Lab 2 Part 2 - Hardware Configuration
Lab 2, part 2: Hardware Configuration This lesson focuses on how to examine the hardware configuration which allows someone to see how much memory is there, the processing abilities and identifies the machine's manufacturer (among other things). Participants learn step by step instructions in synchronizing servers, which is necessary for trouble sh...
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
Already have an account? Sign In »
14 hours 13 minutes
Lab 2, part 2: Hardware Configuration This lesson focuses on how to examine the hardware configuration which allows someone to see how much memory is there, the processing abilities and identifies the machine's manufacturer (among other things). Participants learn step by step instructions in synchronizing servers, which is necessary for trouble shooting.
All right, so we're connected to our host.
We're gonna start out by having a little look at the hardware configuration.
You want to see what kind of hardware you're running on,
which have a processors. How many processors? How much memory you have
will inspect other areas of the hardware configuration a little bit later.
But for now, we'll start with these.
So we go to our configuration tab.
Notice that I had the host selected.
If I select of'em, I could go to various tabs there. But in this case, it's the host.
The tabs will change between V, EMS and hosts
because they have different
So to the configuration tab,
I can start off with clicking the health status link.
So it says here what type of mother board my servers has
The X 50 an extreme
shows me that I have several processors and a lot of software components installed.
I can also look at my processors
and see that this is an Intel I seven
model 9 20 at 2.677 gigahertz,
it actually has two sockets.
I'm not sure that showing one,
but I get eight logical processors
and then this. This lets me divide this
processing capability among various virtual machines that you build
within that host.
It identifies the manufacturer of the model, the BIOS version and such.
Okay, so now I will start with configuring D. N s
still in our configuration tab.
This time we're going to click a link in the software section.
We're looking for Dennis and routing.
You'll notice there is the host name here.
I'm on a local domain. This host has not been joined to a domain yet.
And Dean s server method is such a static, which basically means that you're using a host file.
What we want to do is designate a name server so that this host can communicate with other
hosts on the same sub net or through gateways to other networks.
So we'll go over to the properties link
and here we can see that we have our host named Designated were on the local domain.
There's no d n, a server address specified.
So what we want to do is join
domain that's already configured.
This one is called VM wear dot local.
We also need to configure the D. N s server.
And as I showed you earlier, the
Windows 2012 server that I built
at address 0.1 10 is providing all the service is for my virtual infrastructure,
which can also do is configure an alternate Deanna server.
In this case,
um, if you wanted to use one on the Internet, you could use time dot windows dot com.
And this is useful
so that you can get access to Internet related
sites for downloading updates to update manager and other
settings like this.
Make sure you do this securely, that we'll talk about that in a different section.
You'll notice on the routing tab that my default gateway is set to
the typical standard of using Got one,
and I can go ahead and click. Okay,
now my domain is half of humor, not local.
It shows my primary and secondary Dina servers,
and I have a default gateway, which is also required by use of the VM Colonel Port.
The next thing that will do is configure network time protocol.
This is an important step, and I always advise
administrators never to skip it.
You want your all of your machines in your network to have the same time reference.
Very important. Certain applications may break if the time difference between
a client server, for instance, is too great.
Perhaps even as few as a few minutes
might make a difference to break something.
It's also important for other reasons. You want to make sure that all of your servers are synchronized the team to the same time source, so that
if you have to do any trouble shooting or, ah, forensic investigation,
you know that all of your time stamps on log events will be
more or less synchronized.
we'll go in under the software section again
and click on time configuration.
The system has a time that it that it got when it was built, the host.
So if the clock was correct on that motherboard, it might be correct. Here is Well,
in this case, we're not running the NTP client yet, so it shows a status of stop.
I can go over to the properties link.
You'll notice here
that I can manually set the time and date.
Maybe you don't have an NTP server.
It's not something you're planning for your infrastructure. So
this is an option
it's better to use on T p.
Of course, as I mentioned already,
in any case, we're configuring into peace, and now we have to enable the client by clicking this box.
Standard NTP port is UDP 1 23
that should be allowed
within your typical network.
Whether or not
all individual servers can use that port three year perimeter firewalls another. Another question.
But for our purposes, the the anti P server is on the network that we're on with the host
now you need to go to the options button.
Here. We have options for how the anti P service
will be run
by default. It's set to start and stop manually,
which, of course,
might be useful if you're doing testing.
Once it's configured correctly, however, you probably want to start and stop with the host.
This last option
gives you 1/3 choice for
starting the anti P service as soon as possible. When the system is booting,
I will go to the
and TP settings.
You'll see that we need to configure an anti P server,
so I click add and get my pop up
and my address for the crux 2012 servers 1 2190 to 1 68
1 68 1
I can also add a secondary
server, but in this case I don't need one.
Well, let's go ahead and do it just in case. We want to make sure we can get an Internet time source. This is the I P for
time dot windows dot com.
Because you've added new servers, we need to restart the service,
so make sure you click that box.
I won't click. Okay,
okay, again and we'll see. The service is now running,
It's synchronized. It's time,
and I can see my primary
in secondary servers.
Next task is to configure. Directory service is
so now under the software section. Again,
we'll go down to authentication service is,
and you'll notice that my authentication at this point is local.
Which means unless the account exists
in the FC password and that's the shadow file
as a local council type account
or an account you could use with an SS H server,
there are no other authentication options,
so we want to configure at our active directory.
Since that's running on the
the two top 2012 server of'em that I showed you earlier,
So we'll click on properties
by default. It's such a local authentication will set that to actor directory
and the domain name
as the EM wear got local.
Now we can click the joint domain button.
And this is where the
password for the domain controller is required.
Okay, so I've typed that in. I've been authenticated.
No, I can click. Okay,
You'll notice my director Service's is now through active directory,
and I've joined the domain.
All right, so that concludes. Lab number two.
don't forget to do lab number three where we work with virtual machines.