Post on 29-Dec-2015
A detailed look at the Microsoft Windows Infrastructure at UWE including Active Directory (AD), MIIS,
Exchange, SMS, IIS, SQL Server, Terminal Services. We’ll consider how we use the Microsoft technologies platform to automate and manage the infrastructure.
Alistair Sandford
UFEEP4-15-M - Week 3
Windows infrastructure at UWE Managing a Windows Infrastructure Bigger picture
UFEEP4-15-M - Week 3
PHYSICAL LAYER
NETWORK LAYER
SERVER/HARDWARE LAYER
APPLICATION LAYER
OPERATIONAL
USER INTERFACE LAYER
OPERATING SYSTEM
DATABASE
BACKUP & MONITORING
LAYER
UFEEP4-15-M - Week 3
UFEEP4-15-M - Week 3
What is Active Directory? Logical concepts Physical concepts The UWE AD
UFEEP4-15-M - Week 3
Directory Service (LDAP) Structured Database of ‘objects’ Searchable, Indexed, consistent schema
Authentication and Authorisation Confirms the user is valid (username & password) Allows or denies access to resources
Enables administration of resources Assign policies (user and computer) deploy software and updates
UFEEP4-15-M - Week 3
Database storing collections of objects Structured (Logical not physical/geographical) Boundary of administration Controls access to resources
UFEEP4-15-M - Week 3
Hierarchy of Domains forming a contiguous namespace
Connected via Trust Relationships All domains in the tree share
Schema Configuration Global Catalog
abc.com
uk.abc.com usa.abc.com
it.uk.abc.com
UFEEP4-15-M - Week 3
Hierarchy of Domains forming a contiguous or disjoint namespace
Connected via Trust Relationships All domains in the forest share
Schema Configuration Global Catalog
abc.com
uk.abc.com usa.abc.com
xyz.com
UFEEP4-15-M - Week 3
Domain Controllers Multiple DCs for resilience Each can run different multiple roles Replication between controllers
UFEEP4-15-M - Week 3
What is a site? A set of well connected IP subnets
Sites are connected with site links
abc.com
UFEEP4-15-M - Week 3
What is the Global Catalog? A subset of the schema attributes
Contains key information which is shared across forests
UFEEP4-15-M - Week 3
2 x Forests (Internal + DMZ) 3 x Domains 1 x Site (for all campuses) 55,000 Objects
5,000 computers 48,000 users 7,000 groups
7 x DCsads
campusperim
campus.ads.uwe.ac.uk
UFEEP4-15-M - Week 3
Systems Management Server Software Distribution
Application ‘Packaged’ (creation of a customised installation) then ‘Advertised’ (made available as mandatory or optional) to a ‘Collection’ (an individual or group of computers or users)
Asset Management (Hardware and Software) Update/Patch Management Operating System Deployment Pack
Add-on to enable the building of PC’s / Servers
UFEEP4-15-M - Week 3
Microsoft Identity Integration Server Synchronises identity information between
different systems Provisions and de-provisions accounts Synchronises and manages passwords
UFEEP4-15-M - Week 3
SunOne LDAP
Exchange 2003
Telephone Call Logger
Portal(myUWE)
WindowsLive
Timetabling(Syllabus+)
HR (SAP)
Finance(Agresso)
Access Control
Student Records(ISIS)
Active Directory
MIIS
UFEEP4-15-M - Week 3
Products currently in use: - Windows Server 2003 / 2000 Windows XP / 2000 Windows Mobile / XP Tablet Edition SQL Server 2005 / 2000 [50+ Databases] Exchange Server 2003 Internet Information Server (IIS) [100+ Web Sites] Terminal Services [40+ Server Farm] Live Communication Server Identity Integration Server (MIIS) ISA Server Office SharePoint Server Systems Management Server (SMS)