0% found this document useful (0 votes)
48 views8 pagesGroup Policy
th-mmt
Uploaded by
Ngân GiangCopyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF or read online on Scribd
0% found this document useful (0 votes)
48 views8 pagesGroup Policy
th-mmt
Uploaded by
Ngân GiangCopyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF or read online on Scribd
/ 8
‘TRUNG TAM DAO TAO CNTT NHAT NGHE
B61 TAC DAO TAO CUA MICROSOFT TAI VIET NAM. a
205 Ba Huyén Thanh Quan, Quin 3, TP.HCM. Microsoft Partner
WAT NGHE — Tel: 08,39322.735 - 0913.735.906 —
Website: www.nhatnghe.com
ee
GROUP POLICY MANAGEMENT
CAC BUGC TRIEN KHAI :
1. Tyo vllink Policy vio OU
2. Block Inheritance cho OU
3. Enforce Poicy
4. Chiah order cho Potiey
5. Security Filtering
6. Xem cd setting cia policy
7.Modeling Wizard
8 Woon Level Targeting
9. Disable m6t phn cba policy
10, Kho sit noi chia potiey templates
‘Ac CHUAN By
Mo hin ba ab bao gbm 2 may
“FOOL : Windows Server 2012 K2~ DC (Domain: NHATNGHE LOCAL)
++ FCO2 : Windows 8.1 — Join Domain
=P:
* Chioh Policy password don gian
* Chinh Policy cho phép group Users cd quyén log on locally
* Teo OU Cha. Trong OU Cha, to OU Con
* Trong OU Cha tgo user ul, v2. Trong OU Con tg0 user 3, ud
* Trong Domain Nhatnghe local go group TEST, add 2 user ul va 3 vio group
ee
Phién Ban Thir Nghigm ~ Luu Hanh NOI BS 3
‘TRUNG TAM DAO TAO CNTT NHAT NGHE
BOI TAC BAO TAO CUA MICROSOFT TAI VIET NAM oh
105 88 Huyén Thanh Quan, Quin 3, TPHEM. ‘Microsoft Partner
“Tel: 08.39322.735 ~ 0913.735.906 acho)
Website: www.nhatnghe.com
41. Tye vi link Policy vio OU (Thye hign tra méy PCO1)
BI- Ma Server Manager > vio menu Tools-> —B- Bit t6n cho-GPO 6 Kehung nam:
Group Policy Management Control Pane!” > OK.
B2- Bung Forest > Domains >
NHATNGHE.LOCAL > Chuét phii vio Group
Policy Objects “> chon New.
fa Fe. Aen Yen oth
leei zoe Bs
| ite ge
BS - Bung mve User Configuration > Policies >
Administrative Templates ~ Control Panel, chudt
phai vdo Prohibit access to the Control Panel and
PC settings, chon Edit,
BG - Chon Enabled > OK > Déng cita sb
Management Editor
ONercentigued Comment
B7 - Quay tr Iai man hinh Group Policy
Management, chu6t phi vio OU Cha, chgn Link
san Existing GPO.
32 Phién Ban Thit Nghigm ~ Luu Hanh NI BG
‘TRUNG TAM BAO TAO CNT NHAT NGHE
EE. POLTAC DAO TAO CU MICROSOFT TAT VIET NAM
4 105 B8 Huyén Thanh Quan, Quan 3, TP.HCM Microsot Partner
Tel: 09.39322.735 ~ 0913.735,906 =
NHATNGHE Vebste: wmretnghe com
‘B9~ Quan sit thy GPO “An Control Pane!” di B10 - Kiém tra: Trén PCO2, log on lin lugt
Bj mat
Controt Panel,
2. Block Yoberitance cho OU (The hi én miy PCO)
BL Mé Group Policy Management chu6t phii 2 - Quan sit OU Con, thy 6 bidu tugng
vio OU Con, chon Biock Inheritance s8 théy e6 Control Panel
Enforce Policy (Thyc hign tin my PCO1)
BL- M6 Group Policy Management, chupt phi B2- Trén miy PCO2, log on user u3, ud > s8
vio GPO “An Control Pane!", chon Enforced thy bj mét Control Panel
[dG Fargo
2 Sroweruamoetocn
2 tere
T piaamnoioen
12 Stent
SEEEEEeeeoeeee
Phién Ban Thi Nghigm ~ Luu Hanh NGI BS 3
TRUNG TAM DAO TAO CNT NHAT NGHE
UE, Por Tac pho Tao ca MICROSOFT TAI VIET NAM Bas
a © 105 88 Huyén Thanh Quan, Quin 3, TP.HCM. aoe
HAT NORE. ‘Tel: 08.3932.735 ~ 0913.735.906 Hichief
Website: www. nhatnghe
om
‘4 Chinh order cho Poliy (Thye hign trén méy PCO1)
B1 = Me Group Poticy Management, tt Enforce WS Kidm tra: Trém may PCU2, logon user
Policy vi Block Inheritance trén OU Chava. OU 43, uf > s€ thy Control Panel
Con. -
Nh§n xét:
1B2-- Tyo thém GPO “Hign Control Pane”, ink
{GPO niy vio OU Cha, Nhu-viy lie ndy OU Cha eb + Trong cing 1 OU néu dp chung 2 policy
2.GPO“An Control Panel” vi "ign Control (ivang Enforce) thi policy nto o8 gti
Pane” Link Order nh th 386 5 tin cao
[Semaxcn am a
* Trong cing 1 OU néu dp chung 2 policy
(ci 2 policy dbu Enforce) hi policy no cb
df Link Order nh th sc 9 wu ten
0 hom
‘BS - Nhiin vaio OU Cha, 6 gée tréi ding 2 biéu - a
‘tuong mili tén Move Up ee ‘Down. dicbuyén * Trang cing 1 OU néw dp chang 2 policy
GPO “Hien Control Pane” ln vt dtu tig, (1 poliey Enforce wi} policy king
Ba eee Conteh Panel te vie Enforee) th policy Enforce 32 cd db wu ibn
ham
B4- Qua fab Group Policy Inheritance, chi. y mye
Precedent, Precedence cing nbé thi 49 uu tin cia
54 Phién Ban Thit Nghigm ~ Luu Hanh NGi BO
‘TRUNG TAM DAO TAO CNTT NHAT NGHE
WEE”. {DOL TAC DAO TAO CUA MICROSOFT TAI VIET NAM mh
i "205 Ba Huyén Thanh Quan, Quén 3, TP.HCM ‘Microsoft Partner
WAT NGHE Tel: 08.39322.735 - 0913.735.906, coe
Website: wow.nhatnghe.com
‘5. Security Filtering (Thue hién trén may PCO1)
B1-Mé Group Policy Menagement> ___B2~Chon GPO"An Control Pane” bén da moe
CChuyénpolicy “An Conte Panel” lén Link Soarty Filtering chon vio group Aulhentiated
Ordering Users Remove 9 OK
Fr
B3 ~ Quay tr Igi man hinh Seourty
Filtering, chon Add-> Add Group Test vio
0K
BA Kid a: Trén may P02:
1 Log om user U1, U3 > mat Control Panel
++ Logon user U2, U4-> hign Contec Panel
6. Xem cée Setting cia GPO (Thyc hign rén méy PCO1)
= Mo Group Policy Management, chon GPO An Control Pan" qua tab Setngs > Aad >
Add > Close -> Quan sit céc thiét lfp duge tgo ra trén GPO.
2 Dat oman Pky
1 Bow
Recor
Phin Ban Thit Nghigm ~ Luu Hanh NGI BG 58
‘TRUNG TAM BAO TAO CNTT NHAT NGHE
ue ‘OI TAC DAO TAO CUA MICROSOFT TAI VIET NAM
ol
Gage LER geo eee iron Panes
. NHAT NGHE Website: www.nhatnghe.com
‘Modeling Wizards (Thue hign trén miy PCO)
BI. Mé Group Policy Management, chujt B2- Cie bude diu tién nhin Next theo mie djnh.
phi vo Group Policy Modeling, chon Man hin User and Compute Selection > DE xem
OU Cha bj dp policy gi, trong 2 phén User
Information va Comper Information, chon
Browse dén OU Cha > Next
‘omc
ot Seti
1B3 - Man hinh Advanced Simulation
Options “> Chon Default-Frst-Site Name
> Next
Sepa ae
'B4- Man hinh Computer Security Groups,
chon Authenticated Users > Next
[BS - Cac burée cdn lpi nhin Next theo mic
inh > Man hin Completing...» Finish
: 56 Phign Ban Thi Nghigm ~ Luu Hanh NGI BG
‘TRUNG TAM DAO TAO CNTT NHAT NGHE
QE, 201 TAc oho Tao cua micRosorT Tat viér NAM ah
© 405 B8 Huyén Thanh Quan, Qué 3, TP.HEM ‘Microsoft Partner :
Tel: 08.39822.735 - 0913.735.908 my
Website: www.nhatnghe.com
NHAT NGHE
8, Item Level Targeting (Thue hign én may PCO!)
B1-Mé Group Policy Management, chust 2 ~ Bung mye User Configuration > Preferences
phi vao Default Domain Policy, chon > Control Panel Settings, chuét phai vio Folder
Bait. Options, chon New ~ Folder Options (atleast
Windows Vista)
[BS~ Myo Hidden files and folders, chon
Show hidden files and folders, Tt div
check 6 2 mye:
+ hide extensions for known file sypes
+ Hide protected operating system files
B4- 6 king bén phii > Cho phi vio Folder
Options > Properties
1BG - Tai man hinh Targeting Editor > Chon New
BS-Quatab Common, dinh di check Item > User
‘vio myc Item-level targeting > chon :
T:
Phign Ban This Nghigm ~ Luu Hanh NGI BG 7
‘TRUNG TAM DAO TAO CNTT NHAT NGHE
— BOXTAC DAO TAO CUA MICROSOFT TAT VIET NAM ge
© 305 Ba Huyén Thanh Quan, Qugn 3, TP.HCM oe
WMAP NGRE Tel: 08.39322.735 ~ 0913.735.906
Website: www.nhatnghe.com
'B7~Trong mye User > Browse > Add BB-
User ud 9 OK 9 OK > OK
im tra: Teén may PCO2 "
+ Logon user ud > MG File Explorer, kiém ta thly
cc file dn xut hig va hig hj dui
file. 5
+ Log on user u3 > Ma File Explorer, khng thy
che file dn.
9. Disable mst phn eda policy
Gi Rita his ng mt phn rong cia GPO (od User Conflration), iting tbe qua
‘rink xr lf GPO, ta nent ning phn Kong dng dé
= Md Group Policy Management, chon GPO “An Control Panel” > Details, 6 myc GPO Status,
chon Computer Configuration settings disabled > OK
10, Khio sit noi chia policy templates
BL--Mé-Group Policy Management, B2-Truy cp vio 8
chon GPO “An Control Pane. Qua’ C\Windows\S¥SVOLISYSVOLahatnghelocahPlicies,
tab Details, chi déng Unigue 1D & tly 6 hur mye giéng Unique ID ea policy “An
PEERS ain
———
33 -Mé hr miye tring vi Unique .
D> User > s&thly 06 file 1B4- Mé file Registry pol bing Notepad quan sit n6t
Registy;pol Thongtin v Policy dunghén trong
dizge leu vio file ny.
————
58 Phién Ban Thit Nghigm ~ Luu Hanh NOI BS.