Developing a suitable Active Directory configuration for the network.

deployment of a managed network of Windows computers is required. After analysing the requirements, you will suggest a deployment of at least one Windows server (more if necessary) to meet the needs of the organisation. The solution will include: • Deployment of one or more Windows Server hosts • Configuration of services • Developing a suitable Active Directory configuration for the network • Devising appropriate Group Policy settings for users and devices on the network. write a report summarising your findings and recommendations for the company. Case Study: Initech Initech are a software development company who have recently been advised to alter many of their working practices by a management consultancy (The Two Bobs). Based on the recommendations Initech need you to setup a new structure within Active Directory to support working practices and enforce corporate policy. Detailed information is available in supplementary documents including an organisation chart and employee list. In common with many software companies there are frequent reorganisations. The structure you devise should be flexible enough to cope with future restructuring efforts. Major Requirements The major requirements following the review by The Two Bobs are listed below: Hot Desking It is important for staff to mingle and work flexibly. Staff, including software developers, are expected to move around and work in flexible and ad hoc teams. Most users will not therefore have an allocated computer. The practice of hot desking means that any user can login to any workstation and work from there. Users’ settings and working environments should follow them to any computer. Kiosk Computers There is a need for a small number of computers to be placed in public and non-secure locations such as the lobby or conference rooms. These computers should be locked down to prevent access to sensitive internal data from untrusted machines. There should be no opportunity for users of these kiosk computers to make any changes to settings. Management Laptops Managers keep their own personal information on their own laptop computers. The Hot Desking policy does not apply to these members of staff. Security and personalisation settings can be modified by this group of users. Security In general staff should not be able to install software, modify software or access material on any computers. Exceptions to this rule are managers on their own PC and members of the IT team on any PC. Staff (other than managers) should change their password every week. Removable media should be banned for all users. Following previous security concerns Initech now aim to roll out security patches to their desktop and laptop systems within one week of their release. Patches must be tested before roll-out. Shared Drives Each team has access to their own shared drive. Users cannot read or write to any shared drive other than their own team’s. Printing Network printers have long been a problem area for Initech. Using centrally managed print queues would improve the situation. TPS Reports Some users are required to write weekly TPS reports. They will need an additional shared drive space on a file server with read and write access enabled. Deliverables You will need to provide a report which sets out how you intend to meet the above needs using Windows Server in general and Active Directory in particular. Your report should contain: • Details of the server roles needed in your opinion together with a reason for those choices • Details of the organisation structure needed within Active Directory including OUs and GPOs you think necessary. This would normally use screenshots, but desсrіptions are acceptable. • Detailed documents showing Group Policy Object settings – these can be exported as HTML documents within the Group Policy Object Management Tool. You should state where each GPO fits in your structure and what it is intended to achieve.