Windows Server 2016 Cookbook

Windows Server 2016 Cookbook

By : Jordan Krause

Buy this Book

Windows Server 2016 Cookbook

By: Jordan Krause

Buy this Book

Overview of this book

This hands-on Cookbook is stuffed full of practical recipes that will help you handle the essential administrative tasks in Windows Server 2016. You’ll start by familiarizing yourself with the look and feel of Windows Server 2016, and will then learn how to navigate through some daily tasks using the graphical interface. You will see how to compose optimal Group Policies and facilitate task automation with PowerShell 5.0 scripting. We will also take a look at the functions available to provide remote network access to your traveling users, and explore the much anticipated Nano Server and Hyper-V built-in integration support that is brand new in Windows Server 2016. By the end of this book, you will know how to take your Windows Server 2016-powered server and turn it into any common infrastructure role that might be required in your company.

Windows Server 2016 Cookbook

Credits

About the Author

About the Reviewer

www.PacktPub.com

Preface

Free Chapter

Learning the Interface

Introduction

Shutting down or restarting the server

Launching Administrative Tools

Using WinKey + X for quick admin tasks

Using the search function to launch applications quickly

Managing remote servers from a single pane with Server Manager

Using PowerShell to accomplish any function in Windows Server

Installing a role or feature

Administering Server 2016 from a Windows 10 machine

Identifying useful keyboard shortcuts in Server 2016

Setting your PowerShell Execution Policy

Building and executing your first PowerShell script

Searching for PowerShell cmdlets with Get-Help

Core Infrastructure Tasks

Introduction

Configuring a combination Domain Controller, DNS server, and DHCP server

Adding a second Domain Controller

Organizing your computers with Organizational Units

Creating an A or AAAA record in DNS

Creating and using a CNAME record in DNS

Creating a DHCP scope to assign addresses to computers

Creating a DHCP reservation for a specific server or resource

Pre-staging a computer account in Active Directory

Using PowerShell to create a new Active Directory user

Using PowerShell to view system uptime

Security and Networking

Introduction

Requiring complex passwords in your network

Using Windows Firewall with Advanced Security to block unnecessary traffic

Changing the RDP port on your server to hide access

Multi-homing your Windows Server 2016

Adding a static route into the Windows routing table

Using Telnet to test a connection and network flow

Using the Pathping command to trace network traffic

Setting up NIC Teaming

Renaming and domain joining via PowerShell

Building your first Server Core

Working with Certificates

Introduction

Setting up the first Certification Authority server in a network

Building a Subordinate Certification Authority server

Creating a certificate template to prepare for issuing machine certificates to your clients

Publishing a certificate template to allow enrollment

Using MMC to request a new certificate

Using the web interface to request a new certificate

Configuring Autoenrollment to issue certificates to all domain joined systems

Renewing your root certificate

Internet Information Services

Introduction

Installing the Web Server role with PowerShell

Launching your first website

Changing the port on which your website runs

Adding encryption to your website

Using a Certificate Signing Request to acquire your SSL certificate

Moving an SSL certificate from one server to another

Rebinding your renewed certificates automatically

Hosting multiple websites on your IIS server

Using host headers to manage multiple websites on a single IP address

Remote Access

Introduction

DirectAccess planning question and answers

Configuring DirectAccess, VPN, or a combination of the two

Pre-staging Group Policy Objects to be used by DirectAccess

Enhancing the security of DirectAccess by requiring certificate authentication

Building your Network Location Server on its own system

Enabling Network Load Balancing on your DirectAccess servers

Adding VPN to your existing DirectAccess server

Replacing your expiring IP-HTTPS certificate

Reporting on DirectAccess and VPN connections

Remote Desktop Services

Introduction

Building a single server Remote Desktop Services environment

Adding an additional RDSH server to your RDS environment

Installing applications on a Remote Desktop Session Host server

Disabling the redirection of local resources

Shadowing another session in RDS

Installing a printer driver to use with redirection

Removing an RD Session Host server from use for maintenance

Publishing WordPad with RemoteApp

Tracking user logins with Logon/Logoff scripts

Monitoring and Backup

Introduction

Using Server Manager as a quick monitoring tool

Using the new Task Manager to its full potential

Evaluating system performance with Windows Performance Monitor

Using Format-List to modify PowerShell data output

Configuring a full system backup using Windows Server Backup

Recovering data from a Windows backup file

Using IP Address Management to keep track of your used IP addresses

Checking for viruses in Windows Server 2016

Group Policy

Introduction

Creating and assigning a new Group Policy Object

Mapping network drives with Group Policy

Redirecting the My Documents folder to a network share

Creating a VPN connection with Group Policy

Creating a printer connection with Group Policy

Using Group Policy to enforce an Internet proxy server

Viewing the settings currently enabled inside a GPO

Viewing the GPOs currently assigned to a computer

Backing up and restoring GPOs

Plugging in ADMX and ADML templates

File Services and Data Control

Introduction

Enabling Distributed File System and creating a Namespace

Configuring Distributed File System Replication

Creating an iSCSI target on your server

Configuring an iSCSI initiator connection

Configuring Storage Spaces

Turning on data deduplication

Setting up Windows Server 2016 work folders

Nano Server and Server Core

Introduction

Configuring Server Core from the console

Switching between Server Core and Desktop Experience?

Building your first Nano Server

Exploring the Nano Server console

Managing Nano and Core with Server Manager

Managing Nano and Core using remote MMC tools

Managing Nano and Core with PowerShell remoting

Working with Hyper-V

Introduction

Creating a Windows Server that runs Hyper-V

Creating a Hyper-V Server

Networking your VMs

Building your first virtual machine

Using the VM Settings page

Editing virtual hard disks

Using Checkpoints as rollback points

Customer Reviews

5 star

4 star

3 star

2 star

1 star

Enhancing the security of DirectAccess by requiring certificate authentication

When a DirectAccess client computer builds its IPsec tunnels back to the corporate network, it has the ability to require a certificate as part of that authentication process. In earlier versions of DirectAccess, the one in Server 2008 R2 and the one provided by Unified Access Gateway (UAG), these certificates were required in order to make DirectAccess work. Setting up the certificates really isn't a big deal at all. As long as there is a CA server in your network, you are already prepared to issue the necessary certificates at no cost. Unfortunately, though, there must have been enough complaints back to Microsoft in order for them to make these certificates recommended instead of required, and they created a new mechanism in Windows 8 and Server 2012 called KerberosProxy that can be used to authenticate the tunnels instead. This allows the DirectAccess tunnels to build without the computer certificate, making...

Windows Server 2016 Cookbook

By : Jordan Krause

Windows Server 2016 Cookbook

By: Jordan Krause

Overview of this book

Related Content you might be interested in

Current Title:

Windows Server 2016 Cookbook

Enhancing the security of DirectAccess by requiring certificate authentication