Module 2: Configuring Windows Server 2019
PowerShell cmdlets
-(-verbose) provides more detail -(-debug) provides debugging info -(erroraction) instructs a cmdlet to perform an action like continue, stop, silently continue and inquire, when errors occur
Tools within the Windows Admin Center
-Azure hybrid: register your Windows Admin Center within the Azure cloud, perform management of cloud-based systems and services -Azure File Sync: used to synchronize files between on-premises and Azure storage -Backup: used to back up files to Azure storage -Storage Migration Service: used to migrate servers and storage to the Azure cloud
Tools within navigation pane
-Certificates: view and import encryption certificates -Containers: monitor and manage Windows Containers -Devices: configure hardware devices on system -DHCP: monitor and manage DHCP server configuration -DNS: monitor and manage DNS server configuration -Events: view and search the system event logs -Files: upload and download files to and from the filesystems on server -Firewall: view and configure firewall rules
Different categories of BPA recommendations
-Configuration: role settings are configured for best performance -Predeployment: prerequisites are installed or configured -Postdeployment: services started and running -Performance: perform tasks in timely manner -BPA Prerequisites: set up to meet BPA standards
Certification Authority
-Entity that issue public key certificates to users and computers
system environment variables
-Environment variables -apply to all users on system
Devices and Printers utility use
-Force OS to detect and install new PnP hardware -Install non-PnP hardware -Troubleshoot problems on existing hardware
Windows server 2019 registry 5 root keys
-HKEY_LOCAL_MACHINE -HKEY_CURRENT_USER -HKEY_USERS -HKEY_CLASSES_ROOT -HKEY_CURRENT_CONFIG
data contained in the Registry
-Info about all hardware components like CPU, disk drives, NICs, optical drives and more -info about windows server 2019 services are installed, depend on, and order in which they are started -data about user profiles -data on previous settings used to boot the computer -configuration info about all software in use -software licensing info -server manager and control panel parameter configurations
3 Levels of severity
-Information: compliance, change is recommended -warning: under current operating conditions, operating conditions may change -Error: does not meet best practices ad has problems
function provider
-PowerShell -used to manage functions within Windows PowerShell
PowerShell Console files and PowerShell scripts
-PowerShell console files: (*.psc1) -PowerShell scripts: (*.ps1)
PowerShell providers
-PowerShell plug-in -used to manage a particular area of system or Windows PowerShell
alias provider
-PowerShell provider -used to manage aliases within Windows PowerShell
certificate provider
-PowerShell provider -used to manage encryption certificates within windows
environment provider
-PowerShell provider -used to manage environment variables within windows
filesystem provider
-PowerShell provider -used to manage filesystems on storage devices -default PowerShell provider
registry provider
-PowerShell provider -used to manage the HKEY_LOCAL_MACHINE and HKEY_CURRENT_USER keys within windows registry
variable provider
-PowerShell provider -used to manage variables within Windows PowerShell
PowerShell profile script
-PowerShell script -automatically executed when you open Windows PowerShell
Tools with in navigation pane for obtaining remote access to system
-PowerShell: access to a PowerShell prompt, target system as the current user -Remote Desktop: access to a graphical desktop using REMOTE DESKTOP PROTOCOL (RDP)
WMI consumers
-Programs like windows PowerShell -can query WMI
5 different execution policies on Windows System
-Restricted: will not run any scripts -AllSigned: only runs scripts signed by a trusted publisher -RemoteSigned: run scripts downloaded from the internet only if they are signed by a trusted publisher -Unrestricted: runs all scripts -Bypass: runs all scripts (no warning) -Undefined : indicates policy is not set
Tools within navigation pane 3
-Roles and features: add or remove roles and features on system -Scheduled tasks: schedule a command or script to run repetitively -Services: view, configure, start, and stop service on system -Storage: create and manage storage volumes and files shares -Storage Replica: replicate volumes between servers -System Insights: perform ongoing capacity planning for server, monitoring processor, network, and storage trends over time -Updates: configure Windows Update settings, check for and apply updates
WQL (WMI Query Language)
-SQL database-like format -use within windows PowerShell to access WMI
hardware devices for Windows server 2019
-Storage device like hard disks, SSDs, and optical drives -Disk controllers -Network interface adapters -Input devices like keyboards and mice -Specialized devices
Plug and Play (PnP)
-Technology -allows new hardware devices to be configure automatically -use within an OS
System File Checker
-Tool -used to detect damages overwritten, or unsigned windows files -replace windows files with the proper version
Virtual Desktop Infrastructure (VDI)
-Tool built into Server Manager -Scans a server or role for configuration -does not follow Microsoft best practices
Remote Server Administration Tools (RSAT)
-Tools you can download to a Windows 10 PC -Allow for the remote administration of Windows Server systems on a network
PowerShell special navigation keys and key combinations
-Up Arrow/Down Arrow- cycles through command history -Home-/End- jumps o the beginning or end of the command line -Q/q-quits an interactive command to return to the PowerShell prompt -Ctrl+LeftArrow/Ctrl+RightArrow-Navigates left/right one word at a time -Tab-Auto completes cmdlet and cmdlet options
Tools within navigation pane 4
-Virtual machine: monitor and manage virtual machines -Virtual Switches: monitor and manage virtual switches
WMI namespaces
-WMI component -provides a type of access to the system
WMI providers
-WMI component -provides a set of WMI classes -identify specific areas of the system
WMI infrastructure components that work together
-WMI namespaces -WMI providers -WMI classes
Data Execution Prevention (DEP)
-Windows component -monitors memory usage -prevents malicious programs from accessing other programs on system
File caching
-Windows feature -uses memory to speed the transfer of information to and from physical storage devices
Input/Output (I/O) address
-area of memory dedicated for the transfer of information to and from a hardware device
Virtual Memory
-area of physical storage -used to store information normally found in physical memory
Pages
-block of information -written to memory
Windows Registry
-central database -stores most hardware and software settings on windows ystem
Interrupt request (IRQ) line
-channel of communication -used between hardware device and a processor
escape character
-character -represents a text separator -like newline or tab
Metacharacters
-character -special meaning within PowerShell
winRM
-component of windows -allows remote management from other systems using windows PowerShell
Entry
-component of windows registry -stores hardware, software, or user settings
WMI infrastructure
-components within Windows that provide WMI
self-signed certificate
-encryption certificate -digitally signed by the computer that created it -instead of trusted third-party Certification Authority
user environment variables
-environment variables -apply to the current user on system
Universal PnP (UPnP)
-extension of PnP -used to automatically configure hardware, services, and network protocols
command chaining
-feature of MS-DOS and Windows PowerShell -allows you to run multiple commands on the same command line, one after another
output redirection
-feature of MS-DOS and Windows PowerShell -allows you to save the output of a command to a file
PowerShell console file
-file -used to store customizations for a windows PowerShell session like background color and font size -.pscl extension
paging file
-file on windows system -provides virtual memory
Component Object Model (COM)
-framework -allows Windows apps to communicate with each other and OS
methods
-function -performed on an object within Windows PowerShell
Registry Editor
-graphical MMC tool -used to edit the windows registry
Windows PowerShell Integrated Scripting Environment (ISE)
-graphical tool -used to create and test PowerShell scripts
HKEY_CLASSES_ROOT
-holds data to associate file extensions with programs -associations exist for executable files, text files, graphics files, clipboard files, audio files, and more
HKEY_CURRENT_CONFIG
-info about the current hardware profile -info about monitor type, keyboard, mouse, and other hardware characteristics
HKEY_LOCAL_MACHINE
-info every hardware component in the server -info on drivers are loaded and version levels -info on IRQ (interrupt request) lines are used -info on setup configurations -info on BIOS version and more
Environment variables
-information -stored in memory -used by programs to locate settings and other information
Tools within navigation pane 2
-installed apps: view and remove installed applications -Local users & Groups: create and manage accounts on system that are not part of active directory -Network: configure IP on network interfaces, add the Azure network adapter for cloud integration -Processes: manage processes on the system, create a process dump file that lists detailed process information, required by Microsoft Support -Registry: view, create , modify ,or import windows registry keys
Object
-item representation within Windows PowerShell
comment
-line within PowerShell script -not executed, but instead used to document the purpose or key features of PowerShell script contents
Certificate Store
-location on windows system -stores encryption certificates
Key
-major section within windows registry -EX. HKEY_LOCAL MACHINE
gateway server mode
-mode the windows Admin center functions -when installed on a windows server 2016 or 2019 system
type cast
-notation -used to indicate the type of data -stored within a variable or constant
exit status
-number -returned by a command -indicates whether it executed successfully or not
subkey
-part of windows registry -exists within a key
Driver siging
-process by which a device driver is digitally signed by trusted third party -like Microsoft
tracing
-process of reading through -existing script to understands its contents
piping
-process of sending output from one command to another within Windows PowerShell -using the pipe symbol on your keyboard ( | )
HKEY_CURRENT_USER
-profile info about desktop configuration for user account currently signed in to system -data on color combinations, font sizes and type -data on keyboard layout - data on taskbar -data on clock configuration -data on any setup action
HKEY_USERS
-profile info for each user who has signed into computer
attributes
-property of an object within Windows PowerShell
Remote Desktop Protocol (RDP)
-protocol used y the remote desktop connection app on windows computers -accessing a graphical desktop on another windows computer
power options that you can set
-select a power plan -choose what the power button does -create a power plan choose when to turn off the display
Power Plans
-set of power settings -person can choose to use for windows system
functions
-shortcut -series of commands within Windows PowerShell
Aliases
-shortcut to a cmdlet within Windows PowerShell
variables
-small location in memory -stores a piece of info used by a program like windows PowerShell
Decision constructs
-statement -used to modify how commands are processed within a PowerShell script
loop construct
-statement -used to repetitively process commands within a PowerShell script
File Signature Verification tool (Sigverif)
-tool -used to search for unsigned system and device driver files
Best Practice Analyzer (BPA)
-tool built into server manager -Scans a server or role for configuration -Does not follow Microsoft best pratices
Devices and Printers utility
-tool within windows control panel -allows you to add and manage hardware devices and printers
Device Manager utility
-tool within windows control panel -allows you to manage all hardware device settings on windows system
WMI classes
-type of data referenced by WMI
array variable
-variable -contains multiple distinct values
Constants
-variable -value cannot be changed after creation
Flushing
-windows feature -removes file caching information from memory -after information has been written to a physical storage device
Processor scheduling
-windows performance setting -specifies how processor resources are allocated to programs