test import

Categories

Ad Home

Responsive Ads Here

Labels

642-813 SWITCH (2) 642-902 ROUTE (2) 643-832 TSHOOT (1) Access Based Enumeration (1) access list (2) AIX (1) Anti Malware (16) AutoIT (1) backtrack (4) Basic Networking (3) Blogspot (2) bootable USB (1) can not download attach file from gmail (1) ccna (9) CCNA Lab (19) centos (3) Check (1) Check_MK (3) cisco (51) Dell (1) DHCP (1) Download (2) Dynamic Host Configuration Protocol (1) ebook (2) Ebooks (18) eigrp (1) encapsulation (3) esxi5 (2) exam (13) exchange server 2010 (3) facebook (2) firewall-cmd (1) firewall-config (1) firewalld (1) Frame Relay (4) Free Router Simulator Softwares (1) FreeNAS (1) GhostSurf (1) gns3 (1) Hacking Security (5) hardware (1) hotspot (1) How to Change Windows 2008 R2 SID (1) How to create VPN network on Linux (1) How to install openSSH on AIX 5.3 (1) How to Install the Microsoft Core Fonts on Fedora 19 (1) HP (1) IBM (1) Infrastructure Monitoring (3) InterVLAN (1) ip routing (3) IPSec (2) ipv6 (1) IT (122) joomla (1) Kiến thức (278) LAN Technology (3) life skills for (1) lifeskills (2) linux (13) Linux-Unix (24) mac address (1) Magazine (9) Mail (2) mail server (1) MCSA (7) Microsoft (28) mikrotik (3) Multipoint (1) Nagios (3) NAT (1) nested (1) Network (1) Network Load Balancing (1) News (1) Nghệ thuật sống (1) O365 (4) Office 365 (4) OSPF (1) Packet tracer (19) Pass4sure (1) Point to Point (1) Point-to-Point Protocol (PPP) – CHAP (1) Point-to-Point Protocol (PPP) – PAP (1) Policy (3) Port Security (1) Practice Labs (19) Prerequisites (1) proxy (1) relax (7) rhel7 (1) RIP (1) routerOS (3) Routing (1) SAN (1) SAN Storage (1) Scripts (6) Server (1) server room (1) Sharepoint Server 2007 (1) Sharepoint Server 2010 (1) Spanning Tree Protocol (1) SSH login without password (1) Static Default Route (1) Storage (1) subnet (1) switch (1) System Requirements for Windows Server 2012 (1) Tản mạn (2) tcp-ip (1) telnet (1) TestInside (1) Thư giãn (4) Thủ thuật (2) tip (3) Tips + Tricks (29) trick (1) Tutorial (29) Tutorialvirtual server HighAvailability (1) ubuntu (4) unix (3) Unix-Linux (8) usb (1) Virtual Private Network (VPN) - IPsec (Site-to-Site) (1) Virtual Trunking Protocol (1) Virtualization (2) Virtualization HighAvailability (1) virus (5) vmware (6) vpn (4) vpn client (1) vpn client to site (2) vpn site to site (2) vSphere 5 (6) vSphere 5.1 (1) WAN Technology (13) Warranty (1) wildcard mask (1) windows 7 (1) windows 8 (1) windows server 2008 (3) Windows Server 8 (1)

Facebook

Ethereum

Subscribe for New Post Notifications

Ripple

Ethereum Price

Monday Tuesday Wednesday
$402.89 $384.06 $396.34

Contact Form

Name

Email *

Message *

Bitcoin

Litecoin

Browsing Category " windows server 2008 "

Windows Server 2008

Windows Server 2008
On ebook
XÂY DỰNG HỆ THỐNG MẠNG CHO DOANH NGHIỆP
TRÊN NỀN TẢNG WINDOWS SERVER 2008






Ebook: download
Copyright by http://www.lecuong.info

How to setup VPN Access on Server 2008

How to setup VPN Access on Server 2008
On IT
In this post I will cover how to setup and configure a Windows 2008 server as a VPN server. There are several different steps and configurations that need to be done. There are 4 parts to this setup that I will walk through.

Part #1 Installing NPAS and RRAS:

Open Server Manager and open roles


Click on add roles and add the Network Policy and Access Services role (NPAS)
Click next on the informational screen
On the role services screen choose Routing and Remote Access Services (RRAS) and click next
On the next screen click install
When it is done it will give you a screen telling you if it installed successfully or failed
If it was successful click close and choose to restart when it prompts you

Part #2 Configure RRAS:

Open Server Manager
Expand the Roles tree
Expand NPAS and right click on RRAS choose configure
OPTION #1 = If you have two network cards choose “Remote access (dial-up or VPN)”
OPTION #2 = If you have one network card choose “Custom configuration”

NOTE: It is recommend to use two network cards
OPTION #1 = Click next and select the VPN box
OPTION #2 = Click next and check the VPN box
On the next screen when prompted click start service and then click finish

Part #3 Configure VPN user group:

Go into your Active Directory and create a group for VPN access. An example name would be MYVPNGROUP.  Add the users to this group that you want to have VPN access to your network.

Part #4 Configure Network Policy Server:

You need to specify a server that will provide access to your network. This is a RADIUS server. For this example I will use the same server for everything.
Go to start>>programs>>administrative tools>>Network Policy Server
Expand RADIUS Clients and Servers
Right click on RADISU Clients and choose new
Fill in all the fields in my screenshot
NOTE: be sure to create a shared secret and write this down somewhere.
Right click on Network Policies and choose new
Click next
On this screen click on “Add”
Select “User Groups” and click add
Once you do this the condition requires the users to be a part of this VPN group before they can connect to VPN.
On the next screen choose “Access granted” and click next
On the Authentication Methods screen I leave the defaults. You can select a different type of authentication according to your needs.
On the Configure Constraints screen select NAS Port Type
I do not configure any of the other options on this screen. You can configure what you need according to your needs.
On Configure Settings screen I leave most of the default settings. I do make sure under IP Settings that the Server settings determine IP address assignment.
Click next and finish
Then you will see your VPN policy on the next screen.
That’s it you should be able to connect to VPN now.




Author: sbuchanan
Copyright by http://www.lecuong.info

Access Based Enumeration Windows Server 2008

Access Based Enumeration Windows Server 2008
On Access Based Enumeration
Access Based Enumeration Windows Server 2008


Trên windows, mặc định khi bạn share một thư mục nào đó thì cho dù không có quyền truy xuất thư mục đó nhưng Users vẫn thấy được thư mục này. Nhu cầu đặt ra là làm sao để users chỉ có thể thấy được những thư mục share mà mình có quyền truy xuất, còn các thư mục Users không có quyền thì không thể thấy!

Để giải quyết nhu cầu thực tế này, Microsoft có công cụ Access Based Enumeration (ABE). ABE cho phép người dùng chỉ thấy những thư mục nào mà người đó được quyền truy xuất, điều này giúp user dễ dàng nhận biết một thư mục được chia sẻ dành cho họ và không "tò mò" những thứ không thuộc về mình. ;))

Trên Win2k3 thì các bạn tham khảo video + tool kèm theo củaMr.M (NN) ở đây

Trên Win2k8, bạn làm như sau:

Vào Start --> Run, gõ mmc, chọn File-> Add/Remove Snap-in, chọn Share and Storage Management -> Add -> OK.
Cột Action, chọn Provision Share...


Click Next --> Next,
Tại màn hình SMB Settings ---> Advanced  --> Enable ABE



Good  luck!! 



Copyright by http://www.lecuong.info
Subscribe to: Posts (Atom)