When doing the active directory lab I started with flashing a drive using rufus to make a windows server 2022 drive. I then did a fresh install on a pc. After setting up the pc I used server manager to configure Active Directory. Add roles and features -> then use the wizard to set up Active Directory and - Domain Services (AD DS). After setting up Active Directory (AD), I made the computer the Domain Controller which also makes that server the primary DNS. I then went into users and computers and made the four Organization Units (OU's) and the 4 Users and Groups. 

I began by flashing a thumb drive with Windows Server, followed by configuring Active Directory and Domain Services AD DS within the Server Manager. Once AD was set up, I prepared another PC by installing Windows 11 via a flash drive and assigning it the appropriate IP address. Next, I created an Organizational Unit OU within the server and added a user for the new PC. I used this OU to apply group policies to both computers and users within the unit. I then configured a user policy to restrict access to the Command Prompt and the graphing calculator because you cant have it….. Additionally, I applied a computer policy to display a custom message upon user login. 

The File Sharing Lab outlines the process of managing file sharing within an Active Directory AD structure for a company called Company Data, organized into departments such as ENG, IT, HR, and MRKT. Each department has its own computers, users, and groups. Key concepts include: File shares are network connections to shared folders, and SMB Server Message Block) is the protocol used for Windows file sharing. The main folder, Company Data, is shared with all departments, with Full Control permissions at the share level. NTFS permissions, which define access controls, are inherited from the toplevel folder C drive), but inheritance can be disabled for finer control at department levels. For file share management, permissions are configured by removing default access (like the "Everyone" group), adding department-specific permissions, and setting access at the NTFS Security tab and Advanced Sharing settings. The process includes setting up shared access, adjusting permissions, and managing inheritance to ensure each department has appropriate access to its specific files. 

Introduction ->  Social Engineering ->  Phishing (Best email practices) ->  Password Hygiene ->  Secure your surroundings.