MN506 System Management Demonstration System

MN506 System Management Demonstration System

MN506 System Management Demonstration System

Question:

Unit Learning Outcomes covered in this assessment

This assignment is designed to assess students’ knowledge and skills related to the following learning outcomes:
a. Analyse human usability in systems and documentation within the context of constantly changing modern industry requirements
b. Plan and implement various application servers for an organisation

A Canberra based new company is looking at setting up a LAN for their office. They have three different departments named General, Finance, and Marketing. All objects (e.g., users, computers, etc.) belonging to these departments should have their own different OU. The users require the following technologies to be
implemented within their LAN:

1. The client wants to use the Linux operating system as a server side operating system with the LDAP/SAMBA service to communicate between windows client machines and a Linux server
2. Centralised user authentication for Windows clients
3. The company wants to store all the files on a separate file server and only users with appropriate access will be able to access them (not every user should have access to the files). You can assume which users/groups will have access to these files; state your assumptions clearly, as well as configure accordingly.

Answer:

Introduction

For the development of the report the first scenario of development of a local area network (LAN) to support Windows Server and Client Environment is selected. Here the organization has a requirement to develop a centralized authentication system and print server configuration such that the users connected in the local area network can use the network printer for the management of their printing jobs. The server is also needed to be configured with DHCP address pool according the number of department and VLANs created for subnetting the network. There are some other serveries that are needed to be configured for increasing the efficiency of the users and workplace environment. For the configuration of the network for People Software a research is done on their requirement and Windows Server 2012 R2 is used for its configuration.

The report is prepared with the documentation of the details of requirement identified for the development of the Local area network solution. The process need to be followed for the development of the network is described in the report along with screenshots and commands. A summary of the steps followed for the configuration is attached with the report and a prototype of the network is configured for its demonstration and understanding its implementation in the real scenario.

Requirement Analysis And Identification Of Server Roles & Technologies

The requirement of the development of local area network is needed to be identified for development of a user centric design for the network solution. The users of the local area network should be involved in the design and configuration of the network for identifying their needs and service essential for the configuration of the server. The identification of the roles and technology is important for gathering requirement for the configuration of the servers and deploy in the organizational network for meeting the needs of the users. The user should be divided into multiple groups according to their requirement to access the server resources and active directory should be configured for management of the access of the users. An Ip address plan should be developed such that it can be followed for the configuration to the DHCP service and allocate the IP address to the host connected in the local area network. The LAN is developed following a client server architecture and a powerful server is needed to be used for serving as a file server, print server and management of the centralized authentication. The server is also needed to be configured with AAA for enabling centralized user authentication for keeping the logs of the user and management of the resources. Decision is needed to be taken for the allocation of different service and roles to the specific users and the users should be interviewed for identifying the requirement and configure the server according to their needs.

The following are the identified services and rules that should be used for the configuration of the network and given below:

  • AD RMS (Active Directory Rights Management Service)
  • Print service for sharing the printer that is connected with the local area network
  • DHCP for automatic allocation of IP address to the host connected in the local area network
  • Configuring the server with IIS service for configuring the server to host website
  • Configuring file server and management of the access to the user following group policy created for the management of the access of users

Configuration Process Description

There are different authentication method such as centralized or distributed authentication mechanism that can eb deployed for increasing the security of the network. Since the network of People software is located in a single location a centralized authentication would be more suitable for it. The server is needed to be configured with AAA service and a role based access control I needed to be configured for granting permission to the users to use the resource. The system administrator is responsible to create group policy and exclude the specific group of members to access the internal resources of the organization. The servers can also be configured with access control list and firewall configuration should be followed for restricting the user to access the files.

A range of Ip address should be excluded from the DHCP scope while configuring the pool for configuring the servers with static IP address and eliminating the risk of DHCP conflict. A prototype of the network is needed to be configured in a network simulating tool and a role based access control should be used for granting permission for using the resources. The system administrator should be flexible for grouping the people following the organizational framework. The RADIUS protocol should be implemented for allowing the user to grant resources for example sharing of files and printers. It can also be used for configuring the server for accessing different networks such as VPN, local and wireless access. TACACS+ configuration should be used for increasing the security and accessing different types of network devices such as routers, firewalls for enabling device administration.

MN506 System Management Demonstration System