Module 2: Configuring Windows Server 2019

PowerShell cmdlets

-(-verbose) provides more detail -(-debug) provides debugging info -(erroraction) instructs a cmdlet to perform an action like continue, stop, silently continue and inquire, when errors occur

Tools within the Windows Admin Center

-Azure hybrid: register your Windows Admin Center within the Azure cloud, perform management of cloud-based systems and services -Azure File Sync: used to synchronize files between on-premises and Azure storage -Backup: used to back up files to Azure storage -Storage Migration Service: used to migrate servers and storage to the Azure cloud

Tools within navigation pane

-Certificates: view and import encryption certificates -Containers: monitor and manage Windows Containers -Devices: configure hardware devices on system -DHCP: monitor and manage DHCP server configuration -DNS: monitor and manage DNS server configuration -Events: view and search the system event logs -Files: upload and download files to and from the filesystems on server -Firewall: view and configure firewall rules

Different categories of BPA recommendations

-Configuration: role settings are configured for best performance -Predeployment: prerequisites are installed or configured -Postdeployment: services started and running -Performance: perform tasks in timely manner -BPA Prerequisites: set up to meet BPA standards

Certification Authority

-Entity that issue public key certificates to users and computers

system environment variables

-Environment variables -apply to all users on system

Devices and Printers utility use

-Force OS to detect and install new PnP hardware -Install non-PnP hardware -Troubleshoot problems on existing hardware

Windows server 2019 registry 5 root keys

-HKEY_LOCAL_MACHINE -HKEY_CURRENT_USER -HKEY_USERS -HKEY_CLASSES_ROOT -HKEY_CURRENT_CONFIG

data contained in the Registry

-Info about all hardware components like CPU, disk drives, NICs, optical drives and more -info about windows server 2019 services are installed, depend on, and order in which they are started -data about user profiles -data on previous settings used to boot the computer -configuration info about all software in use -software licensing info -server manager and control panel parameter configurations

3 Levels of severity

-Information: compliance, change is recommended -warning: under current operating conditions, operating conditions may change -Error: does not meet best practices ad has problems

function provider

-PowerShell -used to manage functions within Windows PowerShell

PowerShell Console files and PowerShell scripts

-PowerShell console files: (*.psc1) -PowerShell scripts: (*.ps1)

PowerShell providers

-PowerShell plug-in -used to manage a particular area of system or Windows PowerShell

alias provider

-PowerShell provider -used to manage aliases within Windows PowerShell

certificate provider

-PowerShell provider -used to manage encryption certificates within windows

environment provider

-PowerShell provider -used to manage environment variables within windows

filesystem provider

-PowerShell provider -used to manage filesystems on storage devices -default PowerShell provider

registry provider

-PowerShell provider -used to manage the HKEY_LOCAL_MACHINE and HKEY_CURRENT_USER keys within windows registry

variable provider

-PowerShell provider -used to manage variables within Windows PowerShell

PowerShell profile script

-PowerShell script -automatically executed when you open Windows PowerShell

Tools with in navigation pane for obtaining remote access to system

-PowerShell: access to a PowerShell prompt, target system as the current user -Remote Desktop: access to a graphical desktop using REMOTE DESKTOP PROTOCOL (RDP)

WMI consumers

-Programs like windows PowerShell -can query WMI

5 different execution policies on Windows System

-Restricted: will not run any scripts -AllSigned: only runs scripts signed by a trusted publisher -RemoteSigned: run scripts downloaded from the internet only if they are signed by a trusted publisher -Unrestricted: runs all scripts -Bypass: runs all scripts (no warning) -Undefined : indicates policy is not set

Tools within navigation pane 3

-Roles and features: add or remove roles and features on system -Scheduled tasks: schedule a command or script to run repetitively -Services: view, configure, start, and stop service on system -Storage: create and manage storage volumes and files shares -Storage Replica: replicate volumes between servers -System Insights: perform ongoing capacity planning for server, monitoring processor, network, and storage trends over time -Updates: configure Windows Update settings, check for and apply updates

WQL (WMI Query Language)

-SQL database-like format -use within windows PowerShell to access WMI

hardware devices for Windows server 2019

-Storage device like hard disks, SSDs, and optical drives -Disk controllers -Network interface adapters -Input devices like keyboards and mice -Specialized devices

Plug and Play (PnP)

-Technology -allows new hardware devices to be configure automatically -use within an OS

System File Checker

-Tool -used to detect damages overwritten, or unsigned windows files -replace windows files with the proper version

Virtual Desktop Infrastructure (VDI)

-Tool built into Server Manager -Scans a server or role for configuration -does not follow Microsoft best practices

Remote Server Administration Tools (RSAT)

-Tools you can download to a Windows 10 PC -Allow for the remote administration of Windows Server systems on a network

PowerShell special navigation keys and key combinations

-Up Arrow/Down Arrow- cycles through command history -Home-/End- jumps o the beginning or end of the command line -Q/q-quits an interactive command to return to the PowerShell prompt -Ctrl+LeftArrow/Ctrl+RightArrow-Navigates left/right one word at a time -Tab-Auto completes cmdlet and cmdlet options

Tools within navigation pane 4

-Virtual machine: monitor and manage virtual machines -Virtual Switches: monitor and manage virtual switches

WMI namespaces

-WMI component -provides a type of access to the system

WMI providers

-WMI component -provides a set of WMI classes -identify specific areas of the system

WMI infrastructure components that work together

-WMI namespaces -WMI providers -WMI classes

Data Execution Prevention (DEP)

-Windows component -monitors memory usage -prevents malicious programs from accessing other programs on system

File caching

-Windows feature -uses memory to speed the transfer of information to and from physical storage devices

Input/Output (I/O) address

-area of memory dedicated for the transfer of information to and from a hardware device

Virtual Memory

-area of physical storage -used to store information normally found in physical memory

Pages

-block of information -written to memory

Windows Registry

-central database -stores most hardware and software settings on windows ystem

Interrupt request (IRQ) line

-channel of communication -used between hardware device and a processor

escape character

-character -represents a text separator -like newline or tab

Metacharacters

-character -special meaning within PowerShell

winRM

-component of windows -allows remote management from other systems using windows PowerShell

Entry

-component of windows registry -stores hardware, software, or user settings

WMI infrastructure

-components within Windows that provide WMI

self-signed certificate

-encryption certificate -digitally signed by the computer that created it -instead of trusted third-party Certification Authority

user environment variables

-environment variables -apply to the current user on system

Universal PnP (UPnP)

-extension of PnP -used to automatically configure hardware, services, and network protocols

command chaining

-feature of MS-DOS and Windows PowerShell -allows you to run multiple commands on the same command line, one after another

output redirection

-feature of MS-DOS and Windows PowerShell -allows you to save the output of a command to a file

PowerShell console file

-file -used to store customizations for a windows PowerShell session like background color and font size -.pscl extension

paging file

-file on windows system -provides virtual memory

Component Object Model (COM)

-framework -allows Windows apps to communicate with each other and OS

methods

-function -performed on an object within Windows PowerShell

Registry Editor

-graphical MMC tool -used to edit the windows registry

Windows PowerShell Integrated Scripting Environment (ISE)

-graphical tool -used to create and test PowerShell scripts

HKEY_CLASSES_ROOT

-holds data to associate file extensions with programs -associations exist for executable files, text files, graphics files, clipboard files, audio files, and more

HKEY_CURRENT_CONFIG

-info about the current hardware profile -info about monitor type, keyboard, mouse, and other hardware characteristics

HKEY_LOCAL_MACHINE

-info every hardware component in the server -info on drivers are loaded and version levels -info on IRQ (interrupt request) lines are used -info on setup configurations -info on BIOS version and more

Environment variables

-information -stored in memory -used by programs to locate settings and other information

Tools within navigation pane 2

-installed apps: view and remove installed applications -Local users & Groups: create and manage accounts on system that are not part of active directory -Network: configure IP on network interfaces, add the Azure network adapter for cloud integration -Processes: manage processes on the system, create a process dump file that lists detailed process information, required by Microsoft Support -Registry: view, create , modify ,or import windows registry keys

Object

-item representation within Windows PowerShell

comment

-line within PowerShell script -not executed, but instead used to document the purpose or key features of PowerShell script contents

Certificate Store

-location on windows system -stores encryption certificates

Key

-major section within windows registry -EX. HKEY_LOCAL MACHINE

gateway server mode

-mode the windows Admin center functions -when installed on a windows server 2016 or 2019 system

type cast

-notation -used to indicate the type of data -stored within a variable or constant

exit status

-number -returned by a command -indicates whether it executed successfully or not

subkey

-part of windows registry -exists within a key

Driver siging

-process by which a device driver is digitally signed by trusted third party -like Microsoft

tracing

-process of reading through -existing script to understands its contents

piping

-process of sending output from one command to another within Windows PowerShell -using the pipe symbol on your keyboard ( | )

HKEY_CURRENT_USER

-profile info about desktop configuration for user account currently signed in to system -data on color combinations, font sizes and type -data on keyboard layout - data on taskbar -data on clock configuration -data on any setup action

HKEY_USERS

-profile info for each user who has signed into computer

attributes

-property of an object within Windows PowerShell

Remote Desktop Protocol (RDP)

-protocol used y the remote desktop connection app on windows computers -accessing a graphical desktop on another windows computer

power options that you can set

-select a power plan -choose what the power button does -create a power plan choose when to turn off the display

Power Plans

-set of power settings -person can choose to use for windows system

functions

-shortcut -series of commands within Windows PowerShell

Aliases

-shortcut to a cmdlet within Windows PowerShell

variables

-small location in memory -stores a piece of info used by a program like windows PowerShell

Decision constructs

-statement -used to modify how commands are processed within a PowerShell script

loop construct

-statement -used to repetitively process commands within a PowerShell script

File Signature Verification tool (Sigverif)

-tool -used to search for unsigned system and device driver files

Best Practice Analyzer (BPA)

-tool built into server manager -Scans a server or role for configuration -Does not follow Microsoft best pratices

Devices and Printers utility

-tool within windows control panel -allows you to add and manage hardware devices and printers

Device Manager utility

-tool within windows control panel -allows you to manage all hardware device settings on windows system

WMI classes

-type of data referenced by WMI

array variable

-variable -contains multiple distinct values

Constants

-variable -value cannot be changed after creation

Flushing

-windows feature -removes file caching information from memory -after information has been written to a physical storage device

Processor scheduling

-windows performance setting -specifies how processor resources are allocated to programs