Managing and Administering DNS in Windows Server 2008 Managing

Total Page:16

File Type:pdf, Size:1020Kb

Managing and Administering DNS in Windows Server 2008 Managing CCO-BENDER-08-0804-006.qxd 12/22/08 10:18 AM Page 205 chapter6 ManagingManaging andand AdministeringAdministering DNSDNS inin WindowsWindows ServerServer 20082008 After reading this chapter and completing the exercises, you will be able to: • Describe and install Active Directory Domain Services • Manage your Domain Name System (DNS) environment • Troubleshoot your DNS environment • Manage Windows Internet Name Service • Describe the new features of DNS in Windows Server 2008 205 CCO-BENDER-08-0804-006.qxd 12/22/08 10:18 AM Page 206 206 Chapter 6 Managing and Administering DNS in Windows Server 2008 Many networks use Active Directory to implement a domain networking model. Active Directory Domain Services is the latest version of Microsoft’s centralized directory services application. Among other features, it provides user and object management, Group Policy distribution, and networkwide security. Active Directory Domain Services is built on and relies on Domain Name System (DNS) to function properly in a Windows Server 2008 domain environment. This chapter introduces you to Active Directory Domain Services so that you can better understand how it integrates with DNS. You also learn about different deployment scenarios for DNS. Along the way, you examine a number of tools, those based on both the graphical user interface (GUI) and the command line, that you can use to manage your DNS environments and to troubleshoot DNS environments when problems occur. Introduction to Active Directory Domain Services As mentioned previously, Active Directory Domain Services (AD DS) is directly tied to and requires the installation of a DNS server to function properly. Active Directory (AD) clients use DNS to locate all the resources available on the network. In an AD DS environment, you can run two types of DNS servers: • Standard DNS servers—These servers use file-based DNS zone files for storing their zone information. • AD DS–integrated DNS servers—These servers use the AD DS database and replication structure for storing and maintaining their zone information. Although standard DNS servers are supported in an AD domain, it is highly recommended and considered a best practice to implement AD DS–integrated DNS in AD domain environ- ments. (In Active Directory–integrated DNS [AD DS DNS], the DNS database is stored in AD, and DNS replication occurs through the normal AD replication process.) You will learn more about AD DS–integrated DNS throughout this chapter. In the next section, you learn about AD DS and its relationship with DNS. In preparation for the activities in this chapter, you need to modify the network adapter con- figurations on your lab servers. In Activity 6-1, you reset your network adapters. Activity 6-1: Resetting Network Adapters Time Required: 15 minutes Objective: Reset the network adapters on lab servers. Description: Before you perform the other activities in this chapter, you need to verify the Internet Protocol (IP) addresses on your network adapters on MSN-SRV-0XX and MSN-SC- 0XX and then reset the network adapters. 1. Log onto MSN-SRV-0XX, if necessary. 2. Open a command prompt from the Start menu, type ipconfig /all, and then press Enter to list the network adapter settings. They should be similar to those shown in Figure 6-1, which shows the final IP address settings for MSN-SRV-0XX. Your IP address settings might differ depending on your lab and network setup. See your instructor for details about setting up your network adapters if necessary. 3. At the command prompt, enter the following commands to change the network adapter names and reset the network adapter configuration: netsh interface set interface name=“local area connection” newname=“internet” CCO-BENDER-08-0804-006.qxd 12/22/08 10:18 AM Page 207 Introduction to Active Directory Domain Services 207 6 Figure 6-1 IP address settings for MSN-SRV-0XX netsh interface set interface name=“local area connection 2” newname=“bentech.net” netsh int ip set address name=“bentech.net” static 192.168. 100.10 255.255.255.0 netsh int ipv4 set dns “bentech.net” static 192.168.100.10 Your instructor will provide you with the proper IP address information for your “internet” connection. When setting up this connection, ensure that it points to 192.168.100.10 for DNS. 4. Enter the following command at the command prompt to set your DNS server to forward all external zone DNS requests to an Internet DNS server: DNScmd MSN-SRV-0XX /resetforwarders 4.2.2.1 4.2.2.2 4.2.2.1 and 4.2.2.2 are publicly available DNS servers. If necessary, your instructor might provide you with a different DNS server for name resolution. 5. Enter the following command to verify you have name resolution. You should receive a nonauthoritative response similar to the one shown in Figure 6-2. nslookup microsoft.com 6. Log off MSN-SRV-0XX. 7. Log onto MSN-SC-0XX, your Server Core computer. CCO-BENDER-08-0804-006.qxd 12/22/08 10:18 AM Page 208 208 Chapter 6 Managing and Administering DNS in Windows Server 2008 Figure 6-2 Nslookup nonauthoritative response 8. At the command prompt, enter the following command to change the Internet Protocol version 4 (IPv4) address: netsh interface set interface name=“local area connection” newname=“bentech.net” netsh int ip set address name=“bentech.net” static 192.168.100.20 255.255.255.0 netsh int ip set dns “bentech.net” static 192.168.100.10 9. Log off your Server Core computer by typing logoff at the command prompt and then press- ing Enter. Using AD DS AD DS is Microsoft’s implementation of a directory services infrastructure. Similar to how a phone book stores information about a person or business, AD DS stores attributes, or specific information, for objects within a network. Objects can include computers, users, and groups. For example, suppose you create a user object for John Reynolds in AD. Through utilities avail- able for managing AD DS, you can enter attributes for John, such as his phone number, office location, or mailing address. Because AD DS stores its information in a database, it can be queried. In fact, any attributes you specify within AD DS can be queried. AD DS in a Windows Server 2008 environment is a wide-ranging topic. For more detailed information on AD, see MCTS Guide to Configuring Microsoft Windows Server 2008 Active Directory (Exam #70-640) by Greg Tomsho from Cengage Learning, or visit www.microsoft.com and search for information on “Active Directory” in Windows Server 2008. Activity 6-2: Installing the AD DS Role on MSN-SRV-0XX Time Required: 10 minutes Objective: Install the AD DS server role. Description: In preparation for creating your first domain controller (DC) to manage AD DS, you need to install the AD DS role. You should also remove the current DNS zone for bentech.local so that you can re-create it during the dcpromo process in Activity 6-3. In this activity, you add the AD DS role to MSN-SRV-0XX through Server Manager. 1. Log onto your MSN-SRV-0XX. 2. If Server Manager is not open, open Server Manager from the Start menu. CCO-BENDER-08-0804-006.qxd 12/22/08 10:18 AM Page 209 Introduction to Active Directory Domain Services 209 3. In the left pane, expand Roles, DNS Server, DNS, and MSN-SRV-0XX to display bentech.local under the Forward Lookup zone folder. Select bentech.local, click Action, and then click Delete. Click Yes to confirm the deletion. 4. In Server Manager, right-click Roles and then click Add Roles. 5. If the Before You Begin page opens, click Next. 6. Click Active Directory Domain Services and then click Next. Review the Introduction to Active Directory Domain Services and then click Next. 7. In the Confirm Installation Selections window, review the selections and then click Install to begin installing the AD DS role. To install a fully functional DC, you need to run the AD DS Installation Wizard, or dcpromo.exe, after the role is installed. 8. In the Installation Results window, click Close. The new role appears in the Server Manager window. 9. Click the Active Directory Domain Services role to view the AD DS summary pane. 6 10. Leave Server Manager open for the next activity. A DC is used by AD DS for storing all of the AD objects and information about your net- work environment. Unlike DCs in Windows NT environments, AD DS DCs use multimaster repli- cation to keep their data updated. In addition, writable changes to AD can be made on any DC. When installing AD DS and creating the first DC in a forest, it is considered a best practice to install the DNS Server role when you run the Active Directory Domain Services Installation Wizard, or dcpromo.exe. Dcpromo.exe automatically creates and delegates the forest root domain DNS zone, or the first domain in your forest. It also creates the _msdcs.forestname zone, where forestname is the name of the first domain created in the forest, sometimes referred to as the root domain. The _msdcs.forestname zone contains the AD forestwide locator, or service (SRV), records needed by clients to find AD DS resources, such as DCs and global catalog servers. A global cata- log (GC) server is similar to a DC in that it holds a directory services database. However, the data- base on the GC contains objects from the entire forest, not only a specific domain as with a DC. For example, suppose you run dcpromo.exe and create a new domain for widgets.local.
Recommended publications
  • Configuring DNS
    Configuring DNS The Domain Name System (DNS) is a distributed database in which you can map hostnames to IP addresses through the DNS protocol from a DNS server. Each unique IP address can have an associated hostname. The Cisco IOS software maintains a cache of hostname-to-address mappings for use by the connect, telnet, and ping EXEC commands, and related Telnet support operations. This cache speeds the process of converting names to addresses. Note You can specify IPv4 and IPv6 addresses while performing various tasks in this feature. The resource record type AAAA is used to map a domain name to an IPv6 address. The IP6.ARPA domain is defined to look up a record given an IPv6 address. • Finding Feature Information, page 1 • Prerequisites for Configuring DNS, page 2 • Information About DNS, page 2 • How to Configure DNS, page 4 • Configuration Examples for DNS, page 13 • Additional References, page 14 • Feature Information for DNS, page 15 Finding Feature Information Your software release may not support all the features documented in this module. For the latest caveats and feature information, see Bug Search Tool and the release notes for your platform and software release. To find information about the features documented in this module, and to see a list of the releases in which each feature is supported, see the feature information table at the end of this module. Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to www.cisco.com/go/cfn. An account on Cisco.com is not required.
    [Show full text]
  • Testing-Prepare.Pdf
    Prepare Update your system so you can connect to the staging server to perform testing – required for all users EXCEPT “new users.” If you are not certain how to complete the steps listed in Prepare, you should abort testing efforts. Breaking your “hosts” file may prevent applications that use the Internet, such as your Web browser, from functioning properly. Also note that this will make non-CMS www.ndsu.edu sites unavailable while you are testing until you perform the clean-up steps on page 11 of this packet. Windows XP 1. Close all browser windows 2. Open My Computer 3. Browse to Local Disk (C:) > WINDOWS > system32 > drivers > etc 4. Double-click hosts 5. In the Open With dialog window, select Notepad and click OK 6. At the end of the file, AFTER 127.0.0.1 localhost, add a new line with the following entry 134.129.111.243 www.ndsu.edu workspaces.ndsu.edu An example of what the file should look like follows these directions Note that if you usually sign in somewhere other than “workspaces.ndsu.edu” you should add that address to the end of this list, for example like 134.129.111.243 www.ndsu.edu workspaces.ndsu.edu english.ndsu.edu 7. Save the file Remember to complete the clean-up steps on page 11 of this packet when you are done testing Windows Vista 1. Close all browser windows 2. Click the Start menu > All Programs > Accessories > and RIGHT-CLICK Notepad 3. Choose Run as administrator 4. In the User Account Control dialog, click Continue or if you are not an administrator, provide a password for an administrator account and click OK 5.
    [Show full text]
  • With ANSIBLE Sessions
    SANOG32 bdNOG9 02-10 August, 2018 Dhaka, Bangladesh NETWORK Imtiaz Rahman AUTOMATION (NetDevOps) SBAC Bank Limited [email protected] https://imtiazrahman.com with ANSIBLE Sessions • Session 1: o 14:30 PM – 16:00 PM (Theory with example) • Session 2: o 16:30 PM – 18:00 PM (Configuration and hands on LAB) Today’s Talk 1. Devops/NetDevOps ? 6. Ansible Language Basics 2. Why automation ? 7. Ansible encryption decryption 3. Tools for automation 8. How to run 4. Why Ansible ? 9. Demo 5. Ansible introduction 10. Configuration & Hands on LAB DevOps >devops ? DevOps >devops != DevOps DevOps integrates developers and operations teams In order to improve collaboration and productivity by automating infrastructure, automating workflows and continuously measuring application performance Dev + Ops = DevOps NetDevOps NetDevOps = Networking + DevOps infrastructure as code Why automation ? Avoid Avoid repeated Faster Identical typographical task deployment configuration error (Typos) Tools for automation What is ANSIBLE? • Open source IT automation tool • Red hat Enterprise Linux, CentOS, Debian, OS X, Ubuntu etc. • Need python Why ANSIBLE? • Simple • Push model • Agentless Why ANSIBLE? Puppet SSL Puppet Puppet master Client/agent Ansible Agentless Controller SSH node Managed with ansible node’s How it works 1 2 3 4 Run playbook SSH SSH Laptop/Desktop/ Copy python Run Module Delete Module Server module on device from device Return result 5 What can be done?? • Configuration Management • Provisioning VMs or IaaS instances • Software Testing • Continuous
    [Show full text]
  • Cisco IOS Easy IP
    WHITE PAPER Cisco IOS Easy IP Summary • Conserve registered IP addresses Cisco IOS Easy IP enables transparent and dynamic IP • Maximize IP address manageability address allocation for hosts in remote environments via Remote networks have variable numbers of end systems that DHCP, reduces router configuration tasks via dynamic PPP/ need access to the Internet. Hence, ISPs are interested in IPCP address negotiation, conserves IP addresses via PAT, allocating just one IP address to each remote LAN. and minimizes Internet access costs for remote offices. In enterprise networks where telecommuter populations Cisco IOS Easy IP is a combination of the following are growing extremely fast, network administrators need functionality: solutions that ease configuration and management of remote • Port Address Translation (PAT), a subset of Network routers and provide conservation and dynamic allocation of Address Translation (NAT) IP addresses within their networks. Such solutions are • Dynamic PPP/IPCP WAN interface IP address negotiation especially important when network administrators • Cisco IOS DHCP Server implement large dialup user pools where ISDN plays a major This paper describes the features and benefits of Cisco IOS role. Easy IP, provides a technical discussion of how it works, As part of Cisco IOS software, the premier platform that including details on the Cisco IOS DHCP Server, and includes delivers network services and enables networked availability, packaging, and platform support information. applications, Cisco IOS Easy IP is a scalability/connectivity service that provides solutions for each of these challenges. It Introduction provides cost savings, scalability, conservation of registered Exponential growth in the remote access router market has IP addresses, and eases router deployment by nontechnical created new challenges for Internet service providers (ISPs) users.
    [Show full text]
  • TECDEV-1500.Pdf
    TECDEV-1500 Getting Started: Network Automation with Ansible Gowtham Tamilselvan Jason Froehlich Yogi Raghunathan Network Automation ? • Becoming agile and move at scale • Reduce deployment time while reducing OPEX cost • Reduce human error; improve the efficiency and reliability of the networks TECDEV-1500 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 3 Speaker Introduction Speaker Introduction - Gowtham • Network Consulting Engineer for 7+ years at Cisco • Supporting large Telecom Service Provider in the US • Primarily focused on R&S and SP technologies • Cisco Live Distinguished Speaker TECDEV-1500 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 5 Speaker Introduction - Jason • Network Consulting Engineer for 7+ years at Cisco • CCIE R&S • Supporting large Telecom Service Provider in the US • NOC Team at CiscoLive US/LATAM • Primarily focused on R&S and SP technologies TECDEV-1500 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 6 Speaker Introduction - Yogi • Sr. Solution Integration Architect, Customer Experience • Supporting Service Providers in the US • Mass Scaled Networking, Segment Routing • Interests: • Operational & Test Automation • Software Defined Networks (SDN) TECDEV-1500 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 7 Session Objective • Get started with Ansible • Learn to read and write playbooks • Automate simple tasks for IOS and XR devices TECDEV-1500 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 8 Time Schedule • Lecture Session 1- 30 Mins • Playbook Exercise – 90 Mins • Break – 15 mins • Lecture Session 2 – 20 Mins • Automating Exercise – 90 Mins • Conclusion – 10 mins TECDEV-1500 © 2019 Cisco and/or its affiliates.
    [Show full text]
  • Vmware Horizon 7 7.13 Setting up Published Desktops and Applications in Horizon Console
    Setting Up Published Desktops and Applications in Horizon Console OCT 2020 VMware Horizon 7 7.13 Setting Up Published Desktops and Applications in Horizon Console You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ VMware, Inc. 3401 Hillview Ave. Palo Alto, CA 94304 www.vmware.com © Copyright 2018-2020 VMware, Inc. All rights reserved. Copyright and trademark information. VMware, Inc. 2 Contents 1 Setting Up Published Desktops and Applications in Horizon Console 6 2 Introduction to Published Desktops and Applications 7 Farms, RDS Hosts, and Published Desktops and Applications 7 Advantages of Published Desktop Pools 8 Advantages of Application Pools 8 3 Setting Up Remote Desktop Services Hosts 10 Remote Desktop Services Hosts 10 Prepare Windows Server Operating Systems for Remote Desktop Services (RDS) Host Use 12 Install Remote Desktop Services on Windows Server 2008 R2 14 Install Remote Desktop Services on Windows Server 2012, 2012 R2, 2016, or 2019 15 Install Desktop Experience on Windows Server 2008 R2 16 Install Desktop Experience on Windows Server 2012, 2012 R2, 2016, or 2019 16 Restrict Users to a Single Session 17 Install Horizon Agent on a Remote Desktop Services Host 18 Horizon Agent Custom Setup Options for an RDS Host 19 Modify Installed Components with the Horizon Agent Installer 22 Silent Installation Properties for Horizon Agent 23 Printing From a Remote Application Launched Inside a Nested Session 28 Enable Time Zone Redirection for Published Desktop and Application
    [Show full text]
  • The Symbian OS Architecture Sourcebook
    The Symbian OS Architecture Sourcebook The Symbian OS Architecture Sourcebook Design and Evolution of a Mobile Phone OS By Ben Morris Reviewed by Chris Davies, Warren Day, Martin de Jode, Roy Hayun, Simon Higginson, Mark Jacobs, Andrew Langstaff, David Mery, Matthew O’Donnell, Kal Patel, Dominic Pinkman, Alan Robinson, Matthew Reynolds, Mark Shackman, Jo Stichbury, Jan van Bergen Symbian Press Head of Symbian Press Freddie Gjertsen Managing Editor Satu McNabb Copyright 2007 Symbian Software, Ltd John Wiley & Sons, Ltd The Atrium, Southern Gate, Chichester, West Sussex PO19 8SQ, England Telephone (+44) 1243 779777 Email (for orders and customer service enquiries): [email protected] Visit our Home Page on www.wileyeurope.com or www.wiley.com All Rights Reserved. No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except under the terms of the Copyright, Designs and Patents Act 1988 or under the terms of a licence issued by the Copyright Licensing Agency Ltd, 90 Tottenham Court Road, London W1T 4LP, UK, without the permission in writing of the Publisher. Requests to the Publisher should be addressed to the Permissions Department, John Wiley & Sons Ltd, The Atrium, Southern Gate, Chichester, West Sussex PO19 8SQ, England, or emailed to [email protected], or faxed to (+44) 1243 770620. Designations used by companies to distinguish their products are often claimed as trademarks. All brand names and product names used in this book are trade names, service marks, trademarks or registered trademarks of their respective owners.
    [Show full text]
  • Inside OS/2 Warp Server for E-Business(PDF)
    Inside OS/2 Warp Server for e-business Girish Basavalingaiah, Ron Bloor, Tonko De Rooy, Edgar Omar Gonzalez Espinosa, Roger Govind, Peter Marfatia, Oliver Mark, Frank Mueller, Indran Naick, Leon Van Der Linde, Frank Vanhulle International Technical Support Organization http://www.redbooks.ibm.com SG24-5393-00 SG24-5393-00 International Technical Support Organization Inside OS/2 Warp Server for e-business July 1999 Take Note! Before using this information and the product it supports, be sure to read the general information in Appendix C, “Special notices” on page 429. First Edition (July 1999) This edition applies to OS/2 Warp Server for e-business for use on Intel server hardware. Note This book is based on a pre-GA version of a product and may not apply when the product becomes generally available. We recommend that you consult the product documentation or follow-on versions of this redbook for more current information. Comments may be addressed to: IBM Corporation, International Technical Support Organization Dept. DHHB, Building 003 Internal Zip 2834 11400 Burnet Road Austin, Texas 78758-3493 When you send information to IBM, you grant IBM a non-exclusive right to use or distribute the information in any way it believes appropriate without incurring any obligation to you. © Copyright International Business Machines Corporation 1999. All rights reserved. Note to U.S Government Users – Documentation related to restricted rights – Use, duplication or disclosure is subject to restrictions set forth in GSA ADP Schedule Contract with IBM Corp. Contents Figures....................................................xi Tables................................................... xvii Preface...................................................xix The team that wrote this redbook.
    [Show full text]
  • Hyper-V on Dell Poweredge VRTX Deployment Guide Notes, Cautions, and Warnings
    Microsoft Windows Server 2012 R2 - Hyper-V on Dell PowerEdge VRTX Deployment Guide Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your computer. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. Copyright © 2015 Dell Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. Dell™ and the Dell logo are trademarks of Dell Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. 2015 - 07 Rev. A00 Contents 1 Abbreviations......................................................................................................... 5 2 Audience.................................................................................................................6 3 Scope.......................................................................................................................7 4 Overview................................................................................................................ 8 5 Solution requirements......................................................................................... 9 Hardware requirements........................................................................................................................ 9 Software requirements..........................................................................................................................9
    [Show full text]
  • Windows-2K3-Dns.Pdf
    DNS What Is DNS Domain Name System (DNS) is one of the industry-standard suite of protocols that comprise TCP/IP. Microsoft Windows Server 2003. DNS is implemented using two software components: the DNS server and the DNS client (or resolver). Both components are run as background service applications. Network resources are identified by numeric IP addresses, but these IP addresses are difficult for network users to remember. The DNS database contains records that map user-friendly alphanumeric names for network resources to the IP address used by those resources for communication. In this way, DNS acts as a mnemonic device, making network resources easier to remember for network users. The Windows Server 2003 DNS Server and Client services use the DNS protocol that is included in the TCP/IP protocol suite. DNS is part of the application layer of the TCP/IP reference model. DNS in TCP/IP How DNS Works How DNS Works Domain Name System (DNS) is the default name resolution service used in a Microsoft Windows Server 2003 network. DNS is part of the Windows Server 2003 TCP/IP protocol suite and all TCP/IP network connections are, by default, configured with the IP address of at least one DNS server in order to perform name resolution on the network. Windows Server 2003 components that require name resolution will attempt to use this DNS server before attempting to use the previous default Windows name resolution service, Windows Internet Name Service (WINS). Typically, Windows Server 2003 DNS is deployed in support of Active Directory directory service. In this environment, DNS namespaces mirror the Active Directory forests and domains used by an organization.
    [Show full text]
  • Modify Your Hosts File Modifying Your Hosts File Enables You to Override the DNS for a Domain, on That Particular Machine
    Modify your hosts file Modifying your hosts file enables you to override the DNS for a domain, on that particular machine. This is useful when you want to test your site without the test link, prior to going live with SSL; verify that an alias site works, prior to DNS changes; and for other DNS-related reasons. Modifying your hosts file causes your local machine to look directly at the IP address specified. To modify the hosts file, you add two entries to the file that contains the IP address that you want the site to resolve to and the address. Adding the following two lines, for example, point www.domain.com and domain.com to our new hosting platform - 115.165.169.21 www.domain.com 115.165.169.21 domain.com The sections in this article provide instructions for locating and editing the hosts file on the following operating systems: o Windows 10, Windows 8, Windows 7, and Windows Vista o Windows NT, Windows 2000, and Windows XP o Linux o Mac OS X 10.0 through 10.1.5 o Mac OS X 10.6 through 10.12 After you add the domain information and save the file, your system begins resolving to the specified IP address. After testing is finished, remove these entries. Windows Windows 10, Windows 8, Windows 7, and Windows Vista use User Account Control (UAC), so Notepad must be run as Administrator. For Windows 10 and 8 1. Press the Windows key. 2. Type Notepad in the search field. 3. In the search results, right-click Notepad and select Run as administrator.
    [Show full text]
  • Windows Authentication
    Windows Authentication August 3, 2021 Verity Confidential Copyright 2011-2021 by Qualys, Inc. All Rights Reserved. Qualys and the Qualys logo are registered trademarks of Qualys, Inc. All other trademarks are the property of their respective owners. Qualys, Inc. 919 E Hillsdale Blvd 4th Floor Foster City, CA 94404 1 (650) 801 6100 Table of Contents Get Started .........................................................................................................4 Windows Domain Account Setup.................................................................6 Create an Administrator Account ......................................................................................... 6 Group Policy Settings .............................................................................................................. 6 Verify Functionality of the New Account (recommended) ................................................. 7 WMI Service Configuration ............................................................................ 8 How to increase WMI authentication level .......................................................................... 8 What happens when high level authentication is not provided? ...................................... 8 Manage Authentication Records...................................................................9 Create one or more Windows Records .................................................................................. 9 Windows Authentication Settings ......................................................................................
    [Show full text]