bat .cmd. , , -
, Scheduled Tasks ( ) -
.

Windows Server 2003
, , -
. , -
,
, -
,
. , -
/,
.

( RAID-)
, ,
.
, , -
RAID 5 , -
. -
, -
Windows Server 2003
1117
32
,
.
-
.

Windows Server 2003
(Certificate Authority CA). CA
, , -
, ,
.
CA , -
CA. -
, , ,
.
-
. ,
.
:
CA, MMC Certificate
Authority ( )
Certutil.exe. -
, -
.
, -
-
.

, :
1. -
.
2. Windows C: CaBackup.
3. Start All ProgramsAdministrative ToolsCertification
Authority ( ).
4. Certification Authority CA.
5. Action ()
All TasksBackUp CA ( CA).
6.
(Certification Authority Backup Wizard) Next.
7. Items to Back Up ( )
Private Key and CA Certificate ( CA)
Certificate Database and Certificate Database Log (
), . 32.4.

1118
IX
. 32.4. -

8. , CA. -
, .
Next.
9. CA
. , -
Next.

CA CA -
, 9. , ,
.
10. Finish, CA.

(Domain Name Service DNS) -
-
. DNS, Windows Server 2003,
, %systemroot%\DNS\Backup.
DNS
. DNS -
33, , DNS.

DNS/Backup AD- . -
AD- ,
AD, DNS .
Windows Server 2003
1119
32
Internet- Windows
Internet- Windows (Windows Internet Naming Service WINS) -
, NetBIOS IP-
. NetBIOS , ,
, .
WINS -
WINS -
WINS.
WINS
, -
. WINS , -
WINS , ,
WINS . , -
, -
WINS , , -
. - ,
NetBIOS, .
WINS,
:
1. WINS -
.
2. Start All ProgramsAdministrative ToolsWINS (
WINS).
3. WINS ,
WINS Add
Server ( ).
4. NetBIOS
WINS .
5. WINS.
6. WINS
Properties.
7. General () , -
WINS. , -
WINS , -
. 32.5.
8. , WINS.
9. WINS -
Back Up Database ( -
).
10. Browse for Folder ( ), -
, WINS, ,
.

1120
IX
11. -
. , , -
WINS WINS.
12. -
, , -
, .
.
. 32.5. -
WINS

(Dynamic Host Con-
figuration Protocol DHCP) IP-
. DHCP IP,
IP-, , , DNS-, WINS-
RIS-, TFTP- . -
IP.
IP- DHCP. -
IP-.
DHCP ,
DHCP.
DHCP , -
.
1. DHCP -
.
Windows Server 2003
1121
32
2. Start All ProgramsAdministrative ToolsDHCP (

DHCP).
3. DHCP , -
DHCP
Add Server.
4. DHCP
.
5. DHCP
Properties.
6. Advanced ().
7. Backup Path ( )
DHCP. , -
. ,
.
8. DHCP
Backup ( ).
9. , DHCP Backup Location ( -
DHCP) DHCP Server Advanced property (-
DHCP).
10. .
. -
DHCP .

(Distributed File System DFS)
-
, .
DFS DFS,
. DFS Active Directory -
DFS, , . -
DFS,
DFS. DFS
DFS. DFS -
. -
DFS 30.
DFS, -
, , -
Dfscmd.exe. -
DFS. ,
DFS
, .

1122
IX
, DFS, -
.
1. DFS,
DFS.
2. Start Run, cmd.exe
<Enter>, .
3. , ,
DFS \\Companyabc.com\Apps, Dfscmd.exe
/View \\Companyabc.com\Apps /Batchrestore > DFSrestore.bat
<Enter>. , -

DFS.

Dfscmd.exe ,
DFS,
DFS
DFS, . -
DFS, Active Directory, -
.
Internet
Internet (Internet Information Services IIS) -
Web- FTP- Windows Server 2003.
Windows Server 2003. IIS -
Web- FTP- IIS. IIS ,
, IIS,
IIS. -
IIS IIS
, -
IIS .
IIS IIS,
:
1. IIS -
.
2. Start All ProgramsAdministrative ToolsInternet Infor-
mation Services (IIS) Manager ( -
IIS).
3. IIS ,
Internet Information Services ( Internet)
Connect ().
4. IIS
.
Windows Server 2003
1123
32
5. IIS
All TasksBackup/Restore Configuration (
/ ).
6. Configuration Backup/Restore (/ -
)
IIS. Create Backup ( ).
7. Encrypt
Backup Using Password ( ).
, ,
. 32.6.
8. Configuration
Backup/Restore. Close IIS.
. 32.6.
IIS
- IIS,
. -
,
. IIS ,
IIS, All
Tasks ( ), Save Configuration to Disk (
).
, IIS.

Remote Storage
Remote Storage -
Remote Storage.
Remote Storage, -
.
Remote Storage ,
,
, , :
%systemroot%\System32\Ntmsdata
%systemroot%\System32\Remotestorage

1124
IX
,
Remote Storage ,
.

Remote Storage -
.

Remote Storage Removable Storage ( -
) , . Remote Storage -
. Removable Storage -
.
Removable
Storage, :
%systemroot%\System32\Ntmsdata

Remote Storage
Remote Storage Windows Server 2003
Backup Removable Storage .
Removable Storage (-
),
(Computer Management Administrative Tools). -
, -
, -
.

,
. , , -
. ,
-
.

, -
, -
Windows Server 2003
1125
32

, .

,
. , -
. ,
.

,

, . ,
Windows Server
2003,
.

,

,
. Windows Server 2003 ,
.

Windows Server 2003
.
, -
(Safe) . -
,
.
Windows :
(Emergency Management Services).
,
,
.

(Recovery Console)
, . -

1126
IX
,
,
:
1. -
.
2. - Windows Server
2003.
3. Start Run, cmd.exe -
, .
4. , -
-.
5. I386.
6. winnt32.exe /cmdcons <Enter>. -
, . 32.7.
. 32.7.
7. Yes (), -
. .
boot.ini -
.

, -
. (,
COM-)
.
, -
, -
.
-
, . -
Windows Server 2003
1127
32
, BIOS
(Serial Port Console Redirection SPCR). -
SPCR,
. -
, -

-
,
ntbackup.exe -

, -
, , ,
.
, -
, .
, ,
, -
, ,
.
.
, -
.

, , -
.
ASR , , -
. , -
ASR ,
ASR .
ASR 60
, ,
Active Directory.
. ,
,
, , .

1128
IX

, , .

.
AD- .
, -
.
Remote Storage -
.

33
...

Windows Server 2003

Windows Server 2003

Internet

Windows Server 2003
Active Directory

Remote
Storage
99,999%
Windows Server 2003

1130
IX
,
. -
,
, ,
, . -
, 32,
.

32,
,
.
Windows Server
2003 / , -
. -
,
-
. , .
, - -
, . -
Windows Server 2003 24.

,
. , -
. -
, , -
(Service Level Agreement SLA),
.
, ,
, . ,
,
, ,
, . -
IT-, -
, -
. ,
, , ,
, -
.

1131
33

-

, -
, . -
,
,
. , -
,
,
.
-
, , -
, , -
, .
, -
.
-
,
; -
, .

,
, ,
, , .

, , , -
.

, ,
.
-
, .

. -
Remote Assis-
tance -
.

1132
IX

, -
,
. -
, ;
.

, -
. -
, . ,
, : -
. , / -
, . -
, ,
, -
.

, , -
. , -
, , -
, , ,
DNS- . DNS-
, , DNS-,

DNS- .

. Windows Server
2003, -
Windows Server 2003, Services () Administrative
Tools ( ) -
, . 33.1 DNS-

-
, , ,

.

1133
33
. 33.1. DNS-

. -,

, -
. , -
( ), ( ), -
.
, ,
, .

, , ,
, . -
, , , , -
-.
32
, -
, .
,
, -
, , -
-
.

1134
IX

Companyabc.com ,
- ( -).
, (
). - (VPN)
,
. Companyabc.com -
, VPN
. , - -
, -
VPN , .
, - , -
, , ,
, . -
, , , VPN, -
, -
.
;
, .

,
. Company-
abc.com -
VPN . ,
, ,
.

. -

.
, -
, ,
.
DNS DNS-, -
Internet- (ISP) ,
DNS-,
.
, DNS
, ,
.

1135
33
VPN , DNS-
(Time to Live
TTL), DNS -
Internet. TTL
Microsoft Windows Server 2003 .
, -
Internet.
.
(),
. -
. -
, . , -
;
,
Windows .
,
, , . -
.
-
, -
. , -
, -
, .

,
, . -
, Exchange 2003, ,
Active Directory, DNS-.
Company-
abc.com -,
.
.
, -
:
DNS-, VPN .
DNS-.
VPN .
-
.
, -
.

1136
IX

-
-
, . -
,
, . -
-
, -
. , -
.
, .

?
?
, -
? ,
-
?
,
. , -
.

, -
, . ,
, , -
. , Companyabc.com,
, -
. , ,
, -
.
-
.
ISP, -
, .
-
, ISP, -
, .

1137
33

, , ,
.
, ,
-
, Microsoft Office Internet Explorer. -
. -
-
, .

, , -
. ,
, ,
. -
, -
-
, .
RAID-

Windows RAID 1 ( )
RAID 5 ( ) .
RAID 5 , -
RAID 0/1 ( -
).
RAID- ,
. -
RAID- .

.
Windows-,
. , Windows-
RAID- .
RAID- , -
.

RAID-
(hot spare disk).
. RAID-

. .

1138
IX

. , -

RAID 1 RAID 5. -
(RAID 1) , -
, , boot.ini,
. RAID 1 -
diskpart.exe,
boot.ini.
RAID 1 -
, .

. -
, , , -
. -
, Windows
Server 2003 -
, , -
.
,
. -
Windows Server
2003 32.

, .
, -
.
, .
.
, .
, -
.

,

1139
33
. -
, -
.
. -
, <F8>
.
, -
. .
Safe Mode ( ).

.
-
: , -
.
Safe Mode with Networking ( ). -
, .
.
Safe Mode with Command Prompt ( ).
;
Windows Explorer.
Enable Boot Logging ( ).
, , -
, ntbtlog.txt,
%systemroot%.
c:\Windows\ntbtlog.txt. ,
-
, -
.
Enable VGA Mode ( VGA).
, .
, ,
.
Last Known Good Configuration ( ).
,
,
.
Directory Services Restore Mode ( ).
-
Debugging Mode ( ).

.

1140
IX
, . -
.
Start Windows Normally ( Windows). -
, .
Reboot (). .
Return to OS Choices Menu ( ). -
,
.

-
. -
, , -
. -
, .
,
, -
, type. -
C:\Windows\ntbtlog.txt -
, -
.

, -
, -
, . -
,
Microsoft, ,
, . , -
,

- ,

, . ,
, ,
:

1141
33

?
- ,
, ,
?
,
, ?
- .
, ,
, -
. ,
, -
,
. , Exchange 2003
/disasterrecovery -
, -
, .

-
.
,
, .

-
.
.
, ,
.
,
, .
1. -
, , -
.
, , Windows Server 2003 Enterprise Standard Server.
2. , -
.
3. -
.
4. -
-
.

1142
IX
, -
,
,
. -
. -
, .
5.
,
.
6. , -
ADUC,
. , -
.
7. Windows Server 2003, -
.
8. Microsoft,
, -
.
9.
.
10. , -
.

-
, (Certification Authority CA)
, .

, -
. -
,
(Automated System Recovery ASR)
, , . -
ASR ,
.
-
.
, .
1. .
2. -
, ,

1143
33
. -
, , Windows Server 2003 Enterprise Standard Server.
3. , -
.

, -
(Security Identifier SID). -
SID ,
.
4. -
.
5. -

.
, -
, ,
.
6.
, -
.
7. ,
.
( ). -
.
-
; -
.

:
1. Start () All ProgramsAccessoriesSystem Tools
Backup ( -
).
2. ,
. , -
Advanced Mode ( ).
3. Restore Wizard (Advanced) ( ), -
.
4. Next
().

1144
IX
5. What to Restore ( ) -
, -
System State ( ). Next.
6.
, . -
1
.
7. Completing the Restore Wizard ( -
) Finish (), .
8. -
, Close () Restore Progress
( ).
9. .
10.
/ .
11. -
.

ASR
-
, ASR -
ASR. ASR
, . ,
ASR , -
.
, ,
. , -
.

ASR , -
, , -
. ASR .
ASR, .
1. ASR, ,
, ASR. -
ASR ASR
- -
-.

1145
33
3. , <F6>, -
( ).
-
4. <F2>, -
.
5. ASR <Enter>.
,
; ASR .
6. -
, -
. -
, , -
ASR
. ,
ASR . -
,
UNC .
7. , Next,
Finish, ASR.
8. ASR -
, .
10. ,
. , -
Advanced Mode.
.
12. Next.
13. What to Restore
,
. Next.
. ,
ASR, -
.
15. .
16. -
.
17. ,
.

1146
IX

Windows Server 2003
ASR, , boot.ini . -
-
, . -

. boot.ini C:\ -
C:\, , -
boot.ini.

Windows Server 2003
Windows Server 2003
.
-
: Windows Server 2003
, -
.

, ,
-
. -
, . -
, SID -
. CA
, CA
. CA -
,
.

, -
CA. -
, CA -
CA.
CA -
,
, 32. ,
, c:\CaBackUp CA.

1147
33
CA
CA
CA CA,
:
1. -
.
2. Start All ProgramsAdministrative ToolsCertification Au-
thority ( ).
3. CA.
4. Action () All TasksRestore CA (
CA).
5. ,
.
, .
6. (Certifi-
cation Authority Restore Wizard) Next.
7. Items to Restore ( ) -
Private Key ( ) CA Certificate ( CA),
Next.
8. , -
CA.
9. Completing the Certification Authority Restore Wizard (
) Finish,

.
10. Certifi-
cation Authority ( )
Properties ().
11. General () CA ,
. , -
CA, .
CA
CA , CA,
. -
-
. ,
, . -
, -
, . , -
, , , ,
. ,

1148
IX
-
. -
CA .
CA , -
.
1. -
.
2. Start All ProgramsAdministrative ToolsCertification
Authority.
3. CA.
4. Action All TasksRestore CA.
5. ,
.
, .
6. (Certifi-
cation Authority Restore Wizard) Next.
7. Items to Restore Certificate Database and Certifi-
cate Database Log ( -
) , . 33.2. -
Next.
. 33.2. -

8. Completing the Certification Authority Restore Wizard
Finish,
.
9. -
. -
, No ()
, Yes ().

1149
33
10. Certification Authority ,

- , ,
. ,
CA, Certification Authority .

-
(Dynamic Host Configuration Protocol DHCP)
DHCP 60-
, DHCP
DHCP. DHCP
, , , -
. DHCP. -
,
DHCP -
DHCP. .
DHCP
DHCP.
DHCP
DHCP :
1. ASR,
, DHCP
. DHCP, -
.
2. DHCP, -
c:\Windows\system32\dhcp\backup.
,
, c:\dhcprestore\.
3. DHCP
.
4. Start All ProgramsAdministrative ToolsDHCP
( DHCP).
5. DHCP ,
DHCP Add
Server ( ).
6.
DHCP .
7. ,
. Restore (),
. 33.3.

1150
IX
. 33.3. DHCP
8. Browse for Folder ( ) -
DHCP, .
DHCP
%systemroot%\system32\dhcp\backup .
9. , -
DHCP . -
Yes, DHCP.
10. DHCP. -
, Action Refresh
().
11. DHCP
. -
, , , -
DHCP.
12. DHCP .

DHCPExim -
DHCP .
Web- Microsoft :
http://www.microsoft.com/windows2000/techinfo/reskit/tools/new/dhcpexim-o.asp
Internet- Windows
Internet-
Windows (Windows Internet Name Service WINS),
-

1151
33
WINS %systemroot%\system32\WINS\Backup. -
WINS .
, , -
32.
WINS, :
1. WINS -
.
2. Start All ProgramsAdministrative ToolsWINS (
WINS).
3. WINS ,
WINS Add Server.
4. NetBIOS
WINS .
5. WINS.
6. WINS,
All Tasks ( ), Stop (),
WINS, . 33.4.
. 33.4. WINS
7. -
Restore Database ( -
).
8. Browse for Folder -
WINS, .
9. WINS -
. , WINS.
10. , WINS
.

1152
IX

DNS. AD- -
, -
, . ,
AD- , .
DNS- Active Directory
.
,
,
. DNS Windows
Server 2003 9.

Windows Server 2003
, -

. , -
, -
NTFS , ,
. ,
, .
, -
, .
, , -
. -

, , -
. ,
; -
, .

NTBackup.exe
/ ,
, NTBackup.exe, -
. , D:
SERVER1 Marketing,
:

1153
33
1. SERVER1 , -
. -
.
3. Backup, .
,
Advanced Mode.
.
5. Next.
6. What to Restore
,
D: Marketing, . 33.5.
. 33.5.
7. ,
.
-
4.
.
9. ,
Close Restore Progress.

-
, -
, .

1154
IX
, ,
30. , -
, . ,
D: SERVER1, -
-
\\SERVER1\D$.
-
, . -
Marketing D: SERVER1 -
. , SERVER1 Marketing, -
.
1. SERVER1 ,
Marketing .
2. \\SERVER1\D$.
3. View Previous Versions ( -
), . 33.6. File and Folder Tasks
( ) , .
. 33.6. , -

4. Tools () Folder
Options ( ). Tasks () General ()
Show Common Tasks in Folders ( -
) , -
.
5. View Previous Versions ( -
).
6. Share Properties ( )
Previous Versions ( ).

1155
33
7. Folder Version ( )
View () .
8. Marketing Copy (-
).
9. Shadow Copy Share Properties.
10. \\SERVER1\D$,
Paste (), -
Marketing.
11. , , -
.

Internet
Internet (Internet Information Services IIS) -
,
. IIS,
:
1. IIS
.
2. Start All ProgramsAdministrative ToolsInternet Infor-
mation Services (IIS) Manager ( -
IIS), IIS.
3. Web-.
4. Action All TasksBackup/Restore Configuration ( -
/ ).
5. Configuration Backup/Restore (/ -
) ,
IIS.
Restore (), .
6. ,
, Internet.
Yes, .
7. -
. ,
.
8. Close Configuration Backup/Restore.
9. IIS, ,
, , .
:
%systemroot%\system32\Inetsrv\MetaBack

1156
IX
IIS
Web- FTP- IIS c:\InetPub\. IIS
c:\Windows\system32\LogFiles. Web-,
FTP- IIS, ,
/, Ntbackup.exe. -
, , -

NTBackup.exe .

, -
. -
-
31,

Windows Server 2003
Windows Server 2003
, ,
. :
- -
(FSMO) ?
(GC)
, GC Active Directory?
- Active Directory,
?

Active Directory?
,
. ,
FSMO PDC, ,
FSMO . -
Active Directory,
, -
. -
, ,
ASR ,
, , -
.

1157
33
Active Directory
Active Directory
Active Directory. -
, ,
Active Directory .
Active Directory
Active Directory , Active Di-
rectory. . -
ntds.dit, c:\Windows\NTDS\.
Active Di-
rectory .
,

Active Directory. (nonau-
thoritative restore) Active Directory.
Active Directory -
, -
(authoritative restore) Active Directory.
Active Directory

,
-
.
, -
, -
Active Directory ,
. Active Di-
rectory, , -
, , -
.
Active Directory
Esentutl.exe Ntdsutil.exe.
,
, Active Directory.
Active Directory
Active Directory -
, .
1. ,
, <F8>.

1158
IX
2.
Directory Services Restore Mode ( ),
<Enter>, .

Active Directory.
3.
,
. -
, ,
Ntdsutil.exe; 32.
4. Start Run ().
5. NTBackup.exe .
6. Backup or Restore ( -
) Advanced Mode.
7. Restore and Manage Media (
).
8. , -
. ,
,
.
9. Start
Restore ( ) -
.
10. ,
.
.
11. , -
. ,
.
12. ,
, .

Active Directory, Yes .
13.
.
14. Active Directory,
,
.

1159
33
Active Directory
Active Directory , ,
, ,
Active Directory.
Active Directory,
.
1. ,
, <F8>.
2.
Directory Services Restore Mode, <Enter>, -
. Active Directory
. -
Active Directory.
3.
,
. -
, ,
Ntdsutil.exe; 32.
4. Start Run.
5. NTBackup.exe .
6. Backup or Restore Advanced Mode.
7. Restore and Manage Media.
8. , -
. , -
, -
.
9. Start
Restore .
10. ,
.
.
11. , -
. ,
.
12. ,
, .
Active Direc-
tory, No.
13. Start Run.
14. cmd.exe ,
.
15. ntdsutil.exe <Enter>.

1160
IX
16. Authoritative restore <Enter>.

17. Restore Database <Enter>
. , -
, Active
Directory, / -
,
.
18.
; Yes,
.
19. -
. .
20. ,
Active Directory. -
: -
.
21.
, , ; -
.

Active Directory
Active Directory
Active Directory. ,
, ,
, -
. ,
, ,
(distinguished name DN) . -
Ntdsutil;
LDIF- Active Directory, .
LDIF DN , -
.
,
Khalil, -
Users Companyabc.com.
, :
1. ,
, <F8>.
2.
. Active Directory
. -
Active Directory.

1161
33
3.
,
. -
, ,
Ntdsutil.exe; 32.
4. Start Run.
5. Ntbackup.exe .
6. Backup or Restore Advanced
Mode.
8. , -
. , -
, -
.
9. Start
Restore .
10. ,
.
.
11. , -
. ,
.
12. ,
, .

Active Directory, No.
13. Start Run.
14. cmd.exe ,
.
15. ntdsutil.exe <Enter>.
16. Authoritative restore <Enter>.
17. Restore Object "cn=Khalil,cn=Users,dc=companyabc,dc=com", -
. 33.7, <Enter>.
18. -
. quit
<Enter>. ,
C:.
19. .
20. ,
. .

1162
IX
. 33.7.

,
Active Directory.
Active Directory.
SYSVOL
SYSVOL , , -
/ / .
, -
SYSVOL. SYSVOL -
, . -
SYSVOL,
.
SYSVOL, -
Active Directory ,
SYSVOL.
SYSVOL, -
.
1. ,
, <F8>.
2.
. Active Directory
. -
Active Directory.
3.
,
. -

1163
33
, ,
Ntdsutil.exe; 32.
4. Start Run.
5. Ntbackup.exe .
6. Backup or Restore Advanced
Mode.
8. , -
. , -
, -
.
9. Start
Restore .
10. ,
.
.
11. , -
. Advanced (-
), .
12. When Restoring Replicated Data Sets, Mark the Restored
Data as the Primary Data for All Replicas (

), . 33.8.
. 33.8.

13. , Confirm Restore (-
),
.
14. ,
, . -
Active Di-
rectory, Yes.

1164
IX
15. -
.
16. SYSVOL,
, .

Remote Storage Ntbackup.exe,
, ,
(Removable Storage). -
,
, . ,
, , -
.
, .
,
, -

.
1. , -
.
2.
.
%systemroot%\system32\NTMSData.
, ( ) -
.
3. , -
(Computer Management) Adminis-
trative Tools ().
4. Storage (), -
, Removable Storage and Libraries (-
).
5. Libraries ()
In-
ventory ().
6. ,
. -
, .
7. . -
-
. , DLT, . 33.9.

1165
33
. 33.9. DLT
8. Media Pools ( -
), Backup Media Pool (
). , -
Ntbackup.exe.
9. , -
.
, ,
.
10.
.
11. .

, 59, , Ntbackup.exe -
-
-
.

13. ,
. , -
Advanced Mode.
14. Restore and Manage Media ,
, . -
,
NTMSData .

1166
IX
15. -
, NTMSData, , -
.
16. NTMSData, Restore Files To (-
) Alternate Location ( ). -
. , -
Windows -
.

. -
, ,
c:\RestoredData\.
17. Start Restore .

Confirm Restore ( ) ,
.
18. Restore Progress
.
19. My Computer ( ) Windows -
. ,
Copy.
20. Services (), Removable Storage
( ),
. .
21. Windows,
%systemroot%\system32\NTMSData
.
22. -
Paste, .
23. Services, Removable Storage,
-
. Services.
24. ,
.
25. .

Remote Storage
Remote Storage -
, -
:

1167
33
1. Remote Storage -
.
( ).
3. Remote Storage ,
.
4. , Start All ProgramsAdmi-
nistrative ToolsServices ( ).
5. Services Remote Storage Server (
) Remote Storage Notification ( )
, .
6. Services.
7. Start Run.
8. cmd.exe ,
.
9. %systemroot%\system32\RemoteStorage\Engdb
.
10.
rstore.exe c:\system32\RemoteStorage\engdb.bak
<Enter>. , -
C:.
11.
Services.
12. Remote Storage Server .
13. Services Remote Storage.
14. Remote Storage , -
.
15. Remote Storage ,
.

(reparse point) -
(junction point), -
, . -
,
-
.
.

1168
IX
-
.
(Removable Storage) -
Remote Storage .
Ntbackup.exe, , -
. ,
, , -
.
99,999%
Windows Server 2003
,
, 99,999% .
,
. 99,999% ,
, , , ,
5 .
, -
, , . , -
, , -
,
.
99,999% , Windows Server
2003, -
, , . -
, , -
.

, , -
, . ,
Web Internet-,
, .
, -
VPN ,
DNS.

1169
33
-
. -
, -
, -
. , 32
, ,
-

.
, -
, , ,
.
, -
.
, -
, -
.
DNS DNS-, -
Internet- (ISP), -
DNS-,
.
, , DNS, -
, -
.
, DNS VPN- -

(TTL), DNS -
Internet.
,
.
.
, ,
.

, , , .
.
RAID 1.

1170
IX
,
-
.

.
-
.

c:\RestoredData\, .

,

X
...
34.

35.

1173
34

34
...

Windows Server 2003
,
Windows Server 2003
,
1174
X
, -
.
, , ,
Windows 2000 Windows NT4; ,
Windows, Windows Server 2003 -
.

(Task Manager). -
: , , -
. -
,
, ( )
.
, , -
, -
Windows 2000. -
.
Windows Server 2003
. ,
, . -
, , -
, , .
:

Task Manager ( ).
<Ctrl+Shift+Esc>.
<Ctrl+Alt+Del>, -
Windows Security ( Windows) Task Manager.
, . 34.1.
,
Always On Top ( ) Options
() . , -
, Options Hide When
Minimized ( ).
,
.

1175
34
. 34.1. Windows

Applications (). -
Details (),
, View (), ,
Large Icons ( ) Small Icons ( ).
, -
. , -
, , ,
, .
, End Task ( ) -
. , -
.
Switch To () .

Processes ().
, . -
. -
, , , ,
, ,
.
, -
() ,
, ,
CPU () Mem Usage (). -
,
1176
X
.
,
. , End Process
( ).
C

Process Resource Monitor ( , PMon),
Windows Server 2003 Resource Kit.
-
. PID (
), , , , -
. , View
Columns (), Select Column ( -
). .

Performance () -
. ,
, .
Performance
. View Show Kernel Times
( ). . -
, -
. .
, .
, -
, View CPU History
( ).

Networking () -
, . 34.2.
LAN
, WAN, VPN -
Networking -
. , ,
.

-
. Auto Scale () ,
0 100%. , -
, . -
Options Auto Scale ().

1177
34
. 34.2. Networking Windows

Networking . -
, , -
.
, View
Select Columns ( ). -
: Bytes Throughput ( ), Bytes Sent/Interval
( ), Unicasts Sent and Received ( -
) .
C
, , -
,
, .
6070%, ,
.
5%, , , .

Users () ,
, . Users -
:
User (). , . -
, -
, Options Show Full
Account Name ( ).
ID (). , .
Client Name ( ). -,
( ).
,
1178
X
Status (). : Active ()

Disconnected ().
Session (). .

(Event Viewer) , -
,
, . ,
. 34.3, Windows Server
2003, .

Microsoft (event) -
, .
, ,
Windows.
, , -
, , .

. ,
, .
,
, . , -
, -
.

1179
34

.
, (DNS) (FRS).
, -
, , ,
.
Administrative
Tools (), -
My Computer ( )
Manage (). , -
Microsoft ( Start () Run (),
mmc.exe) eventvwr.msc.

, -
-
. -
, , ,
. -
.

, -
. , -
. -
. ,
.
.
:
Type (). .
. , -
, .
Date (). .
, Date. -
, -
, , , -
.
Time (). .
, .
Source (). : ,
, .
.
,
1180
X
Category (). . -
Security (),
Logon/Logoff (/), System (), Object Access ( -
) .
Event (). (Event
ID) , .
Web- Micro-
soft (http://www.microsoft.com/technet/) , -
.
User (). , -
. ,
.
, , .
Computer (). , -
.
, -
-
( <Enter>). -
, ,
. 34.4.
. 34.4.
: , ,
, . Description ()
URL- Microsoft. -
, , ,
Microsoft Internet-, -

1181
34
. -
. -
, .
. Data
() () .
,
, Words ().
,
View Find ().
, , , ,
, .
, ,
,
.

.
,
Event Viewer (Local) ( ) -
Connect to Another Computer ( -
). Another Computer ( ),
. -
-
. -
,
, Properties ().
General () Using a Low-Speed Connection (-
).

. , .
,
. , -
, View Filter ().
, . 34.5.
C
Event Comb (EventCombMT), Windows Server
2003 Resource Kit,
. , , -
EventID, . -
EventCombMT
Checkrepl.vbs, .
,
1182
X
. 34.5.

. -
, . ,
- -
, . Event
Source ( ) System Properties ( ) -
All () ( ), -
. From () To ()
, .
Restore Defaults
( ), . View All Re-
cords ( ), .

-
. , ,
. ,
, -
-.

.
. -
-
, . -
:

1183
34
- (.csv). -
Excel.
(.txt).
.
(.evt). -
.
.
: , , , , -
, , , . -
Save Log
File As ( ). File Name ( ) -
, -
.csv, .txt .evt, Save ().

,
(Backup Operators).
, (.evt),
. , ,
.
, , -
,
UNC- ( \\_\_\).
, (.csv) -
(.txt), , , Micro-
soft Word Microsoft Excel. ,
, .
C
, -
, -
,
.

. -
. -
, ,
.
-
, Action () Properties (). -
:
Properties, General
, . 34.6.
,
1184
X
. 34.6.
Log Size ( ) -
, -
. :
Overwrite Events as Needed ( ).
Overwrite Events Older Than X Days ( X ).
Do Not Overwrite Events ( ).
Do Not Overwrite Events Windows Server 2003 -
,
, -
. 64 .
64 ,
64 .
,
Clear Log ( )
. -
, Restore Defaults ( -
), .
, -
, Using a Low-Speed Connection.

. -
, , -
WAN-.

1185
34

, . , -
, -
-
(Group Policy Object GPO) Active Directory (AD) , -
,
(, ) AD. -
, , -
, . -
, (-
), , (),
.

, -
, ,
Computer Configuration \ Windows Settings \ Security Settings \ Local Policies \ Audit
Policy , , -
.
- Define These Policy Settings (-
). (
) :
Success ().
Failure ().
No Auditing
( ). , , -
,
. -
, .
, -
, (OU)
(Computer Configuration \ Windows Settings \ Security Settings).
. Registry (),
Add Key ( ). ,
, . -
, GPO,
, Properties,
Edit Security ( ).
,
1186
X
. . -
Properties.
, Define These Policy Setting (-
), .
Edit Security.
. File System
( ), Add File (-
). . -
, GPO, -
, Edit
Security ( ).
,
,
.
Computer Configuration \ Windows Settings \ Security Settings \ Local Policies \ Security
options. -
.

Do Not Overwrite Events. :
STOP: C0000244 {Audit Failed}.
An attempt to generate a security audit failed.
STOP: C0000244 { }.
.

, , -
.

-
-
. , -
, -
,
.
, , -
.

-
. -
.

, , -
, .

1187
34
(System Monitor) -

, . 34.7.
,
, , -
, .
. 34.7. -

. -
, ,
. , - 128 ,
, 128 , ,
, .

: (System Monitor) -
(Performance Logs and Alerts). -
,
.
,

, -
,
. , -
:
,
1188
X
(object). , , -
.
.
,
. , , -
. , Microsoft Exchange,
, Microsoft Exchange.
(counter). .
,
, .
-
.
(instances).
, . ,

.
, .

(Performance console)
Administrative Tools (), Start All Programs
Administrative ToolsPerformance ( -
).
Perfmon.msc. -
. -
: (System Monitor) -
(Performance Logs and Alerts).

, -
, .
,
.

, . 34.8.
, .
. ,
View Current Activity ( )
. View Log Data ( )
.

. -
, . .

(Add), (Delete) (Highlight) . Add

1189
34
Counter ( ) . De-
lete Counter ( ) . Highlight ()
;
. Highlight .
. 34.8.
C
, .
Add Counter , -
. 34.9. ,
. -
-
. .
C
, -
.

, , -
. Add
(), . -
Total .
, - , ,
Explain ().
,
1190
X
. 34.9.

-
. ,

.
, ,
.
,
Clear Display ( ). Freeze Display ( -
) <Ctrl+F> -
. , -
<Ctrl+F> Freeze Display.
Update Data ( ).
-
Cut () Paste (). ,
-
.
, -
.
Properties () : General (), Source
(), Graph () Appearance ( ). Proper-
ties , , -
. -
. , -
HTML-.
, , .

- (.csv) - (.tsv),

Seagate Crystal Reports. : -

1191
34
Crystal Reports. : - -
- -
, , Microsoft Excel Access. Windows Server 2003
SQL, -
, . -
, Excel, ,
. .csv,
Microsoft Excel.

(Performance Logs and
Alerts) , : -
(Counter log) (Trace log). -

- .
, .
, Windows.
.
, , -
, -
Run As ( ). -
Windows Server 2003
1 . -
.

, -
, .
-
.
. -
. , -
, . -
-
.
. -
.
.
, -
. ,
.
.
, . -
,
1192
X
, , , -
, -
.
( , ),
(NIC),
.
,
, -
.

-
-
.
, :
1. , Start
All ProgramsAdministrative ToolsPerformance.
2. Performance Logs and Alerts (
) Trace logs
( ).
3.
New Log Settings (-
).
4. Name () ,
.
( )
Provider Status ( ),
General. Nonsystem Providers (
), .
Events Logged by System Provider (, -
) ,
.
Log File ( )
: , -
.

, (baseline) ,

.
. -
-
.

1193
34
, -
.
, -
, -
. -
. ,
, -
, .
, , -
, .
. -
, ,
-
.
,
, . -
-
, . -
, -

:
. -
. -
, , , -

.
, ,
.
.

. ,
.
, .
.
, .
,
, , -
, -
,
1194
X
, . ,
, . -
: ,
, DNS, -
.
, , , -
, -
.
. -, -
: , ,
. .
,
.
. -
, .
, , .
, , , ,
, TCP, UDP, NBT, Net-
BIOS NetBEUI. , NTDS Active Directory
LDAP . DNS WINS
, .
. , -
,
.
.
PrintQueue. -
, , .
. , -
Microsoft Exchange Server -
, . ,
, , . -
Exchange Exchange, -
, .
Web-. Web-
Web-
. -
, , .
. Microsoft SQL Server
-
.
,
.
, , , -
.

1195
34
Windows Server 2003

Windows Server 2003 Network
Monitor ( ), -
. , Netmon,
, .

, , EventCombNT
Checkrepl.vbs, Windows Server 2003 Resource Kit -
.
, Link Check Wizard Chknic, -
.

, . , -
, , .
,
. , ,
,
. -
, -
.
Netmon ,
. Netmon, Windows Server
2003, ,
. ,

, -
(Systems Management Server SMS) Microsoft.
Netmon
-
. , -
, , .
.
Netmon , -
, Netmon. -
.
, . -
, , , -
.. , -
, , , -
, , .
,
1196
X
Netmon
Netmon,
. Netmon, :
1. .
2. Add or Remove Programs (
).
Windows), Windows.
4. Management and Monitoring Tools ( -
) Details ().
5. Network Monitor Tools ( ) -
.
6. ,
- Next ().
7. Finish ().
Administrative Tools ()
Network Monitor ( ), . Net-
mon ,
, . -
.
Netmon, . 34.10, -
. : -
, .
. 34.10.

1197
34
Netmon.
. (Total Statis-
tics) ,
. (Session)
. -
(Station Statistics) -
.
: Frames and Bytes Sent and Received (
), Directed Frames Sent ( ), Multicasts Sent (-
), Broadcasts Sent ( -
), ( ), . -

; -
Broadcasts Sent Sort ().
Netmon
, Capture () -
( ).
, Capture .
, Start Capture ( ) (
), <F10>. -
,
.
. ,
, Capture
Stop (), Pause () Display Captured Data (-
). , -
Stop and View ( ).
, File () Save As (-
) .
, Capture Trigger (-
), , . 34.11.
Capture Trigger ( ) Pattern
Match ( ),
. Pat-
tern () : ASCII Hex.
- .
Audible Signal Only ( ), , -
Stop Capture ( ), , -
Execute Command Line ( )
, .

Buffer Space ( ), .
, .

,
1198
X
Buffer Space Then Pattern Match ( , )

.
. 34.11.

. ,
. File CaptureFilter
().

Capture Filter ( ) AND (Pattern Matches)
( ( )),
, .
, , -
. 34.12, AND (Address Pairs)
( ( )) , . -
Address Expression ( ) -
, .
, File Capture
Display Captured Data ( ). -
, . 34.13. ,
, MAC- , MAC- , .

EXCLUDE INCLUDE,
, Capture Filter.
INCLUDE, EXCLUDE, ,
, EXCLUDE. -
, INCLUDE.

1199
34
. 34.12.
. 34.13.
,
Windows Server 2003
Windows Server 2003

TCP/IP .
IT-,
- , .
,
1200
X
TCP/IP
TCP/IP Windows Server
2003. , -
TCP/IP. Windows Server 2003 Microsoft -
TCP/IP ; ,
TCP/IP .
Microsoft (R, S, 4, 6) -
TCP/IP Windows Server 2003,
Windows. .
TCP/IP .
. -
, ,
TCP/IP.
PING
PING Packet Internet Groper (
Internet). PING - - -
Internet (Internet Control Message Protocol ICMP),
. PING
,
? Windows Server 2003 PING ICMP-
. -
, PING.
, PING -
.
PING, -
PING , . 34.14. PING -
. , PING /? PING ( -
). . 34.1 PING.
. 34.14. PING

1201
34
34.1. PING

4 , PING
IPv4.
IPv4. .
6 , PING
IPv6. 4,
IPv6. .
a IP- .
.
f , - Dont
Fragment ( ). IPv4.
i ttl - .
(TTL).
255.
j ,
IP-, .
( -
).
k j, -
( ).
l . 32.
65527.
n . 4.
r .
, -
. 1 9.
R , .
S , -
. 1 4.
S ( IPv6).
t , PING -
.
, <Ctrl+Break>.
PING, <Ctrl+C>.
v TOS (Type of Service TOS)
. 0. TOS -
0 255.
w - - . - -
, Request Timed Out
(- ). - 4 .
IP-
PING.
,
1202
X

, PING
.
PING , -
- .
Tracert
Tracert -
ICMP -
. , ,
TTL 1; TTL ().
ICMP- Time Exceeded ( ), -
.
Time Exceeded TTL -
Tracert. .
, Tracert, -
tracert ( -
) tracert /?. Tracert . 34.2.
34.2. Tracert

4 , tracert.exe
IPv4.
6 , tracert.exe
IPv6.
d IP- -
. Tracert.
h
. 30.
j ,
(loose source route).

.
9 . -
IPv4-.
R IPv6, -
-
.
S . -
IPv6-.

Tracert
. Internet
, Internet , , -
, ,
, , ( )
.

1203
34
Pathping
Pathping , -
PING Tracert ,
. Pathping

. Pathping
, , -
. Pathping -
, , -
.
Pathping,
Pathping /?. Pathping . 34.3.
34.3. Pathping

g .
h
. 30 .
n , -
.
p -
PING. .
q .
3 .
R , -
(Resource Reservation Setup Protocol
RSVP). RSVP

. ,
.
T ,
.
.
Ipconfig
Ipconfig TCP/IP.
, DHCP. -
DHCP , TCP/IP -
DHCP. Ipconfig , IP-,
.
-
.
Ipconfig . 34.4.
,
1204
X
34.4. Ipconfig

/all TCP/IP.
/displaydns DNS.
/flushdns DNS.
.
/registerdns
DNS IP-, -
. -
DNS -
DNS-
.
/release [] DHCP-
DHCP, , -
DHCP. -
DHCP.
, IP- -
.
/renew [] DHCP
( ) ,
.
DHCP.
/setclassid [ID] DHCP -
. -
DHCP , -
(*).
/showclassid DHCP
.

Ipconfig : , DNS-
, IP-, .
Ipconfig
TCP/IP, .
Arp
ARP Address Resolution Protocol .
Arp
ARP, MAC- IP-
. Arp , -
MAC- IP- .
. 34.5 Arp.

1205
34
34.5. Arp

a [Inet] [N ] ARP -
. Arp a
Inet (IP-)
ARP IP-.
d Inet [] IP-
(Inet).
(IP-, ) -
.

Inet (*).
g [Inet] [N ] a.
s Inet Ether [] ARP , -
IP- (Inet)
(Ether). -
ARP
IP-,
().
Netstat
, Netstat (Network Statistics
) ,
IP- -
.
Netstat . 34.6.
34.6. Netstat

a .
an a, -
IP-.
e Ethernet- , -
.
n
.
o TCP-, -
(PID). a, n p.
Windows .
p .
TCP, UDP, TCPv6 UDPv6. s -
TCP, UDP, ICMP, IP, TCPv6, UDPv6, ICMPv6 IPv6.
,
1206
X
. 34.6

s . -
p .
r . -
: , , ,
( ).
[] .
. -
<Ctrl+C>.
NetDiag
(Network Connectivity Tester, NetDiag) -
, -
, .
(Support Tools) Windows Server 2003.
, ,
, . -
, .
NetDiag.exe ,
, .
, ,
.
, (. 34.7).
34.7. NetDiag

/q ( ).
/v .
/l NetDiag.log.
/debug .
/d: .
/fix .
/DCAccountEnum .
/test: .
/skip: .

.

1207
34
DCDiag
(Domain Controller Diagnostic, DCDiag)
Active Directory.
(Support Tools) Windows
Server 2003.
Active Directory.
,
, , ,
, ,
( DcPromo), DNS (
RegisterInDNS).
DCDiag ,
DcPromo RegisterInDNS.
. , -
.
DCDiag . 34.8.
34.8. DCDiag

/s: .
/n: -
(NetBIOS, FQDN ).
/u:\ .
/p:{*||""}
/a .
/e .
/q ( ).
/v .
/I .
/fix .
/f: .
/ferr: .
/c .
/test: .
/skip: .

.
,
1208
X
Route
Route -
-
. -
, . Route -
, , ,
,
. . 34.9 Route.
34.9. Route

add . -
, p.
Delete .
Print .
change .
.
Route.
IF .
mask . ,
255.255.255.255.
METRIC , , .
f .
p add .
Nslookup
Nslookup DNS.
DNS-. :
.
. -
.
, <Ctrl+B>.
exit. Nslookup ,
DNS. Nslookup . 34.10.
34.10. Nslookup

.
DNS.
DNS-.
Nslookup -
. -
(?).

1209
34

(System Startup and Recovery)
, .
( ) .
,
My Computer,
Properties, Advanced (),
Settings () Startup and Recovery ( -
), , . 34.15.
. 34.15. -

Default Operating System ( , -
) , . -
Microsoft Windows Server 2003 Enterprise Server.
, Edit ()
boot.ini.
. Time to Display List of Operating Systems ( -
) , -
.
30 .
System Failure ( ) ,
. . -
Write an Event to The System Log ( ).
. Send an Admini-
strative Alert ( ) .
,
1210
X
Automatically Restart ( -
) .
Write Debugging Information ( ) -
, -
. , :
(64 ) (Small memory dump (64 B)), (Kernel memory
dump), (Complete memory dump) (none). Write
Debugging Information -
1 . , RAM
512 513 .
, Write Debugging Information -
(none) Send an Administrative Alert. -
; , ,
6070 .
,
, -
,
, . -
:
(memmonitor.exe). -

.
(memtriage.exe). -
, .
, -
, .

. ,
, Microsoft,
.
, My Com-
puter, Properties, Advanced
Error Reporting ( ), , -
. 34.16. , -
Disable Error Reporting ( ).
, , .
: Windows Operating System ( Windows),
Unplanned Machine Shutdowns ( ), Programs
() ( , Choose Pro-

1211
34
grams ( )) Force Queue Mode for Program Errors ( -

).
Dr. Watson for Windows

Dr. Watson for Windows . -
Microsoft , Dr.
Watson, . -
, .
Dr. Watson -
. ,
drwtsn32. Dr. Watson , . 34.17.
, Dr. Watson, .
: ,
, , ,
, .
-
, . ,

Windows.

.
. 34.16. -
. 34.17. Dr. Watson for Windows
,
1212
X
, Windows
Server 2003, , Microsoft TechNet
(http://www.microsoft.com/technet/). , -
, -

-
, , ,
.

.
,

.
,
.
.
,
-
.
-
.
-
.
.
, -
.
, -
.
.
, Netmon, -
, .
, , .
Netmon INCLUDE EXCLUDE.
Tracert -
.

35
...

,
1214
X
(capacity analysis)
, .
, ,
. -
, IT- -
, -
, . .
, ,
. ,
-
, , -
.

-
, , , -

. - ,
, .
, .
-
, ,
, -
.

,
.
, ,
.
-
,
. , ,
. , ,
, , -
-
.
- . -
, -
-
. -
.

, , -
, .

1215
35
, -
, .
, -
.
,
, -
. -
. ,
-
, .

.
.
, ,
. -
,
.

.
,
, , ,
.
, ,
, -
. , -
, , , ,
.
,
. ,
, -
.
,
.

, ,
.
, ; -
. ,
, ,
, .
, -
, , -
.
,
1216
X
. ,
,
, , ,
-
, Web- FTP-.
, IT-
. -
, , -
. , -
, .
2 .
- -
( ).

( ,
).
.
300 -
.
Outlook ,
-
.
.
IT-. -
, -
. -
, IT-.

05:00.
-
05:00 08:00.

.
-
.

,
.
IT-
.

1217
35

-
, .

.
( ) ,
.
,
. , -
,
,
.

-
. ( ) ,
, .
.
, -
.
, , ,
( ),
(, ), .
, ?
. -
, -
, .

(benchmark) -
: ,
. -
,
,
.
,
, IT-.

, .
, ,
. , -
, ,
, -
(, , -
). ,
,
1218
X
IT-, ,
,
.
-
,
, .
,
.
-
. .
. 35.1 , -
;
.
35.1. ,
/ Web-
Transaction Processing Council http://www.tpc.org/
VeriTest http://www.etestinglabs.com/
Computer Measurement Group http://www.cmg.org/
Windows Server 2003

, Windows NT4, Windows 2000
Unix .
, .
Microsoft ,
Windows Server 2003, .
: ,
(
). , , -
, Microsoft Excel Access, -
. Microsoft, -
(Systems Management Server SMS) Microsoft (Microsoft
Operations Manager MOM).

.
, -

1219
35

(Task Manager) Windows Server 2003 -
Windows 2000 , .
, -
, , , -
. -
.
:
<Ctrl+Shift+Esc>.

Task Manager ( ).
<Ctrl+Alt+Delete>, Task
Manager.
, . 35.1.
:
Applications ().
.
.
Processes ().
, .
Performance ().
.
Networking (). -
. -
.
Users (). , -
.
, -
. , . 35.2, -
,
.
, -
.
-
.
, -
. ,
; -
, -
.

(
).
,
1220
X
. 35.1. . 35.2. ,

,
.
, . 35.3, , ,
SMS.
. 35.3.

1221
35

. -
,
. ,
-
.
, .
.
1. Add or Remove Programs ( ),
Start () Control Panel ( ).
2. Add or Remove Programs Add/Remove Win-
dows Components ( Windows).
3. Windows (Windows Components Wizard) -
Management and Monitoring Tools ( ),
Details ().
4. Management and Monitoring Tools Network Monitor Tools
( ) .
5. , -
.
6. , Start
All ProgramsAdministration Tools ( ).
, SMS- -
, SMS-
( ,
). -
, IP-
, .
SMS- -
, .
; -
IT-,
.
SMS- ,
-
.
. -
SMS - , -
, .

IT-
(Performance Console), -
Windows
,
1222
X
Server 2003. Microsoft (Microsoft

Management Console MMC),
. Ad-
ministrative Tools (), Start.
, . 35.4, -
, .
-
, .
, .
, -
.
. 35.4.
, -
, , ,
.

,
.
. ,
, -
. , -
: , -
, , -
, Windows, .
. 35.2.

1223
35
35.2.
Web-
AppManager Suite NetIQ Corporation http://www.netiq.com/solutions/systems/
Openview Hewlett-Packard http://www.openview.hp.com/
PATROL BMC Software http://www.bmc.com/
PerfMan Information Systems http://www.infosysman.com/
RoboMon Heroix http://www.robomon.com/
Unicenter TNG Computer Associates http://www.ca.com/
-
, ,
. -

, :
,
.
-
. -
, .
,
. ,
, -
, , , -
.
-
;
. , -
.
1000 ,
. ,
, . ,
.
. -
.
, , . -
.
: , ,
.
. (bottleneck) -
,
1224
X
.
, .
, , -
, . -
, . -
. -
, Web- ,
(NIC),
, , Web-
. (
) .
, -
, ,
.
,
, .
, ,
, , -
. , -
, -
, , .
, -
, Windows Server 2003. , , -
-
, (DC).
( ,
, , Web-
, ..), Windows
Server 2003, , .
,
.
, -
,
. , ,
.
-
, -
.

.

, -
:
, , .

1225
35

-
, .
. , -
-
. .
. ,
: Pages/sec ( ). -
. 35.4. , -
.
.
,
. -
-
. -
: Page Faults/sec
( ) Pages/sec ( ).
, , -
.
, ,
(working set). -
, .
(
soft fault) , , ( -
hard fault). -
. -
,
, -
.
.
Page Faults/sec , -
. ,
. -
. -
,
, ,
.
, Pages/sec.
, , , -
, ,
. Microsoft , -
5 . -
,
1226
X
,
20. -
10 .

Pages/sec . -
(thrashing) , -
, -
, .

,
. -
: % Processor Time ( -
) Interrupts/sec ( ).
% Processor Time .
,
, () . -
50% ,
, , -
, -
. -
50% .
65% , -
.
Interrupts/sec
. ,
( , ) . -
Page Faults/sec, , -
()
.

-
. Windows Server
2003 .
, -
. , -
Physical Disk ( ) Logical Disk (
). (Windows 2000), Windows Server 2003 -
.
,
,
.
.

1227
35
Physical Disk Logical Disk -

. -
. , -
.
Windows
Server 2003 .
diskperf n. , diskperf y
diskperf y \\mycomputer ,
Windows Server 2003. Windows Server 2003 -
, -
. , , -
d ( Physical Disk) v ( Logical Disk).

, . -
-
. -
.
, ? -
%
Disk Time ( ) Avg. Disk Queue Length (
). % Disk Time ,
/. -
Avg. Disk Queue Length ;
. -
2, -
, .

, - ,
. -
, , , -
, , -
.
, , -
, .
, ,
.
, .
, , -
, -
.

(sniffer ).
-
.
,
1228
X
TCP/IP , -
. TCP/IP ( ) -
.
, -
TCP/IP: ICMP, IPv4, IPv6, Network Interface, TCPv4, UDPv6 -
. , FTP- WINS-, -
. TCP/IP ,
, -
.
Network Interface ( -
): Packets Received Errors ( ) Packets Outbound
Errors ( ) , -
. -
, . -
.
NIC, .
- , -
, , -
. 35.3.
35.3.

NBT Connection: Bytes Total/sec ,
( NBT: ) NBT.
Redirector: Bytes Total/sec
(: ) .
Server: Bytes Total/sec ,
(: ) .

(, ,
),
, .
.

: Terminal Services Session ( )
Terminal Services ( ). -

1229
35
, , -
, .
Process. : % Privileged
Time (% ), % Processor Time (% -
), % User Time (% ), Working Set ( ),
Working Set Peak ( ) .

27.
,
,
.
, - . , -
32-,
, -
.

(DC) Windows Server 2003 Active Directory (AD)
, , -
(Flexible Single Master Operations FSMO) (
, , RID, PDC -
) (GC). , -
DC
. AD, DNS.
AD
Active Directory Windows Server 2003. -
, , , -
, . Windows
Server 2003 AD , -
. AD Windows Server 2003 -
4. Active Directory,
NTDS Database.
NTDS -
AD, AD.
-
. , -

. , , .
, -
AD, Database. ,
, AD.
,
1230
X
Database :
1. DLL- (esentprf.dll),
%SystemRoot%\System32, (, c:\esent).
2. (Regedt32.exe).
3.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ESENT
4.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ESENT\Performance
5. ESENT\Performance.
6. Open REG_SZ OpenPerformanceData.
7. Collect REG_SZ OpenPerformanceData.
8. Close REG_SZ OpenPerformanceData.
9. Library REG_SZ c:\esent\esentprf.dll.
10. .
11. %SystemRoot%\System32.
12. Lodctr.exe Esentprf.ini.
Database -
AD. , -
Database AD, . 35.4.
35.4. AD

Database Cache % Hit % , -
(% )
. (85% ),
.
Database Cache Page Fault Stalls/sec ,
( - , -
) , .

.
Database Cache Page Faults/sec -
( ,
) .
Database Cache Size ,
( ) -
-
.
DNS
(DNS)
DNS 9. Windows Server 2003 -

1231
35
, DNS.
-
, .
, . 35.5,
, DNS-.

. ,

, , .
35.5. DNS

Dynamic Update Received/Sec -
( .) , DNS-, .
Recursive Queries/Sec , -
( ) DNS-, .
Recursive Query Failure/Sec ( -
) .
Secure Update Received/Sec
( , DNS-
) , .
TCP Query Received/Sec TCP-,
( TCP- ) DNS-, .
TCP Response Sent/Sec TCP-,
( TCP- ) DNS-, .
Total Query Received/Sec , DNS-
( ) , .
Total Response Sent/Sec , DNS-
( ) , .
UDP Query Received/Sec UDP-,
( UDP- ) DNS-, .
UDP Response Sent/Sec UDP-,
( UDP- ) DNS-, .
DNS- -
, ,
, DNS-.
DNS . Windows Server
2003 DNS, ,
DNS . -
DNS: (
, ) (
).
(AXFR) ,
(IXFR).
,
1232
X
AXFR, IXFR (. 35.6) , .

, DNS -Windows , -
, IXFR.
35.6. DNS

AXFR Request Received , -
( AXFR) DNS-
.
AXFR Request Sent , -
( AXFR) DNS- -
.
AXFR Response Received , -
( AXFR) DNS- -
.
AXFR Success Received ,
( AXFR) DNS- .
AXFR Success Sent ,
( AXFR) DNS- .
IXFR Request Received -
( IXFR) , DNS-.
IXFR Request Sent -
( IXFR) , DNS-.
IXFR Response Received -
( IXFR) , DNS-.
IXFR Success Received
( IXFR) , DNS-.
IXFR Success Sent
( IXFR) , DNS-.
Active Directory, ,
. 35.6, .
AD
AD
, . , , -
:
.
( ).
.
.
, -
AD. NTDS

1233
35
, AD -
(Directory Replication Agent DRA). ,
AD , DRA.

Windows
Windows (Windows System Resource Manager
WSRM) , Windows Server 2003 Enterprise Data-
center -
. , WSRM -
,
. , -
. , ,
A 10% -
.
.
WSRM, . 35.5, -
-
. ,
, .
.
. 35.5. WSRM
WSRM -
, . -
WSRM ,

. -
( WSRM), WSRM
.
,
1234
X

Microsoft -
.
, Windows, , -
-
, . -
(service pack) (update) -
, .
, -
.
. -
. , -
, -
.
:
-
(, 56- 128-).
.
Microsoft -
. , -
.
.
, ,
, .
-
hotfix.exe.

. -
.
Microsoft . Windows
Update (Automatic Updates), -
(Software Update Services), .
Windows Update ( Windows) Web- -
ActiveX, , - -
, , -
. -
. ,
Web- Windows (http://windowsupdate.microsoft.com/)
. ,
, .

1235
35
Windows
, , , Windows
, -
Windows,
.
-
. , ,
, -
,
, Windows -
.
Windows (Software Update Services)
Windows Update, -
IT-
.
Windows AD Windows 2000 .
Windows Server
2003, (DMZ),
.
Web- -
Windows . -
, . , -
, , -
Windows.

(GPO) , -
intranet-
,
. -
, ,
.

:
Web- -
Internet Explorer 5.5 .

.
.
C
-
(, ),
(Systems Management Server)
.
,
1236
X
-
, - -
. -
,
.

, -
.
, -
.
,
.
-
.
, -
, , -
, -
.
-
.
.
-
.
, Microsoft -
,
.
, -
.
, -
: , ,
.

.
, .

,
- .

XI
Windows
...
36. Windows
SharePoint
37. Windows Media
Windows SharePoint
1239
36

Windows
SharePoint
36
...
SharePoint

Windows SharePoint
Windows
SharePoint

Windows SharePoint

WSS
WSS-
Windows
1240
XI

. -
,
Windows. Windows Server 2003
,
, .
Windows SharePoint Services (WSS).
SharePoint Microsoft ,

. ,
SharePoint. - , -
SharePoint Windows Share-
Point, , SharePoint
Portal Server.
Windows Share-
Point Services Windows Server 2003.
WSS, -
. , WSS -
Portal SharePoint Portal Server 2003. WSS
.
SharePoint
Windows SharePoint Services . -

Microsoft , . -
, , WSS .
WSS:
SharePoint
1999
Microsoft
(Digital Dashboard Starter Kit),
Outlook 2000 (Outlook 2000 Team Folder Wizard) -
(Team Productivity Update) BackOffice 4.5.
Microsoft, -
, -
. , ,
, SharePoint (SharePoint Team
Services) Windows SharePoint Services.
Office XP SharePoint -
,
IT- Web-
. , Office XP,
Office (Office Server Extensions)
Windows SharePoint
1241
36
FrontPage (FrontPage Server Extensions).

Web-. -
Web- FrontPage. -
, -
Web-.
SharePoint
WSS ,
SharePoint (SharePoint Portal Server SPS).
SharePoint WSS,
. , -
SPS WSS.
2001 Microsoft SharePoint Portal Server 2001.
, -
, .
Digital Dashboard,
. SharePoint Portal ,
Web-, .
Microsoft SharePoint Portal
, -
, . -
SharePoint. SharePoint Portal -
, : -
Web- Exchange.
, ,
, Web Storage
System ( Web-)
SQL, SharePoint.
, Web Storage System , -
Microsoft Exchange. SharePoint,
WSS, SQL.
SharePoint
Office XP/Frontpage -
SharePoint, -
, .
.
, -
SharePoint, , , -
.
SharePoint . -
-
, .
Windows
1242
XI
, SharePoint Portal ,
.
.
SharePoint, , SharePoint
Portal, SharePoint, .
-
, -
. ,
SharePoint -
SQL, SharePoint Web-.
, .

SharePoint Microsoft
Microsoft

SharePoint. Microsoft , -
. -
.
Microsoft , -
SharePoint. Microsoft
. Microsoft
SharePoint, .NET ,
, Web- XML.
SharePoint, 2003 , Microsoft
Windows SharePoint -
. Windows SharePoint (Windows SharePoint Services) -
SharePoint (SharePoint Team Services)
,
SharePoint Portal Server. , Windows SharePoint
Windows
Server 2003.
SharePoint -
. Windows SharePoint
-
. SharePoint
- .
SharePoint Microsoft Office 2003,
. , -
-
Office 2003. -
Web-. -

Frontpage . . 36.1 -
, .
Windows SharePoint
1243
36
. 36.1. SharePoint,
Office 2003. -
SharePoint
Word Excel 2003 Shared Workspaces (
). ,
, .
SharePoint, -
Office.
-
SharePoint .

Windows SharePoint
Windows SharePoint ,
.
,
.
WSS -
, .

WSS
WSS
Web -
, . ,
Windows
1244
XI
SharePoint, WSS -
Microsoft SQL
Server 2000. ,
, . -
, Word, Excel , WSS.

,
.
WSS .

WSS
Windows SharePoint, SharePoint, -
, Web- -
. , -
, , -
,
.
-
. SharePoint .
. -
, .
SharePoint. , WSS -
SharePoint, .
WSS

WSS -
Web, WSS .
WSS- Web- (Web
Parts), HTML- . -
ASP.NET
, WSS. -
WSS- Frontpage 2003, -
. ,
Web-, WSS.

Windows SharePoint
- . -
Microsoft WSS, -
Windows SharePoint
1245
36
. , -
, SQL Server, .
-
WSS.
WSS
WSS
.
Microsoft Windows SharePoint. ,
. -
, WSS, ,
.

, Intel Pentium III, .
512 .
550 .
Windows Server 2003 ( , Web Edition -
SQL Server).
Internet (IIS) ASP.NET,
SMTP WWW.
SQL Server (Standard/Enterprise) Microsoft SQL Server 2000 Desktop Engine
(MSDE WMSDE).
WSS Web-. Microsoft -
Web- Windows SharePoint:
Microsoft Internet Explorer 5.x Service
Pack 2.
Internet Explorer 6.0 .
Netscape Navigator 6.2 .
WSS.

IIS, WSS. -
:
1. .
2. Start () SettingsControl Panel (-
).
3. Add or Remove Programs ( -
).
Windows
1246
XI

Windows).
5. Application Server ( )
Details ().
6. ASP.NET.
7. Internet (IIS) Details.
8. SMTP Service ( SMTP), . 36.2,
, Next ().
. 36.2. IIS
9. , - Windows Server 2003
.
10. Finish ().
IIS .
Configure Your Server (-
). -
. , ,
WSS.
IIS
IIS, Start Administration Tools Internet Information Services
(IIS) Manager (
Internet (IIS)). Windows Server 2003 IIS
, . 36.3. Web-
(Web Service Extensions).
WSS-

-
.
Windows SharePoint
1247
36
. 36.3. IIS Web-

-
,
-
.
Windows Update (-
Windows).
, -
Microsoft (Systems Management Server SMS).
SUS, SMS
-
Web- Windows (Windows Update). -
Windows Update (-
Windows), Start, All Programs ( -
).
Microsoft Windows, ,
(http://windowsupdate.microsoft.com).

Internet Explorer.
Trusted Sites Zone ( ). IE URL-
Internet Explorer .
, Add (),
Add , Close ().
, .
IE : Start
Windows
1248
XI
SettingsControl PanelAdd or Remove ProgramsAdd or Remove Windows Components (-

-
Windows), Internet Explorer Enhanced Security Configuration (-
Internet Explorer), Details -
Administrator Groups ( ) / .
, Next, Finish.
, Scan for Updates ( ), -

, -
, -
!
, ,

windowsupdate.microsoft.com
Windows (Windows Update) -
(View Installation History),
, .
, (,
-
),
. -
.
, , Start
SettingsControl PanelAdd or Remove Programs (
).
, ; -
, support.microsoft.com
.

Windows SharePoint
WSS . -
:
SQL Server 2000 Windows MS SQL Desktop Engine (WMSDE) -
SQL Server 2000 Standard/Enterprise. -
WMSDE,
WSS 10 .
Microsoft, - Windows
Server 2003. :
http://www.microsoft.com/windowsserver2003/techinfo/sharepoint/wss.mspx
Windows SharePoint
1249
36
,
:
1. STSV2.exe,
C.
2. ,
, Next.
3. Typical Installation ( ), -
. 36.4, Next.
. 36.4. WSS

WSS- , -
WSS-, ,
WSS SQL, SQL .
WSS-
.
4. , WSS,
Install ().

WSS . Internet
Explorer , IIS.
5. Start Run (), cmd.exe -
<Enter>, .
6. iisreset, IIS, . 36.5.
Windows SharePoint. -
Internet Explorer -
(http://localhost). Windows SharePoint -
Windows
1250
XI
Web-, Web- Windows

SharePoint, . 36.6.

, Windows SharePoint
SQL Server 2000 ( , ),
WSS -. -
, STSV2.exe .
WSS ( , -
C:\): C:\program files\sts2setup_1033\setupsts.exe remotesql=yes.
, , . 36.4,
Server Farm ( ).
. 36.5. IIS WSS
. 36.6. WSS-
Windows SharePoint
1251
36

Windows SharePoint
WSS Web-
, .
, WSS,
Windows SharePoint, -
.
, -
, Microsoft Word 2003 Windows
SharePoint. ,
Office 2003: Excel, PowerPoint Visio.

Microsoft Word
Word 2003 Tools () -
Shared Workspace ( ),
. -

SharePoint, -
. , -
, ,
, .
: Reader (), Contributor (), Web
Designer (Web-) Administrator ().
-
, , , -
:
Status (). , -
.
Members ().
, .
Tasks (). -
, , .
Documents (). ,
, -
.
Links (). URL-
URL-.
Document Information ( ). -
, , , -
.
Windows
1252
XI
, -
, -
.
C
-
, Office 2003, Live Communications Server 2003
Windows Messenger ( Windows). -
- ( )
(Person Name Smart Tags). -
, , , -
.
Schedule a Meeting ( ), Send Mail ( ) Edit
User Information ( ).
Word
, -
, .
Windows SharePoint.
Windows SharePoint
Open Site in Browser ( ),
(. 36.7), -
,
Windows SharePoint.

, ,
Word, ,
, , -
, .
, , -
, .
, -
,
SharePoint. , -
:
Documents ().
Pictures ().
Lists ().
Discussions ().
Surveys ().
Web- (Web Parts), -
:
Windows SharePoint
1253
36
Announcements ().
Shared documents ( ).
Tasks ().
Members ().
Links ().
. 36.7. Windows SharePoint

, -
Web-
, Modify Shared Page (
), ,
Design This Page ( ).
Web-.
, -
, -
, , , -
.
, -
. , -
,
, ,
. , -
, Word 2003
Shared Workspace ( ).
Windows
1254
XI

-
, ,
; ,
.
, ( Win-
dows 2000 Server Upgrade SOW r5)
, .
-
.
. 36.8, Shared Documents ( -
) .
. 36.8. Shared Documents
C
, -

(Explorer) Microsoft Windows. , -
, . , ,
. -

Windows SharePoint. -
, ,
Windows SharePoint Microsoft Office 2003 Microsoft Internet Explorer 5
.
View Properties ( ). ,
( ), ,
.
Windows SharePoint
1255
36
Edit Properties ( ).
SharePoint .
Edit in Microsoft Word ( Microsoft Word). -
,
Microsoft Word. ,
Microsoft Office, , , Excel
PowerPoint.
Delete (). -
, .
Check Out (). , ,
, -
. ,
.
(check-in).
Version History ( ).
, ,
, .
, , .
Alert Me ( ). -
.

SharePoint Windows. -
, SharePoint,
, ,
. , -
, ,
.
, .
Discuss (). Word -

Microsoft Office -
, . -
-
.
Create Document Workspace ( ).
, -
, ,

. , , -
, .
, Shared Documents
, , , -
.
Windows
1256
XI

: JPEG, BMP,
GIF, PNG, TIF, WMF EMF.
, -
. , , -
, BMP,
.
Visio - Project Gantt
, HTML-, -
, , -
. -
, , -
,
.
,
.
Microsoft ( Office 2003): -
, , , -
, .
-
, .
, -
-, , -
.

, , -
,
, , , .
SharePoint
WSS , Web-, -
,
. :
Links (). URL-
.
Announcements (). ,
, ; -
.
Contacts (). -
Outlook.
, -
, , , -
.
Windows SharePoint
1257
36
Events ().
, , -
.
.
. Outlook,
, , . Out-
look .
Tasks (). , -
-
. Outlook,
SharePoint.
Issues (). , -
. -
, ,
-
.
Custom List ( ).
, -
. , , -
, ,
, , ( ), , -
, /, (, ),
/, -
.
, ,
,
. ,
, , .
Data imported from a spreadsheet (, -
). , -
( Excel).
Excel.
.
. .
36.9 , Datasheet ( ) (
Office 2003), , .
Datasheet -
, , -
. ,
Totals (). Task Pane ( )
, . 36.9 Office Links ( Office),
Excel, , , Excel
Access .
Windows
1258
XI
. 36.9. , Datasheet
SharePoint
Quick Launch ( ) -
, .

, ,
,
. -
, -
. -
, , -
, Web- SharePoint
, .
-
, , ,
.
.
. 36.10 , .
, ,
. .
Office,
SharePoint. SharePoint, .

, .
, , -
, , -
.
,
, - -
, , .
Windows SharePoint
1259
36
, -
, .
. 36.10.
Surveys ()
. SharePoint
,
. , -
, , ,
. ,
,
.
, ,
, ,
. ,
, .
,
( -
). ,
, -
.

WSS
Windows SharePoint
. , -
Windows
1260
XI
. ,
(Back), ,
, , -
URL-,
, . , , -
WSS, WSS, -
.
Windows SharePoint , -
Microsoft Office 2003. , -
Word 2003, , ,
, -
Office 2003.
. -
,
, -
Web- , -
.
, -
, .
, - , , -

, SharePoint.
, -
, Microsoft -
Windows SharePoint. Windows SharePoint
:
, , -
.
.
-
.
, Windows SharePoint
,
.
, Windows SharePoint Microsoft Office 2003,
,
Office. :
-
, .
Windows SharePoint
1261
36
Word 2003,
.
SharePoint Office
2003. SharePoint 2001 Microsoft Office IT-
, Office -
. Microsoft Office 2003 Windows Share-
Point ,
.
, -
Web- HTTP DAV,
.
Office Office
.
, SharePoint,
, ,
Internet-.

, , -
- , , .

,
, , -
. , Windows
SharePoint, -
, .
Outlook
2003. Outlook 2003, -
Windows SharePoint
, , , -
, , .
-
. -
:
.
.
.
. 36.11 , -
.
Windows
1262
XI
. 36.11. SharePoint

WSS ,
My Site ( ). :
( ), (-
).
, , -
. -
.
My Site -
, . (
Documents By This User ( -
) .) Web- My Links ( ) -
, , .
. Web- My News ( ) -

. , Web- Inbox
(), Task () Calendar () Exchange 2000 Exchange 2003.
Microsoft Office 2003

Microsoft Office. Windows SharePoint
Office, Microsoft Office 2003 -
-
. -
, -
, . ,
Microsoft Office 2000 , -
, SharePoint Microsoft Office
Windows SharePoint
1263
36
2003, , ,
, ( Instant Messenger), -
, , . .
36.12 , -
Microsoft Office 2003.
. 36.12. , -
Word 2003
, Microsoft Office 2003 :
-
Word 2003.
, -
, , .

Word 2003. (
), , -
, .
Outlook 2003, -
SharePoint , -
.
SharePoint Outlook 2003.

SharePoint Outlook 2003, -
Outlook: SharePoint Outlook 2003
. SharePoint Outlook 2003 -
.
Windows
1264
XI
SharePoint -
Office , SharePoint
, Office.
SharePoint
(shared attachment). ,
,
.
WSS Research
and Reference ( ) Office 2003.
, SharePoint, -
Office
2003.
SharePoint
, Windows SharePoint -
, SharePoint.
Office 2003,
WSS. -
SharePoint.
, -
. -

.

. , -
-
.

IT-. ,
WSS, :
,
Web-. -
Web- .
IT-, . IT-
,
,
-
. IT- , -
, .

IT-,

.
Windows SharePoint
1265
36

Windows SharePoint Web-, ,
. -
, , , -
, .
. , -
.
Windows SharePoint
. -
. , , -
: ,
. , -
, ,
, . -
-
.
.
, .
.
-
, SharePoint.
Microsoft Office 2003
Datasheet ( ). -
, -
, , , .

SharePoint.
Windows SharePoint .
,
. -
, .
.
,
.
, -
, .
.
.
SharePoint
(alerts) Windows SharePoint ,
(notifications). ,

. SharePoint
Windows
1266
XI
.
Windows SharePoint :
.
, .
SharePoint.
.
WSS.
, .
Windows SharePoint Micro-
soft Outlook 2003, -
.

, -
. .
(Site Directory), WSS.
SharePoint -
, -
.
, , .
. -
. Windows SharePoint -
(, ).
, SharePoint
.
-
.
(, ), -
.
-
.
. -
-
, .
, Windows SharePoint ,
.
Active Directory, Exchange Windows Messenger -
/.
.
, .
Windows SharePoint
1267
36
,
, Windows SharePoint -
. . 36.13
.
. 36.13. C SharePoint

WSS-
. -
, .
SharePoint.
Windows SharePoint .NET. -
.NET SharePoint
. ASP.NET -
, , ASP.
ASP.NET , ASP.
SQL SharePoint -
, . -
BizTalk 300 -
Web-.
Windows SharePoint
, ,
. , Web-,
.
-
WSS. -
.
Windows
1268
XI
SharePoint
, , ,
Web-.
SharePoint , Web- -
. Windows SharePoint -
, -
. Web Part Tool Pane (
Web-) .
:
Web- .
Web-.
.
Web-
, Web- .
. 36.14 Web-
Web- .
. 36.14. Web-
Web-

Windows SharePoint , -
. -
. :
Windows SharePoint
1269
36
.
.
.
.
.
.
,
, ,
FrontPage Web-, .
,
Web-, ,
, -
.
FrontPage 2003
SharePoint SharePoint.
FrontPage 2003 Windows SharePoint -
Web-, Web- Web-. -
, FrontPage 2003 Web-
.
Web- SharePoint Front-
Page, , , -
. FrontPage -
.
, FrontPage 2003,
:
. -
,
.
Web- FrontPage 2003. -
FrontPage 2003 Web-
, Web-
WSS, FrontPage.
, -
SharePoint. FrontPage
SharePoint . -
,
FrontPage.
Web-
. FrontPage -
Web-,
Windows
1270
XI
, SharePoint,
.
Web- XSL,
SharePoint .
, Microsoft -
Office.
WSS
. , WSS, -
Microsoft Office 2003 -
. , WSS -
Microsoft SQL 2000
WSS.

SQL Server 2000 WSS
10 .
-
WSS, SQL .
WSS -
Windows Server 2003 SQL Server 2000
.
( ) WSS,
, -
WSS .
,
WSS, 10, .
FrontPage 2003 -
, -
.
SharePoint Portal Server,
WSS ,
.

Windows Media
37
...
Windows Media
Windows Media

Windows

-

Windows
Microsoft Producer

Windows
1272
XI
,
. -
, - . -
100 250 , - 35
.
, ,
.
-
, -
.
Microsoft ,
- .
Windows Server 2003 Microsoft Windows Media Service,
- . Microsoft -
( ),
(Windows Media Encoder),
(Microsoft Producer for PowerPoint 2003).
Windows Media,
,
.
Windows Media
Windows Media , -
Windows Server 2003. Windows Media
- , -
. -
, , -
, - ,
Windows Media.
Windows Media, -

Windows Media . , :
;
;
, ;
.

,
, -
.
Windows Media
1273
37

Windows Media
Windows Server 2003 (Standard Edition, Enterprise
Edition Datacenter Edition), Windows Media -
:
550 .
1 .
Ethernet-, TCP/IP.
521 (6 , 15 -
500 ).

, , -
(Multicast Content Delivery), , Windows Media
Windows Server 2003 Datacenter Edition.
Windows Media -
, -
-
.
C
Windows Media -
, , -
. , -

, / .

Windows Media
, -
Windows / , Microsoft
Windows (Windows Media Load
Simulator) Windows Media 9. -
Web- Microsoft
http://www.microsoft.com/windows/windowsmedia/9series/server/loadsim.aspx
, -
wmloadsetup.exe. -
. Yes () -
. ,
. Yes, .
, ,
Start () All ProgramsWindows Media Load Simulator ( -
Windows
1274
XI
Windows),
Windows Media Load Simulator ( Windows).
Properties
(), -
Windows. -
. 37.1. Start Test ( -
), .
. 37.1.

,
Windows.
, , -
Windows Windows Media 9
. -
LAN/WAN .
Windows Media
Windows Media Windows
Server 2003, Windows Me-
dia. Windows Server 2003 -
:
1. Start SettingsControl Panel (
), Add/Remove Programs
( ).
Windows Media
1275
37

Windows), Windows Media Services ( Windows
Media) . Next (),
,
Finished ().
Windows Media
Windows Media .
Windows Media,
- .
MMC Windows Media Services,
Start All ProgramsAdministrative ToolsWindows Media Services ( -
Windows Media). ,
. 37.2.
. 37.2. MMC Windows Media
Windows
Media

Windows Media -
.
,
. -
Windows
1276
XI
- ,
,
.

Windows -
, .
:
1. Windows Media Services MMC
Publishing Points ( ) -
Add Publishing Point (Wizard) (
()).
2. , Next.
3. , .
-
13-01-05. Next.

, <, >, \, ?,
%, &, ', #, ", {, }, [, ] *.
Internet.
4. Encoder (A Live Stream) ( ( ))

Next.
5. Broadcast Publishing Point ( )
Next.
6. Unicast () Multicast
() ,
Next.
?

Windows , -
, -
.
, ,
,
( , ). -
, .

, 10 10
, 100 100 -
.
Windows Media
1277
37
Windows
, -
.
, -
.
10 100
.
-
, .
, ,
Windows 2000, Windows XP Professional Windows Server 2003.

, -
, -
. ,
,
. -
, -
, -
, ,
.
7. URL- . Windows -
http://server http://media.companyabc.com ,
DNS. Next.
8. Enable Logging ( ),
, Next.
9. -
, . 37.3.
. -
,
Start Archiving When Publishing Point Starts (
). Next.
10.
:
Create an Announcement File (.asx) or Web Page (.htm) ( -
(.asx) Web- (.htm)).
, -
-
.
Create a Wrapper Playlist (.wsx) (
(.wsx)). , -
.
-
, .
Windows
1278
XI
Create a Wrapper Playlist (.wsx) and Announcement File (.asx) or Web Page
(.htm) ( (.wsx) -
(.asx) Web- (.htm)). -
-
,
.
After the Wizard
Finishes ( ), .
Finish.
. 37.3.

.

, , . , -
: , -
.

.
Start (),
. 37.4. Stop (-
) .

Windows Media
.
(on-demand), , -
Windows Media
1279
37
. -
, -
.
. 37.4.

Windows -
, -
. :
Publishing Points
Add Publishing Point (Wizard).
2. , Next.
3. , . -
-
14-01-05. Next.

<, >, \, ?,
%, &, ', #, ", {, }, [, ] *.
Internet.
4. One File (Useful for a Broadcast of an Archived File) (

( )) Next.
Windows
1280
XI
5. Broadcast Publishing Point (

) On-Demand Publishing Point ( -
) Next.

?
( )
,
. , -
. ,
-
.
, -
. -
, .
, -
, -
. ,
, -
, .
, , -
, ,
,

. Enable
Unicast Rollover ( ) -
,
.
, 5
, -
.
5 ,
( 2), -
Use an Existing Publishing Point (
), Next,
.
5 ,
.
1. Unicast Multicast
, Next.
2. .
Next.
3. Enable Logging, -
, Next.
Windows Media
1281
37
4.
, . 37.3. -
. -
, Start
Archiving When Publishing Point Starts. Next.
5.
:
Create an Announcement File (.asx) or Web Page (.htm). -
, -
-
.
Create a Wrapper Playlist (.wsx). -
, -
.
, .
Create a Wrapper Playlist (.wsx) and Announcement File (.asx) or Web Page
(.htm). -
, -
.
After the Wizard
Finishes, .
Finish.

. , -
, .

. , : -
, -
.

,
Windows . -
,
.
,
. -
, ,
.
Windows
1282
XI

Windows -
, -
. -
.
Publishing Points
2. , Next.
3. , . -
- -
. Next.

<, >, \, ?,
%, &, ', #, ", {, }, [, ] *.
Internet.
4. Files (Digital Media Playlists) in a Directory (Useful for Providing

Access for On-Demand Playback Through a Single Publishing Point) ( (-
) ( -
-
)) Next.
5. : Broadcast Publishing Point On-Demand
Publishing Point.

?. Next.
, 5
, -
.
5 ,
:
1. ,
.
(wildcards). Next.
2. ,
, , , .
Next.
Windows Media
1283
37
, ,
(looping) ,
.
, .
(shuffle) , -
.
. -
. -

. .
, ,
.
, .
.

. .

.
, Next.
4.
.
. -
, Start Archiving When Publishing Point Starts.
Next.
5 , -
:
, Next.
2. .
Next.
3. -
, , . -
Next.
, Next.
5.
, . 37.5. -
. -
, Start Archiving
When Publishing Point Starts. Next.
Windows
1284
XI
. 37.5.

-

:
Create an Announcement File (.asx) or Web Page (.htm).
,
-
.
, .
-
, .
Create a Wrapper Playlist (.wsx) and Announcement File (.asx) or Web Page (.htm).
-
, -
.
After the Wizard
Finishes, . Finish.
.
URL-
(, mms://media.companyabc.com/pubpoint/),
( training-jan-21.wmv). URL- :
mms://media.companyabc.com/pubpoint/training-jan-21.wmv.
, -
, URL- -
Windows Media
1285
37

.
.

, -
, -
. ,
; -
. -
,
, . -
, , -
. -

, .

Windows
,
. :
Publishing Points
2. , Next.
3. , .
-
. Next.

<, >, \, ?,
%, &, ', #, ", {, }, [, ] *.
Internet.
4. Playlist (a Mix of Files and/or Live Streams That You Combine into
a Continuous Stream) ( ( /
, )) Next.
5. : Broadcast Publishing Point On-Demand
Publishing Point.

?. Next.
Windows
1286
XI
, 5
, -
.
5 ,
:
1. , (
) . Add a New
Publishing Point Next.
2. ,
. -
Create a New Playlist ( ). Next.
3. ,
, -
. 37.6. Next.
. 37.6. ,
4. Next.
5. ,
, , , .
, -
, . Next.
, Next.
7.
, . 37.5. -
. -
Windows Media
1287
37
, Start Archiving
,
:
, Next.
2. ,
. -
Next.
3. Next.
4. -
, , . -
-
, , . Next.
, Next.
6.
, . 37.5. -
. -
, Start Archiving
-

:
Create an Announcement File (.asx) or Web Page (.htm).
,
-
.
, .
-
, .
Create a Wrapper Playlist (.wsx) and Announcement File (.asx) or Web Page (.htm).
-
, -
.
After the Wizard Fini-
shes, . Finish.
Windows
1288
XI

, -
, . ,
URL- (,
mms://media.companyabc.com/Corp Playlist).
. -
-
,
. , -
.
, ,
, , -
.
Windows
, - ,
Windows Microsoft

Microsoft Windows Server 2003. Полное руководство, 2-е издание

Загружено:

Сведения о документе

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Microsoft Windows Server 2003. Полное руководство, 2-е издание

Загружено:

Авторское право:

Доступные форматы

Microsoft

Windows Server 2003

201 West 103rd Street,

ISBN 5-8459-0776-4 (.) , 2005

VI. Windows Server 2003 597

I. Windows Server 2003 51

Windows Server 2003

Windows 2000 Windows Server 2003

Dr. Watson for Windows 1211

, MCSE, CISSP, MCSA

2003 Windows Server

Windows .NET Framework

Windows .NET Framework

Windows Server 2003 , -

Windows Server 2003

Windows Server 2003

Windows Server 2003

Windows Server 2003 NT4

Windows Server 2003.

Windows Server 2003

Windows Server 2003

Windows Server 2003 Web

Windows Server 2003 Standard

Windows Server 2003 Enterprise

Windows Server 2003 DataCenter

Windows Server 2003

Windows Server 2003

Windows Server 2003 -

Windows Server 2003

IPSec NAT Traversal

Windows Server 2003 , -

Windows Server 2003. GPMC -

(Identity and Integration Feature

Directory Services Markup

Services for NetWare 5.0 SP2

Active Directory v2.0

Monitor SSM), MOM -

(Hewlett-Packard, IBM, Cisco),

Windows Server 2003,

Windows Server 2003

1 Windows Server 2003 139 . 15.04.04 . 01.09.04

1 Windows Server 2003 139 . 15.04.04 . 01.09.04

Windows Server 2003

Windows Server 2003, -

3.2. Windows Server 2003

. 3.1. Windows Server 2003

NTFS (NT File System NT) -

Windows Server 2003

Windows Server 2003

. 3.4. Windows Server 2003

Windows Server 2003

Windows Server 2003

Windows Server 2003

Windows Server 2003 -

Windows Server 2003 Active

. 4.1. Windows NT4

Windows 2000 Active Directory

. 4.2. Active Directory -

Directory Windows Server 2003. , Windows Server

. 4.4. Active Directory

RID (RID master). Active Directory,

. 4.5. ntdsutil Active Directory

asia.companyabc.com europe.companyabc.com japan.companyxyz.com

DNS Active Directory