A detailed look at the Microsoft Windows Infrastructure at UWE including Active Directory (AD), MIIS,

Exchange, SMS, IIS, SQL Server, Terminal Services. We’ll consider how we use the Microsoft technologies platform to automate and manage the infrastructure.

Alistair Sandford

UFEEP4-15-M - Week 3

Windows infrastructure at UWE Managing a Windows Infrastructure Bigger picture

UFEEP4-15-M - Week 3

PHYSICAL LAYER

NETWORK LAYER

SERVER/HARDWARE LAYER

APPLICATION LAYER

OPERATIONAL

USER INTERFACE LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

UFEEP4-15-M - Week 3

UFEEP4-15-M - Week 3

What is Active Directory? Logical concepts Physical concepts The UWE AD

UFEEP4-15-M - Week 3

Directory Service (LDAP) Structured Database of ‘objects’ Searchable, Indexed, consistent schema

Authentication and Authorisation Confirms the user is valid (username & password) Allows or denies access to resources

Enables administration of resources Assign policies (user and computer) deploy software and updates

UFEEP4-15-M - Week 3

Database storing collections of objects Structured (Logical not physical/geographical) Boundary of administration Controls access to resources

UFEEP4-15-M - Week 3

Hierarchy of Domains forming a contiguous namespace

Connected via Trust Relationships All domains in the tree share

Schema Configuration Global Catalog

abc.com

uk.abc.com usa.abc.com

it.uk.abc.com

UFEEP4-15-M - Week 3

Hierarchy of Domains forming a contiguous or disjoint namespace

Connected via Trust Relationships All domains in the forest share

Schema Configuration Global Catalog

abc.com

uk.abc.com usa.abc.com

xyz.com

UFEEP4-15-M - Week 3

Domain Controllers Multiple DCs for resilience Each can run different multiple roles Replication between controllers

UFEEP4-15-M - Week 3

What is a site? A set of well connected IP subnets

Sites are connected with site links

abc.com

UFEEP4-15-M - Week 3

What is the Global Catalog? A subset of the schema attributes

Contains key information which is shared across forests

UFEEP4-15-M - Week 3

2 x Forests (Internal + DMZ) 3 x Domains 1 x Site (for all campuses) 55,000 Objects

5,000 computers 48,000 users 7,000 groups

7 x DCsads

campusperim

campus.ads.uwe.ac.uk

UFEEP4-15-M - Week 3

Systems Management Server Software Distribution

Application ‘Packaged’ (creation of a customised installation) then ‘Advertised’ (made available as mandatory or optional) to a ‘Collection’ (an individual or group of computers or users)

Asset Management (Hardware and Software) Update/Patch Management Operating System Deployment Pack

Add-on to enable the building of PC’s / Servers

UFEEP4-15-M - Week 3

Microsoft Identity Integration Server Synchronises identity information between

different systems Provisions and de-provisions accounts Synchronises and manages passwords

UFEEP4-15-M - Week 3

SunOne LDAP

Exchange 2003

Telephone Call Logger

Portal(myUWE)

WindowsLive

Timetabling(Syllabus+)

HR (SAP)

Finance(Agresso)

Access Control

Student Records(ISIS)

Active Directory

MIIS

UFEEP4-15-M - Week 3

Products currently in use: - Windows Server 2003 / 2000 Windows XP / 2000 Windows Mobile / XP Tablet Edition SQL Server 2005 / 2000 [50+ Databases] Exchange Server 2003 Internet Information Server (IIS) [100+ Web Sites] Terminal Services [40+ Server Farm] Live Communication Server Identity Integration Server (MIIS) ISA Server Office SharePoint Server Systems Management Server (SMS)