However, some of these home networks will be domains, quite unimaginable years ago except in the geekiest of households. (I confess: we've had one for a few years.) First, what's the difference between a workgroup and a domain–based network? A workgroup is two or more computers networked together. A workgroup is often called a peer–to–peer network because the computers are all peers to one another. No one machine is in charge, and security and other settings have to be made on each individual computer. In a domain, on the other hand, the networked computers have a definite hierarchy in that computers are either servers or clients. Domains have a unified security policy set on the domain controllers (servers) and users on client machines are authenticated by a server when logging on. The usual rule of thumb is that workgroups are manageable up to about ten computers; after that a domain is recommended.
However, there are valid reasons for setting up a domain–based home network instead of a workgroup.
Top of page
Why Set Up a Domain at Home?
Let's say you have a high speed, always–on Internet connection and want all your computers behind a highly secure firewall. Windows XP does provide basic home–network security through its Internet Connection Firewall, but for a highly–configurable firewall and top–of–the–line Internet connection optimizer, you'll want Microsoft Internet Security and Acceleration (ISA) Server. ISA protects your network from hackers, improves Internet performance for clients on your network, and controls client access to the Internet. If you operate your own Web server, ISA lets you keep that server behind the firewall and insulated from the wide world of hackers. However, ISA Server installs only on a domain. As does Exchange Server, should you want to run your own mail server and use all the scheduling and information–sharing functions that Exchange offers.
Or perhaps you're studying for your MCSE exams and your boss won't let you experiment on the network at your place of employment. Set up a domain at home and use it as a test network. Or you're like us, irredeemably geeky and want a domain because you can.
Top of page
How It Works
Windows XP Professional is the ideal client for your domain and operates slightly differently there than it does as a stand–alone or workgroup machine. Because a domain is a much more secure environment, Fast User Switching is disabled. When Windows XP Pro is on a domain, each user must be authenticated by the domain controller (a computer running Windows 2000 Server). User accounts are set up on the domain controller and all configuration is centralized. When Windows XP Professional is not on a domain, it has a somewhat friendlier look. For example, to add a new user, you simply open Control Panel and select User Accounts. Then you're guided through the two steps needed to create the account.
On a domain, however, new users are added on the domain controller. Several screens are required to add a user, though the user account is much more configurable.
Similarly, on a non–domain Windows XP Professional installation, accounts may or may not have passwords, depending on your choices. But on a domain, every user must have a password and every user's log on must be authenticated by a domain controller. So, as you can see, organizing your computers onto a domain can offer many benefits, particularly in the area of security. That's the good news. The bad news is that running a domain requires more administration and more attention to detail. If you don't need a high degree of security for the reasons mentioned, you can get all the other benefits of Windows XP Professional in a workgroup and skip the additional work inherent in a domain.
Top of page
Creating a Domain
Setting up a basic client/server domain isn't all that difficult. You'll need a network interface card (NIC) for each computer and cabling (or wireless hardware) to connect the machines. Install Microsoft Windows 2000 Server on one computer. Use the Configure Your Server Wizard to make the server a domain controller. Next, install Windows XP Professional on the other computers. To connect to a network during setup, you must have the correct hardware installed on your computer and be connected to your network. Use the Network Setup Wizard to set up your system's network connections, including assigning a computer name, configuring the networking protocols, and setting up file and printer sharing.
Note For everything you need to know about setting up and running a domain for your small business or home office, I immodestly recommend Microsoft Windows 2000 Server Administrator's Companion by Charlie Russel and Sharon Crawford (Microsoft Press, ISBN 1572318198).
Sharon Crawford is a former editor now engaged in writing books and magazine articles. Since 1993, she has written or co–written two dozen books on computer topics. Her books include Windows 2000 Pro: The Missing Manual, Windows 98: No Experience Required, and Windows 2000 Professional for Dummies (with Andy Rathbone).
No comments:
Post a Comment