Wednesday, 1 November 2017

3.5 Enabling Account Lockout Policy

Pre-Requisites:-
        Before working on this lab You must have
  1. A Computer running windows 2008 domain controller.
  2. A Computer running Windows 2008 Server or Windows 7.
System 1:
Domain Controller
IP address:- 10.0.0.1
Subnet Mask :- 255.0.0.0
Preferred DNS:- 10.0.0.1


System 2:
Member Server/Client


IP address 10.0.0.2
Subnet Mask:- 255.0.0.0
Preferred DNS:- 10.0.0.1
                                                  
 Lab 5
  1. Login as Administrator to Domain Controller.
  2. Click Start → Programs → Administrative Tools → Group policy Management Console.
  3. Expand Forest → Expand Domains → Expand Microsoft.com → Right click Default Domain Policy. And Select Edit.
  4. Expand Computer Configuration → Expand Policies → Expand Windows Settings → Expand Security Settings → Expand Account Policies → Open Account Lockout Policy.
  5. Double Click Account lockout threshold.
  6. Enter the Value for Number of Invalid logon Attempts.
  7. Set the Account lockout Duration and click OK.
  8. Close the Group Policy Managment Windows.
                                           
   Verification
  1. Enter the Password for User(User1 ) wrongly 2 times while loggingin and the user account will be locked.


Unlocking the Locked User Account Manually.
  1. Login as Administrator to Domain Controlller.
  2. Click Start → Programs → Administrative tools → Active Directory Users and Computers.
  3. Right Click the User (User 1) and Select Properties.
  4. Check the Box Unblock Account → Click Apply and OK
                                              
Verification
  1. Login in as User(User 1) in Client or Member Server.
at No comments:
Labels: , , , , ,

3.4 Changing Allow Logon Locally Policy


      Pre-Requisites:-
  1. A Computer running windows 2008 domain controller.
  2. A Computer running Windows 2008 Server or Windows 7.
System 1:
Domain Controller
IP address:- 10.0.0.1
Subnet Mask :- 255.0.0.0
Preferred DNS:- 10.0.0.1


System 2:
Member Server/Client


IP address 10.0.0.2
Subnet Mask:- 255.0.0.0
Preferred DNS:- 10.0.0.1
                                                                               Lab 4
  1. Login as Administrator to Domain Controller.
  2. Click Start → Programs → Administrative Tools → Group policy Management Console.
  3. Expand Forest → Expand Domains → Expand Microsoft.com → Right click Default Domain Controller Policy. And Select Edit.
  4. Expand Computer Configuration → Expand Policies → Expand Windows Settings → Expand Security Settings → Expand local Policies → Select User Rights Assignment → Double Click Allow logon locally..
  5. Click Add User or group → Click Browse → enter Username → Click OK
  6. Click -→OK -→Apply -→OK.
  7. Click Start → Run and type GPUPDATE and it refreshes the policy update.

                                          
  Verification
  1. Logon to Domain Controller as Domain User (User 1).

at No comments:
Labels: , , , ,

3.3 Changing Default Password Policy


        Pr-Requisites:-
        Before working on this lab You must have
  1. A Computer running windows 2008 domain controller.
  2. A Computer running Windows 2008 Server or Windows 7.
System 1:
Domain Controller
IP address:- 10.0.0.1
Subnet Mask :- 255.0.0.0
Preferred DNS:- 10.0.0.1


System 2:
Member Server/Client


IP address 10.0.0.2
Subnet Mask:- 255.0.0.0
Preferred DNS:- 10.0.0.1
                              Lab 3
  1. Login as Administrator to Domain Controller.
  2. Click Start → Programs → Administrative Tools → Group policy Management Console.
  3. Expand Forest → Expand Domains → Expand Microsoft.com → Right click Default Domain Policy. And Select Edit.
  4. Expand Computer Configuration → Expand Policies → Expand Windows Settings → Expand Security Settings → Expand Account Policies → Open Password Policy.
  5. Double Click on Minimum Password Length.
  6. Change the length from (7 to 0) and click Apply and OK.
  7. Double Click Password must meet complexity Requirements.
  8. Select Disabled and Apply and OK.
  9. Click Start → Run and type GPUPDATE and it refreshes the policy changes.

                                                                Verification
  1. Go to Active Directory Users and Computers and Create a User with any Password or Without Password.

at No comments:
Labels: , , , ,

3.2 Creating Domain User Accounts

         Pr-Requisites :-
       Before working on this lab You must have
  1. A Computer running windows 2008 domain controller.
  2. A Computer running Windows 2008 Server or Windows 7.
System 1:
Domain Controller
IP address:- 10.0.0.1
Subnet Mask :- 255.0.0.0
Preferred DNS:- 10.0.0.1


System 2:
Member Server/Client


IP address 10.0.0.2
Subnet Mask:- 255.0.0.0
Preferred DNS:- 10.0.0.1
                               Lab 2
  1. Login as Administrator to Domain Controller.
  2. Click Start → Programs → Administrative Tools → Active Directory Users and Computers.
  3. In the console tree, expand your domain Microsoft.com, and then Right Click Users Container, Select New User.
  4. Specify the first Name, and User Logon name and then Click Next.
  5. Enter the Password and Confirm Password for the User Account, Click Next.
  6. Review the Configuration settings for the Users Account and then Finish.                                                                        Verification
  1. Login as User (User1@Microsoft.com) in Member Server or Client.
at No comments:
Labels: , , , , ,

3.1 Member Server/Client and User Management. Lab 1

Lab 1 :- Configuring Client Or Configuring Member Server        Pre-Requisites-

Before working on this lab You must have
  1. A Computer running windows 2008 domain controller.
  2. A Computer running Windows 2008 Server or Windows 7.
System 1:
Domain Controller
IP address:- 10.0.0.1
Subnet Mask :- 255.0.0.0
Preferred DNS:- 10.0.0.1


System 2:
Member Server/Client


IP address 10.0.0.2
Subnet Mask:- 255.0.0.0
  Preferred DNS:- 10.0.0.1
                                 Lab 1
  1. Log in as Administrator to Workgroup Computer.
  2. Right click Computer Icon and Click Properties and click Change settings.
  3. In the system properties dialog box click Change.
  4. Select the Member Domain and Enter the Domain Name.( Ex:- Microsoft.com)
  5. Enter the username Administrator and his password, click Ok.
  6. Welcome Message appearss indicating that the computer was successful in joining the domain.
  7. Click Ok and Click Close to the System Properties dialog box.It will ask for restart, Click Yes.
  8. After restarting the computer, it will become Client.                                                                                                        Verification
  1. Right Click Computer Icon --→ Properties.
  2. Click Computer Name, Domain and Workgroup Settings and Verify for the Domain name Microsoft.com

at No comments:
Labels: , , , , , ,
Subscribe to: Comments (Atom)

3.5 Enabling Account Lockout Policy

Pre-Requisites:-         Before working on this lab You must have A Computer running windows 2008 domain controller. A Computer ru...