Windows Server Infrastructure Upgrade and Redesign at ELearning

Executive Overview

This is a proposal paper aiming at providing a solution for upgrading the infrastructure of windows server as well as redesigning at E-learning towards increasing efficiency and productivity alongside giving room for expansion of the organization. Elearning is planning to employees in Texas, Austin though Austin location is not having domain controllers yet it has to authenticate as well as access Active Directory services of Elearning. Austin is a new office location, is requiring incorporation of Active Directory towards allowing capabilities of authentication to be permitted as well accessing of the Active directory services of the Elearning. The organization is therefore in the process of ensuring that its system is upgraded as well as redesigned to windows server 2012 thus several things will have to be addressed towards enabling the organization to run having several rooms for future growth effectively. The organization is requiring a better design of new network concerning its development as well as organization’s experiences with occurrence of in the years that have passed. The organization has been having several incidents of security breaches being that they are not having operating system patches on workstations, antivirus software as well as having AV signatures that are outdated.

This proposal will be providing replacement strategy of upgrading the current infrastructure and systems with windows server 2012 R2 towards offering a system that is having more practical environment as well as maintaining security of the network system. There will be replacement of domain controllers currently used in the organization by the windows server 2012 R2 towards offering the organization with a solution that is cost-effective in managing the systems. Thus, the proposal will be discussing method of upgrading the current system to windows server 2012 that is most cost-effective as well as efficient alongside addressing issues such as redundancy across the network as well as overall deployment of infrastructure that is more functional and scalable (Pinto, Fernandes, Cardoso, & Maculan, 2019, p. 30).

Plan and Design of Windows Deployment

By creating an image from a computer that is regarded as host or master is the easiest method and will be including Windows operating system, drivers, windows configurations as well as any necessary software alongside their configurations. When developing design of deploying windows, it is significant to create an image that is appropriate alongside client workstations that are automated as well as strategies of installing servers. As a result of the plan, the ELearnig will effectively deploy the server together with the operating systems of clients while putting into considerations that issues of cost as well as time. Windows deployment services (WDS) is allowing deployment of the window by the network administrator (Ram, Kumar, Sarma, Mahesh, & Kulkarni, 2016, p. 50). When installation is done over the network, there should be no issues of as long as PXE boot can be performed by the client personal computer. A network admin is capable of performing windows deployment services in strand alone mode with windows 2012 that do not depend on active directory. Router supporting should be available so that the organization can deliver and create transmission of multicast and the type of multicast may get categorized into auto-cast or schedule cast. This will eliminate need for performing installations that are tedious and time wastage. Windows servers can be installed by the multisite topologies with a image that is centralized that is kept in every location to have an installation of windows to be locally performed. Thus, the deployment becomes faster as well as not consuming valuable WAN link capacity (Attiya, Castan͂eda, Herlihy, & Paz, 2019, p. 30).

Virtual Machine Manager Services

There will be deployment that is done to the virtual machine on temporary basis towards assisting as well as providing Austin location with resources. There are features of virtual machine manager in the Windows 2012 R2 system center that is enabling virtual management of workloads in a centralized manner. Windows server internet information systems (IIS), Windows Remote Management (WinRM), Microft.NET Framework 4.5 as well as Windows Assessment and Deployment Kit (Windows ADK) must be installed towards ensuring proper running of the Virtual machine management regarding the windows server 2012 R2 (Ram, Kumar, Sarma, Mahesh, & Kulkarni, 2016, p. 72). Equipment is provided into a Hyper V host as well as file server cluster scale with the help of physical computer or host file. Profile of host will be inclusive of operating system image location alongside hardware and setting of operating system configurations. Virtual Machine Manager template allows the creation of several child templates and storages. Profiles will be used as templates to simplify and modularize virtual machine deployment. Profiles of operating systems will be used in the creation of standardized virtual machines alongside being changed without affecting other virtual managers. Profile of hardware is specifying the settings of the device for the virtual machines when deploying. Profile capacity is used in ensuring resources highly needed are readily available as the application profile ensures that Microsoft Server Application installation instructions are provided as well as applications of Microsoft web deploys, Virtualization applications alongside application of the data tier of Microsoft SQL Server. Virtual machine manager of the Windows 2012 R2 system center is significant in tracking the service plate, modifying it alongside updating. Library of Virtual machines manager will be providing file-based resources that library servers stores(Attiya, Castan͂eda, Herlihy, & Paz, 2019, p. 32).

Windows Server Design

Windows server 2012 R2 will be deployed in each and every site that will be entailing two domain controllers as far as fault tolerances is concerned towards ensuring an increase in efficiency, security as well as overall productivity. All roles and configurations will be addressed by the windows server 2012 like DHCP, print, denial of Service, and so on. DHCP and DNS configurations as well as Remote Access and Routing Services while print and file server is on the secondary domain controller. Redundancy across the entire network is ensured to avoid catastrophic damage due to data loss (Chen & Liao, 2016, p. 272).

Dynamic Host Configuration Protocol (DHCP)

DHCP that is highly redundant and available can be configured by the organization a solution that is best. There must be the installation of a failover cluster, split-scope as well as DHCP failover. There are two servers of DHCP which are sharing scopes by the use of relationships of Failover as well as information of range between the two servers of DHCP in regard to the DHCP failover. Load sharing is allowing the leasing of addresses by the two servers of DHCP and the scope and lease information remains available for the servers that have not failed in case a server fails. The DHCP split-scope addresses requirements of fault tolerances. For the best practice towards allowing maintenance of DHCP lease by the primary server for the 80% of IP addresses of various ranges, the split-scope should be set to 80/20. Suppose the central server fails, secondary server will be taking over and proceed with issuing of the lease. The DHCP interoperability with the Microsoft services will be providing improved security regarding registration of host records and updates. Configuration of DHCP with NAP will be protecting the computers vulnerable in the network as NAP enables the firewall for all connections in the system, antivirus update, automatic update as well as antispyware. Configuring RRAS server with DHCP will be allowing the users to connect with IP address remotely and return it to the server for other users. IPAM interoperability configurations will be creating policies of groups forcing connection to the IPAM by the servers of DHCP, ensuring maintenance and system monitoring (Chen & Liao, 2016, p. 274).

Domain Name System (DNS)

The network and computers will be accessed by the users at ease by having practical names that are easily remembered. A workload of a name resolution will be distributed across several servers as well as database, ensuring scalability as well as keeping names of host consistent ensures the accessible location of resources. It is highly recommended to use Active Directory-integrated zones storing supplies in databases of the active directory for efficiency, security, and fault tolerance reasons. Deploying DNSSEC will be providing resolvers and clients with verified denial of existence alongside DNS record identity proof. The randomization of ports for DNS queries will be allowed by the DNS socket pool, thus improving the entire security. DNS cache locking is preventing replacement of the records in the resolver cache by an attacker. Whenever there is a primary DNS suffix that is not matching active directory domain name of DNS in one or more domain computers, then a disjoint namespace occurs, and the domain computer might still operate though network application may fail. Creation of DNS interoperability is ensuring operation of Microsoft DNS with typical DNS Server. In dialog box property of the DNS server, BIND can be enabled to permit window having servers of DNS to operate with server of BIND. When deploying a zone hierarchy, using domain externally and internally can be a good practice (Hernandez & Jimenez, 2018, p. 370).

Remote Access Solution

The implementation of remote access solution that is scalable will be inclusive of the following; configuration site to site Virtual Private Network, packet filters configurations, and packet tracing implementation and remote access regarding multisite alongside solutions for directory access.

Site to site Virtual Private Network connection is allowing two networks that are private to get connected as well as allowing routed connections to the remote system securely as the configuration filters ensure more security by controlling in and out traffics. VPM and remote access servers will perform functions of routers configurations of the packet filers by the network admin to control the traffics. There will be use of Windows firewall with advanced security (WFAS) in managing firewall of windows with security of IP address towards preventing attackers from attacking the system as the firewall will be inspecting packets of IPv6 and IPv4. Implementation of packet tracing will be used in analyzing the packets and can be enabled in the monitoring pane dashboard of remote access management console. Implementing directory access entry point over several locations will be beneficial to the Elearning. The resources of the organization can be accessed by every user inclusive of the ones using windows 8.1 and windows 8 through connecting to a direct access server that is closest over the internet making their locations not be a major issue. Client failover is connecting users to another access point whenever a specific entry point is unavailable. Through clicking enable multisite link there will be configuration of Multisite Remote Access. Network load balancing is implemented towards ensuring high availability in the Remote Access and sharing of load among the servers. Configuration of direct access can be done by Remote access management console where users can remotely access the network in a secure manner (Hernandez & Jimenez, 2018, p. 371).

Source: (Li, Wang, Cao, Wang, & Bi, 2018, p. 63).

The configuration of single site will be assuming that is proper conncetion of every domain controllers, making it straightforward but costly. Single site configuration will be ensuring replication of every domain controller on demand as well as not compressing their traffic replication with every site having fault tolerance needing installation of domain controllers that should be atleast two (Li, Wang, Cao, Wang, & Bi, 2018, p. 60).

When domain controllers are located near resources requiring them then the performance of the entire system will be greatly improved since it is authenticating with user logging on the network. Active Directory Domain Service is using multi-master replication process allowing modification of database contents by admnistrator.after creating the sites; they are connected through site links towards providing intersite replication connectivity. Knowledge Consistency Checker (KCC) will be generating alongside maintaining replication topology between and within the sites with the deployment of group policy enforcing rules preventing slow links between users, servers as well as domain controllers(Panek, 2015, p. 115). The RODC in the windows server 2012 R2 will be replicating the domain controllers as it is containing entire replication of domain database thus being used in every site having physical security that is low being that it is allowing only inbound connection replication. Network admins will be connecting to the writable domain controller towards making changes to the active directory, thus allowing for troubleshooting as well as pinpointing issues between domain controllers ensure every domain is updated. There will be use of Active Directory Replication Status tools (ADREPLSTATUS) in the monitoring the system (Li, Wang, Cao, Wang, & Bi, 2018, p. 64).

Conclusion

This proposal paer has explored the process of upgrading network infrustructure to a new design using windows server 2012. The new network infrastructure will be addressing issues that are common to the organization from its experiences from the past years. The Elearning has to cope up with the growing challenges. Therefore, they have to upgrade their networking environment from the current system that they are using while entails the use of Windows 2003, 2008 as well as systems of Nix to the new design of network that is entailing the use of active directory of Windows 2012 R2. By upgrading to a new system, there will be the use of windows server 2012 which will lead to singificant improvement in the overall productivity of the organization. This is because windows server 201 is offering several bulit features that are promoting flexibility as well as adversity. To meet the needs of the organization alongside keeping up with the future, the new network infrastructure is recommended for deployment (Panek, 2015, p. 110).

References

Attiya, H., Castan͂eda, A., Herlihy, M., & Paz, A. (2019). Bounds on the Step and Namespace Complexity of Renaming. SIAM Journal on Computing, 48(1), 1-32.

Chen, Y., & Liao, S. (2016). A Framework for Supporting Application Level Interoperability between IPv4 and IPv6. Advances in Intelligent Information Hiding and Multimedia Signal Processing, 271-278.

Hernandez, L., & Jimenez, G. (2018). Design and Validation of a Scheme of Infrastructure of Servers, Under the PPDIOO Methodology, in the University Institution - ITSA. Advances in Intelligent Systems and Computing, 367-379.

Li, F., Wang, X., Cao, J., Wang, R., & Bi, Y. (2018). How DHCP Leases Meet Smart Terminals: Emulation and Modeling. IEEE Internet of Things Journal, 5(1), 56-68.

Panek, W. (2015). MCSA Windows Server 2012 R2 installation and configuration study guide: exam 70-410. John Wiley & Sons.

Pinto, L. L., Fernandes, K. C., Cardoso, K. V., & Maculan, N. (2019). An exact and polynomial approach for a bi-objective integer programming problem regarding network flow routing. Computers & Operations Research, 106, 28-35.

Ram, B. K., Kumar, S. A., Sarma, B. M., Mahesh, B., & Kulkarni, C. S. (2016). Remote software laboratories: Facilitating access to engineering software online. 2016 13th International Conference on Remote Engineering and Virtual Instrumentation (REV).