seung joo baek it pro evangelist microsoft korea · 2015-01-22 · server core security, tcp/ip,...
TRANSCRIPT
![Page 1: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/1.jpg)
Seung Joo BaekIT Pro EvangelistMicrosoft Korea
http://www.koalra.com
![Page 2: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/2.jpg)
![Page 3: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/3.jpg)
![Page 4: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/4.jpg)
소프트웨어 유지 보수 감소
공격 지점 감소
관리 감소
적은 디스크 공간 필요
![Page 5: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/5.jpg)
Server Core Security, TCP/IP, File Systems, RPC,plus other Core Server Sub-Systems
Server Core Server Roles
DNS DHCP File AD
ServerWith WinFx, Shell, Tools, etc.
Standard and Enterprise Server Roles
TS IASWeb
ServerSharePoint
Etc…
GUI, CLR, Shell, IE,
Media, OE, Etc.
Server Core Server Roles
Virtualization
![Page 6: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/6.jpg)
정적 IP 주소 설정
기존 도메인 가입
서버 인증
방화벽 설정
관리자 암호 설정
192.168.0.1
![Page 7: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/7.jpg)
![Page 8: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/8.jpg)
>start /w ocsetup RolePackage
>Dcpromo /unattend:Unattendfile
>start /w ocsetup featurename
>oclist.exe
![Page 9: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/9.jpg)
![Page 10: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/10.jpg)
![Page 11: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/11.jpg)
![Page 12: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/12.jpg)
![Page 13: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/13.jpg)
Exchange 2003 (VBScript) Exchange 2007 (PowerShell )
Mailbox Statistics
Set listExchange_Mailboxs =
GetObject("winmgmts:{impersonationLevel=impersonate}!\\COMPUTERNAME\ROOT\MicrosoftExchangeV2").Instanc
esOf("Exchange_Mailbox")
For Each objExchange_Mailbox in listExchange_Mailboxs
WScript.echo "AssocContentCount =” + objExchange_Mailbox.AssocContentCount
WScript.echo " DateDiscoveredAbsentInDS =” + objExchange_Mailbox.DateDiscoveredAbsentInDS
WScript.echo " DeletedMessageSizeExtended =” + objExchange_Mailbox. DeletedMessageSizeExtended
WScript.echo " LastLoggedOnUserAccount =” + objExchange_Mailbox. LastLoggedOnUserAccount
WScript.echo " LastLogoffTime =” + objExchange_Mailbox. LastLogoffTime
WScript.echo " LastLogonTime =” + objExchange_Mailbox. LastLogonTime
WScript.echo " LegacyDN =” + objExchange_Mailbox. LegacyDN
WScript.echo " MailboxDisplayName =” + objExchange_Mailbox. MailboxDisplayName
WScript.echo " MailboxGUID =” + objExchange_Mailbox. MailboxGUID
WScript.echo " ServerName =” + objExchange_Mailbox. ServerName
WScript.echo " Size =” + objExchange_Mailbox. Size
WScript.echo " StorageGroupName =” + objExchange_Mailbox. StorageGroupName
WScript.echo " StorageLimitInfo =” + objExchange_Mailbox. StorageLimitInfo
WScript.echo " StoreName =” + objExchange_Mailbox. StoreName
WScript.echo " TotalItems =” + objExchange_Mailbox. TotalItems
Next
get-mailboxstatistics
–server $servername
Database Mgmt
Dim StorGroup as New CDOEXM.StorageGroup
StorGroup.DataSource.Open "LDAP://" + DCServer + "/ CN=First Storage
Group,CN=InformationStore,CN=" + Server + ",CN=Servers,CN=First Administrative
Group, CN=Administrative Groups,CN=First Organization, CN=Microsoft
Exchange,CN=Services, CN=Configuration," + DomainName
StorGroup.MoveLogFiles("C:\newlogPath", 0)
move-storagegrouppath
-identity “First Storage
Group“
–log "C:\newlogPath”
Recipient Mgmt
Dim objMailbox As CDOEXM.IMailboxStore
Set objMailbox = GetObject("LDAP://" + DCServer + "CN=FOO,CN=users," +
DomainName)
objMailbox.CreateMailbox "LDAP://" + DCServer + "/CN=Private MDB,CN=First Storage
Group,CN=InformationStore,CN=" + Server + ",CN=Servers,CN=First Administrative
Group, CN=Administrative Groups,CN=First Organization, CN=Microsoft
Exchange,CN=Services, CN=Configuration," + DomainName
enable-mailbox
-identity domain\FOO
–database “First Storage
Group\Private MDB”
![Page 14: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/14.jpg)
명령어 라인인터페이스
Exchange 스냅인
작업자동화
벌크작업
콘솔확장
![Page 15: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/15.jpg)
개체-기반 데이터 핸들링
네임스페이스
파이프라이닝
CMD 명령어 접근
신뢰된 스크립트
![Page 16: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/16.jpg)
One-liners
Raw mode
What If?
Interactive
![Page 17: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/17.jpg)
다수의 작업을 한데 묶어서
Managed Code에서 스크립트,Cmdlet을 호출
커뮤니티 사이트를 통한 스크립트공유
스크립트는 재활용이 가능
![Page 18: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/18.jpg)
![Page 19: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/19.jpg)
생산성 및 제어향상
시스템 관리자동화 편리한 사용 및
스크립트 연동
![Page 20: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/20.jpg)
![Page 21: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/21.jpg)
VBScriptDim mystring
PowerShell$mystring = [string]
![Page 22: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/22.jpg)
VBScriptDo While a<10
a=a+1
Loop
PowerShell$a = 1
do {$a; $a++}
while ($a –lt 10)
![Page 23: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/23.jpg)
VBScriptDim myArray(2)
myArray(0) = 1
myArray(1) = 3
myArray(2) = 7
PowerShell$a = 1,3,7
![Page 24: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/24.jpg)
![Page 25: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/25.jpg)
NT 4.0 2000 XPVista
0
10
20
30
40
50
60
70
1521
57
70
13 New WMI Providers
• BitLocker Drive Encryption • Trusted Platform Module • Boot Configuration Database • Intelligent Platform Management Interface• Windows Parental Controls • Windows Communication Framework• Network Access Protocol Client • IIS 7• Terminal Services• Clusters
![Page 26: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/26.jpg)
관리용 웹 서비스
Firewall Friendly (DCOM 대체) - HTTP & HTTPS
WinRM, WinRS
![Page 27: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/27.jpg)
![Page 28: Seung Joo Baek IT Pro Evangelist Microsoft Korea · 2015-01-22 · Server Core Security, TCP/IP, File Systems, RPC, plus other Core Server Sub-Systems Server Core Server Roles DNS](https://reader034.vdocuments.pub/reader034/viewer/2022042306/5ed188210ebe3b04cd2fd932/html5/thumbnails/28.jpg)
© 2007 Microsoft Corporation. All rights reserved.This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS SUMMARY.