IT tutorials
 
Windows
 

Windows Small Business Server 2011 : Creating Groups

- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019
2/27/2012 6:01:04 PM

1. Understanding Groups

Because Microsoft Windows Server 2008 R2 is the underlying operating system for Windows Small Business Server (SBS) 2011, all the built-in security groups integral to Windows Server 2008 R2 still exist. However, many of these groups are intended for much larger, multidomain networks, so the designers of SBS 2011 created a subset of organizational units to simplify administration.

In practice, a group is usually a collection of user, and sometimes computer, accounts. The point of groups is to allow the network administrator to assign rights and permissions to groups rather than to individual users. Groups can be customized and users added or removed in a single step.

SBS allows two group types: security and distribution. Most groups are security groups because they’re the only groups through which permissions can be assigned. Each security group is also assigned a group scope, which defines how permissions are assigned to the group’s members, and members of a security group must be securable objects in the SBS domain. Securable objects include users, groups, and computers. Contacts are not securable objects and can be added only to distribution groups, not to security groups.

User rights are assigned to security groups to establish what members of the group can or cannot do. Some rights are automatically assigned to some groups—for example, a user who is a member of the Remote Web Workplace Users group has the ability to connect using Remote Web Workplace.

Email distribution groups, on the other hand, are not security-enabled and can be used only with email applications to send email to sets of users and contacts.

REAL WORLD: Why Use Groups at All?

Groups are an effective way of simplifying administration. If you have just a few users, it’s possible to manage permissions for each user manually, though it’s additional work most administrators won’t welcome. And with SBS, it could prove to be positively onerous because SBS controls access to many features based on group membership. You can easily use SBS without changing any of the default groups or adding to them at all. Just use the built-in wizards to add users and you’ll end up with the correct permissions and rights.

The real strength of groups is that when you change the rights of the group, you change them for everyone in the group, without having to do anything else. This makes it easy to update the rights of users on your network without having to go in and change every single account.

For example, when you have a number of people who travel or telecommute, you don’t need to keep track of which users have the right to log on remotely if you add them all to the Virtual Private Network Users group. Changes to that group—granting access to a special share, for example—require only that you assign the right to the group, in just one step.

Email distribution groups don’t define rights for users, but they do make it easy to communicate to a defined group of entities. You can create an external email contact for a user and add that contact to an email distribution group to allow a remote user to receive emails at a different location without having to log on to the network, for example.


User rights are assigned to security groups to establish what members of the group can or cannot do.

Note:

Permissions and user rights are different creatures, though easily mistaken for one another. Permissions determine what resources members of a group can access. User rights determine what members of a group can or cannot do. 

2. Creating Groups

Creating new groups is exceedingly easy in Windows SBS 2011—so easy that you should think carefully before you overcomplicate your network with too many groups. Too many distribution groups is merely a nuisance, but too many security groups can have unforeseen consequences such as conflicting permissions that can keep people from getting access to the resources they need.

2.1. Setting Up a Distribution Group

To create a new distribution group, follow these steps:

  1. Open the Windows SBS Console and select Users And Groups.

  2. Click the Groups tab and then select Add A New Group in the Tasks pane. The Add A New Group Wizard launches. Read the Getting Started text and then click Next.

  3. In the Add A New Group dialog box, as shown in Figure 1, type your information in the Group Name and Description fields. Select Distribution Group in the Group Type box and then click Next.

    Figure 1. A new group needs a name and a description

  4. On the Create A Group E-Mail Address page, the group name will be automatically entered. You can change the email address for this group, although the default name—linked as it is to the group name—is probably the easiest to remember and use. In the E-Mail Delivery Options box, you can select the check box to allow people external to your organization to send mail to the address. Leave the check box cleared if you want the address to be completely internal. Click Next.

  5. Select the groups or individuals you want to include in this distribution group. When all members have been added to the Group Members list, click Add Group.

Note:

If you’re not ready to add members to the group yet, you can simply click Add Group. Even without members, the group will be created and added to the list of groups.

2.2. Creating a Security Group

The process of adding a security group is slightly more complicated than creating a distribution group, but it’s still simple. Use the following steps to create a new security group:

  1. Open the Windows SBS Console, and select Users And Groups.

  2. Click the Groups tab and then select Add A New Group in the Tasks pane. The Add A New Group Wizard launches. Read the Getting Started text and then click Next.

  3. Enter your information in the Group Name and Description fields. In the Group Type area, select Security Group. If you want to be able to send email to this group, select the Enable This Security Group To Receive E-mail check box, as shown in Figure 2. Click Next.

    Figure 2. Name and select the group type for a new security group

    Note:

    If your security group will not be receiving email as a group, the wizard will skip to the page described in step 5.

  4. On the Create A Group E-Mail Address page, the group name will be automatically entered. You can change the email address for this group, although the default name is probably the easiest to remember and use. In the E-Mail Delivery Options box, you can select the check box to allow people external to your organization to send mail to the address. Leave the check box cleared if you want the address to be completely internal. As shown in Figure 3, email-enabled security groups have the additional option of allowing messages to be archived on Exchange Public Folders. Click Next.

    Figure 3. Security groups that are email-enabled have the option of receiving email from people external to the organization and the option of archiving messages in Exchange Public Folders

  5. On the Select Group Members For page, select the groups or individuals you want to include in this security group. When all members have been added to the Group Members list, click Add Group.

Note:

If you’re not ready to add members to the group, just click Add Group. The group will be created, and you can return to it and add members at some future time.

The wizard will report that the group has been created. You can view the group in the SBS Console under Users And Groups by clicking the Groups tab.
 
Others
 
- Windows Server 2003 : Computer Accounts - Managing Computer Accounts & Troubleshooting Computer Accounts
- Windows Server 2003 : Computer Accounts - Joining a Computer to a Domain
- Windows Vista : Creating Basic Windows Images - Creating Unattended Answer Files
- Windows Vista : Creating Basic Windows Images - Building a Deployment Server
- Windows 7 : Installing a Local Printer
- Windows 7 : Installing and Configuring a Printer
- Windows Server 2008 R2 : Understand Active Directory Replication
- Windows Server 2008 R2 : Automate User and Group Management
- Windows XP : Applications and the Registry - Shared DLLs
- Windows XP : Practicing Safe Setups - Running Through a Pre-Installation Checklist
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
Technology FAQ
- Is possible to just to use a wireless router to extend wireless access to wireless access points?
- Ruby - Insert Struct to MySql
- how to find my Symantec pcAnywhere serial number
- About direct X / Open GL issue
- How to determine eclipse version?
- What SAN cert Exchange 2010 for UM, OA?
- How do I populate a SQL Express table from Excel file?
- code for express check out with Paypal.
- Problem with Templated User Control
- ShellExecute SW_HIDE
programming4us programming4us