<p/> <BODY bgcolor="#ffffff" text="#000000"> <a class="libraryIndexlink" href="index.aspx?pid=31159&BookID=23931&PageIndex=60&Language=3">[Previous]</A> <a class="libraryIndexlink" href="index.aspx?pid=31159&BookID=23931&PageIndex=62&Language=3">[Next]</A><p/><A NAME="376"><H1>Lesson 1: Implementing Local Groups</H1></A> <p/>In this lesson, you will learn what groups are and how you can use them to simplify user account administration.<p/><blockquote> <b>After this lesson, you will be able to</b> <ul> <p/><li>Describe the key features of groups.</li><p/><li>Describe local groups.</li><p/><li>Create and delete local groups.</li><p/><li>Add members to local groups.</li><p/><li>Remove members from local groups.</li><p/></ul> <p/><b>Estimated lesson time: 30 minutes</b><p/></blockquote><p/><A NAME="377"><H2>Understanding Groups</H2></A> <p/>A <i>group</i> is a collection of user accounts. Groups simplify administration by allowing you to assign permissions and rights to a group of users rather than having to assign permissions to each individual user account (see Figure 11.1).<p/><A HREF="'F11tk01x')"> <img src="/image/library/english/10219_F11tk01.JPG" width=404 height=305 border=0 > </A> <p/><!-- caption --><b>Figure 11.1</b> <i>Groups simplify administration</i><!-- /caption --> <p/><i>Permissions</i> control what users can do with a resource, such as a folder, file, or printer. When you assign permissions, you give users the capability to gain access to a resource, and you define the type of access that they have. For example, if several users need to read the same file, you would add their user accounts to a group. Then you would give the group permission to read the file. Rights allow users to perform system tasks, such as changing the time on a computer, backing up or restoring files, or logging on locally.<p/>When adding members to a group, remember that users can be members of multiple groups. A group contains a list of members, with references to the actual user account. Therefore, users can be members of more than one group.<p/><A NAME="378"><H2>Understanding Local Groups</H2></A> <p/>A local group is a collection of user accounts on a computer. Use local groups to assign permissions to resources residing on the computer on which the local group is created. Windows 2000 creates local groups in the local security database.<p/><A NAME="379"><H2>Preparing to Use Local Groups</H2></A> <p/>Guidelines for using local groups include the following:<p/><ul> <p/><li>Use local groups on computers that don't belong to a domain.</li><p/>You can use local groups only on the computer where you create the local groups. Although local groups are available on member servers and domain computers running Windows 2000 Professional, don't use local groups on computers that are part of a domain. Using local groups on domain computers prevents you from centralizing group administration. Local groups don't appear in directory services based on Active Directory technology, and you have to administer local groups separately for each computer.<p/><li>You can assign permissions to local groups for access to only the resources on the computer where you create the local groups.</li><p/></ul> <p/><blockquote><b>NOTE</b><HR> You can't create local groups on domain controllers because domain controllers cannot have a security database that is independent of the database in Active Directory directory services. </blockquote><p/>Membership rules for local groups include the following:<p/><ul> <p/><li>Local groups can contain local user accounts from the computer where you create the local groups.</li><p/><li>Local groups can't be a member of any other group.</li><p/></ul> <A NAME="380"><H2>Creating Local Groups</H2></A> <p/>Use the Computer Management snap-in to create local groups, as shown in Figure 11.2. You create local groups in the Groups folder.<p/><A HREF="'F11TK02x')"> <img src="/image/library/english/10219_F11TK02.JPG" width=404 height=318 border=0 > </A> <p/><!-- caption --><b>Figure 11.2</b> <i>The Computer Management snap-in</i><!-- /caption --> <p/>You can create a local group by doing the following:<p/><ol> <p/><li>In Computer Management, expand Local Users And Groups and click the Groups folder.</li><p/><li>Right-click Groups, and then click New Group.</li><p/>Table 11.1 describes the options presented in the New Group dialog box.<p/><li>Enter the appropriate information and then click Create.</li><p/></ol> <p/><b>Table 11.1</b> <i>New Local Group Options</i><p/><table valign="top" cellpadding="5" width="95%"> <tr> <th>Option</th> <th>Description</th> </tr> <tr> <td valign="top">Group Name</td> <td valign="top">A unique name for the local group. This is the only required entry. Use any character except for the backslash (\). The name can contain up to 256 characters; however, very long names might not display in some windows.</td> </tr> <tr> <td valign="top">Description</td> <td valign="top">A description of the group.</td> </tr> <tr> <td valign="top">Add</td> <td valign="top">Adds a user to the list of members.</td> </tr> <tr> <td valign="top">Remove</td> <td valign="top">Removes a user from the list of members.</td> </tr> <tr> <td valign="top">Create</td> <td valign="top">Creates the group.</td> </tr> <tr> <td valign="top">Close</td> <td valign="top">Closes the New Group dialog box.</td> </tr> </table> <p/>You can add members to a local group when you create the group by using the Add button, but you can also add users to a local group after you create it.<p/><A NAME="381"><H2>Deleting Local Groups</H2></A> <p/>Use the Computer Management snap-in to delete local groups. Each group that you create has a unique, nonreusable identifier. Windows 2000 uses this value to identify the group and the permissions that are assigned to it. When you delete a group, Windows 2000 doesn't use the identifier again, even if you create a new group with the same name as the group that you deleted. Therefore, you cannot restore access to resources by recreating the group.<p/>When you delete a group, you delete only the group and remove the permissions and rights that are associated with it. Deleting a group doesn't delete the user accounts that are members of the group. To delete a group, right-click the group, and then click Delete.<p/><A NAME="382"><H2>Adding Members to a Group</H2></A> <p/>To add members to a group that has already been created, start the Computer Management snap-in and expand Local Users And Groups. Click Groups, and then in the details pane, right-click the appropriate group and click Properties. In the Properties dialog box, click Add. The Select Users Or Groups dialog box appears, as shown in Figure 11.3.<p/><A HREF="'F11TK03x')"> <img src="/image/library/english/10219_F11TK03.JPG" width=404 height=313 border=0 > </A> <p/><!-- caption --><b>Figure 11.3</b> <i>The Select Users Or Groups dialog box</i><!-- /caption --> <p/>In the Look In list, ensure that the computer on which you created the group is selected. In the Name box, select the user account that you want to add to the group, and then click Add.<p/><blockquote><b>NOTE</b><HR> If you want to add multiple user accounts, you can repeat the process of selecting them one at a time and then click Add, or you can hold down the Shift or Ctrl key to select multiple user accounts at once. The Shift key allows you to select a consecutive range of accounts, while the Ctrl key allows you to pick some accounts and skip others. Click Add once you have selected all the accounts that you want to add. </blockquote><p/>Clicking Add lists the accounts you have selected. Once you review the accounts to make sure that they are the accounts you want to add to the group, click OK to add the members.<p/><blockquote><b>NOTE</b><HR> You can also add a user account to a group by using the Member Of tab in the Properties dialog box for that user account. Use this method to quickly add the same user account to multiple groups. </blockquote><p/><img src="/image/library/english/10219_practic.JPG" width=92 height=74 border="0"> <p/><A NAME="383"><H2>Practice: Creating and Managing Local Groups</H2></A> <p/>In this practice, you will create two local groups. You will add members to the local groups when you create them, and then add an additional member to one of the groups after they have been created. You delete a member from one of the groups, and then you delete one of the local groups that you created.<p/><blockquote><b>NOTE</b><HR> This practice requires user accounts that you create when you complete the practice in <a class="libraryIndexlink" href="index.aspx?pid=31159&BookID=23931&PageIndex=54&Language=3">Chapter 10</A>, &quot;Setting Up and Managing User Accounts.&quot; If you didn't set up the user accounts as described in <a class="libraryIndexlink" href="index.aspx?pid=31159&BookID=23931&PageIndex=54&Language=3">Chapter 10</A>, go back and do the practice in that chapter to set up the user accounts you will work with in this practice. </blockquote><p/><A NAME="384"><H3>Exercise 1: Creating Local Groups and Adding and Removing Members</H3></A> <p/>In this exercise, you will create two local groups, Sales and Testing. You add members to both groups when you create them. You add a member to an existing group by adding an additional member to the Testing group, and then you remove a member from the Testing group.<p/><li><b>To create a local group</b></li><p/><ol> <p/><li>Log on to your computer as Administrator.</li><p/><li>Click the Start button, point to Programs, point to Administrative Tools, and then click Computer Management.</li><p/><li>Expand Local Users And Groups, and then click Groups.</li><p/>In the details pane, Computer Management displays a list of current and built-in local groups.<p/><li>To create a new group, right-click Groups, and then click New Group.</li><p/>Computer Management displays the New Group dialog box.<p/><li>Type <b>Sales</b> in the Group Name box, and type <b>Access to Customer Files</b> in the Description box.</li><p/><li>Click Add.</li><p/>The Select Users Or Groups dialog box appears.<p/><li>Hold the Ctrl key down and select User1 and User3.</li><p/><li>Click Add.</li><p/>PRO1\User1 and PRO1\User3 should be listed in the box below the Add button.<p/></ol> <p/><blockquote><b>NOTE</b><HR> If you didn't name your computer PRO1, then PRO1 will be replaced by the name of your computer. </blockquote><p/><ol start=9> <p/><li>Click OK.</li><p/>In the New Group dialog box, notice that User1 and User3 are listed in the Members box.<p/><li>Click Create.</li><p/>Windows 2000 creates the group and adds it to the list of users and groups. Note the New Group dialog box is still open and might block your view of the list of users and groups.<p/><li>Repeat steps 5-10 to create a group named Testing. Type <b>Access to Troubleshooting Tips File</b> in the Description box, and make User2 and User4 members of the Testing group.</li><p/><li>When you have created both the Sales and the Testing groups, click Close to close the New Group dialog box.</li><p/></ol> <p/>Notice that the Sales and Testing groups are listed in the details pane.<p/><li><b>To add members to and remove members from a local group</b></li><p/><ol> <p/><li>In the details pane of Computer Management, double-click Testing.</li><p/>The Testing Properties dialog box displays the properties of the group. Notice that User2 and User4 are listed in the Members box.<p/><li>To add a member to the group, click Add.</li><p/>The Select Users Or Groups dialog box appears.<p/><li>In the Name box, select User3, click Add, and then click OK.</li><p/>The Testing Properties dialog box displays User2, User3, and User4 listed in the Members box.<p/><li>Select User4 and then click Remove.</li><p/>Notice that User4 is no longer listed in the Members box. User4 still exists as a local user account, but it is no longer a member of the Testing group.<p/><li>Click OK.</li><p/></ol> <A NAME="385"><H3>Exercise 2: Deleting a Local Group</H3></A> <p/>In this exercise, you will delete the Testing local group.<p/><li><b>To delete a local group</b></li><p/><ol> <p/><li>Right-click Testing in the Computer Management details pane, and then click Delete.</li><p/>A Local Users And Groups dialog box appears, asking whether you are sure that you want to delete the group.<p/><li>Click Yes.</li><p/>Notice that Testing is no longer listed in the Computer Management window. The members of the group were not deleted. User2 and User3 are still local user accounts on PRO1.<p/><li>Close Computer Management.</li><p/></ol> <A NAME="386"><H2>Lesson Summary</H2></A> <p/>In this lesson, you learned that a group is a collection of user accounts. Groups simplify administration by allowing you to assign permissions and rights to a group of users rather than having to assign permissions to each individual user account.<p/>When naming a group, you make the name intuitive. You also learned that you use the Computer Management snap-in to create groups, to add members to a group, to remove members from a group, and to delete groups. In the practice portion of this lesson, you created two local groups and added members to the groups as you created the local groups. You then added an additional member to one of the local groups. You deleted a member from one of the local groups, and then you deleted one of the local groups.<p/> - Microsoft Windows 1002000 Professional E2 [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Microsoft Windows 1002000 Professional E2 [Electronic resources] - نسخه متنی

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

  • Sitemap

    Cover

    LOC Page

    About This Book

    Chapter 1 -- Introduction to Windows 2000

    Lesson 1: Overview of the Windows 2000 Platform

    Lesson 2: Windows 2000 Professional

    Lesson 3: Windows 2000 Workgroups and Domains

    Lesson 4: Logging On to Windows 2000

    Lesson 5: The Windows Security Dialog Box

    Review

    Chapter 2 -- Installing Windows 2000 Professional

    Lesson 1: Getting Started

    Lesson 2: Installing Windows 2000 from a CD-ROM

    Lesson 3: Installing Windows 2000 over the Network

    Lesson 4: Troubleshooting Windows 2000 Setup

    Review

    Chapter 3 -- Using Microsoft Management Console and Task Scheduler

    Lesson 1: Introducing the Microsoft Management Console

    Lesson 2: Using Consoles

    Lesson 3: Using Task Scheduler

    Review

    Chapter 4 -- Using Windows Control Panel

    Lesson 1: Configuring Hardware Settings

    Lesson 2: Configuring the Display

    Lesson 3: Configuring Operating System Settings

    Lesson 4: Installing Hardware Automatically

    Lesson 5: Installing Hardware Manually

    Lesson 6: Configuring and Troubleshooting the Desktop Environment

    Review

    Chapter 5 -- Using the Registry

    Lesson 1: Understanding the Registry

    Lesson 2: Using Registry Editor

    Review

    Chapter 6 -- Managing Disks

    Lesson 1: Introduction to Disk Management

    Lesson 2: Common Disk Management Tasks

    Review

    Chapter 7 -- Installing and Configuring Network Protocols

    Lesson 1: TCP/IP

    Lesson 2: NWLink

    Lesson 3: Other Protocols Supported by Windows 2000

    Lesson 4: Network Bindings

    Review

    Chapter 8 -- Using the DNS Service

    Lesson 1: Understanding DNS

    Lesson 2: Understanding Name Resolution

    Lesson 3: Configuring a DNS Client

    Review

    Chapter 9 -- Introducing Active Directory Directory Services

    Lesson 1: Understanding Active Directory Directory Services

    Lesson 2: Active Directory Structure and Replication

    Lesson 3: Understanding Active Directory Concepts

    Review

    Chapter 10 -- Setting Up and Managing User Accounts

    Lesson 1: Understanding User Accounts

    Lesson 2: Planning New User Accounts

    Lesson 3: Creating User Accounts

    Lesson 4: Setting Properties for User Accounts

    Review

    Chapter 11 -- Setting Up and Managing Groups

    Lesson 1: Implementing Local Groups

    Lesson 2: Implementing Built-In Local Groups

    Review

    Chapter 12 -- Setting Up and Configuring Network Printers

    Lesson 1: Introducing Windows 2000 Printing

    Lesson 2: Setting Up Network Printers

    Lesson 3: Connecting to Network Printers

    Lesson 4: Configuring Network Printers

    Lesson 5: Troubleshooting Network Printers

    Review

    Chapter 13 -- Administering Network Printers

    Lesson 1: Understanding Printer Administration

    Lesson 2: Managing Printers

    Lesson 3: Managing Documents

    Lesson 4: Administering Printers Using a Web Browser

    Lesson 5: Troubleshooting Common Printing Problems

    Review

    Chapter 14 -- Securing Resouces with NTFS Permissions

    Lesson 1: Understanding NTFS Permissions

    Lesson 2: Applying NTFS Permissions

    Lesson 3: Assigning NTFS Permissions

    Lesson 4: Assigning Special Access Permissions

    Lesson 5: Copying and Moving Files and Folders

    Lesson 6: Solving Permissions Problems

    Review

    Chapter 15 -- Administering Shared Folders

    Lesson 1: Understanding Shared Folders

    Lesson 2: Planning Shared Folders

    Lesson 3: Sharing Folders

    Lesson 4: Combining Shared Folder Permissions and NTFS Permissions

    Review

    Chapter 16 -- Auditing Resources and Events

    Lesson 1: Understanding Auditing

    Lesson 2: Planning an Audit Policy

    Lesson 3: Implementing an Audit Policy

    Lesson 4: Using Event Viewer

    Review

    Chapter 17 -- Configuring Group Policy and Local Security Policy

    Lesson 1: Configuring Account Policies

    Lesson 2: Configuring Security Options

    Review

    Chapter 18 -- Managing Data Storage

    Lesson 1: Managing NTFS Compression

    Lesson 2: Managing Disk Quotas

    Lesson 3: Increasing Security with EFS

    Lesson 4: Using Disk Defragmenter

    Review

    Chapter 19 -- Backing Up and Restoring Data

    Lesson 1: Understanding How to Back Up and Restore Data

    Lesson 2: Backing Up Data

    Lesson 3: Restoring Data

    Lesson 4: Changing Windows Default Backup Options

    Review

    Chapter 20 -- Monitoring Access to Network Resources

    Lesson 1: Monitoring Network Resources

    Lesson 2: Monitoring Access to Shared Folders

    Lesson 3: Sharing a Folder Using the Shared Folders Snap-In

    Lesson 4: Monitoring Network Users

    Review

    Chapter 21 -- Configuring Remote Access

    Lesson 1: Understanding the New Authentication Protocols in Windows 2000

    Lesson 2: Configuring Inbound Connections

    Lesson 3: Configuring Outbound Connections

    Review

    Chapter 22 - The Windows 2000 Boot Process

    Lesson 1: The Boot Process

    Lesson 2: Control Sets in the Registry

    Lesson 3: Advanced Boot Options

    Lesson 4: The Boot.ini File

    Lesson 5: Using the Recovery Console

    Review

    Chapter 23 -- Deploying Windows 2000

    Lesson 1: Automating Installations

    Lesson 2: Using Disk Duplication to Deploy Windows 2000

    Lesson 3: Performing Remote Installations

    Lesson 4: Upgrading Previous Versions of Windows to Windows 2000

    Lesson 5: Installing Service Packs

    Review

    Chapter 24 -- Configuring Windows 2000 for Mobile Computers

    Lesson 1: Using Offline Folders and Files

    Lesson 2: Configuring Power Options

    Review

    Chapter 25 -- Implementing, Managing, and Troubleshooting Hardware Devices and Drivers

    Lesson 1: Using Device Manager and System Information

    Lesson 2: Configuring, Monitoring, and Troubleshooting Driver Signing

    Lesson 3: Configuring Computers with Multiple Processors and Monitoring System Performance

    Lesson 4: Installing, Managing, and Troubleshooting Devices

    Review

    Appendix A -- Questions and Answers

    Appendix B -- Creating Setup Boot Disks

    Appendix C -- Understanding the DHCP Service

    Appendix D -- Managing Backup Tapes

    Glossary

    A

    B

    C

    D

    E

    F

    G

    H

    I

    J

    K

    L

    M

    N

    O

    P

    R

    S

    T

    U

    V

    W

    Z

    About This Electronic Book

    About Microsoft Press

    • توضیحات
    افزودن یادداشت جدید






    [Previous] [Next]

    Lesson 1: Implementing Local Groups


    In this lesson, you will learn what groups are and how you can use them to simplify user account administration.


    After this lesson, you will be able to

    • Describe the key features of groups.

    • Describe local groups.

    • Create and delete local groups.

    • Add members to local groups.

    • Remove members from local groups.


    Estimated lesson time: 30 minutes

    Understanding Groups


    A group is a collection of user accounts. Groups simplify administration by allowing you to assign permissions and rights to a group of users rather than having to assign permissions to each individual user account (see Figure 11.1).


    Figure 11.1 Groups simplify administration

    Permissions control what users can do with a resource, such as a folder, file, or printer. When you assign permissions, you give users the capability to gain access to a resource, and you define the type of access that they have. For example, if several users need to read the same file, you would add their user accounts to a group. Then you would give the group permission to read the file. Rights allow users to perform system tasks, such as changing the time on a computer, backing up or restoring files, or logging on locally.

    When adding members to a group, remember that users can be members of multiple groups. A group contains a list of members, with references to the actual user account. Therefore, users can be members of more than one group.

    Understanding Local Groups


    A local group is a collection of user accounts on a computer. Use local groups to assign permissions to resources residing on the computer on which the local group is created. Windows 2000 creates local groups in the local security database.

    Preparing to Use Local Groups


    Guidelines for using local groups include the following:


    • Use local groups on computers that don't belong to a domain.

      • You can use local groups only on the computer where you create the local groups. Although local groups are available on member servers and domain computers running Windows 2000 Professional, don't use local groups on computers that are part of a domain. Using local groups on domain computers prevents you from centralizing group administration. Local groups don't
      appear in directory services based on Active Directory technology, and you have to administer local groups separately for each computer.

    • You can assign permissions to local groups for access to only the resources on the computer where you create the local groups.


    NOTE

    You can't create local groups on domain controllers because domain controllers cannot have a security database that is independent of the database in Active Directory directory services.

    Membership rules for local groups include the following:


    • Local groups can contain local user accounts from the computer where you create the local groups.

    • Local groups can't be a member of any other group.


    Creating Local Groups


    Use the Computer Management snap-in to create local groups, as shown in Figure 11.2. You create local groups in the Groups folder.


    Figure 11.2 The Computer Management snap-in

    You can create a local group by doing the following:


    1. In Computer Management, expand Local Users And Groups and click the Groups folder.

    2. Right-click Groups, and then click New Group.

      3. Table 11.1 describes the options presented in the New Group dialog box.

    3. Enter the appropriate information and then click Create.


    Table 11.1 New Local Group Options






























    OptionDescription
    Group NameA unique name for the local group. This is the only required entry. Use any character except for the backslash (\). The name can contain up to 256 characters; however, very long names might not display in some windows.
    DescriptionA description of the group.
    AddAdds a user to the list of members.
    RemoveRemoves a user from the list of members.
    CreateCreates the group.
    CloseCloses the New Group dialog box.

    You can add members to a local group when you create the group by using the Add button, but you can also add users to a local group after you create it.

    Deleting Local Groups


    Use the Computer Management snap-in to delete local groups. Each group that you create has a unique, nonreusable identifier. Windows 2000 uses this value to identify the group and the permissions that are assigned to it. When you delete a group, Windows 2000 doesn't use the identifier again, even if you create a new group with the same name as the group that you deleted. Therefore, you cannot restore access to resources by recreating the group.

    When you delete a group, you delete only the group and remove the permissions and rights that are associated with it. Deleting a group doesn't delete the user accounts that are members of the group. To delete a group, right-click the group, and then click Delete.

    Adding Members to a Group


    To add members to a group that has already been created, start the Computer Management snap-in and expand Local Users And Groups. Click Groups, and then in the details pane, right-click the appropriate group and click Properties. In the Properties dialog box, click Add. The Select Users Or Groups dialog box appears, as shown in Figure 11.3.


    Figure 11.3 The Select Users Or Groups dialog box

    In the Look In list, ensure that the computer on which you created the group is selected. In the Name box, select the user account that you want to add to the group, and then click Add.

    NOTE

    If you want to add multiple user accounts, you can repeat the process of selecting them one at a time and then click Add, or you can hold down the Shift or Ctrl key to select multiple user accounts at once. The Shift key allows you to select a consecutive range of accounts, while the Ctrl key allows you to pick some accounts and skip others. Click Add once you have selected all the accounts that you want to add.

    Clicking Add lists the accounts you have selected. Once you review the accounts to make sure that they are the accounts you want to add to the group, click OK to add the members.

    NOTE

    You can also add a user account to a group by using the Member Of tab in the Properties dialog box for that user account. Use this method to quickly add the same user account to multiple groups.


    Practice: Creating and Managing Local Groups


    In this practice, you will create two local groups. You will add members to the local groups when you create them, and then add an additional member to one of the groups after they have been created. You delete a member from one of the groups, and then you delete one of the local groups that you created.

    NOTE

    This practice requires user accounts that you create when you complete the practice in Chapter 10, "Setting Up and Managing User Accounts." If you didn't set up the user accounts as described in Chapter 10, go back and do the practice in that chapter to set up the user accounts you will work with in this practice.

    Exercise 1: Creating Local Groups and Adding and Removing Members


    In this exercise, you will create two local groups, Sales and Testing. You add members to both groups when you create them. You add a member to an existing group by adding an additional member to the Testing group, and then you remove a member from the Testing group.

  • To create a local group


    1. Log on to your computer as Administrator.

    2. Click the Start button, point to Programs, point to Administrative Tools, and then click Computer Management.

    3. Expand Local Users And Groups, and then click Groups.

      4. In the details pane, Computer Management displays a list of current and built-in local groups.

    4. To create a new group, right-click Groups, and then click New Group.

      5. Computer Management displays the New Group dialog box.

    5. Type Sales in the Group Name box, and type Access to Customer Files in the Description box.

    6. Click Add.

      7. The Select Users Or Groups dialog box appears.

    7. Hold the Ctrl key down and select User1 and User3.

    8. Click Add.

      9. PRO1\User1 and PRO1\User3 should be listed in the box below the Add button.


    NOTE

    If you didn't name your computer PRO1, then PRO1 will be replaced by the name of your computer.


    1. Click OK.

      2. In the New Group dialog box, notice that User1 and User3 are listed in the Members box.

    2. Click Create.

      3. Windows 2000 creates the group and adds it to the list of users and groups. Note the New Group dialog box is still open and might block your view of the list of users and groups.

    3. Repeat steps 5-10 to create a group named Testing. Type Access to Troubleshooting Tips File in the Description box, and make User2 and User4 members of the Testing group.

    4. When you have created both the Sales and the Testing groups, click Close to close the New Group dialog box.


    Notice that the Sales and Testing groups are listed in the details pane.

  • To add members to and remove members from a local group


    1. In the details pane of Computer Management, double-click Testing.

      2. The Testing Properties dialog box displays the properties of the group. Notice that User2 and User4 are listed in the Members box.

    2. To add a member to the group, click Add.

      3. The Select Users Or Groups dialog box appears.

    3. In the Name box, select User3, click Add, and then click OK.

      4. The Testing Properties dialog box displays User2, User3, and User4 listed in the Members box.

    4. Select User4 and then click Remove.

      5. Notice that User4 is no longer listed in the Members box. User4 still exists as a local user account, but it is no longer a member of the Testing group.

    5. Click OK.


    Exercise 2: Deleting a Local Group


    In this exercise, you will delete the Testing local group.

  • To delete a local group


    1. Right-click Testing in the Computer Management details pane, and then click Delete.

      2. A Local Users And Groups dialog box appears, asking whether you are sure that you want to delete the group.

    2. Click Yes.

      3. Notice that Testing is no longer listed in the Computer Management window. The members of the group were not deleted. User2 and User3 are still local user accounts on PRO1.

    3. Close Computer Management.


    Lesson Summary


    In this lesson, you learned that a group is a collection of user accounts. Groups simplify administration by allowing you to assign permissions and rights to a group of users rather than having to assign permissions to each individual user account.

    When naming a group, you make the name intuitive. You also learned that you use the Computer Management snap-in to create groups, to add members to a group, to remove members from a group, and to delete groups. In the practice portion of this lesson, you created two local groups and added members to the groups as you created the local groups. You then added an additional member to one of the local groups. You deleted a member from one of the local groups, and then you deleted one of the local groups.

    / 156