FACULTY OF INFORMATION AND COMMUNICATION

TECHNOLOGY

DITS3633
(IMPLEMENTING AND ADMINISTERING ACTIVE DIRECTORY)

FINAL PROJECT

GROUP MEMBER
NAME NO MATRIC
NOR MUHAMMAD FIRDAUS BIN SHAMSUDDIN D031510012
NOOR NABILA BT NORDIN D031510088
UMMI NAMIRAH BT HASHIM D031510292
NUR AZRA AZIZA BT MOHD NOR D031510185

REVIEW BY
PUAN HANIZA BINTI NAHAR
1.0 Introduction
In this project we use 4 computers it includes 1 domain, domain controller 2 and
2 pc customers .we created a domain name project.com on DC1 and existing
domain on DC2.at DC1 we created 3 Organizational Units (OU) which Kelantan ,
Kuala Lumpur and Melaka. In each OU we create 3 account user.

 ONE (1) domain with TWO (2) domain controllers

Dc1 as a domain

Dc2 join domain

 Join domain

Domain controller

2.0 Design Analysis

3.0 Configuration

 THREE (3) Organizational Units (OU) & at least THREE (3) domain user account in each
OU

Create ou

Melaka ou user
 Kelantan ou user

Kuala Lumpur ou user

 THREE (3) Groups

 THREE (3) Group Policies. The advance features such as Block Inheritance and No
Override (Enforced) also need to be applied in this project. Several scenarios must be
created in order to research the difference.

Block inheritance
Enforced
Enforce password

Update gpo
 Roaming profiles
 AD replication between the two domain controllers

Expand Sites and then expand the site name that contains the server that
you want to force replication. Expand the server name and click on NTDS
Settings. in the right-hand pane, right-click on the server you want to
replicate with the other servers in the site and choose Replicate Now.and
than replication done
 AD-Integrated DNS

Go to domain properties
Click on ad integrated
 AD Integrated succeed

 Enable Roaming Profile and store the user profiles at

\\servername\profiles\username

Enable roaming profile

Create a new folder

File sharing
 Create for every user (not administrator account!) a home
folder stored at \\servername\homes\username and ensure
that that is mapped to Z: at each logon automatically
Homeprofile ummi

Homeprofile azra
 Homeprofile daus
 limit the storage space to every home folder to
15MB
 prevent any .cmd or .bat files to be stored on the home
folder
 redirect the “Favorites” and the “My Documents”
folder to the users home folder
 Create departments share folders on \\hostsrv1\workers and
\\hostsrv1\managers and map the respective folder to Y: at
logon depending on the security group (Workers;
Managers) the user is in. Users should not be allowed to
access other department share.
Create a new folder name hostsrv1

Workers and Manager

Map network Drive
Sharing path worker

Sharing worker
 Sharing manager

Success sharing from client

 Test client sharing folder success

 Configure the IP addresses of all your PCs based on Private

IP address
Ip address dc1

Ip address dc 2
 Ip address client 1

Ip address CLIENT 2
4.0 Verification and validation

Test home folder

5.0 Conclusion

As we doing this project, there are several knowledge that we gain such as
creating organizational unit, group policy, roaming profiles and AD replication
between two domain controller. Through this project also, we gain some value in
building great teamwork to produce such a great product.

6.0 References
 http://ulearn.utem.edu.my/sem2201617/mod/url/view.php?id=36595
 https://www.youtube.com/watch?v=b253bUxZ270
 https://www.youtube.com/results?search_query=roaming+profile+in+wi
ndows+server+2008