RADIUS Server Configure in Server 2012

• Home
• About Me
• Apple
• Networking
• Software
• Storage
• Downloads
• Links
• Contact

How to setup Radius for authentication with for example a Cisco VPN Connection.

When opening the Dashboard after logon with the administrator user you have to choose Add roles and features

Choose Role-Based or feature-based installation and click on next

Select the server which get the new feature and click on next

Select network Policy and Access Services add the features

Click on Next

Do NOT change any settings and click on Next

Click on Next

Select Network Policy Server and click on Next

Select Restart if needed ( only when it’s possible to restart ) and click on Install

You can close this window but you can watch it finishing.

Select Tools > Network Policy Server

A new window wil open

Click right on NPS (Local) and select Register server in Active Directory

Click on OK to continue

Click on OK

Click on Radius Clients and Servers > Radius Clients (right click) > New

Add a device with a shared key to connect. And Click on OK

Create a new group in the Active Directory (call it for example VPN)

Create a new Network Policy

Click on Policies > Network Policies (right click) > New

Name the Policy simple and click on Next

Add a new Condition > Select Windows Groups > click on Add

Select the Windows group or groups and click on OK

Click on Next

Select Access Granted and click on Next

Select all options except the last one and click on Next

You get a message if you want to read it click on yes if not click on no.

Keep the settings to default and click on Next

Keep the settings to default and click on Next

Click on finish

Windows Run Commands

These run commands are available for almost all settings available in Windows control panel.

Note : most part of these commands are compatible with Windows 7, Vista e Windows XP.

As someone has kindly reported, some commands are not compatible between different versions. Please check the commands and use the correct ones for your version of the operating system. Technical feedbacks are always appreciated, please send me any info that it helpful to improve this article.

Funzioni	Comandi
Open Documents Folder	documents
Open Videos folder	videos
Open Downloads Folder	downloads
Open Favorites Folder	favorites
Open Recent Folder	recent
Open Recent Folder	logoff
Open Pictures Folder	pictures
Windows Sideshow	control.exe /name Microsoft.WindowsSideshow
Windows CardSpace	control.exe /name Microsoft.cardspace
Windows Anytime Upgrade	WindowsAnytimeUpgradeui
Taskbar and Start Menu	control.exe /name Microsoft.TaskbarandStartMenu
Troubleshooting	control.exe /name Microsoft.Troubleshooting
User Accounts	control.exe /name Microsoft.UserAccounts
Adding a new Device	devicepairingwizard
Add Hardware Wizard	hdwwiz
Advanced User Accounts	netplwiz
Advanced User Accounts	azman.msc
Backup and Restore	sdclt
Bluetooth File Transfer	fsquirt
Calculator	calc
Certificates	certmgr.msc
Change Computer Performance Settings	systempropertiesperformance
Change Data Execution Prevention Settings	systempropertiesdataexecutionprevention
Change Data Execution Prevention Settings	printui
Character Map	charmap
ClearType Tuner	cttune
Color Management	colorcpl
Command Prompt	cmd
Component Services	comexp.msc
Component Services	dcomcnfg
Computer Management	compmgmt.msc
Computer Management	compmgmtlauncher
Connessione proiettore di rete	netproj
Connect to a Projector	displayswitch
Control Panel	control
Create A Shared Folder Wizard	shrpubw
Create a System Repair Disc	recdisc
Credential Backup and Restore Wizard	credwiz
Data Execution Prevention	systempropertiesdataexecutionprevention
Date and Time	timedate.cpl
Default Location	locationnotifications
Device Manager	devmgmt.msc
Device Manager	hdwwiz.cpl
Device Pairing Wizard	devicepairingwizard
Diagnostics Troubleshooting Wizard	msdt
Digitizer Calibration Tool	tabcal
DirectX Diagnostic Tool	dxdiag
Disk Cleanup	cleanmgr
Disk Defragmenter	dfrgui
Disk Management	diskmgmt.msc
Display	dpiscaling
Display Color Calibration	dccw
Display Switch	displayswitch
DPAPI Key Migration Wizard	dpapimig
Driver Verifier Manager	verifier
Ease of Access Center	utilman
EFS Wizard	rekeywiz
Event Viewer	eventvwr.msc
Fax Cover Page Editor	fxscover
File Signature Verification	sigverif
Font Viewer	fontview
Game Controllers	joy.cpl
Getting Started	gettingstarted
IExpress Wizard	iexpress
Getting Started	irprops.cpl
Install or Uninstall Display Languages	lusrmgr
Internet Explorer	iexplore
Internet Options	inetcpl.cpl
iSCSI Initiator Configuration Tool	iscsicpl
Language Pack Installer	lpksetup
Local Group Policy Editor	gpedit.msc
Local Security Policy	secpol.msc
Local Users and Groups	lusrmgr.msc
Location Activity	locationnotifications
Magnifier	magnify
Malicious Software Removal Tool	mrt
Manage Your File Encryption Certificates	rekeywiz
Math Input Panel	mip
Microsoft Management Console	mmc
Microsoft Support Diagnostic Tool	msdt
Mouse	main.cpl
NAP Client Configuration	napclcfg.msc
Narrator	narrator
Network Connections	ncpa.cpl
New Scan Wizard	wiaacmgr
Notepad	notepad
ODBC Data Source Administrator	odbcad32
ODBC Driver Configuration	odbcconf
On-Screen Keyboard	osk
Paint	mspaint
Pen and Touch	tabletpc.cpl
People Near Me	collab.cpl
Performance Monitor	perfmon.msc
Performance Options	systempropertiesperformance
Phone and Modem	telephon.cpl
Phone Dialer	dialer
Power Options	powercfg.cpl
Presentation Settings	presentationsettings
Print Management	printmanagement.msc
Printer Migration	printbrmui
Printer User Interface	printui
Private Character Editor	eudcedit
Problem Steps Recorder	psr
Programs and Features	appwiz.cpl
Protected Content Migration	dpapimig
Region and Language	intl.cpl
Registry Editor	regedit
Registry Editor 32	regedt32
Remote Access Phonebook	rasphone
Remote Desktop Connection	mstsc
Resource Monitor	resmon
Resultant Set of Policy	rsop.msc
SAM Lock Tool	syskey
Screen Resolution	desk.cpl
Securing the Windows Account Database	syskey
Services	services.msc
Set Program Access and Computer Defaults	computerdefaults
Share Creation Wizard	shrpubw
Shared Folders	fsmgmt.msc
Snipping Tool	snippingtool
Sound	mmsys.cpl
Sound recorder	soundrecorder
SQL Server Client Network Utility	cliconfg
Sticky Notes	stikynot
Stored User Names and Passwords	credwiz
Sync Center	mobsync
System Configuration	msconfig
System Configuration Editor	sysedit
System Information	msinfo32
System Properties	sysdm.cpl
System Properties (Advanced Tab)	systempropertiesadvanced
System Properties (Computer Name Tab)	systempropertiescomputername
System Properties (Hardware Tab)	systempropertieshardware
System Properties (Remote Tab)	systempropertiesremote
System Properties (System Protection Tab)	systempropertiesprotection
System Restore	rstrui
Task Manager	taskmgr
Task Scheduler	taskschd.msc
Trusted Platform Module (TPM) Management	tpm.msc
User Account Control Settings	useraccountcontrolsettings
Utility Manager	utilman
Version Reporter Applet	winver
Volume Mixer	sndvol
Windows Action Center	wscui.cpl
Windows Activation Client	slui
Windows Anytime Upgrade Results	windowsanytimeupgraderesults
Windows CardSpace	infocardcpl.cpl
Windows Disc Image Burning Tool	isoburn
Windows DVD Maker	dvdmaker
Windows Easy Transfer	migwiz
Windows Explorer	explorer
Windows Fax and Scan	wfs
Windows Features	optionalfeatures
Windows Firewall	firewall.cpl
Windows Firewall with Advanced Security	wf.msc
Windows Journal	journal
Windows Media Player	wmplayer
Windows Memory Diagnostic Scheduler	mdsched
Windows Mobility Center	mblctr
Windows Picture Acquisition Wizard	wiaacmgr
Windows PowerShell	powershell
Windows PowerShell ISE	powershell_ise
Windows Remote Assistance	msra
Windows Repair Disc	recdisc
Windows Script Host	wscript
Windows Update	wuapp
Windows Update Standalone Installer	wusa
Versione Windows	winver
WMI Management	wmimgmt.msc
WordPad	write
XPS Viewer	xpsrchvw

Six Sigma Training - Green Belt Intro

Six Sigma Training - Green Belt  What is Six Sigma? Six Sigma is a business management strategy, originally developed by Motorola, that today enjoys widespread application in many sectors of industry. Six Sigma seeks to identify and remove the causes of defects and errors in manufacturing and business processes.It uses a set of quality management methods, including statistical methods, and creates a special infrastructure of people within the organization ("Green Belts, Black Belts" etc.) who are experts in these methods. Each Six Sigma project carried out within an organization follows a defined sequence of steps and has quantified financial targets (cost reduction or profit increase). Six Sigma Green Belt The Green belt course provides a detailed understanding of six sigma's DMAIC Methodology. DMAIC is the acronym for the five phased approach used ie. Define, Measure, Analyse, Improve, Control. This program combines concepts, assignments, tips, case studies, and exams. Table of Content Six Sigma Quality Overview: Origin of Six Sigma What is Six Sigma Impact of Six Sigma Six Sigma Problem Solving Approach Standard Deviation Measure Phase: YX Diagram FMEA MSA Capability Analysis Data Collection Plan Process Sigma Calculation Gauge R & R Analysis Indices of Process Capability Improve Phase: Regression Correlation Correlation Coefficient And Slope DOE Planning   Define Phase: Project Charter RACI Model VOC CTQ Elements Process Mapping Project Metrics Project Plan Analyze Phase: Histograms Hypothesis Testing Quartiles Scatter Plots ANOVA Two Sample T-Test Control Phase: Control Plan Statistical Process Control Control Charts X bar R Charts P charts

Deployment Requirements

Parallels Cloud Server

Parallels Cloud Server runs on a wide variety of hardware and software configurations.

Basic system requirements include:

Server Hardware

• Platform: x86-64 platform with Intel VT-x or AMD-V hardware virtualization support
• CPU: 1.5 GHz or higher processor (a 64-bit processor is required for launching 64-bit guest operating systems)
• Memory: 2 GB of RAM minimum (4 GB or more recommended)
• Hard disk: Allocate 10-12 GB of disk space to the root (/) partition.
• Hard disk: Format the (/vz) partition as ext4 and allocate all the remaining free space to it (no less than 30GB)
• Network: 1 or more Ethernet cards (1 Gbit or faster)

The exact server configuration depends on how many containers or VMs you deploy on the server and the load they generate.

Software Requirements

Parallels Cloud Server is installed directly on the server hardware and does not require any additional operating system software.

Supported Virtual OS Distributions for Parallels Containers

Parallels Containers allows you to create containers running these Linux distributions:

• Red Hat Enterprise Linux 6.x (x86, x64)
• Red Hat Enterprise Linux 5.x (x86, x64)
• Fedora 17 (x86, x64)
• Fedora 16 (x86, x64)
• Fedora 18, 19, 20 (x86_64, i386)
• CentOS 6.x (x86, x64)
• CentOS 5.x (x86, x64)
• SUSE Linux Enterprise Server 11 with Service Pack 2 (x86, x64)
• openSUSE 12.1 (x86, x64)
• Debian GNU/Linux 6.0 (x86, x64)
• Ubuntu 12.10 (x86, x64)
• Ubuntu 12.04 (x86, x64)
• Ubuntu 11.10 (x86, x64)
• Ubuntu 10.04 (x86, x64)
• Ubuntu 13.10 (x86_64, i386)
• Debian 7.0 (x86_64, i386)

Parallels Hypervisor allows you to create virtual machines (VMs) running the following:

Windows:

• Windows Server 2012
• Windows Server 2012 R2
• Windows Server 2008 R2 with Service Pack 1 (x64)
• Windows Server 2003 R2 with Service Pack 2 (x86, x64)

Linux:

• Red Hat Enterprise Linux 6.x (x86, x64)
• Red Hat Enterprise Linux 5.x (x86, x64)
• Fedora 17 (x86, x64)
• Fedora 16 (x86, x64)
• CentOS 6.x (x86, x64)
• CentOS 5.x (x86, x64)
• SUSE Linux Enterprise Server 10 (x86, x64)
• openSUSE 12.2 (x86, x64)
• Debian GNU/Linux 6.0 (x86, x64)
• Ubuntu 12.10 (x86, x64)
• Ubuntu 11.10 (x86, x64)
• Ubuntu Server 12.04 (x86, x64)
• Ubuntu Server 10.04 (x86, x64)
• Ubuntu 13.10 x86_64, i386
• Fedora 18, 19, 20 x86_64, i386
• Debian 7.0 x86_64, i386

FreeBSD:

• FreeBSD 9 (x86, x64)
• FreeBSD 10 x86_64, i386

Parallels Cloud Storage

Meta Data Server

• Software: Parallels Cloud Server 6.0
• RAM: 2 GB minimum
• Disk space: 10 GB minimum
• Network: 1 or more Ethernet adapters (1 Gbit or faster)
• Network: a static IP address for each Ethernet adapter

Chunk Server

• Software: Parallels Cloud Server 6.0
• RAM: 1 GB minimum
• Disk space: any amount of available local disk space can be exported
• Network: 1 or more Ethernet adapters (1 Gbit or faster)
• Network: Static IP address for each Ethernet adapter

Red Hat Network Requirements

Supported Platforms and System Requirements

Hardware	Architecture	Operating System
IBM System z	s390 and s390x	Red Hat Enterprise Linux 4, 5
Intel / AMD	i386 and x86_64	Red Hat Enterprise Linux 4, 5
Red Hat Enterprise Linux 5 supported hardware	Red Hat Enterprise Linux 5 Hypervisor	Red Hat Enterprise Linux 4 as virtual guest, 5
Satellite Requirement: (embedded database) Pentium IV processor, 2.4 Ghz, 512K cache Pentium IV processor, 2.4 Ghz dual processor, 512K cache recommended System z IFL processor Disk space and storage:  3 GB storage for base installation of Red Hat Enterprise Linux AS 6 GB storage per channel in /var/satellite directory 12 GB storage for database repository in /rhnsat partition Separate partition for storing backups  Memory: 2 GB (minimum), 4 GB (recommended) Recommended configuration: 2+ IFLs on z9 or earlier, 1+ IFL on z10 or later 2 GB storage (memory) 512 MB swap on VDISK + 1 GB swap on ECKD DASD 1xMod9 ECKD DASD or >= 2 GB *multipathed* FCP SCSI LUN for OS install z/VM 5.4 or later [1] VSWITCH or Hipersocket LAN for high speed connections to guests [1] z/VM required for kickstart/provisioning of guests

Supported Managed Nodes

Operating System Version Architecture
Red Hat Enterprise Linux 2.1, 3, 4, 5, and 6 i386, x86_64, IBM Power, IBM System z (Mainframe)
Sun Solaris 8, 9, and 10 64-bit Sparc (sun4u & sun4m)
Sun Solaris 9, and 10 32-bit i386

* Note: Solaris sun4v client hardware support is planned for the next Satellite release.

AAA Authentication Authorization and Accounting

AAA Authentication Authorization and Accounting

In CCNA Routing and Switching level, we studied local authentication by setting passwords to move to privilege mode (enable password) or creating local user database for authenticating users. In Cisco network infrastructure device running IOS, by default authentication is by a line password (line console or line vty) and authorization by a level 15 enable password. Both line authentication and enable level 15 authorization are good if you have only a very small number of network infrastructure equipments.

Your network is growing and if you are are managing a large network environment, authentication using local device user database and authorization using enable level 15 authorization is not a scalable solution. This is the time to think about Cisco AAA solutions.

AAA stands for Authentication, Authorization and Accounting.

Authentication: Authentication is the process in which the identify of a device or a user is verified when they attempt to access a network resource and confirm that it is the real entity which it claims. Authentication typically uses userid/password combination for authenticating users. Other types of authentication are also available like biometric authentication or authentication using digital certificates. Authentication provides the answer for the questions "Who are you?" or "Are you the same person you are claiming?"

Authorization: Authorization is the process after authentication used for determining whether a user who try to access any device, data or execute a command has the permission to access that device, data or execute a command. Authorization provides the answer for the question "Are you allowed to do this task?"

Accounting: Accounting can be defined as tracking of data, access, usage, events or network resources. Accounting is logging, auditing, and monitoring of data, access, usage, events of network resources. Accounting provides the answer for the questions "What did you do?", "Who is responsible for this?"

AAA RADIUS and TACACS+, Difference between RADIUS and TACACS+

RADIUS (Remote Authentication Dial-in User Service) is all-vendor supported AAA protocol. RADIUS was first developed by Livingston Enterprises Inc in 1991, which later merged with Alcatel Lucent. RADIUS later became an Internet Engineering Task Force (IETF) standard. RADIUS uses UDP ports 1812 Authentication and 1813 for Accounting.

TACACS+ is another AAA protocol. TACACS+ was developed by Cisco from TACACS (developed in 1984 for the U.S Department of Defense). TACACS+ uses TCP and provides separate authentication, authorization and accountingservices. Port used by TACACS+ is TCP 49.

The RADIUS or TACACS+ protocol can provide a central authentication protocol to authenticate users, routers, switches or servers. If your network is growing and if you are are managing a large network environment, authentication using local device user database and authorization using privilege level 15 authorization is not a scalable solution. AAA (Authentication Authorization Accounting) protocol like RADIUS or TACACS+ can provide a better centralized authentication solution in a big enterprise network.

The main differences between RADIUS and TACACS+ can be tabulated as below.

RADIUS	TACACS+
RADIUS uses UDP as Transport Layer Protocol	TACACS+ uses TCP as Transport Layer Protocol
RADIUS uses UDP ports 1812 and 1813	TACACS+ uses TCP port 49
RADIUS encrypts passwords only	TACACS+ encrypts the entire communication
RADIUS combines authentication and Authorization	TACACS+ treats Authentication, Authorization, and Accountability differently
RADIUS is an open protocol supported by multiple vendors	TACACS+ is Cisco proprietary protocol
RADIUS is a light-weight protocol consuming less resources	TACACS+ is a heavy-weight protocol consuming more resources