Introduction
The paper presents a framework for the configuration of windows network infrastructure for Shiv LLC. The organization deals with the manufacture and distribution of solar panel for the consumer market. It is imperative to understand the physical structure and location of the company. Shiv LLC is branched out into three. It has offices and branches in three different locations within the country; Los Angeles, Houston and Dallas. Dallas and Houston offices host the main staff of the organization. One fact that should be taken into consideration in the proposal is the fact that the organization is growing and its market is expanding countrywide. As a consequence, the network proposal will carter for future traffic as well. Apart from the growing traffic, the security of data will be allocated top priority given that both trademark and patent are at stake.
In order to implement the criteria desired by Shiv LLC for their organizational use, it is imperative to use the features of Windows Server 2012 operating system. Windows Server 2012 operating system present numerous features that addresses most of the networking needs of organizations. The installation of an internal Information Technology structure is imperative for this organization given that it has more than one braches in different location (Russinovich & Solomon, 2009). Internal Information Technology structure ensures that all the branches of the organization are in synch.
The proposed solution will carter for the needs of each and every end user of the organization. This will include the different departments and offices within the different branches of the company. In order to effective address the needs of different departments, branches and users in the organization, it is important to identify the number and needs of those departments, branches and users (Melber, 2008). This should be done before the integration and configuration is commenced. It is imperative to integrate and configure Active Directory Services, Group Policy, DNS, File services, Remote services and WSUS.
Active Directory
Windows Server 2012 operating system present numerous features and attributes that improve the integration and configuration of windows network for an organization with many braches situated in different physical location. As compared to the previous versions of Windows Server operating system, Windows Server 2012 operating system stands a better chance at addressing the network needs of this organization. Active directory service is imperative for the management and transfer of data between users located at different physical positions. Additionally, active directory domain services preset the base for distributed network structure. It presents structured, secure and hierarchical data storage and manipulation for different objects in a network such as computers, services and users (Russinovich & Solomon, 209).
Forest/ Domain Model
In order to best address its needs, Shiv LLC Company should adopt, implement and configure Active Directory Domain Services. The appropriate domain name for ht organization will be www.shivllc.com. It is crucial to explore the feature of active directory domain services presented by windows server 2012 operating system.
Default server core: Minimalist server core is employed as the main server environment. The application of this server eradicates the dependency on GUI for administration. It also allows for original set up of server given that it is considered as an added attribute. An added advantage is presented in the fact that there is no need for an extra installation of operating system for the elimination of the GUI (Bruzzese, 2016).
Omni-present Power Shell Administration: the power shell is utilized as the main administration tool. The application of power shell as the main management tool grants more than 2000 cmdlets for server administration. It allows for effective management of all the other applications in Windows server given that it enlarges the existing cmdlets.
After all the information need for the configuration of the network has been gathered, it is imperative to find the perfect location for the placement of domain controllers. Domain controllers should be placed alongside regional domain controllers, forest root domain controllers and operations master role holder. Shiv LLC organization will employ the use of read only domain controller given that it utilizes windows server 2012 operating system. RODC is a novel kind of domain controller that hordes read only portions of the active directory database. RODC is capable of storing all the active directory items and features that are held by a writeable domain controller apart from the passwords. One limitation of RODC is that alterations cannot be made to the database that is stored using RODC. Alterations must be made in the alternative domain controller than duplicated back to the RODC (Russinovich & Solomon, 2009).
The deployment of RODC should be made in a remote office environment with considerably poor physical security, few users, staff with limited IT knowledge and poor network bandwidth. Security is crucial for this organization. As a consequence, the need to deploy RODC is imperative. The application of RODC leads to enhanced security and more competent access to network resources (Carvalho, 2012).
The placement of forest root domain controller for Shiv LLC is imperative for the creation of trust paths for users that require to access resources in different domain than their own. The forest root domain controllers shall be placed in hub sites and locations that horde datacenters. It is also crucial to create a shortcut trust between different domains in the same location to help in accessing resource in case of network unavailability. The application of shortcut trust aid in optimizing authentication request made from various clients situated in either domains.
In order to be cost effective, the number of regional domain controllers should be minimized. It is imperative to review the geographic location and communication links in order to determine whether a site is a hub. Physical security of domain controllers in both satellite and hub sites should be guaranteed in order to ensure that no unauthorized personnel gains access.
FSMO Role placement
During the installation and placement of FSMO, the schema master shall be placed on the PDC of the forest root domain. The domain naming master shall be placed on the forest root PDC. This ensures that various operations that utilize the domain naming master do not fail in case the domain master is unavailable. The PDC shall be installed using the best hardware in a dependable hub location containing imitation domain controllers in the same active directory location and domain (Carvalho, 2012).
Given that Shiv LLC organization will be a busy company, PDC will frequently exhibit the highest CPU utilization. This is because it manages password updates and pass-through authentication. In order to curb problems associated with high CPU utilization, it will be crucial to add faster or more CPUs, additional replicas, add extra memory to cache the Active Directory items, lessen the amount of outgoing and incoming replication partners, eliminate global catalog and to increase replication schedule. The RID master shall be placed on the domain PDC in the similar domain (Bruzzese, 2016).
Group Policy
Group policy is imperative given that it enables for the specification of managed configurations for computers and users through various group policy settings. The Local Group Policy Editor shall be used to address the settings that affect only a local user or system. There are different settings and features which will enhance the experience and use of the novel network for the organization and its different branches. The application of group policy will enable the organization to enjoy the benefits that comes with expanded support for IPv6. The expanded support can be employed in different items such as item level targeting, printers and VPN connections (Carvalho, 2012).
Another reason and settings that present group policy advantages is the policy caching. Group policy comes with the capability of writing the latest version of a given policy to a local store. Apart from policy caching and IPv6 support, the application of group policy also helps in event logging. Additional and imperative group policy settings include the control of membership of local administrators, resetting local administrator password and configuring windows firewall with improved security.
DNS
The namespace that will be used for this organization with be similar to the name of the company. It will be one word for the name of the company and the other abbreviations: SHIVLLC. Given that a new Domain Name System server is not configured on the domain controller, it is imperative to perform a number of tasks so as to configure it. The first task will be the creation of a forward and reverse lookup zones. In addition, it is also imperative to determine if the server will support dynamic updates as well as unsecured updates.
SMB 2.2: Windows server 2012 operating system comes with significantly improved file sharing protocol (Carvalho, 2012). This feature presents the aptitude to tirelessly add file server without any special set up. The novel attribute enables for the storage of different databases like MS SQL. This attribute grants the database with SMB 2.2 advantages without any alteration in the set up.
Numerous instantaneous live migrations; the current Windows Server 2012 operating system has an aptitude of supporting numerous live migrations running instantaneously. The simultaneous live migration is accomplished through the functions of HyperV3.0. This attribute allows the movement and operation of virtual machine’s snapshot files, virtual disks, and configuration to novel storage location of novel storage locations (Bruzzese, 2016).
Remote Services
In order to accomplish the requirement of remote services, the organization shall implement the use of virtual private network technology (VPN). Virtual Private Network presents secure line of communication and resource sharing between two or more branches of the organization over the internet. Additionally, Remote Desktop Service shall be employed in order to carter for remote services.
WSUS
Server and client updates shall be accomplished through some attributes of windows server 2012 operating system such as the multi-server support in management feature, WSUS database and Server Cleanup Wizard.
Multi-server support in administration: Windows server 2012 operating system comes with an entirely restructured serve manager. The server is capable of granting supporting to numerous servers as opposed to the previous versions which were single server support oriented. Furthermore, it comes with a new dashboard that aids in the control and administration of both remote and local server at the same time (Melber, 2008).
References
Russinovich, M., & Solomon, D. A. (2009). Windows internals: including Windows server 2008 and Windows Vista. Microsoft press.
Carvalho, L. (2012). Windows server 2012 Hyper-V cookbook. Packt Publishing Ltd.
Bruzzese, P. (2016). 3 ways Windows Server 2012 makes Group Policy easier. InfoWorld. Retrieved 12 February 2016, from http://www.infoworld.com/article/2616263/windows-server/3-ways-windows-server-2012-makes-group-policy-easier.html
Melber, D. (2008). Top 5 Security Settings in Group Policy for Windows Server 2008. WindowSecurity.com. Retrieved 12 February 2016, from http://www.windowsecurity.com/articles-tutorials/windows_os_security/Top5-Security-Settings-Group-Policy-Windows-Server-2008.html