• No results found

Understanding Group Policy Part 1

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Understanding Group Policy Part 1"

Copied!
80
0
0

Loading.... (view fulltext now)

Download now ( 80 Page )

Full text

(1)

Understanding Group Policy

Part 1

(2)

What Will We Cover?

• Group Policy concepts

• Creating test and staging environments

• Group Policy tools

(3)

Helpful Experience

Level 200

• Experience supporting Windows servers

• Experience supporting Microsoft networks

• Familiarity with Active Directory

www.microsoft.com/technet/ADD-07

www.microsoft.com/technet/ADD-08

(4)

Agenda

• Preparing the Environment

• Creating a Staging Environment

• Managing Group Policy

(5)
(6)
(7)
(8)
(9)

Demo

Organizing OUs

(10)
(11)

What Is Group Policy?

Manage user and computer environments

(12)

What Is Group Policy?

Manage user and computer environments

Manage user and computer environments

Enforce IT policies

(13)

What Is Group Policy?

Manage user and computer environments

Manage user and computer environments

Enforce IT policies

Enforce IT policies

Simplify administrative tasks

(14)

What Is Group Policy?

Manage user and computer environments

Manage user and computer environments

Enforce IT policies

Enforce IT policies

Simplify administrative tasks

Simplify administrative tasks

Implement security settings

(15)

Group Policy Terms

Group Policy

Object

Computer

Configuration

User

Configuration

(16)

Group Policy Terms

Scope of

Management

Group Policy

Object

Site

Domain

OU

Computer

Configuration

User

Configuration

(17)

Group Policy Terms

Scope of

Management

Group Policy

Object

Computer

Configuration

User

Configuration

(18)

Group Policy Terms

Scope of

Management

Group Policy

Object

Computer

Configuration

User

Configuration

(19)

Common Desktop Scenarios

• Lightly managed

• Mobile

• Multiuser

• AppStation

• TaskStation

• Kiosk

(20)

Usage Scenarios – Lightly Managed

• For power users or developers

• Least restricted

• Free-seating

• Core set of applications

www.microsoft.com/downloads/details.aspx?FamilyID=354b9f45-8aa6-4775-9208-c681a7043292&displaylang=en (Search for Group Policy Scenarios)

(21)

Usage Scenarios – Mobile

• Aimed at mobile users

• Data available at all times

• Partial free-seating

(22)

Usage Scenarios – Multiuser

• Basic customization

• Free-seating

• Restricted write access

• Security-enhanced

(23)

Usage Scenarios – AppStation

• Minimal customization

• Few applications

• Free-seating

• Restricted write access

• Security-enhanced

(24)

Usage Scenarios – TaskStation

• For order entry or call centers

• Runs a single application

(25)

Usage Scenarios – Kiosk

• Unattended public workstation

• Single application and user

• Security-enhanced

• No user changes or write access

• Always on

(26)

Agenda

• Preparing the Environment

• Creating a Staging Environment

(27)

Build staging environment

Build staging environment

11

Implementing a Staging Environment

(28)

Synchronize with production

Synchronize with production

22

Implementing a Staging Environment

Production

Staging

(29)

Test GPOs

Test GPOs

33

Implementing a Staging Environment

Staging

(30)

Test GPOs

Test GPOs

33

Implementing a Staging Environment

Staging

Group Policy Modeling

Group Policy Results

(31)

Test GPOs

Test GPOs

33

Implementing a Staging Environment

(32)

GPO Backups

Prepare for deployment

Prepare for deployment

44

Implementing a Staging Environment

(33)

GPO Backups

Prepare for deployment

Prepare for deployment

44

Implementing a Staging Environment

Staging

(34)

Deploy to production

Deploy to production

55

Implementing a Staging Environment

Production

Staging

GPO Backups

(35)

Demo

Creating a Staging Environment

(36)

Agenda

• Preparing the Environment

• Creating a Staging Environment

(37)

Group Policy Management Console

• MMC snap-in

• Includes Group Policy Object Editor

• Reporting and modeling

(38)

GPMC Service Pack 1

• Various bug fixes

• New languages

• Updated GPMC EULA

• Updated MSXML4

http://www.microsoft.com/downloads/details.aspx?FamilyId=0A6D4C24

-8CBD-4B35-9272-DD3CBFC81887&displaylang=en

(39)

Demo

Reviewing the GPMC

(40)
(41)
(42)
(43)

User and Computer Configuration

Lab Computers

settings

(44)
(45)
(46)

User and Computer Configuration

Sales Users

settings

(47)
(48)

Sales Users

settings

User and Computer Configuration

Lab Computers

settings

(49)
(50)

Local Security Policy

(51)

Local Security Policy

Site Policy

(52)

Local Security Policy

Site Policy

Domain Policy

(53)

Local Security Policy

Site Policy

Domain Policy

Parent OU Policy

(54)

Local Security Policy

Site Policy

Domain Policy

Parent OU Policy

Child OU Policy

(55)

When is Group Policy Applied?

(56)

When is Group Policy Applied?

Startup and shutdown

Logon and logoff

(57)

When is Group Policy Applied?

Startup and shutdown

Logon and logoff

(58)

When is Group Policy Applied?

Startup and shutdown

Logon and logoff

Defined intervals

(59)

Group Policy Processing

(60)

Group Policy Processing

(61)

Group Policy Processing

Synchronous Initial Processing

(62)

Group Policy Processing

Synchronous Initial Processing

(63)

Demo

Modifying Group Policy Objects

(64)

Group Policy Modeling and Results

• Group Policy Modeling

Simulates GPOs on user or computer

• Group Policy Results

(65)

Demo

Group Policy Modeling and Results

• Using Group Policy Modeling

• Using Group Policy Results

(66)
(67)
(68)
(69)
(70)

Demo

Backing up and Restoring GPOs

(71)

Session Summary

• Manage and control your environment

more easily with Group Policy

• Use a staging environment to test Group

Policy before production deployment

(72)

For More Information

www.microsoft.com/technet/ADD-06

Visit TechNet at

www.microsoft.com/technet

(73)

Microsoft Press Publications

For the latest titles, visit

(74)

These books can be purchased at all major

bookstores and online retailers.

.

(75)

Course ID

Title

2274

Managing a Microsoft Windows

Server 2003 Environment

For training information and availability

www.microsoft.com/learning

Training Resources

(76)

Readiness with Skills Assessment

• Self-study learning tool free to anyone

• Determines skills gaps

• Provides learning plans

• Post your score; see how you stack up

Visit

(77)

Become a Microsoft Certified Professional

• What are MCP certifications?

Validation in performing critical IT functions

• Why Certify?

Worldwide recognition of skills gained through

experience

More effective deployments with reduced costs for

your organizations

• What Certifications are there for IT pros?

MCP, MCSE, MCSA, MCDST, MCDBA.

(78)

www.microsoft.com/technet/subscriptions

Heard the News about TechNet?

• Software without time limits

• Complimentary technical support

(79)

Find all these support options at www.microsoft.com/technet/support

Microsoft offers a progressive series of support options starting with no-charge online support and developing

through subscription, incident, and contract support.

1. No-Charge Online

Support

Knowledge Base

Search a vast database of articles to pinpoint the information you need.

Newsgroups

Access over 20,000 active newsgroups on scores of topics.

Product Support Centers

Get answers to frequently asked questions, plus how-to articles and step-by-step instructions organized by product.

DLL Help Database

Search here to identify the software used to install a specific DLL version.

Events and Errors Message Center

Resolve event and error messages fast with explanations, recommendations, and links to support and resources.

Support Webcasts

Tune in to live technical presentations by Microsoft experts and take part in real-time Q&A.

Chats

Chat online with Microsoft specialists or search the transcript archives.

User Group Program

Access information and support for IT and other interest-specific user groups.

TechNet Security Resource Center

Get ahead of security risks with resources that keep you current, including security newsletters and the Microsoft notification service.

2. Subscription-Based

Support

TechNet Subscription

Subscribe to TechNet for a personal library of articles, service packs, how-tos, resource kits, tools, utilities, and more. Your subscription includes monthly updates delivered on CD or DVD, so you always have the latest information,

straight from the source.

Upgrade to a TechNet Plus subscription and add all this:

1. Full-version evaluation software,

including Microsoft Office System and Windows Server System™ products, without time restrictions.

2. Free support — two complimentary

incidents, plus a discount on other support calls.

3. Unlimited, next-business-day

access to reliable answers from the IT community and Microsoft Support Professionals through Managed Newsgroups (English only).

3. Assisted Incident

Support

E-mail Support

Get online incident help via e-mail from a Microsoft Support Professional.

Phone Support

Get incident help over the phone from a Microsoft Support Professional.

Phone Support Contract

Save with a discounted 5-Pack Phone Support contract.

Advisory Services

Add remotely delivered consultation options from Microsoft Advisory Services for proactive support that goes far beyond routine product maintenance.

4. Contract-Based

Support

Premier Support

Get the flexibility to match support options to your organization and enjoy direct access to Microsoft technical experts at any time, day or night. Premier Support delivers customized options for businesses with complex needs, including

dedicated technical professionals to oversee your support, 24x7 problem resolution, and training and workshops that keep your IT staff up to date.

Essential Support

Essential Support offers prepackaged options specifically designed to meet the fundamental support requirements of any business, large or small. Includes account management, problem resolution, and information services.

(80)

• Free chats and webcasts

• List of newsgroups

• Microsoft community sites

• Community events and columns

Where Else Can I Get Help?

References

Download now ( PDF - 80 Page - 1.51 MB )

Related documents

Deploying the DisplayLink Software using the MSI files

Create a new Group Policy Object (GPO) in the Group Policy Management Console (GPMC) In this guide, we’ll be calling it DisplayLink Device Driver Deployment - 32-bit.. You may wish

Reports, Features and benefits of ManageEngine ADAudit Plus

The reports are grouped under User Logon, Local Logon-Logoff, Account Management, User Management, Group Management, Computer Management, Domain Policy Changes, OU Management and

Continue your Aetna life insurance coverage with these options.

Subject to the terms of the Group Policy (as described in your group insurance certificate): (1) you may apply for an individual insurance policy in conversion of your Group Term

Lecture 3: Active Directory Domain Service (AD DS)

Local Group Policy is always in effect for local and domain users and local computer settings.. How Group Policy

Group Policy Objects: What are They and How Can They Help Your Firm?

Basically, a Group Policy Object (GPO) is a policy to define user and computer configurations in a Windows environment.. You can configure a GPO at the site level, domain level or

How To Write A Gpmc Script For A Gpc (Windows 2003) On A Windows 2000 (Windows 2000) On Your Computer Or Your Computer (Windows 3) On An Ipad Or Ipad (Windows 2) On The Macbook

Getting Started with Group Policy 1 Understanding Local Group Policy 2 Group Policy Entities and Policy Settings 4 Active Directory-Based Group Policy 5 An Example of Group

Modern Electronic Communication 7th Edition by Beasley & Miller MCQ

11 In a Crosby FM transmitter, an FM signal having a center frequency of 2.04 Mhz and a deviation of 69 Hz is passed through four cascaded frequency multiplier stages: two

ms-help://ms.technet.2005mar.1033/security/tnoffline/security/smbiz/winxp/fwgrppol...

In the console tree of the Group Policy Object Editor, open Computer Configuration, Administrative Templates, Network, Network Connections, and then Windows Firewall..