I. Introduction of server system version

Windows server system: win2000 win2003 win2008 win2012 Linux server system: Redhat CentosCopy the code

Second, user management

1.1 User Overview

  • Each user has different operation rights after logging in to the system.
  • Each account has its own unique SID (security identifier)
  • User SID: S-1-5-21-426206823-2579496042-14852678-500
  • System SID: S-1-5-21-426206823-2579496042-14852678
- User UID:500- The UID of Windows system administrator is yes500- The UID of a common user is yes1000startCopy the code

Different accounts have different permissions. Assign permissions to different accounts, i.e. assign permissions to SID that does not use the account.

Check the sid value: whoami /user

  • Account password storage location: C: Windows \ System32 \config\SAM # brute force
  • On Windows, the maximum validity period of the default password is 42 days. 1.2 Built-in Accounts

Account for personal use:

Administrator ------ Administrator account guest -------Copy the code

The system account associated with the computer service component

system --------# System account == authority is supreme
local services ---------# local service account == permissions equal to ordinary user
network services ----------# Network service account == permissions equal to ordinary users
Copy the code

1.3 Configuration File

Each user has their own configuration file (home directory), which is automatically generated when the user logs in for the first time. The path is:

Win7 / Win2008 C :\ Users \ XP /win2003 C :\Documentsand Settings\
Copy the code

1.4 User Management Commands

Net user -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- to check the list of users net user name password -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- change password net user name password/add ----------------------- Create a new user. Net user User name /del-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- to delete a user net user username/active: yes/no -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- to activate or disable accounts practice: (Try to use the virtual machine, it may be different under the latest Windows 10)1, practice graphics and command line, user management (including creating, changing passwords, deleting users, logging in and verifying home directory generation, and permissions)2Make a batch script, can achieve interactive user creation!Copy the code

Group management

3.1 summary of group

Group functions: Simplifies permission granting

Permission assignment mode:

1) User – Group – Assign rights 2) User – Assign rights

3.2 Built-in Groups The rights of built-in groups are granted by the system by default

 1) administrators# Admin group
 2) guests# the guest group
 3) the users# common user group. Default users belong to this group
 4) network# Network configuration group
 5)print                    # print unit
 6) Remote Desktop# Remote desktop group
Copy the code

3.3 Group Management Commands

>  net localgroup                            View the group list> > net LocalGroup Group nameView the members of this group> > net localGroup Group name /addCreate a new group> > net localGroup Group name User name /addAdd a user to a groupNet localGroup Group name User name /del         # remove the user from the group> > net localGroup Group name /del                # delete groupPractice:1, practice graphics and command line, group management (create group, add group members, view group members, member out of the group, delete group)2, create,1Lisi, and upgrade lisi to administrator, and verify whether LISI successfully obtained administrator privileges!Copy the code

4. Service management

CMD ---- Enter services. MSC and press EnterCopy the code