Triển khai các bản Windows Server

TRNG CAO NG NGUYN TT THNH
KHOA CNG NGH THNG TIN
LUN VN TT NGHIP
CC CCH TRIN KHAI CC BN

WINDOWS SERVER 2008
TRONG MI TRNG MNG
SVTH: NGUYN HONG BO TRUNG
MSSV: 21072233
SVTH: TRN MINH TUYN
MSSV: 21072320
GVHD: ThS. TRN QUNG HNG
TP. H CH MINH, NM 2010
TRNG CAO NG NGUYN TT THNH

KHOA CNG NGH THNG TIN
NGUYN HONG BO TRUNG
21072233
TRN MINH TUYN
21072320
CC CCH TRIN KHAI CC BN

WINDOWS SERVER 2008
TRONG MI TRNG MNG
LUN VN TT NGHIP
GIO VIN HNG DN

ThS. TRN QUNG HNG
KHA 2007 2010
NHN XT CA GIO VIN HNG DN

...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
Tp. H Ch Minh ngy thng nm 2010

Gio vin hng dn
ThS. Trn Qung Hng
Trang i
NHN XT CA GIO VIN PHN BIN

...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
...........................................................................................................................................
Tp. H Ch Minh ngy thng nm 2010

Gio vin phn bin
Trang ii
TRNG C NGUYN TT THNH CNG HA X HI CH NGHA VIT NAM

Khoa Cng Ngh Thng Tin
c Lp T Do Hnh Phc
----------

NHIM V KHA LUN TT NGHIP

CH : Sinh vin phi ng t ny vo trang th nht ca bn thuyt minh
H V TN:
Nguyn Hong Bo Trung ....... MSSV: 21072233

Trn Minh Tuyn ..................... MSSV: 21072320
CHUYN NGNH: Mng my tnh .................. LP : 07CTH02, 07CTH03

1. Tn ti: Trin khai cc bn Windows Server 2008 trong mi trng mng
ty theo tng nhu cu
2. Gio vin hng dn: Thc s Trn Qung Hng.
3. Nhim v / ni dung ti (m t chi tit ni dung, yu cu, phng php ) :
a. Cc khi nim cn bn v Windows Server 2008. Ni dung: Cc yu cu
v phn cng, cc khi nim cn bn ca Windows Server 2008, nhng c im
ging v khc so vi Windows Server 2003.
b. Dng thng dng nht ca trin khai Windows Server 2008. Ni dung:
Nu l thuyt v mc ch ca vic trin khai Windows Server 2008 khi khng c min
v khi c min.
c. Cch to ra min ca Windows Server 2008. Ni dung: Dng min cc cp
Windows Server ni chung (bao gm: 2000, 2003 v 2008), DNS Server, DHCP
Server, Active Directory Users and Computers (bao gm: Domain Users, Domain
Group).
d. Cch s dng cc cp min khc nhau trong Windows Server 2008.
Ni dung: Nu cc cp cng vi chc nng ca min Windows Server 2000,
Windows Server 2003 v Windows Server 2008. Cch nng cp chc nng min t
thp ln cao.
Trang iii
e. Nhng dng trin khai khc ca Windows Server 2008. Ni dung: Trin
khai Core server and DHCP Server.
f. Cch ha nhp Windows Server 2003 vo mi trng Windows Server
2008. Ni dung: To mt Domain trn mt server khc chy h iu hnh Windows
2003 chy ng hnh vi domain c do Windows Server 2008 to ra nhng cp
chc nng 2003.
g. Cch gia nhp cc my trm chy Windows Vista vo min ca Windows
Server 2008 to ra. Ni dung: gia nhp vo min t my chy h iu hnh Vista.
h. Cch gia nhp cc my trm chy Windows 7 vo min ca Windows
Server 2008 to ra. Ni dung: gia nhp vo min t my chy h iu hnh Windows
7.
4. Thi gian thc hin t: ngy 05 thng 04 nm 2010 n ngy 07 thng 08 nm
2010.
Ni dung v yu cu Kha lun tt nghip c thng qua B mn.
Tp. H Ch Minh, Ngy 16 thng 04 nm 2010
TRNG B MN
GIO VIN HNG DN
(K v ghi r h tn)
(K v ghi r h tn)
Trn Qung Hng
Trang iv
LI CM N
-----------------Trong sut thi gian hc tp ti Trng Cao ng Nguyn Tt Thnh v c
lm kha lun ti trng, em hc hi c rt nhiu t kin thc c bn n nng
cao v rt ra nhiu kinh nghim tht s b ch cho bn thn. Qua t lm kha lun tt
nhip ln ny, vi nhng kin thc thu c, gip em t tin hn rt nhiu trong
cng tc chuyn mn v vn dng mt cch thit thc cho cng tc sau ny.
Hon thnh kha lun tt nghip ln ny, em xin chn thnh by t lng bit
n su sc n Ban Gim Hiu nh trng, Phng K Thut, cng ton th qu thy
c ca khoa, trng to mi iu kin cho chng em hc tp, rn luyn v phn
u. c bit, em xin by t lng cm n nng nhit nht n thy ThS. Trn Qung
Hng Gio vin b mn, tn tnh ch bo, hng dn chng em trong sut qu
trnh lm kha lun tt nghip.
Chng em xin gi li cm n nhng li gp chn thnh v thit thc ca
Gio vin phn bin, nhng ng gp y gip chng em rt ra c nhng bi hc
b ch cho bn thn v khc phc nhng sai st. Ngoi ra, xin gi li cm n n gia
nh v bn b, ngun ng vin cho chng em hon thnh kha lun tt nghip ln
ny.
Cui cng, xin knh chc ton th qu thy c sc khe, hnh phc v lun
thnh cng trn con ng gio dc cng nh trong cuc sng. Chc Ban Gim Hiu
Trng Cao ng Nguyn Tt Thnh s gt hi c nhiu thnh cng trong cng
cuc o to ngun nhn lc cho t nc. Xng ng l ngi trng mang tn Bc
knh yu.
Nhm sinh vin thc hin
Nguyn Hong Bo Trung
Trang v
Trn Minh Tuyn
TM TT KHA LUN
------------------
Windows Server 2008 l mt h iu hnh dnh cho my ch c Microsoft

pht hnh vo ngy 12 thng 11 nm 2007. Mt trong nhng thay i sng gi nht
trong Windows Server 2008 l phin bn h iu hnh ny c thm kh nng h tr
o ho. Trong khi n ngy 13 thng 7 nm 2010, Microsoft s ngng h tr cho
Windows Server 2000 v tng lai s l l Windows Server 2003. V vy, tt c cc
my ch chy Windows Server 2000 v k c Windows Server 2003 s phi chuyn
sang Windows Server 2008. Nhng tnh n thi im ny, ngi dng hu nh cha
c nhiu ti liu v Windows Server 2008, trong kha lun tt nghip ln ny, chng
em tp trung m rng cc vn :
a. Cc khi nim cn bn v Windows Server 2008.
b. Dng thng dng nht ca trin khai Windows Server 2008.
c. Cch to ra min ca Windows Server 2008.
d. Cch s dng cc cp min khc nhau trong Windows Server 2008.
e. Nhng dng trin khai khc ca Windows Server 2008.
f. Cch ha nhp Windows Server 2003 vo mi trng Windows Server
2008.
g. Cch gia nhp cc my trm chy Windows Vista vo min ca Windows
Server 2008 to ra.
h. Cch gia nhp cc my trm chy Windows 7 vo min ca Windows
Server 2008 to ra.
Trang vi
MC LC
----------------
Nhn xt ca gio vin hng dn ........................................................................ Trang i

Nhn xt ca gio vin phn bin......................................................................... Trang ii
Nhim v kha lun tt nghip ........................................................................... Trang iii
Li cm n ............................................................................................................ Trang v
Tm tt kha lun ................................................................................................ Trang vi
Mc lc ............................................................................................................... Trang vii
Bng v ................................................................................................................ Trang xi
Cc k hiu .......................................................................................................... Trang xv
Lit k cc t vit tt ......................................................................................... Trang xvi
1. Chng 1: Cc khi nim cn bn v Windows Server 2008 ................... Trang 1
1.1. Yu cu ti thiu v phn cng ..................................................................... Trang 1
1.1.1. Thng tin chung .......................................................................................... Trang 1
1.1.2. Thng tin h tr ca tng loi trong Windows Server 2008 ...................... Trang 4
1.2. Nhng c im v tnh nng ca Window Server 2008 .............................. Trang 6
1.2.1. Cc c im chnh .................................................................................... Trang 6
1.2.2. Nhng im khc bit ca Window Server 2008
so vi Window Server 2003 ................................. Trang 8
1.3. Cc dch v min ca Windows Server 2008................................................ Trang 9
1.3.1. Active Directory Domain Services ............................................................. Trang 9
1.3.2. Active Directory Federation Services ...................................................... Trang 14
2. Chng 2: L thuyt v vic trin khai Windows Server 2008 ............... Trang 18
2.1. Trin khai Windows Server 2008 khng tch hp min.............................. Trang 18
Trang vii
2.2. Trin khai Windows Server 2008 cng vi min ........................................ Trang 19
3. Chng 3: Trin khai h thng Domain Controller
trn Windows Server 2008 ..................... Trang 20
3.1. Dng min trn Windows Server 2008 vi cp 2000 ............................ Trang 20
3.2. Ci t v cu hnh DNS Server .................................................................. Trang 25
3.2.1. Ci t DNS Server .................................................................................. Trang 25
3.2.2. Cu hnh DNS Server ............................................................................... Trang 25
3.2.3. Tm hiu thm v cc zone trong DNS Server ......................................... Trang 37
3.3. Ci t v cu hnh DHCP Server ............................................................... Trang 28
3.3.1. Ci t DHCP Server................................................................................ Trang 28
3.3.2. Cu hnh DHCP Server ............................................................................ Trang 29
3.4. Qun l Active Directory Users and Computers (ADUC) ........................... Trang 32
3.4.1. To mi cc Organization Unit (OU) trong min .................................... Trang 32
3.4.2. iu chnh cc chnh sch v mt khu ca ngi dng ......................... Trang 34
3.4.3. To, xa v cp nht ngi dng min (Domain Users) .......................... Trang 36
3.4.4. To, xa v cp nht nhm ngi dng min (Domain Groups) ............. Trang 39
3.5. L thuyt v Trust Relationships trn Windows Server 2008..................... Trang 42
3.5.1. Gii thiu .................................................................................................. Trang 42
3.5.2. nh ngha ................................................................................................ Trang 42
3.5.3. Trusts lm vic nh th no...................................................................... Trang 42
3.5.4. Transitive Trust ........................................................................................ Trang 43
3.5.5. Nontransitive Trust ................................................................................... Trang 44
4. Chng 4: Cch s dng cc cp min khc nhau
trong Windows Server 2008 ................ Trang 45
4.1. Cp cng vi chc nng ca cc min
Trang viii
Windows Server 2000, Windows Server 2003

v Windows Server 2008 ..................................................... Trang 45
4.1.1. V chc nng ............................................................................................ Trang 45
4.1.2. V cp .................................................................................................. Trang 45
4.2. Cch nng cp chc nng min t thp ln cao ..................................... Trang 45
4.1.1. Nng cp min cp Windows Server 2000
ln min cp Windows Server 2003 ................. Trang 45
4.1.2. Nng cp min cp Windows Server 2003
ln min cp Windows Server 2008 .................. Trang 47
5. Chng 5: Trin khai Server Core v DHCP Server Core ..................... Trang 48
5.1. Trin khai Server Core ................................................................................ Trang 48
5.1.1. Cc bc chun b .................................................................................... Trang 48
5.1.2. Ci t Server Core .................................................................................. Trang 48
5.1.3. i tn my v cu hnh TCP/IP .............................................................. Trang 50
5.2. Trin khai DHCP Server Core ..................................................................... Trang 52
5.2.1. Ci t DHCP Server Core ....................................................................... Trang 52
5.2.2. My trm chy Windows Server 2008 ci
Remote Server Administration Tools ................................ Trang 53
5.2.3. Cu hnh DHCP Server Core .................................................................... Trang 53
5.2.4. Kim tra kh nng cp pht IP t DHCP Server Core ............................. Trang 56
6. Chng 6: Ha nhp Windows Server 2003
vo mi trng Windows Server 2008 ................................ Trang 58
6.1. Thit lp a ch IP v gia nhp vo
min ca Windows Server 2008.................................... Trang 58
6.1.1. Thit lp a ch IP ................................................................................... Trang 58
Trang ix
6.1.2. Gia nhp vo min trn Windows Server 2008 ........................................ Trang 59
6.2. Ci t v cu hnh AD, DNS trn Windows Server 2003 ......................... Trang 60
6.2.1. Cu hnh DNS trn server chnh ............................................................... Trang 60
6.2.2. Ci t v cu hnh DNS Server trn server ph ...................................... Trang 61
6.2.3. Ci t min trn server ph ..................................................................... Trang 69
7. Chng 7: Cch gia nhp cc my trm chy
Windows Vista vo min ca Windows Server 2008 to ra ........... Trang 72
7.1. Kim tra ng mng .................................................................................. Trang 72
7.2. Gia nhp min .............................................................................................. Trang 73
8. Chng 8: Cch gia nhp cc my trm chy
Windows 7 vo min ca Windows Server 2008 to ra .................. Trang 76
8.1. Kim tra ng mng .................................................................................. Trang 76
8.2. Gia nhp Min ............................................................................................. Trang 77
8.3. S khc bit khi gia nhp vo min
ca Windows XP, Vista v Win7........................................... Trang 77
8.3.1. Windows XP ............................................................................................. Trang 77
8.3.2. Windows Vista v Win7 ........................................................................... Trang 78
9. nh gi kt qu .......................................................................................... Trang 79
Ti liu tham kho ............................................................................................... Trang xi
Trang x
BNG V
------------------
STT
M t
Tn hnh
Hnh 1
M hnh Read-Only Domain Controller
Hnh 2
H thng mng vi Windows Server khng tch hp min
Hnh 3
H thng mng vi Windows Server khng tch hp min (2)
Hnh 4
H thng mng vi Windows Server tch hp min
Hnh 5
Internet Protocol Version 4 (TCP/IPv4) Properties
Hnh 6
Mn hnh sau khi thm xong Active Directory Domain Services
Hnh 7
t tn cho min khi dng
Hnh 8
Chn cp rng khi dng min
Hnh 9
Kt qu sau khi dng xong min ti Server Manager
10
Hnh 10
Ci t thnh cng DNS Server
11
Hnh 11
Thm mt zone mi trong Reverse Lookup Zone
12
Hnh 12
in dy a ch IP trong khi to ra mt zone mi
13
Hnh 13
To thm mt record mi trong DNS Server (1)
14
Hnh 14
To thm mt record mi trong DNS Server (2)
15
Hnh 15
Thng tin trc khi ci t DHCP Server
16
Hnh 16
To mt Scope mi trong DHCP Server
17
Hnh 17
Cu hnh dy a ch IP v Subnet Mask s cp pht
18
Hnh 18
Active mt Scope mi c to trong DHCP Server
19
Hnh 19
Cu hnh a ch IP s cp trong Scope Options
20
Hnh 20
Cc a ch IP s cp pht sau khi cu hnh xong
Trang xi
21
Hnh 21
To mt OU mi trong AD
22
Hnh 22
Cc OU sau khi to xong
23
Hnh 23
Phn quyn ca OU
24
Hnh 24
iu chnh cc chnh sch ca min
25
Hnh 25
Chnh sch v mt khu trc khi iu chnh
26
Hnh 26
Chnh sch v mt khu sau khi iu chnh
27
Hnh 27
To mt ti khon ngi dng mi
28
Hnh 28
Cc ngi dng sau khi c to ra
29
Hnh 29
iu chnh cc thng tin c nhn ca ngi dng
30
Hnh 30
Thm mt nhm mi trong OU
31
Hnh 31
Thm ngi dng vo nhm
32
Hnh 32
Tm kim ngi dng nng cao
33
Hnh 33
Cc ngi dng sau khi c thm vo nhm
34
Hnh 34
Trust Path in a One-Way Trust
35
Hnh 35
H thng Forest trong Trust Relationships
36
Hnh 36
Nng cp min trong Windows Server 2008

Nng cp min ln Windows Server 2003 trong Windows
37
Hnh 37
Server 2008
38
Hnh 38
Khng nh vic nng cp min
39
Hnh 39
La chn phin bn ci t Windows Server 2008
40
Hnh 40
Mn hnh ca Windows Server 2008 phin bn Sever Core
41
Hnh 41
Command Line thng bo i thnh cng tn my
42
Hnh 42
Command Line cho bit thng tin cc interfaces
43
Hnh 43
Command Line thng tin v a ch IP
Trang xii
44
Hnh 44
Command Line ping a ch IP ca server
45
Hnh 45
Command Line cc chng trnh trn Server Core
46
Hnh 46
Command Line thng bo khi ng thnh cng DHCP Server

Core
47
Hnh 47
Thm mt Features mi
48
Hnh 48
in a ch IP ca DHCP Server Core
49
Hnh 49
Thm mt Scope mi trong DHCP Server
50
Hnh 50
Cu hnh khong a ch IP v Subnet Mask s cp pht
51
Hnh 51
Active mt Scope mi c to trong DHCP Server
52
Hnh 52
Cu hnh IP ca Rounter trong Scope Options
53
Hnh 53
Cc a ch IP s cp pht sau khi cu hnh xong
54
Hnh 54
IP my trm nhn c t DHCP Server
55
Hnh 55
56
Hnh 56
Thng bo gia nhp min thnh cng
57
Hnh 57
ng nhp vo min vi ti khon Administrator

iu chnh li gi tr ca DNS trong Internet Protocol Version 4
58
Hnh 58
(TCP/IPv4) Properties
59
Hnh 59
Ci t DNS trong Windows Server 2003
60
Hnh 60
Nhp a ch ca DNS chnh
61
Hnh 61
Cc Zone v Record trn DNS ph
62
Hnh 62
Zone Transfers ti DNS chnh
63
Hnh 63
Cc Zone v Record trn DNS ph
64
Hnh 64
Zone Transfers ti DNS ph
65
Hnh 65
To mt Pointer mi trong DNS Server
Trang xiii
66
Hnh 66
La chn trong khi to Record
67
Hnh 67
Zone Tranfers ti DNS ph
68
Hnh 68
Xc nhn a ch IP ca Server Zone Tranfers
69
Hnh 69
Cu hnh thm trong DHCP Server
70
Hnh 70
Thm mt a ch IP ca DNS Server trong DPCP Server
71
Hnh 71
IP my trm nhn c t DHCP Server
72
Hnh 72
Ping Server ph
73
Hnh 73
Phn phi DNS
74
Hnh 74
Tin hnh dng min trong Windows Server 2003
75
Hnh 75
Chn ci t min trn mt min c sn
76
Hnh 76
Nhp vo ti khon v tn min
77
Hnh 77
Ci t min ph trn Windows Server 2003
78
Hnh 78
IP my trm nhn c t DHCP Server vi my trm chy

Windows Vista
79
Hnh 79
Tin hnh gia nhp min trn Windows Vista
80
Hnh 80
Thng bo gia nhp min thnh cng
81
Hnh 81
ng nhp vo min trn Windows Vista
82
Hnh 82
IP my trm nhn c t DHCP Server vi my trm chy

Windows 7
83
Hnh 83
Thng bo gia nhp min thnh cng trn Windows 7
Trang xiv
CC K HIU
-----------------STT
1
K hiu
ngha
Bc tip theo hoc bc k tip
Trang xv
LIT K CC T VIT TT
------------------
STT
T vit tt
ngha
IIS
Internet Information Services
NAP
Network Access Protection
NAS
Network Access Services
VPN
Virtual Private Networks
RODC
Read-only Domain controllers
SP1
Service Pack 1
DC
Domain Controller
OU
Organization Unit
AD
Active Directory
10
DHCP
Dynamic Host Configuration Protocol
11
DNS
Domain Name System
12
ADUC
Active Directory Users and Computers
Trang xvi
Chng 1: Cc khi nim cn bn v Windows Server 2008
CHNG 1: CC KHI NIM CN BN V

WINDOWS SERVER 2008
-----
-----
1.1. Yu cu ti thiu v phn cng

1.1.1. Thng tin chung:
Xc nh yu cu phn cng ba mc ti thiu, ngh v ti u ca
Windows Server 2008, t so snh vi h thng ca bn. Cn tp trung vo ba phn
chnh, l b nh RAM, b vi x l, v dung lng cn trng trn cng.
Cu hnh ngh trn ch l yu cu cn thit chy h iu hnh. Bn cn
tham kho thm yu cu phn cng ca nhng ng dng s c chy trn h thng
c s iu chnh ph hp. Nu bn nng cp b nh RAM ln hn 16GB, bn cn tng
thm dung lng trng trn cng dnh ch cho b nh o (Pagefile), ch
Hibernate v cc tp tin kt xut (Dump file).
Bn c th s dng cng c Microsoft Assessment and Planning Toolkit
(MAP) nh gi h thng my ch. Cng c ny s to bn bo co gip bn xc
nh my ch no sn sng ci t Windows Server 2008.
Trang 1
Thit b
Ti thiu
B vi x l 1GHz
Gi
2GHz
Ti u
3GHz RAM hoc nhanh hn
Lu
B vi x l Intel
Itanium 2 rt cn cho
Window Server 2008,
cho Itanium Base
System
RAM
512MB
- 2GB RAM (Bn y ) hoc 1GB RAM (Bn server
1GBz
Core) hoc nhiu hn.

- Ti a (32 bit systems): 4 GB (Bn Standard) or 64 GB
(Bn Enterprise v Datacenter)
- Maximum (64-bit systems): 32 GB (Bn Standard) or
2TB (Bn Enterprise, Datacenter, and Itanium-Based
Systems)
cng
cn trng
1Ghz
40GB (Bn y ) 80GB (Bn y ) or 40GB (Bn Server Core) hoc l My vi tnh vi hn 16
hoc
10GB
(Bn tt hn
GB b nh RAM s
yu cu khng gian a,
Server Core)
nhiu hn cho phn
Trang 2
trang, lc my khng
hot ng, v cc file
rc
a mm
DVD-ROM drive
Nhng ph
Super VGA (800 600) hoc phn gii mn hnh cao
kin khc
hn, con chut, bn phm thit b tr tng thch
Trang 3
1.1.2. Thng tin h tr ca tng loi trong Windows Server 2008:

1.1.2.1 Windows Web Server 2008: ng nh tn gi, n bn ny c xy
dng cho mt mc ch duy nht: tr thnh my ch web. Windows Web Server 2008
c nhng ci tin v kin trc trong IIS 7.0, ASP.NET v Microsoft .NET Framework.
y l bn dng trin khai trang web, ng dng web v dch v web.
Windows Web Server 2008 h tr: 32GB RAM trn h thng 64-bit (4GB trn
h thng 32-bit); 4 b vi x l a nhn.
1.1.2.2. Windows Server 2008 Standard: l h iu hnh mnh m cho my
ch, c tch hp nhiu tnh nng nhm ci thin bo mt, qun l, v gim chi ph
c s h tng, bao gm: Web services; Hyper-V; Terminal Services; Presentation
virtualization; Application virtualization; Network Access Protection (NAP);
BitLocker; RODCs; Windows Service Hardening; Bidirectional Windows Firewall;
Next-generation cryptography support; Server Manager; Windows Deployment
Services; Windows PowerShell; Next-generation TCP/IP; Server Core.
Windows Server 2008 Standard h tr: 32GB RAM trn h thng 64-bit (4GB
trn h thng 32-bit); 4 b vi x l a nhn; 250 kt ni dch v truy cp mng
(Network Access Services - NAS); 50 kt ni my ch chnh sch mng (Network
Policy Server - NPS); 250 kt ni my phc v thit b u cui (Terminal Server); o
ha Hyper-V vi mt gii php min ph.
1.1.2.3. Windows Server 2008 Enterprise: b sung tnh sn sng cao, nhng
cng ngh bo mt mi nht v kh nng nng cp so vi bn Standard. Sau y l
mt vi tnh nng ni bt: Nhm chuyn i d phng - ti 16 nt (Failover
clustering); ng b ha b nh b qua li (Fault-tolerant memory); Sao chp cho;
Cp php ti a 4 my o b sung; Active Directory Federation Services (ADFS);
Advanced certificate services; Active Directory Domain Services (ADDS);
Windows Server 2008 Enterprise h tr: 8 b vi x l; 2TB RAM trn h
thng 64-bit (64GB trn h thng 32-bit); Khng gii hn s kt ni VPN (mng ring
o); Khng gii hn s kt ni dch v truy cp mng; Khng gii hn s kt ni my
ch chnh sch mng.
Trang 4
1.1.2.4. Windows Server 2008 Datacenter: y l n bn dnh cho nhu cu o

ho quy m ln v c b sung kh nng nng cp cho ng dng trng yu trong c
s h tng CNTT ln. Sau y l nhng tnh nng ni bt: o ha quy m ln - cho
php bn thm v s gii php o; Failover clustering; Phn chia phn cng ng;
Windows Server High Availability Program.
Windows Server 2008 Datacenter h tr: 2TB RAM trn h thng 64-bit
(64GB trn h thng 32-bit); 64 b vi x l 64-bit x64 v 32 b vi x l 32-bit x86;
Khng gii hn quyn s dng nh o; 16 nt failover clustering (nhm lin kt
chuyn i d phng); Thm nng / Thay nng b nh v b vi x l trn phn cng
h tr; ng b ha b nh b qua li; Sao chp cho; Khng gii hn s kt ni dch
v truy cp mng; Khng gii hn s kt ni my ch chnh sch mng; 65,535 kt
ni terminal server; Qun l nhn dng tin tin.
1.1.2.5. Windows HPC Server 2008: Dnh ring cho mi trng in ton
hiu sut cao (HPC), n bn ny cho php bn vn ti quy m hng ngn li vi x l.
iu ny c li khi bn l cn bng ti khi lng ln cng vic qua nhiu b vi x l
v cn qun l cng nh gim st tnh n nh v sc khe mi trng HPC.
1.1.2.6. Windows Server 2008 for Itanium-Based Systems: cho php bn chy
Windows Server 2008 trn h thng nn tng Itanium. Cc b vi x l nn tng
Itanium c kh nng x l nhu cu in ton cp tc ca cc ng dng nghip v trong
mi trng cp doanh nghip. B vi x l Itanium s dng cu trc mi hon ton ch
khng phi ch m rng t cu trc 32-bit ln 64-bit. Mt c im na ca b vi x l
ny l kin trc in ton lnh song song (EPIC) gip ci thin hiu sut qua trng
thi song song cp lnh, tng ti a c hi thc thi cu lnh song song. Ti a su cu
lnh c th c thc thi song song.
Windows Server 2008 for Itanium-Based Systems h tr: Phn chia phn cng
ng; Tn dng u th ca Itanium ( tin cy, tnh sn sng v kh nng nng cp);
2TB RAM; 64 b vi x l Itanium hoc 64 nhn; Thm nng / Thay nng b nh
RAM v b vi x l; 8 nt failover clustering; ng b ha b nh b qua li; Cp
php khng gii hn gii php o vi sn phm o ho bn th ba.
Trang 5
1.2. Nhng c im v tnh nng ca Window Server 2008

1.2.1. Cc c im chnh:
Failover Clustering Nhm chuyn i d phng: Nhng ci thin v nhm
t ng chuyn i d phng trong Windows Server 2008 c trang b bng vic n
gin ha chng, lm cho chng an ton hn v nng cao kh nng n nh.
Identity and Access Nhn dng v truy cp: Microsoft Windows Server
2008 m rng c s nhn dng/truy cp vi mt s tnh nng mi v cng ngh gip
cho cc t chc c th ci thin c hiu qu lm vic, gim c chi ph v CNTT,
n gin ha mt s nguyn tc v cho php bo mt cao.
Internet Information Services 7.0 l mt nn tng nng cao v bo mt, d
dng trong qun l gip cho vic pht trin, cu hnh ng dng web v cc dch v tr
nn tin cy hn. IIS 7.0 cng l mt h thng xng sng h tr v hp nht th h k
tip ca cc cng ngh nn tng Windows Web gm: ASP.NET 2.0, Windows
Communication Foundation Web services v Windows SharePoint Services.
Windows Deployment Services trong Windows Server 2008 l phin bn
k tip ca Microsoft Remote Installation Services (RIS). N cung cp vic lu tr,
qun l v trin khai cc image. S dng qu trnh khi ng Pre-Boot eXecution
Environment (PXE) ci t h iu hnh, trong gm c ci t mi cho my
tnh.
Network Access Protection v cc iu l (NAP) l mt nn tng chnh
sch c xy dng trong cc h iu hnh Windows Vista volume focus Windows
Server 2008 gip bo v v duy tr s an ton h thng trong t chc ca bn. Cc tnh
nng ca NAP gm c chnh sch hp l cho trng thi my tnh, hn ch s truy cp
vo ti nguyn mng i vi cc my tnh khng yu cu t ra theo iu l.
Nn tng kt ni Cc nng cp lm cho tnh nng kt ni c c mt s
cch tn ng k nht c trong Windows Server 2008. Nhng thay i ny s gip cc
qun tr vin CNTT c nhng kinh nghim kt ni tin cy, an ton v c kh nng m
rng hn.
Trang 6
C s h tng t xa Microsoft Windows Server 2008 cung cp mt s nng

cao gip gim c cc chi ph cho vic qun l, tng bo mt v ci thin s linh
hot cho c s h tng t xa ca bn.
Server Core Server Core l mt ty chn ci t mi i vi cc role,
chng gm c cc thnh phn cn thit v cc h thng con m khng c giao din
ha ngi dng, chnh v vy m n to kh nng sn c cao ca my ch phc v v
nhng t yu cu n vic nng cp, bo dng.
Server Manager Server Manager l mt tnh nng mi c trong Windows
Server 2008. N l mt bn tnh nng c thit k gip cc qun tr vin CNTT qun
l c ton b qu trnh ci t, cu hnh qun l cc role my ch v cc tnh nng
c trong Windows Server 2008. Server Manager thay th v hp nht mt s tnh nng
t Windows Server 2003 nh Manage Your Server, Configure Your Server v Add or
Remove Windows Components.
Tnh nng lu tr v in n Trong Microsoft Windows Server 2008, cc h
thng my in c kin trc my in mi cho php ngi dng c c hiu sut in tt
hn v cn mang n mt nn tng mi cho cc ng dng tng lai. Kin trc in n
mi ny khng ch duy tr kh nng tng thch vi cc ng dng ang tn ti v cc
driver m cn cho php ng dng ang tn ti kh nng linh hot s dng cc tnh
nng ch c th c thit lp trong driver my in XPSDrv mi.
Terminal Services Cc dch v u cui: Mt s tnh nng mi trong dch
v u cui phi k n y l TS RemoteApp, TS Gateway, TS Easy Print, TS
Session Broker v TS Web Access.
Windows PowerShell Microsoft Windows PowerShell l mt tin ch dng
lnh mi v k thut kch bn theo nhim v, y chnh l tng ph hp vi s t
ng cc tnh nng c trong Windows Server 2008. Windows PowerShell s cho php
cc qun tr vin CNTT nng cao ton din c s kim sot v kh nng t ng
trong thc hin nhim v qun tr h thng t gip h c c nng sut cao hn
trong cng vic.
Trang 7
My ch o Nn tng o to kh nng linh ng tuyt vi nht l vi nn

tng ng, tin cy v n nh ca n kt hp vi mt tp cc cng c qun l c tch
hp cho php bn qun l c c ti nguyn o v ti nguyn thc.
Kh nng kt hp tt gia Windows Vista v Windows Server 2008 Khi cc
t chc ci t c Windows Vista v Windows Server 2008 th h hon ton c th
thc hin hiu qu hn vic qun l v nhanh hn v truyn thng.
1.2.2. Nhng im khc bit ca Window Server 2008 so vi Window Server

2003
Windows Server 2008 l s kt hp gia Windows Vista vi Windows Server
2003. Mt s dch v mi bn trong Windows Server 2008:
RODC mi c gii thiu trong b iu khin min (Read-only
Domain controllers).
WDS (Windows Deployment Services) thay v my ch RIS trong
Windows Server 2003.
Bn sao ca s bo v p dng cho mi cng nh tt c cc th mc.
Trnh t BOOT c thay i.
Installation 32 bit tng t nh Windows Server 2003 16 bit hoc 32 bit,
l l do ti sao ci t Windows Server 2008 nhanh hn.
Services c bit n nh chnh vai tr trong n.
Bin tp cc chnh sch nhm l mt la chn ring bit trong qung
co.
S khc bit chnh gia Windows Server 2003 v Windows Server 2008 l o
ha, qun l. Windows Server 2008 c thm cc thnh phn sn c v trnh iu khin
ca bn th ba c Microsoft cp nht v gii thiu tnh nng mi trong Windows
Server 2008 l Hyper-V
Windows Server 2008 introduces Hyper-V (V for
Virtualization), nhng ch trn cc phin bn 64bit. Ngy cng c nhiu cng ty p

Trang 8
dng iu ny nh mt cch gim chi ph phn cng bng cch chy mt s cc

my ch "o" trn mt my vt l. Nu bn thch cng ngh ny th v, hy chc chn
rng bn mua mt phin bn ca Windows Server 2008 bao gm Hyper-V, sau
khi ng cc Manger Server, thm Roles.
Trong Windows Server 2008, Microsoft gii thiu nhiu tnh nng v cng
ngh mi, trong mt s khng c sn trong Windows Server 2003 vi Service Pack
1 (SP1), gip gim in nng tiu th ca my ch v h iu hnh my khch,
gim thiu sn phm ph nh hng mi trng, v nng cao hiu sut my ch.
Microsoft Windows Server 2008 c thit k vi hiu qu nng lng cao
nht, cung cp cho khch hng sn sng tip cn v thun tin trong mt s tnh nng
mi nhm tit kim nng lng. N bao gm h tr cp nht tnh nng cho Advanced
Configuration and Power Interface (ACPI) processor power management (PPM), bao
gm cc h tr cho cc thc hin x l (P-states) v b x l ng nhn ri trn a h
thng. Nhng tnh nng ny n gin ha vic qun l in nng trong Windows
Server 2008 v c th c qun l d dng trn cc my ch v khch hng bng
cch s dng Group Policy.
1.3. Cc dch v min ca Windows Server 2008

1.3.1. Active Directory Domain Services
C rt nhiu chc nng v tnh nng mi c thm vo Active Directory ca
Windows Server 2008. Trong bi ny ta s tp trung vo Active Directory Domain
Services (ADDS) Windows Server 2008, bao gm mt s ci tin v nhng tnh
nng mi so vi Windows Server 2003. y l bi tm tt ngn ca nhng thay i
chnh v chc nng mi ca Domain Services:
Active Directory Domain Services Read-Only Domain Controllers
Active Directory Domain Services Restartable Active Directory Domain
Services
Active Directory Domain Services Fine-Grained Password Policies
Trang 9
Chc nng ca Domain Services c ci tin v nng cp Windows

Server 2008, cng vi mt wizard ci t c cng c (Server Manager). iu ny
cng cung cp nhng mc qun l mi cho chc nng ADDS nh Read-Only Domain
Controllers (RODCs). Read-Only Domain Controllers (RODCs) l mt dng mi ca
Domain Controller trong Windows Server 2008. Cng vi RODC, cc t chc c th
d dng trin khai mt Domain Controller ti v tr m bo mt thng thng khng
th m bo. Mc ch chnh ca RODC l cng c an ninh trong cc vn phng
chi nhnh. cc vn phng chi nhnh thng rt kh c c s gip cho
nhng vn c s h tng IT, c bit l Domain Controllers cha nhng d liu
nhy cm. Thng thng mt DC c th tm thy di mt chic bn vn phng.
Nu mt ngi no c th truy cp vt l vo DC, khng kh tc ng vo h
thng v c th truy cp vo d liu. RODC c th gii quyt nhng vn ny.
Nhng yu t cn thit cho RODC l:
Read-Only Domain Controller
Administrative Role Separation
Credential Caching
Read-Only DNS
Read-Only Domain Controller: RODC cha nhng bn copy khng cho
php ghi v khng cho php c ca c s d liu ca Active Directory vi tt c
nhng thuc tnh v cc i tng. RODC ch h tr nhng bn sao n hng nhng
thay i ca Active Directory, c ngha l RODC lun sao chp trc tip vi Domain
Controllers ti v tr HUB.
Trang 10
Hnh 1 M hnh Read-Only Domain Controller

RODC s thc hin vic sao chp thng thng hng n t v tr HUB cho
nhng thay i ca Active Directory v DFS. RODC s nhn bt k th g n t
Active Directory nhng nhng thng tin nhy cm, bng nhng ti khon mc nh
nh Domain Admins, Enterprise Admins v Schema Admins u c loi ra khi
vic sao chp ca RODC. Nu mt bn sao chp cn vit truy cp n Active
Directory, RODC gi mt phn hi chuyn n LDAP t ng a ng dng n mt
Domain Controller cho php ghi, ti v tr HUB chnh. RODC ny cng c th chy
Global Catalog Role ng nhp nhanh hn nu cn. y l thun li ln nht cho
cc vn phng chi nhnh, bi v nu c ai truy cp vt l vo server hay thm ch l n
trm n, ngi ny c th crack mt m trn ti khon ngi dng AD, nhng khng
phi tt c cc ti khon nhy cm - bi v chng khng tn ti trn RODC. iu ny
c ngha l nhng ti khon admin nhy cm khng th log in vo RODC nu kt ni
WAN n v tr HUB hin khng c sn. thi hnh RODC trong mi trng ca
bn, bn cn min ca mnh v forest ch Windows Server 2003 v DC chy b
m phng PDC cn chy Windows Server 2008.
Phn tch Administrative Role: Bn c th u quyn cho php qun tr vin
cc b cho cc server RODC n bt k user Active Directory. Ti khon ngi
dng u quyn s khng th log in vo server v thc hin cc nhim v duy tr server,
Trang 11
m khng cn s cho php bt k ADDS no v ngi dng khng cn phi truy cp

n Domain Controllers khc Active Directory, cch ny th bo mt khng lm tn
hi n min.
Credential Caching: Mc nh th RODC khng lu gia bt k credentials
ca ngi dng hay my tnh, ngoi tr ti khon my tnh ca chnh RODC v mt
ti khon c bit "krbtgt" m mi RODC c. RODC tuy nhin c th cu hnh lu
tr mt khu, iu ny c Nguyn tc sao chp mt khu Password Replication
Policy vn dng. Password Replication Policy xc nh liu sao chp DC n RODC
s cho php credentials ca ngi dng hay my tnh. Nu mt ngi dng nht nh
no c cho php, th credentials ca ngi dng ny c lu tr RODC khi
login. Khi mt ti khon c chng thc thnh cng vi RODC, RODC s c gng
lin lc vi mt Domain Controller cho php ghi v tr HUB. Nu mt mt khu
khng c lu tr, RODC s forward yu cu chng thc n mt DC cho php ghi.
DC nhn nhng biu hin nhn dng m yu cu ang n t RODC v kim tra
Password Replication Policy. Li ch ca Credential Caching l gip bo v mt khu
cc vn phng chi nhnh v hn ch ti a vic l credentials, trong trng hp
RODC c sp xp. Khi dng Credential Caching v nu RODC b mt trm, ti
khon ngi dng v ti khon my tnh c th reset mt khu ca h, da vo RODC
m chng s hu, Credential Caching c th tt v iu ny s hn ch vic r r c th
xy ra, nhng n s lm tng traffic
Read-Only DNS: Vi RODC, c th ci t mt service DNS. Mt server
DNS chy trn RODC khng h tr nng cp. nhng client c th dng server DNS
truy vn tn cc gii php. Bi v DNS l Read-Only, cc client khng th nng cp
cc record trn n. Nhng nu client mun t nng cp DNS record, RODC s gi mt
forward chuyn n DNS cho php ghi. Mi record nng cp ring l s c sao chp
sau t server DNS cho php ghi n server DNS RODC. y l i tng sao
chp n l (DNS record), gi cc server RODC DNS lun c cp nht v cho
nhng client cc vn phng chi nhnh tn ca nhng gii php nhanh chng.
Restartable Active Directory Domain Services: Vi Windows Server 2008,
Active Directory Domain Services (ADDS) by gi c th dng li v c th khi
Trang 12
ng li. iu c ngha l bn c th dng ADDS thc hin cc nhim v v bo

tr, cn cc phin bn trc ca h iu hnh Windows cn reboot li Directory
Services Restore Mode (DSRM). y l mt tnh nng tuyt vi cho cc cng vic
script v t ng ho.
Nhng tnh trng c th ca ADDS l:
ADDS started
ADDS stopped
Ch restore ADDS Restore Mode (DSRM)
y l mt ch li m cc cng vic dng yu cu reboot offline cc
ADDS by gi c th hng trc tip n console. iu ny cho php nhng qun tr
vin s linh hot duy tr v thc hin nhng hot ng offline ADDS nhanh chng
hn. Fine-Grained Password Policies. Trc khi c Windows Server 2008, bn ch c
mt mt khu v mt nguyn tc kho ti khon trn mi min, c p dng cho tt
c ngi dng trn min. Cn iu mi Windows Server 2008 ADDS l n c th
cng vi Fine-Grained Password Policies xc nh nhng set mt khu khc nhau hay
nhng nguyn tc kho vi nhng nhm ngi dng khc nhau trn cng mt min.
Fine-Grained Password Policies cho php nhng ci t sau:
Chnh sch mt khu: Bt buc lch s mt khu, Ti a thi gian ca mt
khu, Ti thiu thi gian ca mt khu, Ti a di mt khu, Mt khu phi p
ng nhng yu cu v phc tp, Lu tr mt khu dng m ho o chiu.
Chnh sch kho: Thi gian kho ti khon, Ngng kho ti khon, Reset ti
khon kho.
Fine-Grained Password Policies c th p dng cho cc nhm i tng ngi
dng v bo mt ton cu. Nhng khng th p dng chng cho OUs. dng FineGrained Password Policies mc chc nng ca min phi Windows Server 2008.
Kt lun: Windows Server 2008 Active Directory Domain Services (ADDS)
c mt s tnh nng v chc nng mi tuyt vi, iu ny c th hn ch ti a nhiu
vic qun l min. tm tt; Vi cc vn phng chi nhnh dng The Read-Only
Trang 13
Domain Controller (RODC) c nhng tnh nng mi v tuyt vi nht ca Windows

Server 2008, n c cng c mt cch mnh m v vn bo mt cho cc t chc
chy Domain Controllers nhng vng ho lnh. FineGrained Password Policies l
mt tnh nng mi tuyt vi tng tnh linh ng cho bt k min no vi kh nng
cho php cc nguyn tc kho v nhiu mt khu. Cng vi tnh nng mi, n cng gia
tng tnh bo mt v s linh ng cho Active Directory.
1.3.2. Active Directory Federation Services
Active Directory Federation Services l g? Active Directory Federation
Services (ADFS) l tnh nng c gii thiu n trong Windows Server 2003 R2,
tnh nng ny cung cp gii php nhn dng truy cp. N cho php cc trnh duyt trn
client, bn trong hoc bn ngoi mng ca bn c kh nng truy cp mt ln (SingleSign-On (SSO)) vo cc ng dng da trn Web. Tuy nhin bn cng cn lu rng
ADFS ch lm vic cho cc ng dng nn tng Web. ADFS c th c s dng trong
vic cu hnh Web hoc cc mi trng SharePoint. N cng rt hu dng khi mt
cng ty no c cc my ch web nm trong mt DNZ hoc trn mt hng hosting
t xa hoc i tc kinh doanh v mun kim sot cc thng tin quan trng i vi cc
ng dng web ca h t Active Directory bn trong.
Nhng im mi trong ADFS ca Windows Server 2008: Vy nhng g l
mi ca ADFS trong Windows Server 2008 khi mang so snh vi Windows Server
2003 R2? ADFS vn l mt cng ngh tng i mi ca Microsoft v y l th h
th hai ca sn phm ny. Windows Server 2008 c mt s tnh nng mi cho ADFS,
cc tnh nng ny khng c sn trong Windows Server 2003 R2. Cc tnh nng mi
ny s to iu kin d dng trong qun tr v m rng s h tr cho cc ng dng
chnh ca Microsoft.
Tng quan v mt s tnh nng mi:
Ci thin v vn ci t: Wizard ci t ca ADFS gm mt role my
ch trong Windows Server 2008 v cc kim tra hp l ha my ch. Server Manager
trong Windows Server 2008 s t ng lit k v ci t tt c cc dch v m ADFS
yu cu trong qu trnh ci t ADFS role (ASP.NET, IIS,..).
Trang 14
Ci thin v s h tr: Phin bn mi ca ADFS c tch hp cht ch

hn vi Active Directory Rights Management Services (AD RMS) v Microsoft
Office SharePoint Server 2007 (MOSS). MOSS 2007 hin h tr kh nng ng nhp
mt ln c tch hp trong ADFS. ADFS h tr thnh vin MOSS 2007 v cc
nh cung cp role, iu c ngha rng bn c th cu hnh MOSS 2007 vi t cch
l mt ng dng thn thuc bn trong ADFS v sau qun tr bt k site ny ca
SharePoint bng iu khin truy cp da trn role v thnh vin.
Qun tr tt hn: ADFS c ci thin bng mt chc nng import v
export chnh sch mi, gip gim ti thiu nhng vn cu hnh trn i tc.
ADFS lm vic nh th no? Active Directory Federation Services (ADFS)
cung cp cc dch v qun l nhn dng rng ri, cho php cc cng ty ln m rng
c c s h tng ca h cho cc i tc tin cy v khch hng. ADFS c 3 kh nng
chnh di y:
Thm nh mng ni b m rng (Extranet)
C ch ng nhp mt ln da trn Web
Cc dch v nhn dng rng cho cc ng dng web da trn IIS.
ADFS c thit kt c th c trin khai trong cc t chc ln v trung
bnh c nhng iu kin sau:
t nht mt dch v th mc (Directory): Active Directory Domain Services
(ADDS) hoc Active Directory Lightweight Directory Services (AD LDS)
Cc my tnh nm trong min
Cc my tnh ang chy trn nhiu nn tng h iu hnh khc nhau
Cc my tnh c kt ni Internet
Mt vi ng dng da trn Web
Tt c vic truyn thng t Active Directory n ADFS u c m ha v
tt c cc truyn thng t cc client n ADFS cng u c m ha SSL. Nhng li
ch em li trong mi trng rng l mi cng ty lin tc c th qun l c s
Trang 15
phn bit vi chnh n, nhng mi cng ty cng c th t d n mt cch bo m v

chp nhn s phn bit vi cc t chc khc.
Cc Role trong ADFS: ADFS trong Windows Server 2008 c mt s role
khc, ph thuc vo cc yu cu ca t chc m bn c th trin khai my ch ang
chy mt hoc nhiu role ADFS.
Tng quan v cc role ny:
Dch v Federation: Dch v Federation c th c s dng bi mt hoc
nhiu my ch federation chia s mt chnh sch nht qun no . Cc my ch
ny c s dng nh tuyn cc yu cu thm nh t cc ti khon ngi dng
trong nhng t chc khc hoc tr cc client c t trn Internet.
Federation Service Proxy: Federation Service Proxy l mt proxy cho dch
v Federation trong mng vnh ai (DMZ). Federation Service Proxy s dng cc giao
thc WS-Federation Passive Requestor Profile (WS-F PRP) chn thng tin ca
ngi dng t cc trnh duyt my khch v gi thng tin ny n dch v Federation.
Claims-aware agent: Claims-aware agent c ci t trn my ch Web
cu hnh ng dng claims-aware. N cng cn thit cho php truy vn cc u
sch th bo mt ADFS. ng dng claims-aware l mt ng dng ASP.NET ca
Microsoft hoc mt ng dng chun ging nh MOSS 2007.
Tc nhn da trn th: Tc nhn th c th c ci t trn mt my ch
Web cu hnh ng dng th ca Windows NT. N cn thit h tr cho vic chuyn
i t th bo mt ADFS sang mc nhn cch ha. ng dng th ca Windows NT l
ng dng s dng cc c ch thm nh da trn Windows.
ADFS v Server Core Active Directory Federation Services roles khng nm
trong Server Core. N phn no ph thuc vo ASP.NET, mt nn tng khng c
trong Server Core.
ADFS v s pht trin ADFS l mt tnh nng c th gip cc chuyn gia
pht trin to cc ng dng web. ADFS cng c th l cha kha trong vic cung cp
truy cp bn ngoi an ton i vi cc ng dng Web ca bn. N cng c th c s
dng vi Active Directory Lightweight Directory Services (AD LDS) vi t cch l
Trang 16
mt b cung cp nhn dng cho vic chng thc v Windows Authorization Manager
cho vic kim sot chnh sch truy cp, cung cp gii php hon tt m rng cc
ng dng Web cho cc t chc tin cy.
Active Directory Lightweight Directory Services: Active Directory
Lightweight Directory Services (AD LDS) trc y c bit n vi tn Active
Directory Application Mode (ADAM), l mt ch t bit ca AD trong , cc
dch v th mc c cu hnh ch mt cho cc ng dng. Ch ny cung cp kh
nng lu tr v truy cp cho cc ng dng, s dng cng cc giao din qun tr vin v
cc chuyn gia pht trin thn thuc. AD LDS l mt tnh nng lu tr v truy vn
d liu dch v th mc ca LDAP cho cc ng dng th mc, khng ph thuc
vo nhng yu cu cho ADDS. N cng khng lu tr cc nguyn l bo mt vn c
trong ADDS. Cc chuyn gia pht trin c th s dng AD LDS lm vic vi cc
thng tin ca Active Directory trong cc ng dng ca h. ADFS l mt trong nhng
ng dng s dng AD LDS lu cc thng tin quan trng ny.
Kt lun: Active Directory Federation Services (ADFS) l mt tnh nng
mnh ca Windows Server 2008, n cho php cc t chc c c kh nng linh hot
trong vic kt ni cc ng dng Web v qun l cc thng tin v ti khon.
Trang 17
Chng 2: L thuyt v vic trin khai Windows Server 2008
CHNG 2: L THUYT V VIC TRIN KHAI

WINDOWS SERVER 2008
-----
-----
2.1. Trin khai Windows Server 2008 khng tch hp min

Hin nay, trn Windows Server 2008 c rt nhiu phin bn, chng c th la
chn mt phin bn ph hp vi nhu cu chng ta cn s dng. Trong trng hp c
quan c nhiu my tnh ng vai tr server, mi server li gi chc nng khc nhau
nh: DNS Server. DHCP Server, Backup Server, Web Server th mi server ch ci
cc dch v thch hp vi chc nng ca n.
V d: Mt server ng vai tr phn gii DNS Server, th trn server chng
ta ch cn ci DNS Service, khng cn dng thm min.
Hnh 2 H thng mng vi Windows Server khng tch hp min

Mt khc, khi chng ta khng cn qun l nhn vin tp trung, cng nh t
cc chnh sch cho ngi dng th vic trin khai Windows Server 2008 khng tch
hp min s gip server chy nhanh hn.
Trang 18
Chng 2: L thuyt v vic trin khai Windows Server 2008
Internet
Hnh 3 H thng mng vi Windows Server khng tch hp min (2)
2.2. Trin khai Windows Server 2008 cng vi min

Khi trin khai Windows Server 2008 tch hp thm min, trng hp ny th
my c quan ch c mt n hai server, tt c cc dch v t DNS Server, DHCP
Server v c AD u c ci trn cng mt my.
Ngoi ra, khi trin khai AD, chng ta s d dng qun l tp trung cc ti
khon ca ngi dng, t cc chnh sch.
Internet
Hnh 4 H thng mng vi Windows Server tch hp min
Trang 19
Chng 3: Trin khai h thng Domain Controller trn Windows Server 2008
CHNG 3: TRIN KHAI H THNG

DOMAIN CONTROLLER TRN WINDOWS SERVER 2008
-----
-----
3.1. Dng min trn Windows Server 2008 vi cp 2000

Active Directory Domain Services (ADDS) l mt dch v trn Windows
Server 2008, s dng thng tin lu tr trong Active Directory qun l cc i tng
Users, Group, Computer. Cc i tng ny c t chc theo mt cu trc phn cp.
Gm c cc kiu :
Active Directory Forest (Forest l i tng c to ra t mt nhm
gm 2 hay nhiu Domain tree c quan h tin cy vi nhau Trust relationship).
Cc Domain tree trong Forest.
Cc Organization Unit (OU) trong mi min.
Vic u tin cn chun b trc khi trin khai h thng min l cn mt a
Windows Server 2008 dng ci t Windows trc . Bi trong qu trnh dng
min, c th h thng s yu cu np a CD/DVD nhm c nhng tp tin cn thit.
Tip theo nhp chut phi vo My Computer Properties. Ca s System hin ra,
chn Change Settings, ti th Computer Name ca hp thoi System Properties
chn Change. Ti khung Computer name ta g vo tn ca server. G xong nhp
OK v khi ng li my tnh.
Sau khi chun b xong, vic u tin cn lm l t a ch IP tnh cho
server. V server ng vai tr l ni cung cp IP cho cc my trm nn khng th
a ch IP ng. Ngoi ra, nguyn tc khi dng DC cn a Preferred DNS v IP
Loopback. t IP tnh, ta nhp chut phi vo My Network Places Propeties.
Hp thoi Network and Sharing Center xut hin, khung Tasks nm bn phi,
chn tip Manage network connections.
Ti ca s Network Connection, ta s thy biu tng kt ni ca cc card
mng. y ch c mt card mng duy nht nn ta nhp phi Local Area Connection
Trang 20
v chn Properties. Lc ny ca s Local Area Connection Properties hin ra, ta

tm n dng Internet Protocol Version 4 (TCP/IPv4), chn Properties. Trong hp
thoi Internet Protocol Version 4 (TCP/IPv4) Properties, ta ln lt in vo cc
gi tr:
IP address: 172.29.10.1 (Server nn t XXX.XXX.XXX.1 thun li
cho vic truy cp v cu hnh sau ny).
Subnet mask: 255.255.255.0 (Subnet mask s t nhy khi ta in gi tr
ca IP address, nhng nn iu chnh v 255.255.255.0)
Default gateway: trng v card mng LAN trn my ch khng c
cng mc nh m ch c my trm mi khai bo.
Preferred DNS server: 172.29.10.1
Alternate DNS server: B trng. Trng hp chng ta c mt my khc
lm nhim v Backup DNS th mi in IP ca Server vo.
Trang 21
Hnh 5 Internet Protocol Version 4 (TCP/IPv4) Properties

Sau khi in xong ta nhp OK Close v ng tt c cc ca s li.
Windows Server 2003, ci t thm cc dch v nh: DHCP Server, DNS Server
ta phi vo Add/Remove Windows Components. Windows Server 2008 c thay
th bng cng c qun tr Server Manager vi cc Roles v Features. V mc nh
Windows Server 2008 cha ci t nn ta phi ci t dch v ny trc khi dng
Domain Controller. ci cc dch v ny ta nhp phi vo Computer Manager.
Hp thoi Server Manager xut hin nhp chut phi vo Roles Add Roles.
Hp thoi Add Roles Wizard xut hin, ta nhn Next. Chn dch v Active
Directory Domain Services. Chn Next. Ti bng Active Directory Domain
Services gii thiu cho chng ta bit v dch v ny v mt s lu khi ci t trong
phn Things to Note. Chn Next tip tc. Ti bng Confirm Installation
Selections s yu cu chng ta xc nhn ln cui trc khi ci t. Chn Install
tin hnh ci t.
Qu trnh ci t dch v Active Directory Domain Services s c tin hnh
ti mc Progress. Sau khi ci t xong ta chn Close ng ca s li.
Hnh 6 Mn hnh sau khi thm xong Active Directory Domain Services
Tip theo, vo Start Run, ti hp thoi ta g vo dcpromo Ti bng
Welcome to the Active Directory Domain Services Installation Wizard chn Next.
Ti bng Operating System Compability s cho chng ta bit v tnh tng thch ca
Windows Server 2008. Chn Next tip tc. Ti bng Choose a Deployment
Configuration chn Create a new domain in a new forest to mt min mi trn
mt forest mi. Chn Next tip tc. Ti bng Name the Forest Root Domain. Ti
Trang 22
FQDN of the forest root domain g tn min vo. Sau chn Next v ch vi
giy h thng kim tra tn min s dng cha.
Hnh 7 t tn cho min khi dng

Ti bng Set Forest Functional Level, thng thng chng ta dng phin bn
Windows Server 2008 tn dng ht tnh nng trn phin bn ny. Nhng trong
trng hp nu chn 2008 th cc Windows Server cc phin bn trc nh 2000
v 2003 khng th chy ng hnh, mt khc vic nng cp min t 2000 ln 2003
hoc 2008 l kh d dng, ngc li vic h min t 2008 xung 2003 l khng th
thc hin do ta chn Windows 2000. Sau chn Next.
Hnh 8 Chn cp rng khi dng min

Ti bng Set Domain Factional Lever, ta vn gi nguyn phin bn ca min
l Windows 2000 Native, nhn Next.
Trang 23
Ti bng Additional Domain Controller Options, h thng kim tra xem

th dch v DNS Server c cha, v t ng nh du ci t DNS Server. Lu
l bn khng th ci t Read-only domain controller trn DC u tin ny. Trng
hp chng ta mun ci ring DNS Server th khng cn nh du check ti y. Chn
Next.
Ti dng Location for Database, Log File folder, v SYSVOL folder cho
php bn thit lp ng dn ca Database, Log file v SYSVOL. Hy mc nh
trong C:\Windows.
Chn Next tip tc. Ti bng Directory Services Restore Mode
Administrator Password, thit lp mt khu. Lu , mt khu ny khng phi l mt
khu ca ti khon Administrator trong min v mt khu phi theo kiu complexity
(gm cc k t a, A, @,1, ). y chng ta s g password l Ws2008sp2ent. Chn
Next. Ti bng Summary cho bn bit thng tin m bn thit lp trn. Nu
ng v y , chn Next tin hnh vic ci t. H thng s tin hnh ci t
min.
Sau khi ci t hon tt, chn Finish kt thc. Sau , Windows s hi
chng ta c khi ng li hay khng. Ta chn Restart now vic ci t c hiu lc.
Sau khi khi ng li xong, ta vo h thng kim tra v min c dng.
Hnh 9 Kt qu sau khi dng xong min ti Server Manager

Trang 24
3.2. Ci t v cu hnh DNS Server

3.2.1. Ci t DNS Server:
DNS (Domain Name System) Server l my ch c dng phn gii
min thnh a ch IP v ngc li. V d ntt.vn thnh 172.29.10.1 v ngc li
172.29.10.1 thnh ntt.vn. V cch thc hot ng, DNS Server lu tr mt c s d
liu bao gm cc bn ghi DNS v dch v lng nghe cc yu cu. Khi my trm gi
yu cu phn gii n, DNS Server tin hnh tra cu trong c s d liu v gi kt qu
tng ng v my trm.
ci t DNS Server ta cng vo Server Manager Roles Add Roles.
Ca s Add Roles Wizard hin ra, ti bng Before You Begin chn Next.
Ti bng Select Server Roles, chn DNS Server. Chn Next tip tc vic
ci t. Ti bng DNS Server gii thiu v DNS Server cng nh mt s ch trc
khi ci t ti mc Thing to Note. Chn Next. Ti bng Confirm Installation
Selections xc nhn vic ci t. Ta nhn Install tin hnh ci t DNS Server.
Qu trnh ci t s c tin hnh, chng ta ch n khi no qu trnh ci t
xong nhn Close kt thc. Sau khi khi ng li my tnh, t ng Preferred DNS
server s tr v 127.0.0.1 ta cn vo t li gi tr ng l 172.29.10.1
Hnh 10 Ci t thnh cng DNS Server
3.2.2. Cu hnh DNS Server:

cu hnh DNS Server, ta vo Start Administrative Tools DNS. Ca
s DNS Manager hin ta. Chng ta nhp chut phi vo Reverse Lookup Zones v
chn New Zone.
Trang 25
Hnh 11 Thm mt zone mi trong Reverse Lookup Zone

Ti bng Welcome to the New Zone Wizard chn Next. Ti bng Zone
Type chn Primary zone cu hnh chc nng Reverse cho DNS Server chnh.
Chn Next. Tip theo ta chn dng To all DNS Server in this domain: ntt.vn, nhm
phn gii tt c trn min, nhn Next tip tc. Ti bng Reverse Lookup Zone
Name chn kiu IP cn phn gii. y chng ta chn IPv4 Reverse Lookup Zone.
in a ch dy IP vo Network ID, ch ch in 3 byte u v chn Next.
Hnh 12 in dy a ch IP trong khi to ra mt zone mi
Trang 26
Ta chn ti bng Dynamic Update chn Do not allow dynamic updates

bo m tnh bo mt. Ti bng Completing the New Zone Wizard chng ta xem li
thng tin. Nhn Finish hon thnh qu trnh cu hnh. Tip theo ta nhp p vo
Zone va c to ra, nhp chut phi vo vng trng bn phi chn New Pointer
(PTR) Hp thoi New Resource Record hin ra, ti Host IP address g vo IP
ca Server, ti Host name, ta nhp chn Browse Ca s Browse hin ra, chn
tip SERVER Forward Lookup Zones ntt.vn (same as parent folder) (Ch
xem a ch IP ny phi ng vi IP ca server), nhp OK OK.
Hnh 13 To thm mt record mi trong DNS Server (1)

Ta to thm mt Host IP address na, nhng thay v chn (same as parent
folder) ta chn server. Sau khi to xong ta s c kt qu:
Hnh 14 To thm mt record mi trong DNS Server (2)
3.2.3. Tm hiu thm v cc zone trong DNS Server:

Zone _mdcs l 1 trong s cc zones cha cc thng tin v ti nguyn
(Resources) trong Domain Network thng qua cc Resources (SRV) Records. trong
c 2 SRV-Records quan trng v cn thit cho cc my trong WorkStation kt ni gia
nhp vo min.
My tnh gia nhp mt min Active Directory phi p ng cc yu cu v
DNS Server nh sau:
Cc my tnh phi c cu hnh a ch IP c ng ng mng vi a
ch IP ca my ch DNS.
Cc dch v _ldap._tcp.dc._msdcs.DNSDomainName (SRV) ghi ti
nguyn phi tn ti trong DNS. DNSDomainName l tn DNS ca min Active
Directory my tnh ang c gng gia nhp.
Trang 27
The host (A) ghi ti nguyn DNS cho tn ca cc b iu khin min

c
quy
nh
trong
lnh
vc
d
liu
ca
dch
v
_ldap._tcp.dc._msdcs.DNSDomainName (SRV) ghi ti nguyn phi tn ti trong
DNS.
3.3. Ci t v cu hnh DHCP Server

3.3.1. Ci t DHCP Server:
DHCP (Dynamic Host Configuration Protocol) Server l my ch c
dng cp pht a ch IP ng cho cc my trm trong h thng mng. Trn cc
phin bn trc nh Windows Server 2000 hay Windows Server 2003, chng ta
quen thuc vi chc nng ny. Vi chc nng ny, chng ta c th cp pht IP cho cc
my trm mt cch linh ng, d dng. V cch thc hot ng, DHCP Server s
dng dch v cng tn lng nghe yu cu xin cp pht a ch IP c gi t my
trm. Sau khi nhn yu cu, DHCP Server s chn ra mt a ch IP trong dy a ch
ca mnh v gi v cho my trm. ng thi DHCP Server cng gi n my trm cc
thng tin lin quan n a ch IP nh Subnet mask, a ch IP ca cc DNS Server,
Default gateway.
ci t DHCP Server cng tng t nh DNS Server, ta vo Server
Manager Roles Add Roles. Ti bng Before You Begin chn Next. Ti bng
Select Server Roles chn DHCP Server. Bn bn gc phi h thng cng c
ch thch v DHCP. y l trung tm cu hnh, qun l, cp pht a ch IP cho cc
my trm. Chn Next. Ti bng DHCP Server gii thiu v dch v DHCP Server,
v c mt vi ch trc khi ci t mc Thing to Note. Chn Next. Ti bng
Select Network Connection Bindings, chn a ch kt ni s c dng lng
nghe yu cu gi t my trm. Chn Next. Ti bng IPv4 DNS Settings nhp tn
min mc Parent domain v nhp a ch IP ca DNS Server mc Preferred
DNS Server IPv4 Address. Chng ta c th nhn nt Validate h thng kim tra
v xc thc. Nhp Next. Ti bng IPv4 WINS Settings chn WINS is not required
for applications on this network. Nu h thng mng ca bn vn cn dng WINS
Server th chn WINS is require for applications on this network v nhp thng tin
a ch IP cho WINS Server. Ti bng DHCP Scopes, ta chn Next v phn ny chng
ta s cu hnh sau, va mang tnh linh ng va ng theo yu cu. Ti bng
Configure DHCPv6 Stateless Mode chn Disable DHCPv6 Stateless mode for this
server. Nu mun cu hnh DHCP Server h tr DHCPv6 tng ng vi IPv6 th
chn Enable DHCPv6 Stateless mode for this server. Chn Next.
Trang 28
Ti bng Authorize DHCP Server chn ti khon cp php cho DHCP

Server trong Active Directory Services. y ti chn ti khon Administrator. Ti
bng Confirm Installation Selections l thng tin nhng thit lp trc khi ci t
DHCP Server. Chn Install tin hnh ci t. i cho qu trnh ci t hon tt.
Hnh 15 Thng tin trc khi ci t DHCP Server

Ti bng Installation Results thy dch v DHCP c ci t hon tt.
Chn Close kt thc ci t.
3.3.2. Cu hnh DHCP Server:
Sau khi ci t xong, chng ta phi cu hnh cc thnh phn s c cp pht
cho my trm trong DHCP Server. cu hnh DHCP Server, ta vo Start
Administrative Tools DHCP. Nhp chut ln min, lc ny s x ra thm hai
dng l IPv4 v IPv6. Ta nhp chut phi vo IPv4 v chn New Scope.
Hnh 16 To mt Scope mi trong DHCP Server
Trang 29
Hp thoi New Scope Wizard hin ra, ta nhp Next. Ti bng Scope Name,
ta g tn vo Name v thng tin c quan vo Description. Chn Next. Ti bng
IP Address Range, cho php khong a ch IP s c cp pht. Ti Start IP
address, l a ch IP s c cp pht, khung End IP address l IP cui cng trong
dy cp pht. Cn Length v Subnet mask l mt n mng, chng s t ng in
ng vi dy IP khi ta g xong phn trn. Cn nu mun chia khc th chng ta c th
thay i phn ny. Xong ta nhn Next.
Hnh 17 Cu hnh dy a ch IP v Subnet Mask s cp pht

Ti bng Add Exclusions, cho php cu hnh dy IP s khng cp pht cho
my trm. Ta nhn Next b qua bc ny. Tip theo, ti bng Lease Duration, l
thi gian tn ti ca mt IP s cp pht cho my trm. Mc nh ca h thng l 8
ngy, tng ng vi mt tun. Chng ta c th mc nh hoc thay i ty theo
tng nhu cu. Nu trong mi trng c t l my tnh xch tay cao hoc s lng my
nhiu th nn khong thi gian ny ngn li, tt nht t 24 gi tr xung. Ti bng
Configure DHCP Options, chng ta chn No, I will configure these options later.
Vic cu hnh phn sau s lm cho tin, chn xong nhp Next Finish. Lc ny
DHCP s to ra mt Scope mi, chng ta nhp phi vo Scope ny v chn Activate.
Trang 30
Hnh 18 Active mt Scope mi c to trong DHCP Server

Tm n mc Scope Options, ta s thy c ba thnh phn c to l 006
DNS Servers, 015 DNS Domain Name v 044 WINS/NBNS Servers, hai thnh phn
ny c l do trc chng ta dng min, ci t v cu hnh DNS Server cng vi
WINS. Ta nhp chut phi vo Scope Options chn Configure Options Hp
thoi Scope Options hin ra, ta nh du check vo cc 003 Router, trong mc IP
address, ta g vo a ch Default Gateway, g xong nhn Add.
Hnh 19 Cu hnh a ch IP s cp trong Scope Options

Trang 31
Lm tng t i vi cc thnh phn 004 Times DNS Server: a ch ca

DNS Server, 006 DNS Server: a ch ca my ch chy DNS Server, 044
WINS/NBNS Server: a ch IP ca server ci WINS v 046 WINS/NBT Note Type
iu chnh gi tr ca 0x0 thnh 0x8. Sau khi to xong ta nhn Apply OK. Sau
chng ta kim tra li trong mc Scope Options s thy cc thnh phn c to nh
sau:
Hnh 20 Cc a ch IP s cp pht sau khi cu hnh xong
3.4. Qun l Active Directory Users and Computers (ADUC)

3.4.1. To mi cc Organization Unit (OU) trong min:
d dng qun l cc ti khon v nhm ngi dng ta thng to ra cc
Organization Unit (OU), v khi to ra cc ti khon hoc nhm ngi dng tng
ng ta ch vic em n vo cc OU tng ng. to cc OU ta vo Start
Administrative Tools Active Directory Users and Computers. Hp thoi Active
Directory Users and Computers xut hin, ta nhp phi vo min, y l ntt.vn
chn New Organizational Unit.
Trang 32
Hnh 21 To mt OU mi trong AD
Hp thoi New Object Organizational Unit xut hin, ti khung Name ta
g vo tn phng ban mun to User.
Sau khi to xong, chng ta s c mt OU trong h thng min.
Hnh 22 Cc OU sau khi to xong

Tng t, chng ta cng to OU cho cc phng ban khc theo cch trn.
Ch : Trong khi to OU mi, di khung Name s c dng Protect
container from accidental deletion, nu chng ta nh du chn th OU mi c
to ra s bo v trc vic xa chng. Cch xa mt OU c bo v: M
Active Directory Users v Computers menu View Advanced Features. Sau
, nhp chut phi vo OU chng ta mun xa, chn Properties. Hp thoi <tn
OU> properties hin ra, chn th Security Advanced. khung Permission
Trang 33
Entries, chn dng Deny cho nhm Everyone, v sau nhn Remove, chn OK hai
ln.
Hnh 23 Phn quyn ca OU

Lc ny ta tin hnh xa OU bnh thng nhng nu vn khng xa c, ta
nhp phi vo min chn Properties. Hp thoi <tn domain> properties hin ra,
chn th Security Advanced. khung Permission Entries, chn dng Deny cho
nhm Everyone, v sau nhn Remove, chn OK hai ln.
3.4.2. iu chnh cc chnh sch v mt khu ca ngi dng:

V mc nh ca Windows v vic t mt khu phi m bo cc yu cu:
phc tp (Bao gm: ch hoa, ch thng, s v cc k t c bit), di ti thiu
phi t 7 k t tr ln. Do , iu s gy kh khn cho ngi s dng v vic nh
mt mt khu phc tp khng phi l vic n gin. xa b nhng kh khn , ta
s can thip vo chnh sch mt khu ca Windows Server 2008. Cc bc thc hin
nh sau: Vo Start Administrative Tools Group Policy Manager. Ca s
Group Policy Manager hin ra, chn Forest: ntt.vn ntt.vn Group Policy
Object, nhp phi vo Default Domain Policy chn Edit
Trang 34
Hnh 24 iu chnh cc chnh sch ca min

Ca s Group Policy Management Editor hin ra, ta chn Computer
Configuration Policies Windows Settings Security Settings Account
Policies Password Policy.
Lc ny khung bn phi ca ca s Group Policy Management Editor s xut
hin cc thng s:
Enforce password history: Gim st vic thi hnh lch s mt khu.
Maximum password age: Tui ti a ca mt khu.
Minimum password age: Tui th ti thiu ca mt khu.
Minimum password length: di ti thiu ca mt khu.
Password must meet complexity requirements: Mt khu phi p ng
cc yu cu v phc tp.
Store passwords using reversible encryption: Lu tr cc mt khu bng
cch s dng m ha o ngc.
Hnh 25 Chnh sch v mt khu trc khi iu chnh
Trang 35
iu chnh thng s no ta ch cn nhp p vo thng s . Khi s

xut hin ra mt hp thoi. Lc ny ta ch cn thay i cc thng s, nhp Apply
OK.
Lm tng t, ta iu chnh cc thnh phn:
Maximum password age: 0.
Minimum password age: 0 days.
Minimum password length: 6 characters.
Password must meet complexity requirements: Disable.
Hnh 26 Chnh sch v mt khu sau khi iu chnh

Nhng sau khi iu chnh xong, chnh sch vn cha c tc dng nu ta khng
cp nht. cp nht chnh sch ta ch cn vo Start Run, g gpupdate /force
(sau ch gpupdate c khong trng) v nhn OK. Khi s xut hin mt ca s
ging nh chng trnh Command Prompt, khi chnh sch ang thc hin vic cp
nht ch c duy nht dng Updating Policy xut hin. Sau khi thc hin xong, s
xut hin thm dng User Policy update has complted successfully. V chng trnh
t ng li. Ti y vic iu chnh cc chnh sch v mt khu ca ngi dng
xong.
3.4.3. To, xa v cp nht ngi dng min (Domain Users):

3.4.3.1. To mt ti khon ngi dng mi: Vic to ti khon cho ngi
dng trn min s gip ngi s dng c thun li trong vic truy cp v s dng
my tnh. V d: mt ngi lu 6, mun s dng my tnh no lu 3 th ch cn
m bo hai iu kin: mt l my tnh gia nhp vo min v hai l ngi
phi c mt ti khon i vi min. Ngoi ra, vic qun l v xc thc ngi dng trn
min l tng i d dng. Chng ta c th bit c mt c nhn no , ng
nhp vo lc my gi, lm cc thao tc g, v.v to ra mt ngi dng trn min,
Trang 36
chng ta thc hin cc thao tc sau: Vo Start Active Directory Users and
Computers. Hp thoi Active Directory Users and Computers xut hin, lc ny
chng ta cn xc nh ngi dng thuc OU no c th to ti khon ngi dng
trn OU tng ng. y chng ta s to mt ti khon ngi dng trn OU c tn l
Phong ky thuat mang. Nhp chut phi vo OU Phong ky thuat mang v chn New
User.
Hp thoi New Object User xut hin, ta ln lt in cc thng tin vo
First name: tn, Last name: h v tn m, Full name: tn y , User logon
name: tn ti khon ng nhp. Nhp xong cc thng tin chn Next.
Hnh 27 To mt ti khon ngi dng mi

Tip theo s t mt khu cho ti khon, ta g mt khu ti hai khung l
Password v Confirm password. C bn la chn:
User must change password at next logon: Ngi dng phi thay i
mt khu ln ng nhp tip theo.
User cannot change password: Ngi dng khng th thay i mt
khu.
Password never exprise: Mt khu khng bao gi ht hn.
Account is disabled: Ti khon b v hiu ha.
Trang 37
Ta chn User must change password at next logon, nhn Next Finish. Sau
khi nhn Finish, ta kim tra li trong ca s Active Directory Users and Computers cc
ti khon ngi dng c to.
Hnh 28 Cc ngi dng sau khi c to ra

3.4.3.2. Sa i cc thng tin trong ti khon: Mun sa i thng tin ca
ngi dng no th ta nhp chut phi vo ngi dng v chn Properties. Ti th
General cho php chng ta iu chnh cc thng tin chung v ti khon nh: H, tn,
h tn y , chc v, in thoi v.v
Th Account, chng ta c th thay i tn ng nhp, qui nh thi gian ng
nhp, kha hoc m kha ti khon, iu chnh thi gian hn mc ca ti khon. Sau
khi iu chnh xong ta nhp Apply OK.
Hnh 29 iu chnh cc thng tin c nhn ca ngi dng
Trang 38
3.4.3.3. Xa mt ti khon ngi dng: xa mt ti khon ngi dng, ta

tm n ngi dng , nhp chut phi v chn Delete. Sau s xut hin mt bng
thng bo xc thc li mt ln na vic xa ngi dng, ta chn OK.
3.4.4. To, xa v cp nht nhm ngi dng min (Domain Groups):

3.4.4.1. To mt nhm ngi dng mi: Thng thng, nhm ngi dng
thng c t trong chnh cc OU, nhm tin vic qun l cng nh chnh sa cc
thng tin. to nhm ngi dng cho OU no, ta ch vic nhp phi vo OU ,
chn New Group.
Bng New Object Group hin ra, khung Group name: g tn nhm ngi
dng, Group name (pre-Windows 2000) s t in, ti Group scope chn Global,
ti Group type chn Security, nhn OK hon thnh.
Hnh 30 Thm mt nhm mi trong OU

3.4.3.2. Chnh sa cc thng tin trong mt nhm ngi dng: chnh sa
cc thng tin nhm ngi dng no, chng ta ch cn nhp phi vo nhm ngi dng
v chn Properties. Ti th General, cho php chng ta chnh sa cc thng tin
chung v Email, Group scope, Group type.
Ti th Members, cho php chng ta thm cc ngi dng lm thnh vin ca
nhm ny, thm ta nhn Add. Hp thoi Select Users, Contacts, Computers, or
Trang 39
Group hin ra, chng ta s c hai cch thm ngi dng vo. Cch th nht, nu
chng ta nh tn ng nhp ngi dng c th g trc tip vo khung: Enter the
object names to select, sau vo nt Check Names kim tra li chnh xc,
nu ngi dng no ng s hin th theo dng Tn y (tn ng nhp@min).
Hnh 31 Thm ngi dng vo nhm

Nu ti khon no, s xut hin bng hp thoi Name Not Found v yu cu
chng ta kim tra li tn ng nhp ca ngi dng va g.
Cch th hai, nu khng nh tn ng nhp ca ngi dng, ti hp thoi
Select Users, Contacts, Computers, or Group ta nhn vo nt Advanced. Lc ny
s m ra thm mt ca s mi cng c tn Select Users, Contacts, Computers, or
Group nhng vi nhiu thnh phn nng cao hn. Ta nhn vo nt Find tm cc ti
khon ngi dng. Khung Reseach results s cho thy cc ti khon tm c. Lc
ny ta ch vic chn ngi dng, nu mun chn nhiu ngi dng cng mt lc ta
nhn gi phm Ctrl v nhn chut vo ngi dng . Chn xong ta nhn OK.
Trang 40
Hnh 32 Tm kim ngi dng nng cao

Nhn OK ng hp thoi Select Users, Contacts, Computers, or Group.
Lc ny trong danh sch s xut hin cc ngi dng m chng ta va thm.
Hnh 33 Cc ngi dng sau khi c thm vo nhm

Th Member of, cho php nhm ngi dng ang thao tc l thnh vin ca
nhm ngi dng khc. Thao tc thm nhm ngi dng hon ton ging vi thao tc
thm ngi dng, sau khi chnh sa xong thng tin, ta nhn Apply OK.
Trang 41
3.4.3.3. Xa mt nhm ngi dng: xa mt nhm ngi dng no ta ch

cn nhp phi vo nhm ngi dng v chn Delete. Sau s xut hin mt bng
thng bo xc thc li mt ln na vic xa nhm, ta chn OK.
3.5. L thuyt v Trust Relationships trn Windows Server 2008

3.5.1. Gii thiu:
Windows cung cp cc lnh vc truy cp bo mt cho tt c cc ngun trong
min. Bi mc nh ngi dng trong mt min c th truy cp ti nguyn trong chnh
min , min l h c quyn nhm thc hin vic truy cp. cung cp cho ngi s
dng truy cp vo ti nguyn trong mt min, chng ta cn phi to Trust
Relationships. Trust Relationships c s dng nh l c ch m theo ti nguyn
gia cc min s c chia s.
3.5.2. nh ngha:
Trust thit lp mi quan h hp l gia cc lnh vc cho php xc thc v
y quyn cho vic chia s ti nguyn.
Trusted Domain Tn min m t truy cp c yu cu t ngun (tc l
min m cc ti khon ngi dng c tr).
Trusting Domain Tn min c cha cc ti nguyn chia s (tc l min m
my in thng tr).
3.5.3. Trusts lm vic nh th no:

"Qu trnh chng thc, xc minh danh tnh ca ngi s dng, v qu trnh
quyt nh y quyn nhng g ngi dng c php lm trn mt h thng my tnh
hoc mng. Khi mt ngi s dng yu cu truy cp vo mt ngun ti nguyn trong
min khc c chng thc, ti nguyn s so snh cc thng tin ca ngi dng
n cc iu khon c giao trong b m t bo mt ca n, nhm gip xc nh
quyn hn ca ngi s dng y. Mt b m t bo mt bao gm cc danh sch iu
khin truy cp (ACL) nhn dng ngi dng v cc nhm c phn cng hoc b
t chi cho php truy cp vo ti nguyn. "
Trang 42
Cc min ni m ti khon ngi dng yu cu truy cp c gi l cc min

tin cy. Cc min c cha mt ngun ti nguyn c chia s mt ti khon ngi
dng ang c gng truy cp c gi l cc min tin tng.
Active Directory khng t ng hoc chp nhn v iu kin cc thng tin bo
mt c ngun gc t chnh quyn min bn ngoi. Min iu khin hot ng nh b
iu khin quyn min cho cc tn min ca mnh, nh ngha, iu khin min ch
chp nhn cc thng tin bo mt nu chng ph hp vi mt ti khon v mt khu m
tn ti trong c s d liu hot ng ca h.
Hnh 34 Trust Path in a One-Way Trust
3.5.4. Transitive Trust:

Nh trnh by trc , tin tng l mt hnh vi c xem nh mt cu ni
cho php ngi dng truy cp ti nguyn trong cc lnh vc khc. Transitivity xc nh
s tin tng c th c m rng vt ra ngoi lnh vc gia hai m n c hnh
thnh. Tin tng mi quan h tin tng Transitive cho php c m rng vt ra
ngoi hai lnh vc lin quan n bt k min khc m n c mt mi quan h tin
tng. iu ny lm vic rt nhiu nh tha k no trong tp tin NTFS v iu khon
th mc. Nontransitive tha k tn chn loi ny.
S di y cho thy lm th no cc ngun c th c chia s gia cc
tn min ring bit hoc thm ch gia cc tn min khc nhau trn cy khc nhau.
Mi ln mt min con c to ra trong mt cy, mt two-way transitive tin tng
c to ra theo mc nh gia cc lnh vc. Khi mt min gc mi c to ra trong
khu rng min, mt two-way transitive tin tng c to ra gia cc lnh vc root. V
vy, mt ti khon ngi dng trong IT.West.ClarkInc.Net c th truy cp mt my in
Trang 43
trong Acct.CrazyEddies.Com, gi s cc ti khon ngi dng c ACE chnh xc trn

my in ACL.
Hnh 35 H thng Forest trong Trust Relationships
3.5.5. Nontransitive Trust:

Mt s tin cy nontransitive b hn ch bi hai lnh vc trong quan h tin
tng. N khng chy vo bt k tn min khc trong rng. Mt s tin cy
nontransitive c th l mt s tin tng hai chiu hoc tin tng mt chiu. Min
Nontransitive l mt chiu theo mc nh, mc d bn cng c th to mt mi quan
h hai chiu bng cch to ra hai mt cch tin cy.
Tm li, min Nontransitive l hnh thc duy nht ca mi quan h tin tng
rng c th gia nhng iu sau y:
Mt Windows Server 2008 tn min v mt min Windows NT.
Mt Windows Server 2008 tn min trong mt rng v mt min trong mt
rng (khi rng khng tham gia cng mt s tin tng rng).
Trang 44
Chng 4: Cch s dng cc cp min khc nhau trong Windows Server 2008
CHNG 4
CCH S DNG CC CP MIN KHC NHAU TRONG
WINDOWS SERVER 2008
-----
----4.1. Cp cng vi chc nng ca cc min Windows Server 2000,
Windows Server 2003 v Windows Server 2008
4.1.1. V chc nng:
V chc nng ca min t Windows Server 2000 n Windows Server 2008
u ging nhau, c th nh sau: chc nng chnh ca min l qun l tp trung cc
my v mt my. Kim sot ti khon hay nhm ngi dng, thit lp cc chnh sch
cho ton b my trong min gip ngi qun tr c th d dng qun l.
4.1.2. V cp :
Trng hp dng min trn Windows Server 2008 chng ta cn ch cp .
Ch duy nht trn Windows Server 2008 cho php chng ta la chn cp min khi
dng. Vic ny m bo cho h thng s dng cc cp trc Windows Server 2008
vn c th gia nhp c.
V d, min cp Windows Server 2003 th mt my server khc chy
Windows Server 2000 th khng th gia nhp vo.
4.2. Cch nng cp chc nng min t thp ln cao

4.1.1. Nng cp min cp Windows Server 2000 ln min cp
Windows Server 2003:
Trc khi nng cp ta cn xem thng tin v min. Trong Windows Server
2008, vo Start Administrative Tools Active Directory Users and
Computers. Ta nhp chut phi vo min v chn Properties. Hp thoi TnMin
Properties, y l ntt.vn Properties hin ra, s cho chng ta bit thng tin v:
Domain name (pre-Windows 2000): tn min; Description: M t; Domain
Trang 45
functional level: Cp chc nng ca min; Forest functional level: Cp chc

nng ca rng.
Sau khi xem xong cc thng s ta nhp OK ng hp thoi li. Trc khi
nng cp, cn phi sao lu min phng trng hp nng cp b li hoc tht bi do
nhng nguyn nhn khc th chng ta c th khi phc c min. Cch c khuyn
khch s dng l Ghost ton b h iu hnh vo mt tp tin v ct gi mt a cng
an ton.
Tin hnh nng cp min, nhp chut phi vo Active Directory Users and
Computers, chn Raise domain fuctional level
Hnh 35 Nng cp min trong Windows Server 2008

Hp thoi Raise domain fuctional level xut hin, ti khung Select an
available domain functional level: chn Windows Server 2003, sau nhn Raise.
Hnh 37 Nng cp min ln Windows Server 2003

trong Windows Server 2008
Trang 46
Mt thng bo s hin ra, thng bo cho chng ta bit vic h min sau khi
nng cp s khng th thc hin. Nu ng th ta nhn OK tin hnh nng
cp, nu khng ng th ta nhn Cancel.
Hnh 38 Khng nh vic nng cp min

Sau khi nhn OK, s c mt thng bo khc cho bit s nng cp thnh
cng. Ta nhn OK ng hp thoi ny. Kim ta vic nng cp min, ta nhp phi
vo min v chn Properties. Ti mc Domain functional level: thy min
nng cp ln Windows Server 2003.
4.1.2. Nng cp min cp Windows Server 2003 ln min cp

Windows Server 2008:
Tin hnh nng cp min, nhp chut phi vo Active Directory Users and
Computers, chn Raise domain fuctional level Hp thoi Raise domain fuctional
level xut hin, ti khung Select an available domain functional level: chn
Windows Server 2008, sau nhn Raise.
Mt thng bo s hin ra, thng bo cho chng ta bit vic h min sau khi
nng cp s khng th thc hin. Nu ng th ta nhn OK tin hnh nng
cp, nu khng ng th ta nhn Cancel.
Sau khi nhn OK, s c mt thng bo khc cho bit s nng cp thnh
cng. Ta nhn OK ng hp thoi ny. Kim ta vic nng cp min, ta nhp phi
vo min v chn Properties. Ti mc Domain functional level: thy min
nng cp ln Windows Server 2008.
Trang 47
Chng 5: Trin khai Server Core v DHCP Server Core
CHNG 5:
TRIN KHAI SERVER CORE V DHCP SERVER CORE
-----
----5.1. Trin khai Server Core
5.1.1. Cc bc chun b:
Trc khi bt tay vo trin khai Server Core , chng ta cn chia a cng
ci t. Thng thng chng ta s dng phn mm Partition Magic Pro trn a Hirent
Boot chia. a Boot ny chng ta c th mua ti cc ca hng tin hc, y chng
ta khng cp su n phn ny. Ngoi ra, chng ta cn iu chnh BIOS c th
khi ng t CD/DVD.
5.1.2. Ci t Server Core:

Khi ng my tnh v cho a vo , i vi giy mn hnh xut hin dng
ch Press any key to boot from CD or DVD ta nhn phm bt k bt u ci t.
Sau khi nhn, Windows s c cc tp tin cn thit cho vic ci t. Sau , Windows
s cho php chng ta chn cc thng s v: Language to install: ngn ng ci t;
Time and current format: Thi gian v nh dng hin hnh; Keyboard or input
method: Bn phm hoc cc phng php nhp liu. Chn xong nhn Next.
Tip theo nhn Install Now. Tip theo l vic chn phin bn ca Windows
Server 2008. y c rt nhiu phin bn nh Enterprise, Standard, Datacenter, Full
Installation, Server Core Installation. y ta
chn Windows Server 2008
Enterprise (Server Core Installation) loi X86. Vi X86 l phin bn 32 bit cn X64
l phin bn 64 bit. Chn xong ta nhn Next.
Trang 48
Hnh 39 La chn phin bn ci t Windows Server 2008

Tip theo l cc qui nh v bn quyn ca Microsoft, ta nhn du kim vo I
accept the license terms. Chn Next. Nhn vo Custom (advanced) ty chn cho
vic ci t. Tip theo ta la chn Partition ci t, nn ch phi ci t partition
no Set Active v c dung lung t yu cu. Chn xong ta nhn Next.
Qu trnh ci t s c bt u. Sau khi ci t xong, my tnh s khi ng
li v yu cu chng ta nhn Ctrl + Alt + Delete tin hnh ng nhp. Chn tip
Other User. Ti khung Username g Administrator, ti khung Password b trng,
nhn Enter.
Khi nhn c thng bo i mt khu, chn OK. Sau , nhp mt khu mi
vo khung New password v Confirm password. Lu , mt khu phi theo kiu
complexity (gm cc k t a, A, @,1, ). y chng ta s g password l
Ws2008sp2ent.
Trang 49
Sau khi i mt khu xong, Windows s thng bo cho chng ta bit, lc ny

ta nhp OK. Ch trong vi pht Windows tin hnh cc th tc v y l giao din
Server Core:
Hnh 40 Mn hnh ca Windows Server 2008 phin bn Sever Core
5.1.3. i tn my v cu hnh TCP/IP:

5.1.3.1. Thay i tn my: Ti du nhc lnh ta g: Netdom renamecomputer
%ComputerName% /newname:server
Windows s hi chng ta c mun thay i tn my khng? Ta nhn y. Sau
khi thay i thnh cng s c thng bo: The command completed successfully.
Hnh 41 Command Line thng bo i thnh cng tn my
Trang 50
Sau , g tip shutdown r t 0 nhm khi ng li my thay i c hiu

lc, vi r tng ng vi restart (khi ng li), t tng ng vi time (thi gian) v 0
l s giy. Trong qu trnh g lnh ta c th g cls xa bt cc dng hin th.
5.1.3.2. Cu hnh TCP/IP: Trc khi ci t DHCP Server ta cn cu hnh
TCP/IP ca server. Ti du nhc lnh ta g: Netsh interface ipv4 show interfaces,
lnh ny cho php xem thng tin ca cc interface:
Hnh 42 Command Line cho bit thng tin cc interfaces

Kim tra interface hin thi ca my Server Core c s ID=2. Cu hnh
TCP/IP, g lnh: Netsh interface ipv4 set address name=2 source=static
address=172.29.10.1 mask= 255.255.255.0. Thit lp Priferred DNS Server, g lnh:
Netsh interface ip set dns 2 static 172.29.10.1 primary
Xem IP cu hnh g: ipconfig /all
Hnh 43 Command Line thng tin v a ch IP

Tt Windows Firewall bng lnh: Netsh firewall set opmode mode=disable.
Dng mt my trm, t IP cng ng mng vi server, dng lnh ping kim tra
thy hot ng.
Trang 51
Hnh 44 Command Line ping a ch IP ca server
5.2. Trin khai DHCP Server Core

5.2.1. Ci t DHCP Server Core:
Ti my Server Core, g lnh: oclist , kim tra cha ci t
DHCPServerCore.
Hnh 45 Command Line cc chng trnh trn Server Core

Ci t DHCPServerCore, g lnh: Start /w ocsetup DHCPServerCore
Start DHCP Services, g lnh:
sc config dhcpserver Start= auto
net Start dhcpserver
Hnh 46 Command Line thng bo khi ng thnh cng DHCP Server Core
Trang 52
5.2.2. My trm chy Windows Server 2008 ci Remote Server

Administration Tools
u tin, cn t IP tnh c cng ng mng vi DHCP Server Core, cch
t IP tnh cc phn trn nu, gi ta ch cn t cc gi tr nh sau:
IP address: 172.29.10.2
Subnet mask: 255.255.255
Default gateway: Khng khai bo
Nhp chut phi vo My computer chn Manage. Ti ca s Server
Manager chut phi vo Feature chn Add Feature.
Hnh 47 Thm mt Features mi

Ti bng Select Features, m rng Remote Server Administration Tools,
m rng Role Administration Tools DHCP Server Tools, chn Next. Ti bng
Confirm Installation Selections, chn Install. Qu trnh ci t s c bt u, sau
khi xong ta nhn Close kt thc.
5.2.3. Cu hnh DHCP Server Core:

Vo Start Server Manager, ti ca s Server Maneger, chn
Configuration Local Users and Groups. khung bn Users bn phi, nhp phi
vo ti khon Administrator chn Set password. Hp thoi Set Password for
Administrator hin ra chn Proceed. Tip theo g mt khu vo hai khung New
password v Confirm password. G xong nhn OK.
M DHCP t Administrative Tools, chut phi DHCP chn Add Server
Hp thoi Add Server hin ra, ti khung This server, g vo a ch ca DHCP
Server Core l 172.29.10.1, g xong nhn OK.
Trang 53
Hnh 48 in a ch IP ca DHCP Server Core

Sau khi nhn OK, di DHCP s xut hin DHCP Server Core m chng ta
va thm ( y tn DHCP Server Core l server). Ta m rng server, nhp chut
phi vo IPv4 chn New Scope.
Hnh 49 Thm mt Scope mi trong DHCP Server

Hp thoi New Scope Wizard hin ra, ta nhp Next. Ti bng Scope Name,
ta g tn vo Name v thng tin c quan vo Description. Chn Next. Ti bng
IP Address Range, cho php khong a ch IP s c cp pht. Ti Start IP
address, l a ch IP s c cp pht, End IP address l IP cui cng trong dy
cp pht. Cn Length v Subnet mask l mt n mng, chng s t ng in ng
vi dy IP khi ta g xong phn trn. Cn nu mun chia khc th chng ta c th thay
i phn ny. Xong ta nhn Next.
Trang 54
Hnh 50 Cu hnh khong a ch IP v Subnet Mask s cp pht

Ti bng Add Exclusions, cho php cu hnh dy IP s khng cp pht cho
my trm. Ta nhn Next b qua bc ny. Tip theo, ti bng Lease Duration, l
thi gian tn ti ca mt IP s cp pht cho my trm. Mc nh ca h thng l 8
ngy, tng ng vi mt tun. Chng ta c th mc nh ho thay i ty theo tng
nhu cu. Nu trong mi trng c t l my tnh xch tay cao hoc s lng my nhiu
th nn khong thi gian ny ngn li, tt nht t 24 gi tr xung.
Ti bng Configure DHCP Options, chng ta chn No, I will configure
these options later. Vic cu hnh phn sau s lm cho tin, chn xong nhp Next
Finish. Lc ny DHCP s to ra mt Scope mi, chng ta nhp phi vo Scope ny v
chn Activate.
Hnh 51 Active mt Scope mi c to trong DHCP Server
Trang 55
Ta nhp chut phi vo Scope Options chn Configure Options Hp thoi

Scope Options hin ra, ta nh du check vo cc 003 Router, trong mc IP address,
ta g vo a ch Default Gateway, g xong nhn Add.
Hnh 52 Cu hnh IP ca Rounter trong Scope Options

Lm tng t i vi cc thnh phn 004 Time Server: a ch IP ca Server,
006 DNS Server: IP ca server ci DNS, 044 WINS/NBNS Server: a ch IP ca
server ci WINS v 046 WINS/NBT Note Type iu chnh gi tr ca 0x0 thnh 0x8.
Sau khi to xong ta nhn Apply OK. Sau chng ta kim tra li trong mc Scope
Options s thy cc thnh phn c to nh sau:
Hnh 53 - Cc a ch IP s cp pht sau khi cu hnh xong
5.2.4. Kim tra kh nng cp pht IP t DHCP Server Core:

Chng ta c th dng mt my bt k chy mt h iu hnh t Windows 2000
tr ln kim tra. y ta s dng my chy Windows XP SP2 c th thao tc
nhanh nht. Trn Desktop ca Windows c sn My Network Place, nhp phi vo
v chn Properties. Nu khng c My Network Place trn Desktop ta vo Start s
tm thy. Ti ca s Network Connection, nhp phi vo Local Area Connection v
chn Properties.
Trang 56
Ca s Local Area Connection Properties xut hin, ta chn Internet

Protocol (TCP/IP), nhn vo Properties. Hp thoi Internet Protocol (TCP/IP)
Properties hin ra, ta chn dng Obtain an IP address automatically v Obtain
DNS server address automatically my trm trng thi IP ng v server s c
nhim v cp IP cho my trm ny. Sau khi chn xong nhn OK. Vo Start Run,
ti hp thoi Run g cmd chn OK. Chng trnh Command Prompt c khi
ng, ti du nhc lnh g ipconfig /release thot khi IP rc hin ti. Lc ny ta s
thy IP ca Local Area Connection cc gi tr c tr v 0.
Ta g tip ipconfig /renew xin IP t DHCP Server Core, sau mt vi giy
ta kim tra IP c cp bng lnh ipconfig /all. Xem IP address, Subnet Mask,
Defalt Gateway, DNS Server v Primary WINS Servers c ph hp vi vic cu
hnh hay khng.
Hnh 54 IP my trm nhn c t DHCP Server

Nu ph hp c ngha l DHCP Server Core chy tt, ta g exit thot khi
Command Prompt.
Trang 57
Chng 6: Ha nhp Windows Server 2003 vo mi trng Windows Server 2008
CHNG 6:
HA NHP WINDOWS SERVER 2003 VO MI TRNG
WINDOWS SERVER 2008
-----
----6.1. Thit lp a ch IP v gia nhp vo min ca Windows Server 2008
6.1.1. Thit lp a ch IP:
Khc vi Windows Server 2008, thit lp a ch IP trong Windows Server
2003 ta nhp chut phi vo My Network Places Properties. Ca s Network
Connections hin ra, nhp chut phi vo Local Area Connection Properties. Ti
ca s Local Area Connection Properties, ta chn dng Internet Protocol (TCP/IP)
Properties. Hp thoi Internet Protocol (TCP/IP) Properties xut hin, ln lt
in vo cc gi tr:
IP address: 172.29.10.2
Subnet mask: 255.255.255.0
Default gateway: khng t gi tr.
Preferred DNS server: 172.29.10.1
Alternate DNS server: khng t gi tr.
Trang 58
Hnh 55 Internet Protocol Version 4 (TCP/IPv4) Properties
Sau khi t xong cc gi tr, ta nhp OK OK ng cc ca s v hp

thoi.
6.1.2. Gia nhp vo min trn Windows Server 2008 (tm gi l server
chnh):
Trn Windows Server 2003, nhp chut phi vo My Computer
Properties. Ti hp thoi System Properties, chn th Computer name, nhn nt
Change. Hp thoi Computer Name Changes, ta g vo khung Domain tn ca
min. G xong nhn OK.
Sau , Windows yu cu chng ta xc thc bng cch g mt ti khon v
mt khu c quyn t Moderector tr ln trong min, g xong ta nhp OK. Nu gia
Trang 59
nhp thnh cng, s xut hin mt thng bo: Welcome to the ntt.vn domain. Lc
ny ta tin hnh khi ng li vic gia nhp vo min c p dng.
Hnh 56 Thng bo gia nhp min thnh cng

Sau khi khi ng li xong, ti phn ng nhp ta s thy ty chn vo min
hoc ng nhp vo ti khon trn my.
Hnh 57 ng nhp vo min vi ti khon Administrator
6.2. Ci t v cu hnh AD, DNS trn Windows Server 2003

6.2.1. Cu hnh DNS trn server chnh:
Vo Start Administrative Tools DNS. Ti mc Forward Lookup
Zone, nhp chut phi vo ntt.vn, chn Properties. Hp thoi ntt.vn Properties hin
ra, chn th Zone Transfers, chn mc Allow zone transfers, chn mc con To any
server. Tng t ti mc Reverse Lookup Zones, nhp phi vo 10.172.29.in-addrarpa chn Properties. chn th Zone Transfers, chn mc Allow zone transfers,
chn mc con To any server.
6.2.2. Ci t v cu hnh DNS Server trn server ph:
Trang 60
6.2.2.1 Ci t DNS Server trn server ph: Trc khi ci t, phi m bo

rng a Windows Server 2003 sn sng trong a. Ngoi ra ta vo Internet
Protocol (TCP/IP) Properties iu chnh thm thng s cho Alternate DNS Server
tr a ch v server 2003.
Hnh 58 iu chnh li gi tr ca DNS trong

Vo Start Control Pannel Add or Remove Program Add/Reomve
Windows Components. Hp thoi Windows Components Wizard hin ra, tm ti
Networking Service Details
Hp thoi Networking Service, nh du vo Domain Name System
(DNS) OK.
Hnh 59 Ci t DNS trong Windows Server 2003

Tr li Hp thoi Windows Components Wizard, ta nhn Next. Qu trnh ci
t DNS Server s c tin hnh. Sau khi ci t xong ta nhn Finish.
6.2.2.2 Cu hnh DNS Server trn server ph
Cu hnh Forward Lookup Zone: Ta vo Start Administrative Tools
DNS. Nhp chut phi vo Forward Lookup Zone, chn New Zone. Hp thoi New
Trang 61
Zone Wizard hin ra chn Next, ti bng Zone type, chn Secondary zone v server
2008 lm nhim v Primary zone, chn Next tip tc. Ti bng Zone Name, g
vo tn ca min, y l ntt.vn, chn Next. Bng Master DNS Servers ta g IP ca
server 2008 vo khung IP address v nhn Add. V zone chng ta ang to s sao
chp DNS t server c IP m chng ta g vo. Sau khi thm xong ta nhn Next
Finish.
Hnh 60 Nhp a ch ca DNS chnh

Lc ny ta s thy zone c tn ntt.vn c to vi y cc thnh phn
ging nh trn DNS Server ca server 2008.
Hnh 61 Cc Zone v Record trn DNS ph

Nhp phi vo ntt.vn chn Properties. Hp thoi ntt.vn Properties hin ra,
chn th Zone Transfers, chn mc Allow zone transfers, chn mc Only to the
Trang 62
following servers, g IP ca server 2008 vo khung IP address, nhn Add Apply

OK.
Hnh 62 Zone Transfers ti DNS chnh

Cu hnh Reverse Lookup Zones: Nhp phi vo Reverse Lookup Zones chn
New Zone, hp thoi New Zone Wizard hin ra chn Next, ti bng Zone type,
cng ging nh trn ta chn Secondary zone. Tip theo, ti bng Reverse Lookup
Zone Name, khung Network ID, ta g vo 3 byte u ca ng mng chnh, nhn
Next. Bng Master DNS Servers, cng tng t nh trn ta g IP ca Server 2008.
G xong nhn Add Next Finish. Sau khi xong ta s thy mt zone c to ra
vi y cc thnh phn nh trong DNS Server ca Server 2008.
Hnh 63 - Cc Zone v Record trn DNS ph

Nhp chut phi vo 172.29.10.x Subnet chn Properties. Hp thoi
172.29.10.x Subnet Properties hin ra, chn th Zone Transfers, chn mc Allow
zone transfers, chn mc con Only to the following servers, g IP ca server 2008
vo khung IP address, nhn Add Apply OK.
Trang 63
6.2.2.2 Cu hnh Zone Transfres trn DNS Server ca Server 2008

Vo Start Administrative Tools DNS. Ti mc Forward Lookup
Zone, nhp chut phi vo ntt.vn, chn Properties. Hp thoi ntt.vn Properties hin
ra, chn th Zone Transfers, chn mc Allow zone transfers, chn mc con Only to
the following servers. Sau nhn vo Edit, hp thoi Allow zone transfers xut
hin, ta nhp chut vo dng <Click here to add an IP Address or DNS Name>, g
IP ca server ph vo, y l 172.29.10.2. Sau khi g xong Windows s t phn gi
IP thnh tn, nu thy ng ta nhn OK, tr li hp thoi Allow zone transfers ta nhn
Apply OK.
Hnh 64 Zone Transfers ti DNS ph

Ti mc Reverse Lookup Zones, chn 10.172.29.in-addr-arpa, nhp chut
phi vo vng trng chn New Pointer (PTR) Hp thoi New Resource Record
hin ra, ti Host IP address g vo IP ca Server ph.
Hnh 65 To mt Pointer mi trong DNS Server

Ti Host name, ta nhp chn Browse Ca s Browse hin ra, chn tip
SERVER Forward Lookup Zones ntt.vn (same as parent folder) (Ch
xem a ch ny IP phi ng vi IP ca server ph), nhp OK OK.
Trang 64
Hnh 66 La chn trong khi to Record

Nhp chut phi vo 10.172.29.in-addr-arpa bn trong chn Properties.
Hp thoi 10.172.29.in-addr-arpa Properties hin ra, chn th Zone Transfers,
chn mc Allow zone transfers, chn mc con Only to the following servers.
Hnh 67 Zone Tranfers ti DNS ph

Sau nhn vo Edit, hp thoi Allow zone transfers xut hin, ta nhp
chut vo dng <Click here to add an IP Address or DNS Name>, g IP ca server
ph vo, y l 172.29.10.2. Sau khi g xong Windows s t phn gi IP thnh tn,
nu thy ng ta nhn OK, tr li hp thoi Allow zone transfers ta nhn Apply
OK.
Trang 65
Hnh 68 Xc nhn a ch IP ca Server Zone Tranfers

6.2.2.3 Cu hnh DHCP Server trn server chnh: V chng ta c n hai my
chy DNS Server nn cn phi cung cp thm mt a ch DNS Server ph cho my
trm. Ta vo Start Administrative Tools DHCP. Ti ca s DHCP chn
server.ntt.vn IPv4 Scope [172.29.10.0] DHCP, nhp chut phi vo Scope
Options chn Configure Options
Hnh 69 Cu hnh thm trong DHCP Server

Tm n dng 006 DNS Servers, ti khung IP address ta in thm a ch ca
server ph vo, y l 172.29.10.2 nhn Add Apply OK.
Trang 66
Hnh 70 Thm mt a ch IP ca DNS Server trong DPCP Server

6.2.2.4 Kim tra Server ph t my trm: m bo chng ta cn kim tra
th vic phn gii cng nh cc iu kin khc. Trn server chnh, ta vo DNS Server,
nhp chut phi vo SERVER chn All task Stop.
Sau , chn mt my trm ta vo Start Run. Hp thoi Run hin ra, g
cmd, nhn OK. Chng trnh Command Prompt hin ra, ti du nhc ta g ipconfig
/release thot khi IP hin ti. sau ta g tip ipconfig /renew xin IP mi t
DHCP Server. Ta ch trong khong vi giy my trm v Server tin hnh cc th
tc xin v cp IP. Sau khi DHCP Server cp IP cho my trm, s hin th cc thng tin
nh: Connection-specific DNS Suffix: tn min cp IP, IP Address: a ch IP,
Subnet Mask, Default Gateway. Mun xem thng tin chi tit hn ti du nhy ta ch
g ipconfig /all. Sau khi xem cc thng tin v a ch ca DNS Server c ng hay
khng.
Trang 67

Ti du nhc lnh g tip ping 172.29.10.2 kim tra xem server ph c lm
vic tt hay khng.
Hnh 72 Ping Server ph

Kim tra DNS Server trn server ph: ta g nslookup, lc ny g vo tn min
l ntt.vn hoc IP ca server (ph hoc chnh u c) nu phn gii c th server
ng hnh Windows Server 2003 hot ng tt.
Hnh 73 Phn phi DNS

Trang 68
6.2.3. Ci t min trn server ph:

Sau khi gia nhp vo min, ta tin hnh dng DC cho my chy Windows
Server 2003 (tm gi l server ph). Vo Start Run, g dcpromo.
Hnh 74 Tin hnh dng min trong Windows Server 2003

Hp thoi Active Directort Installation Wizard hin ra, chn Next Next.
Ti bng Domain Controller type chn Additional domain controller for an
existing domain nhn Next.
Hnh 75 Chn ci t min trn mt min c sn

Tip theo, ti bng Network Credentials ta in ti khon v mt khu ca
Administrator trn server chnh, g xong chn Next.
Trang 69
Hnh 76 Nhp vo ti khon v tn min

Ti bng Additional Domain Controller, mc Domain name chng ta gi
nguyn tn v chn Next. hai bng tip theo, chng ta nhn Next hai ln v ch cn
mc nh cc thng s. n bng Directory Services Restore Mode
Administrator Password ta cn t mt khu nu khng s khng th tip tc c.
Lu , mt khu ny khng phi l mt khu ca ti khon Administrator trong min
v mt khu phi theo kiu complexity (gm cc k t a, A, @,1, ). t xong chn
Next. Sau h thng s hin th cc thng s v DC s to, chng ta xem xt li nu
khng vn chn Next. Qu trnh dng DC t d liu ca server chnh s c tin
hnh
Hnh 77 Ci t min ph trn Windows Server 2003

Ch n khi hon tt chn Finish v khi ng li my vic dng DC c
hiu lc. Sau khi khi ng li ta vo Startt Administrative Tools Active
Directory Users and Computers. Hp thoi Active Directory Users and
Computers xut hin, ta kim tra cc thnh phn bao gm: OU, User, Group s thy
ging nh bn Active Directory Users and Computers ca server chnh.
Trang 70
Chng 7: Cch gia nhp cc my trm chy Windows Vista vo min ca Windows
Server 2008 to ra
CHNG 7:
CCH GIA NHP CC MY TRM CHY WINDOWS VISTA
VO MIN CA WINDOWS SERVER 2008 TO RA
-----
----7.1. Kim tra ng mng
Thng thng mun gia nhp vo min th my trm phi c IP cng dy
ng mng vi Server. Dy IP ny c th cho DHCP Server cp hoc t IP tnh.
Trng hp nu IP ng v nhn IP do DHCP Server cp ta lm nh sau: Vo
Start, ti khung Start Search, g run nhn Enter, hoc chng ta c th nhn phm
Windows kt hp vi phm R. Hp thoi Run hin ra, ta g cmd, nhn OK.
Chng trnh Command Prompt hin ra, ti du nhc ta g ipconfig /release
thot khi IP hin ti. Sau ta g tip ipconfig /renew xin IP mi t DHCP
Server. Ta ch trong khong vi giy my trm v Server tin hnh cc th tc xin
v cp IP. Sau khi DHCP Server cp IP cho my trm, s hin th cc thng tin nh:
Connection-specific DNS Suffix: tn min cp IP, Link-local IPv6 Address: a ch
IP version 6, IPv4 Address: a ch IP version 4, Subnet Mask, Default Gateway.
Mun xem thng tin chi tit hn ti du nhy ta ch g ipconfig /all. Sau khi xem cc
thng tin v a ch IP, ta kim tra xem IP ny c hp l v c nm trong khong cp
pht ca DHCP Server hay khng. Nu tt c u tha iu kin th ta g tip exit
thot khi Command Prompt.
Trang 72
Server 2008 to ra

vi my trm chy Windows Vista
7.2. Gia nhp min

gia nhp min, cn phi c ti khon v mt khu ca Administrator hoc
t nht l ti khon Moderator trn min. Thng thng, qun tr vin khng cung cp
ti khon v mt khu ny cho ngi dng, m khi no my trm tham gia vo min,
chnh h s thc hin cc thao tc gia nhp vo min m bo tnh bo mt, mt
khc v ngi s dng c th khng bit cc thao tc ny.
Sau khi m bo cc yu cu v IP, ti khon v mt khu, trn my trm
chng ta nhp phi vo My Computer, chn Properties. Ca s cho bit cc thng
tin ca my tnh xut hin, ti mc Computer name, domain and workgroup
settings chn Change settings.
Xut hin hp thoi xc nhn vic sa i, ta chn Continue xc nhn. Ca
s System Properties hin ra, ti th Computer name, ta nhn Change. Hp thoi
Computer Name/Domain Change hin ra, ti mc Member of ta nhp nt chn min
v g tn ca min vo.
Trang 73
Server 2008 to ra
Hnh 79 Tin hnh gia nhp min trn Windows Vista

Xut hin hp thoi Windows Security yu cu chng ta xc thc bng cch
g mt ti khon v mt khu c quyn t Moderector tr ln trong min, g xong ta
nhp OK. Ch trong khong thi gian vi giy, nu gia nhp thnh cng s xut hin
thng bo: Welcome to the ntt.vn domain. Ta chn OK cc hp thoi tin hnh
khi ng li my tnh.
Hnh 80 Thng bo gia nhp min thnh cng

Sau khi khi ng li xong, ta nhn Ctrl + Alt + Delete, v chn Switch
User. Lc ny s xut hin hai ti khon, mt ti khon nm trn local v mt ti
khon c tn Other User, ta chn ti khon Other User ng nhp vo min. Lc
ny s xut hin khung chng ta g vo ti khon v mt khu trn min do qun tr
Trang 74
Server 2008 to ra
vin to cho ngi s dng. Pha di l thng tin ca tn min ti Log on to: NTT.
Ti y vic tham gia vo min xem nh hon thnh.
Hnh 81 ng nhp vo min trn Windows Vista
Trang 75
Chng 8: Cch gia nhp cc my trm chy Windows 7 vo min ca Windows

Server 2008 to ra
CHNG 8:
CCH GIA NHP CC MY TRM CHY WINDOWS 7
VO MIN CA WINDOWS SERVER 2008 TO RA
-----
----8.1. Kim tra ng mng
Cng ging nh Windows Vista, Windows 7 mun gia nhp vo min th my
trm phi c IP cng dy ng mng vi Server. Dy IP ny c th cho DHCP Server
cp hoc t IP tnh. Trng hp nu IP ng v nhn IP do DHCP Server cp ta
lm nh sau: Vo Start, ti khung Start Search, g run nhn Enter, hoc chng ta c
th nhn phm Windows kt hp vi phm R. Hp thoi Run hin ra, ta g cmd,
nhn OK.
Chng trnh Command Prompt hin ta, ti du nhc ta g ipconfig /release
thot khi IP hin ti. Sau ta g tip ipconfig /renew xin IP mi t DHCP
Server.Ta ch trong khong vi giy my trm v Server tin hnh cc th tc xin
v cp IP. Sau khi DHCP Server cp IP cho my trm, s hin th cc thng tin nh:
Connection-specific DNS Suffix: tn min cp IP, Link-local IPv6 Address: a ch
IP version 6, IPv4 Address: a ch IP version 4, Subnet Mask, Default Gateway.
Mun xem thng tin chi tit hn ti du nhy ta ch g ipconfig /all. Sau khi xem cc
thng tin v a ch IP, ta kim tra xem IP ny c hp l v c nm trong khong cp
pht ca DHCP Server hay khng. Nu tt c u tha iu kin th ta g tip exit
thot khi Command Prompt.
Trang 76

Server 2008 to ra
Hnh 82 - IP my trm nhn c t DHCP Server vi my trm chy Windows 7
8.2. Gia nhp Min

Sau khi m bo cc yu cu v IP, ti khon v mt khu, trn my trm
chng ta nhp phi vo Computer, chn Properties. Ca s cho bit cc thng tin ca
my tnh xut hin, ti mc Computer name, domain and workgroup settings chn
Change settings. Ca s System Properties hin ra, ti th Computer name, ta nhn
Change. Hp thoi Computer Name/Domain Change hin ra, ti mc Member of ta
nhp nt chn Domain v g tn ca min vo.
Xut hin hp thoi Windows Security yu cu chng ta xc thc bng cch
g mt ti khon v mt khu c quyn t Moderector tr ln trong min, g xong ta
nhp OK. Ch trong khong thi gian vi giy, nu gia nhp thnh cng s xut hin
thng bo: Welcome to the ntt.vn domain. Ta chn OK cc hp thoi tin hnh
khi ng li my tnh.
Hnh 83 Thng bo gia nhp min thnh cng trn Windows 7

Trang 77

Server 2008 to ra
Sau khi khi ng li xong, ta nhn Ctrl + Alt + Delete, v chn Switch
User. Lc ny s xut hin hai ti khon, mt ti khon nm trn local v mt ti
khon c tn Other User, ta chn ti khon Other User ng nhp vo min. Lc
ny s xut hin khung chng ta g vo ti khon v mt khu trn min do qun tr
vin to cho ngi s dng. Pha di l thng tin ca tn min ti Log on to: NTT.
8.3. S khc bit khi gia nhp vo min ca Windows XP, Vista v Win7
8.3.1. Windows XP:
Mc dng i tn my v gia nhp vo min c lu trong th
Computer Name ca hp thoi Systems Properties.
Sau khi gia nhp vo min thnh cng, trong ln ng nhp c th la chn
ng nhp vo min hoc ng nhp vo local mt cch d dng.
8.3.2. Windows Vista v Win7:

Mc dng i tn my v gia nhp vo min c a trc tip ti ca s
System, truy cp nhanh chng v d dng.
Sau khi gia nhp min thnh cng, ng nhp vo min, ta phi chn
Switch User. Lc ny s xut hin hai ti khon, mt ti khon nm trn local v mt
ti khon c tn Other User, ta chn ti khon Other User ng nhp vo min. So
vi XP th phn ny c v rc ri v kh thc hin hn rt nhiu.
Trang 78
Chng 9: nh gi kt qu
CHNG 9:
NH GI KT QU
-----
----9.1. nh gi kt qu
H thng cc kin thc v nh ngha c bn, cc yu cu v phn cng trn
Windows Server 2008.
Trong ti ny, vn dng cc kin thc cn bn hc v tm hiu t cc
ngun v Windows Server 2008, Windows Server 2003, MS Access 2003 cng cc
vn khc, chng em xc nh c lun vn c th p ng cho ngi dng:
Dng min cc cp trn Windows Server 2008.
Tm hiu chc nng mt s Record ca DNS Server.
Cho mt Windows Server 2003 chy ng hnh vi Windows Server
2008 (tng t nh server sao lu gm: AD, DNS Server).
Tm hiu, ci t v cu hnh cho Windows Server 2008 phin bn
Server Core v DHCP Server Core.
Gia nhp min trn cc h iu hnh mi ca Microsoft l Windows
Vista v Windows 7.
9.2. Hng pht trin

Mc d rt c gng, nhng do kin thc hn hp nn ti khng trnh khi
nhiu thiu st v hn ch, ti cn phi:
Tm hiu nhiu hn na cc dch v trn Windows Server 2008 h tr nh:
VPN, Trust Domain, Web Server, File Server, v.v
Trang 79
TI LIU THAM KHO

----------------
A. Cc sch, Ebkook v Windows Server 2008

1. Phm Hng Dng (2007). Lm ch Windows Server 2003 Tp 1. Nh xut
bn Thng K.
2. Stan Reimer, Conan Kezema, Mike Mulcare and Byron Wright, with the
Microsoft Active Directory Team (2008). Windows Server 2008 Active Directory
Resource Kit. Microsoft Press.
3. John Price anf Brad Price (2008). Mastering Active Directory for Windows
Server 2008. Wiley Publishing, Icn.
4. Marty Matthews (2008). Mastering Active Directory for Windows Server
2008. The McGraw Hill Companies.
5. T Thanh Hi (2009). Qun Tr Windows Server 2008 - Tp 1. Nh xut
bn Phng ng.
6. T Thanh Hi (2009). Qun Tr Windows Server 2008 - Tp 2. Nh xut
bn Phng ng.
B. Cc Website v Windows Server 2008:

1. Microsoft: http://www.microsoft.com/windowsserver2008
2. Qun Tr Mng:
http://www.quantrimang.com.vn/hethong/windows/index.aspx
3. ICT24H: http://ict24h.net/forumdisplay.php?f=37
4. Google:
http://www.google.com.vn/#hl=vi&q=Windows+server+2008&aq=f&aqi=&aql=&oq
=&gs_rfai=&fp=fb2dca7f31f4de92
Trang xvii

Triển khai các bản Windows Server

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Triển khai các bản Windows Server

Uploaded by

Copyright:

Available Formats

TRNG CAO NG NGUYN TT THNH

KHOA CNG NGH THNG TIN

CC CCH TRIN KHAI CC BN

SVTH: NGUYN HONG BO TRUNG

SVTH: TRN MINH TUYN

GVHD: ThS. TRN QUNG HNG

TP. H CH MINH, NM 2010

TRNG CAO NG NGUYN TT THNH

NGUYN HONG BO TRUNG

TRN MINH TUYN

CC CCH TRIN KHAI CC BN

GIO VIN HNG DN

KHA 2007 2010

NHN XT CA GIO VIN HNG DN

Tp. H Ch Minh ngy thng nm 2010

ThS. Trn Qung Hng

NHN XT CA GIO VIN PHN BIN

Tp. H Ch Minh ngy thng nm 2010

TRNG C NGUYN TT THNH CNG HA X HI CH NGHA VIT NAM

NHIM V KHA LUN TT NGHIP

Nguyn Hong Bo Trung ....... MSSV: 21072233

CHUYN NGNH: Mng my tnh .................. LP : 07CTH02, 07CTH03

GIO VIN HNG DN

Trn Qung Hng

Nguyn Hong Bo Trung

Trn Minh Tuyn

Windows Server 2008 l mt h iu hnh dnh cho my ch c Microsoft

Nhn xt ca gio vin hng dn ........................................................................ Trang i

Windows Server 2000, Windows Server 2003

M hnh Read-Only Domain Controller

H thng mng vi Windows Server khng tch hp min

H thng mng vi Windows Server khng tch hp min (2)

H thng mng vi Windows Server tch hp min

Internet Protocol Version 4 (TCP/IPv4) Properties

Mn hnh sau khi thm xong Active Directory Domain Services

t tn cho min khi dng

Chn cp rng khi dng min

Kt qu sau khi dng xong min ti Server Manager

Ci t thnh cng DNS Server

Thm mt zone mi trong Reverse Lookup Zone

in dy a ch IP trong khi to ra mt zone mi

To thm mt record mi trong DNS Server (1)

To thm mt record mi trong DNS Server (2)

Thng tin trc khi ci t DHCP Server

To mt Scope mi trong DHCP Server

Cu hnh dy a ch IP v Subnet Mask s cp pht

Active mt Scope mi c to trong DHCP Server

Cu hnh a ch IP s cp trong Scope Options

Cc a ch IP s cp pht sau khi cu hnh xong

Cc OU sau khi to xong

iu chnh cc chnh sch ca min

Chnh sch v mt khu trc khi iu chnh

Chnh sch v mt khu sau khi iu chnh

To mt ti khon ngi dng mi

Cc ngi dng sau khi c to ra

iu chnh cc thng tin c nhn ca ngi dng

Thm mt nhm mi trong OU

Thm ngi dng vo nhm

Tm kim ngi dng nng cao

Cc ngi dng sau khi c thm vo nhm

Trust Path in a One-Way Trust

H thng Forest trong Trust Relationships

Nng cp min trong Windows Server 2008

Khng nh vic nng cp min