Difference between revisions of "Active Directory/Documentation"

From WolfTech
Jump to navigation Jump to search
m
 
(26 intermediate revisions by 3 users not shown)
Line 10: Line 10:
  
 
=Automatic Updates (WSUS)=
 
=Automatic Updates (WSUS)=
 
+
Details on the WolfTech WSUS Service Group can be found [[Active_Directory/Service_Groups| here]].
*[[/WSUS| WolfTech WSUS]]
+
*[[/Configuring the Windows Update GPO Setting| Configuring the Windows Update GPO Setting]]
*[[/Update_Policy| WSUS Update Policy]]
 
 
*[[/Manually_Install_Updates| Manually Install Updates]]
 
*[[/Manually_Install_Updates| Manually Install Updates]]
*[[/WSUS_Email | WSUS Notification Email Template]]
 
 
*[[/WSUS Management Console | WSUS Management Console]]
 
*[[/WSUS Management Console | WSUS Management Console]]
 
*[[/Manipulate Client Behavior Using Command-line Options|Manipulate Client Behavior Using Command-line Options]]
 
*[[/Manipulate Client Behavior Using Command-line Options|Manipulate Client Behavior Using Command-line Options]]
 
 
*[[/WSUS Update Agent Script|Windows Update Agent force script]]
 
*[[/WSUS Update Agent Script|Windows Update Agent force script]]
 +
*[[/Personal Computers on WSUS|Personal Computers on WSUS]]
 +
*[[/Configuring Domain Computers|Configuring Domain Computers]]
  
 
=Disaster Recovery=
 
=Disaster Recovery=
Line 54: Line 53:
 
=Laptops=
 
=Laptops=
 
*[[/Security Policies When Offsite|Security Policies When Offsite]]
 
*[[/Security Policies When Offsite|Security Policies When Offsite]]
 +
=Lights Out Management=
 +
*HP ILO
 +
*Dell DRAC
 
=Macintosh=
 
=Macintosh=
 
*[[/Parallels | Parallels]] (BME is currently beta testing)
 
*[[/Parallels | Parallels]] (BME is currently beta testing)
  
 
==== Options for integrating Mac OS X clients with AD ====
 
==== Options for integrating Mac OS X clients with AD ====
 +
 +
*Billy's instructions on joining domain... [[/Joining Macs to WolfTech Domain|Joining Macs to WolfTech Domain]]
  
 
With the included Active Directory plug-in, OS X can be configured to authenticate to an AD domain, and use network home directories. More comprehensive management (MCX) requires one of the 3 options below:
 
With the included Active Directory plug-in, OS X can be configured to authenticate to an AD domain, and use network home directories. More comprehensive management (MCX) requires one of the 3 options below:
Line 66: Line 70:
  
 
Additional resources:
 
Additional resources:
#[http://images.apple.com/itpro/pdf/AD_Best_Practices_2.0.pdf Best Practices: Integrating Mac OS X with Active Directory]
+
*[http://images.apple.com/itpro/pdf/AD_Best_Practices_2.0.pdf Best Practices: Integrating Mac OS X with Active Directory]
 +
*http://www.macwindows.com/AD.html
  
 
Issues to address:
 
Issues to address:
Line 83: Line 88:
 
=Migrating=
 
=Migrating=
 
*[[/College of Textiles Migration|College of Textiles Migration]]
 
*[[/College of Textiles Migration|College of Textiles Migration]]
 +
*[[/GUID Collection Tool|GUID Collection Tool]]
 +
*[[/Computer Account Prestaging Tool|Computer Account Prestaging Tool]]
 +
*[[/Computer Migrators Group|Using the Computer Migrators group]]
 
====Active Directory Migration Tool (ADMT)====
 
====Active Directory Migration Tool (ADMT)====
 
*[[/Enable User/Password Migration| Enable User/Password Migration]]
 
*[[/Enable User/Password Migration| Enable User/Password Migration]]
Line 104: Line 112:
 
*[[/Printing via Print-a-File|Printing via Print-a-File]]
 
*[[/Printing via Print-a-File|Printing via Print-a-File]]
 
*[[/Windows 2003 R2 and Printing|Windows 2003 R2 and Printing]]
 
*[[/Windows 2003 R2 and Printing|Windows 2003 R2 and Printing]]
 +
*[[/Printer Management and Vista/RSAT|Printer Management and Vista/RSAT]]
 +
*[[/WolfPrint Accounted Printing|WolfPrint Accounted Printing]]
  
 
=Public Labs / Kiosks=
 
=Public Labs / Kiosks=
Line 125: Line 135:
 
*[http://technet.microsoft.com/en-us/sysinternals/ SysInternals Tools (incls psexec / pstools)]
 
*[http://technet.microsoft.com/en-us/sysinternals/ SysInternals Tools (incls psexec / pstools)]
 
*[[/GUI for psexec|GUI for psexec]]
 
*[[/GUI for psexec|GUI for psexec]]
 +
*[[Using PsExec to delete old local profiles on lab machines]]
  
 
==Services for UNIX==
 
==Services for UNIX==
Line 140: Line 151:
  
 
*[[/MSI Testing|MSI Testing]]
 
*[[/MSI Testing|MSI Testing]]
 +
*[[/MSI Logging|MSI Loggingg]]
  
 
=Symantec Antivirus (SAV)=
 
=Symantec Antivirus (SAV)=
Line 147: Line 159:
 
=Teaching Labs=
 
=Teaching Labs=
 
*[[/Using Common Accounts|Using Common Accounts]]
 
*[[/Using Common Accounts|Using Common Accounts]]
 +
*[[/Monitoring Lab Usage|Monitoring Lab Usage]]
 +
*[[/Generate Remote Desktop Files|Generate Remote Desktop Files]]
  
 
=User Account Control (UAC)=
 
=User Account Control (UAC)=
Line 158: Line 172:
 
*[[/Planning | Planning]]
 
*[[/Planning | Planning]]
  
=Windows 2003 Server R2=
+
=Windows Server 2003 R2=
 
*[[/Extend_Schema_R2| How to extend the schema?]]
 
*[[/Extend_Schema_R2| How to extend the schema?]]
 +
 +
=Windows Server 2008=
 +
*[[/Server 2008 Core | Server 2008 Core]]
  
 
=Windows Defender=
 
=Windows Defender=
Line 166: Line 183:
 
=Windows Deployment Services (WDS)=
 
=Windows Deployment Services (WDS)=
 
*[[/WDS | WDS]]
 
*[[/WDS | WDS]]
 +
 +
=Windows 7=

Latest revision as of 16:58, 23 April 2010

Active Directory Users and Computers

Automatic Logon

Administrative Users

Automatic Updates (WSUS)

Details on the WolfTech WSUS Service Group can be found here.

Disaster Recovery

DNS

File Servers

Folder Redirection

Distributed File System (DFS)

Group Policy

Group Policy Preferences

Internet Explorer 7

Laptops

Lights Out Management

  • HP ILO
  • Dell DRAC

Macintosh

Options for integrating Mac OS X clients with AD

With the included Active Directory plug-in, OS X can be configured to authenticate to an AD domain, and use network home directories. More comprehensive management (MCX) requires one of the 3 options below:

Additional resources:

Issues to address:

  1. Configuring your mac to use your UnityID/paswd (specifically, by authing against the DCs, but alternatively against the campus KDC). Plus how the laptop reacts when not on the network - should be caching.
  2. Adding your Mac to the domain.
  3. Restricting access to AD defined users.
  4. Printing from your domain'd mac to a Windows print server; and to a WolfCopy printer.
  5. Accessing Windows file shares from your domain mac
  6. Why DFS doesn't work, or if the new OS fixes this. And steps to get around this (3rd party apps - AdmitMac) or things to look out for).
  7. Options to apply policies to the mac client via GP? (likely to require 3rd party apps)
  8. Scripts to inventory hardware/applications on your mac clients (longterm we'd want a WolfTech Collector Agent for Macs)
  9. AFS client for Macs
  10. Software distribution to Mac via GP?

Migrating

Active Directory Migration Tool (ADMT)

MS-SQL

New OU Admins

Printing

Public Labs / Kiosks

Remote Assistance

Remote Installation Services (RIS)

Scripting

Services for UNIX

Software Packaging

Symantec Antivirus (SAV)

Teaching Labs

User Account Control (UAC)

Virtual Servers

Vista

Windows Server 2003 R2

Windows Server 2008

Windows Defender

Windows Deployment Services (WDS)

Windows 7

Retrieved from "https://tools.wolftech.ncsu.edu/support/index.php?title=Active_Directory/Documentation&oldid=9925"