Previous Page | Next Page

  1. Introduction
  2. Windows 2000 Professional
  3. Windows 2000 Server
  4. Windows 2000 Advanced Server
  5. Windows 2000 Datacenter Server
  6. Application Support
  7. System Operation
  8. Disks and Volumes
  9. Filesystems
  10. Configuration Files
  11. Security
  12. Network Support
  13. Access Management
  14. Processes
  15. AD Structure
  16. AD Objects
  17. AD Object Naming
  18. AD Schema
  19. AD Sites
  20. Domains
  21. AD Functions
  22. AD Replication
  23. DNS
  24. AD Security
  25. AD Installation
  26. AD Configuration
  27. AD Performance
  28. Installation
  29. Installation Options
  30. Unattended Installation
  31. Software Distribution
  32. Remote Installation Service
  33. Language
  34. Accessibility
  35. File Attributes
  36. Shares
  37. Distributed File System
  38. Control Panel
  39. Active Directory Tools
  40. Computer Management Console Tools
  41. MMC Tools
  42. Network Tools
  43. Network Monitor
  44. System Performance Monitoring
  45. Tools
  46. Managing Services
  47. Connections
  48. TCP/IP
  49. DHCP
  50. Printing
  51. Routing
  52. IPSec
  53. ICS
  54. Fault Tolerance
  55. Backup
  56. System Failure
  57. Services
  58. Remote Access
  59. WINS
  60. IIS
  61. Certificate Server
  62. Terminal Services
  63. Web Services
  64. Authentication
  65. Accounts
  66. Permissions
  67. Groups
  68. User Rights and Auditing
  69. Auditing
  70. User Profiles
  71. Policies
  72. Group Policies
  73. Miscellaneous
  74. Terms
  75. Credits

Windows 2000 Tools

Graphical Tools

  • Windows 2000 Help Troubleshooter
  • Users and Passwords - This is a tool accessible from the Control Panel on Windows 2000 systems and is used for managing domain and local user accounts. Tabs include:
    • General - Used to add and remove users and set passwords.
    • Group Membership. Selections:
      • Standard user - A power user on the local computer that can install programs but not read other user's files.
      • Restricted user - A user that cannot install programs or change system settings.
      • Other - To make the user a member of any other group on the local computer such as Administrators.
  • Active Directory Users and Computers - Active Directory Users and Computers is a Microsoft Management Console snap-in. It is started by selecting "Start", "Programs", "Administrative Tools", and "Active Directory Users and Computers". Only members of the Domain Admins or Enterprise Admins group can use this tool. This tool is used to create, configure, locate, move, and delete objects including:
    • User (automatically published) - Domain user accounts may be copied.
    • Group (automatically published)
    • Computer (Those in the domain are automatically published)
    • Contact (automatically published)
    • Domain
    • Organizational Unit (automatically published)
    • Shared folder
    • Printer (Most are automatically published) - Windows NT shared printers are not published automatically.
    Tabs from the OU Properties dialon box:
    • Group policy - Group policy object selections:
      • Windows Settings
        • Security Settings
          • Public key policies
            • Automatic certificate request menu items:
              • Action
                • New
                  • Automatic Certificate Request
  • System Policy Editor - To start the System Policy Editor, click "Start", "Run", and type "poledit" in the text box. System policy settings for all users on the domain set using the System Policy Editor are merged with local profiles. User logon restrictions are set in the user manager for domains. A policy may be set to automatically log users off during restricted logon hours.
  • Distributed File System - Used to manage distributed file systems. Options:
    • Action
      • New DFS Root
      • Display an Existing DFS Root
  • Windows Task Manager - Can be used to start and stop applications, change process priority, and monitor performance statistics. Can enter the task manager one of the following ways:
    • Press CTRL ALT DEL and select Task Manager
    • Press CTRL SHIFT ESC
    • Right click the taskbar and select Task Manager
    • Select "Start, "Run", and type "taskmgr".
    Tabs:
    • Applications
    • Processes - Shows PID, CPU, CPU time, and memory usage.
    • Performance - Shows:
      • CPU usage and history
      • Memory usage and history
      • Total handles, threads, and processes
      • Physical memory
      • Commit Charge - Memory allocated to the system or programs.
      • Kernel memory
  • Setup Manager utility (SETUPMGR.EXE on the Windows NT install CD at \SUPPORT\TOOLS\deploy.cab) may be used to set up unattended installation answer file. On Windows 2000, this program is called the Setup Manager wizard and can be installed from the resource kit on the CDROM by running \Support\Reskit\Setup.exe.Options:
    • Create a new answer file.
    • Create an answer file that duplicates this computer's configuration.
    • Modify an existing answer file.
    • Sysprep Install - System preparation utility located on the CDROM in the \SUPPORT\TOOLS\Deploy.cab file. Works on non-domain controller windows 2000 computers. This utility allows a Windows 2000 hard drive to be copied to other computers.
    • Security Configuration and Analysis - An MMC snap-in which is used to analyze security on your system. To do a security analysis:
      • Create a security database store the results of the security analysis.
      • Open and change a security template .
      • Import a security template which is used to compare secure settings against. There are several security templates in the \Windir\Security\Templates directory. There are several of which some are for domain controllers and others for member servers.
      • Perform the analysis. Policies that do not match the template will have an "x" next to them.
    • Registry editor - Regedit32 or Regedit.
  • Imaging - In the Accessories folder this tool is the only tool that can transfer images from digital cameras.

Command Line Tools

  • cipher - Used to encrypt files on NTFS volumes. Syntax:

    cipher /[parameter] [filename]

    Parameters:
    • /d - Decrypt files or folders.
    • /e - Encrypt files or folders.
    • /f - Force encryption or decryption regardless of the file or folder current state.
    • /I - Ignore errors.
    • /q - Quiet mode, displaying only important information.
    • /s:dir - Encrypt or decrypt subfolders and files also.
  • dcpromo.exe - Used to demote a Windows 2000 Active Directory domain controller to a domain member server.
  • ipsecmon.exe - The IPSec monitoring tool can be used to provide a summary of the local computer IPSec connections. This tool can be started by clicking on "Start", "Run" and entering "ipsecmon.exe" and pressing the ENTER key.
  • Secedit - It is used to perform computer security configuration and analysis. For help type "secedit /?" on the command line.
  • Sigverif - Used to find unsigned files on the computer.
  • Sfc.exe - Used to replace any unsigned files with the original Microsoft version from the SystemRoot\System32\Dllcache directory.
  • CONVERT.EXE - Resides on WINNT40\SYSTEM32\CONVERT.EXE. Will convert FAT partitions to NTFS partitions with the command "convert D: /FS:NTFS". The syntax is:

    convert volume /FS:NTFS [/V]

    The /V switch allows the program to run in verbose mode. Convert must have exclusive drive access to perform the conversion.

  • NET - Used to perform network operations. Subcommands:
    • USER - To create users. For help type: "net help user | more".
    • USE - This is a method to map a network shared folder to a drive number. Syntax:

      NET USE DRIVE: \\computername\sharename

    • view - Used to browse the network Options are "/domain" to see network domains and workgroups, "/domain/domainname" to see computers on a domain or workgroup. "\\server" to see available shares on a server.
  • Windows 2000 Support Tools
    • MoveTree.exe - Used to move an object to another domain in Active Directory

Troubleshooting Tools

  • Troubleshooters - Series of questions.
  • Add/Remove Hardware
  • Device Manager - Displays device resource settings.
  • System Information - To open this tool, right click on "My Computer", and select "Manage". Expand the "System Information" section to reveal:
    • System Summary - Shows the operating system name and version being used and other hardware information.
    • Hardware Resources. Options:
      • Conflicts/Sharing - Shows any resource conflicts.
      • DMA - Shows DMA addresses in use.
      • Forced Hardware - Shows any manually configured devices.
      • I/O - Shows ports.
      • IRQs - Shows interrupts in use.
      • Memory - Shows the memory in use and what devices are using the memory.
    • Components
    • Software Environment
    • Internet Explorer 5