Installation of AD DS role
Authorisation of DHCP server on domain
Testing name resolution via FQDN
Getting AD domain information

Installation of AD DS role

Let’s install the directory service role, so that we can create a domain and promote winsrv-1 to domain controller.

PS > Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools

Success Restart Needed Exit Code      Feature Result                               
------- -------------- ---------      --------------                               
True    No             Success        {Active Directory Domain Services, Group P...

Install-ADDSForest -DomainName "ad.georgetech.co.uk" -DomainNetbiosName "ad" -InstallDns -Force

Authorisation of DHCP server on domain

We will need to authorise the DHCP server on winsrv-1 for it to allow to distribute IP addresses to computers such as winsrv-2 in the newly created domain ad.georgetech.co.uk:

Introduction
Domain validation and AWS SES configuration
Creating a user and assigning policies in the AWS console
Creating an access key and using the AWS CLI to send an email

Introduction

Let’s say we are running a bash script and we would like to be notified of success or failure after it is executed.
We could send an email out via Amazon SES (simple email service), by using the AWS CLI binaries.
We would also need an AWS service account that has permissions to send emails.
The emails will be sent from an email address in domain that we own (alerts@georgetech.co.uk).
The alerts will be sent to a GMail email address, for example, as we do not have an email server of our own.

Using AWS CLI to create an S3 bucket and to attach IAM policies
Configuring rclone to access the AWS S3 bucket
Creating a bash script to back up the website folder and upload it to an S3 bucket
Using a systemd service and timer to schedule website backup

Using AWS CLI to create an S3 bucket and to attach IAM policies

In this tutorial, we will back up the web site to a file and we will copy the resulting backup file to an AWS S3 bucket with rclone, at 3AM every day, via a systemd timer and service.

Network topology
Renaming computers
Setting static IP address
Adding the DNS role
Adding the DHCP role and defining a DHCP scope
Testing DHCP IP assignment

Enabling ping via firewall rules and testing connectivity

Network topology

We have a topology of 2 Windows Server 2022 VMs, which we will call winsrv-1 and winsrv2-2.
winsrv-1 is directly connected to the router via the IP 192.168.1.10.
It will also be DHCP server for the 172.16.1.0/24 subnet and will connect to winsrv-2, which will connect to winsrv-1 via a the latter’s second network card.

User management
Network management and connectivity
Install and connect via SSH to Windows server
Service management
Customising your Powershell profile
Getting help on a command
Practical example: search for Windows updates pending install

User management

To create a local user in Powershell, let’s use the New-LocalUser command:

PS > New-LocalUser -Name 'george' `
	-Description 'Local admin.' `
	-Password (ConvertTo-SecureString -String 'somestring' `
	-AsPlainText -Force)

Name   Enabled Description
----   ------- -----------
george True    Local admin.

To add the new user to the local Administrators group, we can use Add-LocalGroupMember; -WhatIf does not run the command, it shows what would be done:

Let’s say we want to end the process ssh in another terminal because the connection is frozen due to network disconnect.
To do this, we need to identify the id of the ssh process, and end the process.
We will use:

• pipes (|) to redirect the output of one program to the next.
• ps ax to list all processes in all terminals
• grep to search for the ssh text in the output of the ps command
• awk to print the first word {print $1} of the first line NR==1
• kill command to end the process identified in the awk line

To explain the concept of pipes (|): we execute ps ax to list all processes, and with the | we pass the resulting output to the grep command, which searched for the word ssh:

Before we begin, let’s allow the user george to connect to MySQL/MariaDB from any host, including the server that hosts php and the web server.
We will use % to allow connection from all hosts:

MariaDB [(none)]> GRANT ALL PRIVILEGES ON `publications`.* TO "george"@"%";
Query OK, 0 rows affected (0.010 sec)

We will be creating the login.php file which we will be using in other phpfiles.
This code will help us connect to the MySQL database with the user and password, and the publications database will be selected.
This code is visible and executed only by the server, it is not visible by the web browser.

In this article we will work with MySQL databases - creation, adding records, etc..
To connect to a MySQL /MariaDB instance:

# mariadb -u user -p'user_password'
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 14
Server version: 11.7.2-MariaDB-ubu2404 mariadb.org binary distribution

Copyright (c) 2000, 2018, Oracle, MariaDB Corporation Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

To show current user’s rights/grants: