Remote Server Administration & Internet Information Services Chapter 14 & 16
Dec 28, 2015
Remote Server Administration
• Remote Administration• Remote Desktop• Remote Assistance• Remote Server Administration Tools
Remote Administration
• Remote Desktop for Administration(RDA) is the default implementation of Remote Desktop Services(RDS)– Terminal Services has been renamed to RDS
• Two administrators can be remotely logged in at the same time
• No additional licensing is required for this mode
Remote Administration
• RDA allows you to do anything in the remote session as if you were logged directly to the console– Access Start menu– Install applications– Install updates– Reboot-Careful!!!
Remote Administration
• Configuring your server for remote desktop– Click Start->right-click on Computer->Properties-
>click Remote Settings (see below)
Remote Administration
• Listens on port 3389 (quiz alert!!)• Three options:– Don’t allow connections to this computer– Allow connections running any version of Remote
Desktop• Less secure using RDC clients older 6.0
– Allow connections only from computers running Remote Desktop with Network Level Authentication• Only supports RDC 6.0 or higher. 6.1 can be installed
on XP SP2
Remote Desktop
• General—allows you to identify the remote computer and provide a username. These settings can be saved.
• Display—allows you to configure display properties
• Local Resources Tab—allows you to identify which local resources you want to bring to your remote session– Printers, local drives, etc.
Remote Desktop
• Programs—allows you to identify which program will start when the connection is established
• Experience—add or remove different features based on your connection speed
• Advanced—contains “Server Authentication” and “Connect from Anywhere” sections
Remote Desktop
• Can launch remote desktop from the run line using :– Mstsc.exe
• Options include:– Mstsc.exe /v:srv1—identify a server– Mstsc.exe c:\data\srv1.rdp—launch rdc using a
rdp file– Mstsc.exe /f—full screen mode– Mstsc.exe /span—using multiple monitors
Remote Assistance
• Primarily used on desktops• Not enabled by default on Windows Server
2008 R2• Remote Assistance feature must be added
before it can be enabled
Remote Server Administration Tools
• Remote Server Administration Tools (RSAT) are tools you can use to manage Microsoft Windows Server 2008 (R2) from a desktop
• Replaces AdminPak• Will revisit after the midterm
Web Services
• What is a website?• What is Microsoft’s Web server application
called?• By default, what port does Internet Explorer
access when browsing to a website?• What Web protocol supports encryption?
Web Services
• The internet is here to stay…– Hosted domains exceeds 433 million!!– As of June 30, 2009, 1.2 billion people are using
the internet in some capacity. 1*• Internet Information Services(IIS) is 2nd in
market share for web server products 2* – 2* Http://www.netcraft.com
Internet Information Services(IIS)
• IIS—is a web server application and set of feature extension modules created by Microsoft for use with Microsoft Windows.– A service that displays web content
• What’s different in 7.0/7.5– What’s the big deal?
• IIS is a dependency service for several other important Windows services– http.sysWindows Remote Management WinRM
– More granular control over site management– ASP, CGI and ASP.NET are completely absent until you add
them on purpose
IIS
• A simpler, but extensible product:– Stripped down to be nothing more than a
sophisticated web server engine• The functionality lies with the prepackaged features
called modules
• New management tools– UI facelift– PowerShell administration
IIS
• New administrative and troubleshooting– Best practice analyzer– PowerShell– Logging
• New processing modes– Integrated application pool mode– Classic application pool mode
• SSL support– Support for management with a http.sys listener for SSL
IIS
• Internet Information Services (IIS) 7.5• Installed as a role in Windows Server 2008 R2• Host site for 1 to many domains– Host Header Records—www.contoso.com,
www.adatum.com• Found in the bindings option
– Multiple IP addresses– Unique port numbers
• 80Default for http/www• 443Default for Secure web/https/ssl
IIS
• Installation Notes• Default content directory is:– %system driver%\inetpub\wwwroot• C:\inetpub\wwwroot
File Transfer Protocol Service (FTP)
• Communicates on port 21• Microsoft has rewritten its FTP service for Windows
Server 2008, which incorporates many new features that enable Web authors to publish content more easily.
• Tightly integrated with IIS 7.x and has the XML-based *.config format
• Now supports FTP over SSL and IPv6• Can host FTP and Web content from the same site• Virtual host name support
Digging Deeper
• These roles/services communicate through ports.
• Ports make up the socket connection from the client to the server– Web browser to Web Server software– Sockets are displayed using:• Netstat –aon
– Ports are to IP addresses as extensions are to a phone number
Digging Deeper
• Common services communicate through “well known” ports:– Web/WWW/HTTP80– HTTPS (secure web)443– FTP20,21– Remote Desktop3389– DNS53– Telnet23– Secure Shell (secure telnet)22