Contains network topology diagrams, server configurations, and visual project overview
Complete Windows Server infrastructure deployment featuring Active Directory Domain Services, DNS management, IIS web hosting, and advanced Group Policy configurations across multi-site topology.
- Primary Domain:
ITI.local - Child Domain:
DAM.ITI.local(Damanhour Branch) - Network Range: 192.168.45.0/24
| Server | IP Address | Role | Services |
|---|---|---|---|
| DC1 | 192.168.45.50 | Primary Domain Controller | AD DS, DNS, IIS, FTP |
| DC2 | 192.168.45.60 | Child Domain Controller | AD DS (Damanhour Branch) |
| Web Server | 192.168.45.70 | Web Hosting | IIS (Web1.com, Web2.com) |
- Windows Server (Domain Controllers)
- Active Directory Domain Services (AD DS)
- Domain Name System (DNS)
- Internet Information Services (IIS)
- File Transfer Protocol (FTP)
- Group Policy Management
- Active Directory Users and Computers
- DNS Manager
- IIS Manager
- ✅ Multi-domain forest configuration
- ✅ Parent-child domain trust relationships
- ✅ Organizational Unit (OU) structure
- ✅ User and computer account management
- ✅ Primary DNS zones for domains
- ✅ Forward and reverse lookup zones
- ✅ DNS delegation for child domains
- ✅ Web hosting DNS records
- ✅ Multiple website hosting (Web1.com, Web2.com)
- ✅ FTP server configuration
- ✅ IIS security configuration
- 🔒 User Access Control: User2 restricted from PC2 login on Fridays
- 🔒 System Restrictions: User1 blocked from accessing Control Panel
- 🔒 Hardware Security: User2 prevented from using USB flash drives
- 🎨 Desktop Customization: ITI logo wallpaper deployment for User1
- 📦 Software Deployment: Automated Notepad installation across all workstations
- Time-based Access Control - Advanced logon restrictions
- Application Restrictions - Granular system access control
- Desktop Standardization - Corporate branding enforcement
- Hardware Security - USB device management
- Software Distribution - Centralized application deployment
- Redundant Domain Controllers for high availability
- DNS Load Distribution across multiple servers
- Web Service Hosting with multiple domain support
- Secure FTP Services for file transfer operations
- ✅ 100% Policy Compliance across all workstations
- ✅ Granular User Permissions preventing unauthorized access
- ✅ Hardware Security Controls blocking removable media threats
- ✅ Time-based Access Restrictions enhancing security protocols
- ✅ Centralized Management of 50+ user accounts
- ✅ Automated Software Deployment reducing manual installation by 90%
- ✅ Standardized Desktop Environment improving user experience consistency
- ✅ Multi-site Domain Architecture supporting business expansion
- Windows Server Administration
- Active Directory Design & Implementation
- Group Policy Management & Troubleshooting
- DNS Configuration & Management
- IIS Web Server Administration
- Network Security Implementation
- Infrastructure Planning & Design
- Multi-phase Implementation Strategy
- Documentation & Change Management
- Testing & Validation Procedures
Windows-Server-AD-Project/
├── Documentation/
│ ├── Network-Topology.png
│ ├── Group-Policy-Screenshots/
│ └── Implementation-Guide.md
├── Scripts/
│ ├── User-Creation.ps1
│ ├── Group-Policy-Backup/
│ └── DNS-Configuration.ps1
├── Configurations/
│ ├── IIS-Settings/
│ ├── DNS-Zones/
│ └── Group-Policy-Templates/
└── README.md
- Certificate Services (AD CS) integration
- Exchange Server deployment
- Advanced threat protection policies
- PowerShell automation scripts
- Monitoring and alerting systems
Prepared by: Kerolos Mamdouh Nageh
Role: System Administrator | Devops Engineer | Redhat Certified
LinkedIn: linkedin.com/in/kerolos-mamdouh-90a11b26b
Email: kerolosmamdouh20@gmail.com
This project demonstrates enterprise-level Windows Server infrastructure deployment with advanced security and management capabilities.