Menu

[Solved]Task 5 Managing Groups Local Groups Show Screen Shots Results Like Local User Local Group Q37240068

Task 5: Managing Groups Local Groups

==========SHOW SCREEN SHOTS OF THE RESULTS========================

Just like a local user, a local group exists within a member orstand-alone computer, be it a server, laptop, or desktop. It cancontain local user accounts that exist on the server. It can alsocontain users or groups from the Active Directory that the serveris a member of. You can manage groups using the same GUI tools thatyou use to manage local users. You can see that there are a numberof them here by default. Windows will also add more groups if youadd certain roles.

Adding a User to Group

1. Open the properties of the group. Here you can see theexisting membership of the group.

2. Click Add to add a new member to the group. Just like before,you can set the criteria for what will be added to the group andfrom where. You are going to add a domain-based group to the localgroup. You want everyone who is in the domain to be in the localgroup. You happen to know that a built-in domain-based group calledDomain Users will do this for you.

3. Type in the name of the group, and click Check Name.

Adding a User to Group

1. Open the properties of the group. Here you can see theexisting membership of the group.

2. Click Add to add a new member to the group. Just like before,you can set the criteria for what will be added to the group andfrom where. You are going to add a domain-based group to the localgroup. You want everyone who is in the domain to be in the localgroup. You happen to know that a built-in domain-based group calledDomain Users will do this for you.

3. Type in the name of the group, and click Check Name.

?x Select Users, Computers, Service Accounts, or Groups Select this object type: Users, Service Accounts, or Groups From this

you can add members to a group using the command prompt. You’llbe using net localgroup again:

Creating Active Directory Groups

It’s time for you to create some Active Directory groups. Sayyou want to create a group that will be used only within yourdomain. It will be used to assign rights to anyone who is a managerin the organization. This description tells you that you need adomain local group scope and that you need a security group type.Earlier you created an OU called BigFirmSecurity Groups withinthe bigfirm.com domain.

1. Navigate there using Active Directory Usersand Groups.

2. Right-click, and select New ➢ Group. Thisopens the New Object-Group dialog box.

3. Enter Management as thegroup name.

4. Selected the desired group scope of “Domainlocal” and keep the default group type of Security.

5. Click the OK button to create the group.

Creating a Group at the Command Line

It’s important to learn how to manage groups from the commandline. You’ll first look at how to create a group using dsadd group.You can get more help by typing the following:

dsadd group /?

The following is a simple command that re-creates what you cando in the GUI. It creates a domain local group called Management inthe BigFirmSecurity Groups OU in the bigfirm.com domain.

dsadd group “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=bigfirm,

DC=com” -scope l

Here’s the syntax:

dsadd group < distinguished name of the new group>-scope <Domain Local

= l | Global = g | Universal = u >

By default, this creates a security group. You can actuallyleave out the -scope option if a global group is what you want. Youcan make a global distribution group instead by running this:

dsadd group “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=bigfirm,

DC=com” -secgrp no -scope g

The change in the syntax is as follows:

-secgrp < security group = yes | distribution group =no>

The default is to create a security group. You don’t need to usethis option in your command if a security group is what you need tocreate. Do you remember that the GUI for creating domain-basedgroups didn’t offer you anything other than the ability to createthe group? You had to go back into the properties of the group toset the properties or add members. Well, you can use thiscommand:

dsadd group “CN=Senior Management, OU=SecurityGroups,OU=BigFirm,

DC=bigfirm,DC=com” -scope g -desc “This group containssenior managers”

-memberof “CN=Management,OU=SecurityGroups,OU=BigFirm,DC=bigfirm,DC=com”

-members “CN=HarjitDhillon,OU=Users,OU=BigFirm,DC=bigfirm,DC=com”

“CN=SimonaCorso,OU=Users,OU=BigFirm,DC=bigfirm,DC=com”

You can use the dsmod group command to modify an existing group.Here’s the command to get some help:

dsmod group /?

This command will add Steve Red and Simona Corso to theManagement group:

dsmod group “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=bigfirm,DC=com”

-addmbr “CN=HarjitDhillon,OU=Users,OU=BigFirm,DC=bigfirm,DC=com” “CN=SimonaCorso,OU

=Users,OU=BigFirm,DC=bigfirm,DC=com”

The syntax is as follows:

dsmod group <DN of the group to manage>-addmbr

<DNs of the users to add to thegroup>

Next you want to remove Steve Red from the group:

dsmod group “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=bigfirm,DC=com”

-rmmbr “CN=HarjitDhillon,OU=Users,OU=BigFirm,DC=bigfirm,DC=com”

You can erase the existing member list of a group and add areplacement member list by running this:

dsmod group “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=bigfirm,DC=com”

-chmbr “CN=HarjitDhillon,OU=Users,OU=BigFirm,DC=bigfirm,DC=com”

You can change the group scope to universal by running this:

dsmod group “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=bigfirm,DC=com” -scope u

The syntax for the -scope option is as follows:

-scope <Domain Local = l | Global = g | Universal =u>

One disappointment here is that you cannot set the managerproperties for a group using dsmod group. How about deleting agroup? That’s pretty easy:

dsrm “CN=Management, OU=SecurityGroups,OU=BigFirm,DC=big firm,DC=com”

This command will delete the Management group. You’ll getprompted to confi rm the deletion.

You can skip that by running this: dsrm “CN=Management,OU=Security Groups,OU=BigFirm,DC=big firm,DC=com” -noprompt

We were unable to transcribe this imageWe were unable to transcribe this image?x Select Users, Computers, Service Accounts, or Groups Select this object type: Users, Service Accounts, or Groups From this location: bightim.com Locations.. Enter the object names to select (examples): Domain Usersl Check Names Advanced OK Cancel Show transcribed image text

?x Select Users, Computers, Service Accounts, or Groups Select this object type: Users, Service Accounts, or Groups From this location: bightim.com Locations.. Enter the object names to select (examples): Domain Usersl Check Names Advanced OK Cancel

Expert Answer

Answer to Task 5: Managing Groups Local Groups ==========SHOW SCREEN SHOTS OF THE RESULTS ======================== Just like a loc… . . .

OR


Leave a Reply

Your email address will not be published. Required fields are marked *

See what happens after you have accessed solutions.

We are an established writing agency offering a variety of homework related solutions.

 

Place New Order Now

Once your purchase clears after clicking the purchase button, you will get the download link on the confirmation page and its mirror on your email for convenience.