Benutzer-Werkzeuge

Webseiten-Werkzeuge

Zuletzt angesehen: dotcom_aufgabe_2
  • Deutsch (German)
  • English
  • Français (French)
en:ausbildung:dotcom_aufgabe_2

Inhaltsverzeichnis

Set up a second domain controller as a backup and DFS server

In this task, you configure a second domain controller to be available as a replacement in the event that the primary one fails. You also configure a backup of the first domain controller to the second one.

Documentation

To test the individual functions, create a documentation for the entire task 2 a single document with all test scenarios using this template:

Document template

In this document you document all tests that you carry out. If the tests turn out badly, leave the test results in the documentation and carry out new tests after making the necessary adjustments, which you then also enter in the documentation.

Step 1: Installation and configuration of DC2


Carry out the basic installation of the second domain controller according to the instructions for the first (see task 1).

If you have created an image in step 2b of task 1, you can now use this to set up DC2.

The host name of this server should be DC-ZH-02 should be. The other specifications remain the same.

Give the server the static IP address 10.0.2.25 and gateway 10.0.2.1

Step 2: Promote DC2 to a domain controller


Promote the DC2 to a domain controller.

Step 3: Create backup with Windows server backup

Activate the Windows Server Backup feature on DC-ZH-01 and create a daily backup.

The following requirements must be met:

  • The „Backup“ folder must be created on the second partition of DC2
  • The „Backup“ folder must be shared
  • The „Windows server backup“ role must be activated on DC1
  • Every day at 12:30 pm, all shares created under task 1 are to be moved to \\DC-ZH-02\backup should be copied
  • The backup of the last day should be overwritten every day

Step 4: Test backup domain controller and backup

Create a test scenario to test the backup domain controller. Also test whether the backup data can be restored from DC2 to DC1. Use the documentation file created at the beginning of task 2 for documentation.

Step 5: Create DFS service

In order to be able to guarantee the operation of the network despite a failure of DC 1 the files of the file share service and the user home must also be stored on the second server, and the set paths do not run via DC1. This can be done with DFS.

Step 5a: Create and share folders

DC 1

Share the „D:\“ drive and give the „domain users“ read and change authorisation.

DC 2

Create a folder on „D:\“ with the name „Dotcom Rep“ and share it with the same permissions as above. the same permissions as above.

Step 5b: Create DFS namespace and replication group

Install the DFS roles on both servers

Configure a namespace with the following settings:

  • Name it: „Dotcom Internal Files Rep“
  • Enable it for „Domain Users“ with Read and Modify permissions
  • Add DC 2 as namespace server
  • Create a new folder in the namespace with the name: „Dotcom D files“
  • Add the „D:\“ drive from DC 1 as the folder destination
  • Add the „Dotcom Rep“ folder from DC 2 as a folder target

Now create a replication group with the following settings

  • Both folder targets should be replicated
  • DC-ZH-01 should be the primary server
  • It should have a fully meshed topology
  • It should replicate continuously

Information:

https://www.nakivo.com/blog/configure-dfs-replication-for-windows-server/ (Guide to creating a DFS infrastructure)

https://learn.microsoft.com/en-us/windows-server/storage/dfs-namespaces/add-namespace-servers-to-a-domain-based-dfs-namespace (Adding a namespace server)

Step 5c: Change the path of the mapped drive and the userhomes

To ensure that the shares and the userhomes can still be reached via the network addresses, you must change the paths of the mapped drive and the userhomes.

Change them so that they can be reached via the namespace so that in the event of DC 1 they are still accessible.

Step 5d: Test the DFS service

Once you have completed the above steps, you can now test the DFS service.

To do this, abruptly shut down DC 1 (make sure that DC 2 is switched on), and now try to access the shared folders and the userhomes via the client via the network addresses

Record the executed tests in the log.

(Additional task) Step 6: Weekly backup

Create a concept that fulfils the following requirements:
A subfolder is to be created in the backup folder for each day of the week, in which the backups are saved on the respective day of the week and consequently overwrite those of the previous week.
Find out for yourself which tools you can use to realise this. Also create a test scenario for this task and document your tests in the documentation file created at the beginning.

Knowledge

Before you complete the task, please answer the following questions in your documentation file.

  • Why is a backup server needed?
  • Why is the DC2 placed in the same domain instead of in a new subdomain?
  • Why is the backup created at 12:30?

→ Continue here to Task 3

en/ausbildung/dotcom_aufgabe_2.txt · Zuletzt geändert: 2023/12/07 09:53 von e.rueefli