Book Image

Windows Server 2016 Automation with PowerShell Cookbook - Second Edition

By : Thomas Lee, Ed Goad
Book Image

Windows Server 2016 Automation with PowerShell Cookbook - Second Edition

By: Thomas Lee, Ed Goad

Overview of this book

This book showcases several ways that Windows administrators can use to automate and streamline their job. You'll start with the PowerShell and Windows Server fundamentals, where you'll become well versed with PowerShell and Windows Server features. In the next module, Core Windows Server 2016, you'll implement Nano Server, manage Windows updates, and implement troubleshooting and server inventories. You'll then move on to the Networking module, where you'll manage Windows network services and network shares. The last module covers Azure and DSC, where you will use Azure on PowerShell and DSC to easily maintain Windows servers.

Related Content you might be interested in

Current Title:

Small book image
Windows Server 2016 Automation with PowerShell Cookbook - Second Edition
Thomas Lee | Ed Goad
Sep, 2017 | 660 pages
Small book image
Windows Server Automation with PowerShell Cookbook
Thomas Lee
Jan, 2023 | 714 pages
Small book image
Windows Server Automation with PowerShell Cookbook
Thomas Lee
Jul, 2021 | 674 pages
Small book image
Windows Server 2016 Hyper-V Cookbook
Leandro Carvalho | Charbel Nemnom | Patrick Lownds
Jan, 2017 | 524 pages
Table of Contents (21 chapters)
Title Page
Title Page
Credits
Credits
About the Author
About the Author
Acknowledgment
Acknowledgment
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Customer Feedback
Customer Feedback
Preface
Preface
Free Chapter
1
What's New in PowerShell and Windows Server
What's New in PowerShell and Windows Server
Introduction
Exploring Remote Server Administration Tools (RSAT)
Discovering new cmdlets in PowerShell 4 and Windows Server 2012 R2
Discovering new cmdlets in PowerShell 5/5.1 and Windows Server 2016
Exploring PowerShellGet
Exploring PackageManagement
Creating an internal PowerShell repository
2
Implementing Nano Server
Implementing Nano Server
Introduction
Deploying a Nano Server in a VM
Connecting to and managing a Nano Server
Installing features with Nano Server packages
3
Managing Windows Updates
Managing Windows Updates
Introduction
Installing Windows Server Update Services
Configuring WSUS update synchronization
Configuring the Windows Update client
Creating computer target groups
Configuring WSUS auto-approvals
Managing updates
4
Managing Printers
Managing Printers
Introduction
Installing and sharing printers
Publishing a printer
Changing the spool directory
Changing printer drivers
Printing a test page on a printer
Reporting on printer security
Modifying printer security
Deploying shared printers
Enabling Branch Office Direct Printing
Creating a printer pool
Reporting on printer usage
5
Managing Server Backup
Managing Server Backup
Introduction
Configure and set backup policy
Examine the results of a backup
Initiate a backup manually
Restore files and folders
Backup and restore a Hyper-V Virtual Machine
Backup and perform bare metal recovery
Restore the registry from a backup
Create a daily backup report
Backup and restore using Microsoft Azure
6
Managing Performance
Managing Performance
Introduction
Explore performance counters with Get-Counter
Explore performance counters using CIM cmdlets
Configuring and using Data Collector Sets
Reporting on performance data
Generating performance monitoring graph
Creating a system diagnostics report
7
Troubleshooting Windows Server 2016
Troubleshooting Windows Server 2016
Introduction
Checking network connectivity
Using troubleshooting packs
Use best practice analyzer
Managing event logs
Forward event logs to a central server
8
Managing Windows Networking Services
Managing Windows Networking Services
Introduction
New ways to do old things
Configuring IP addressing
Converting IP address from static to DHCP
Installing domain controllers and DNS
Configuring zones and resource records in DNS
Installing and authorizing a DHCP server
Configuring DHCP scopes
Configuring DHCP server failover and load balancing
Building a public key infrastructure
Creating and managing AD users, groups, and computers
Adding users to AD using a CSV file
Reporting on AD users
Finding expired computers in AD
Creating a privileged user report
9
Managing Network Shares
Managing Network Shares
Introduction
Securing your SMB file server
Creating and securing SMB shares
Accessing SMB shares
Creating an iSCSI target
Using an iSCSI target
Creating a scale-out SMB file server
Configuring a DFS Namespace
Configuring DFS Replication
10
Managing Internet Information Server
Managing Internet Information Server
Introduction
Installing IIS
Configuring IIS for SSL
Managing TLS cipher suites
Configuring a central certificate store
Configuring IIS bindings
Configuring IIS logging and log files
Managing applications and application pools
Managing and monitoring network load balancing
11
Managing Hyper-V
Managing Hyper-V
Introduction
Installing and configuring Hyper-V feature
Using Windows PowerShell Direct
Securing Hyper-V host
Create a virtual machine
Configuring VM hardware
Configuring Hyper-V networking
Implementing nested Hyper-V
Managing VM state
Configuring VM and storage movement
Configuring VM replication
Managing VM checkpoints
Monitoring Hyper-V utilization and performance
Creating a Hyper-V health report
12
Managing Azure
Managing Azure
Introduction
Using PowerShell with Azure
Creating Core Azure Resources
Exploring your storage account
Creating Azure an SMB File Share
Creating and using websites
Creating and using Azure virtual machines
13
Using Desired State Configuration
Using Desired State Configuration
Introduction
Using DSC and built-in resources
Parameterizing DSC configuration
Finding and installing DSC resources
Using DSC with PSGallery resources
Configuring Local Configuration Manager
Implementing a SMB pull server
Implementing a DSC web-based pull server
Using DSC partial configurations

Building a public key infrastructure

In most organizations, you find a requirement for X.509 digital certificates. The organization might need an SSL certificate for a website, a server certificate for Skype for Business, or a code signing certificate as the basis for signing PowerShell scripts. Building a PKI for your organization is often an exercise in defense in depth.

A very simple design would be to make your DC an AD Certificate Services (ADCS) CA server. But that is not best practice. At a minimum, you need a single offline root CA, with a subordinate issuing CA. If you are more paranoid or have a bigger attack surface, you could consider an intermediate CA that, like the root, is offline with a third level CA that issues certificates. The richness and complexity of modern CA architecture are beyond the scope of this book.

This recipe creates a two-level CA architecture for the Reskit.org network. The root CA is root: a workgroup machine that you should keep offline. The second CA...

Previous Section
End of Section 11
Next Section