powershell 自动化 之 Windows Server 2022 管理任务
在 Windows Server 2022 上,你可以使用 PowerShell 来执行各种关键的管理任务。以下是一些示例:
- 启用远程桌面:
Copy Code
Enable-NetFirewallRule -DisplayGroup "Remote Desktop"
Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server' -name "fDenyTSConnections" -Value 0
- 创建新的本地用户账户:
Copy Code
$Password = ConvertTo-SecureString "YourPassword" -AsPlainText -Force
New-LocalUser -Name "Username" -Password $Password -FullName "Full Name" -Description "Description" -NoPasswordExpiration
- 安装 Windows 功能:
Copy Code
Install-WindowsFeature -Name "NameOfFeature" -IncludeManagementTools
- 配置静态 IP 地址:
Copy Code
$IPConfig = Get-NetIPConfiguration -InterfaceAlias "Ethernet"
$IPAddress = "192.168.1.100"
$SubnetMask = "255.255.255.0"
$Gateway = "192.168.1.1"
$DNS = "8.8.8.8", "8.8.4.4"
$IPConfig | Set-NetIPAddress -IPAddress $IPAddress -PrefixLength 24
$IPConfig | Set-NetIPInterface -InterfaceMetric 10
$IPConfig | Remove-DnsClientServerAddress -AddressFamily IPv4
$IPConfig | Set-DnsClientServerAddress -ServerAddresses $DNS
- 创建新的 Active Directory 用户账户:
Copy Code
Import-Module ActiveDirectory
New-ADUser -SamAccountName "Username" -UserPrincipalName "Username@domain.com" -GivenName "First" -Surname "Last" -Enabled $true -ChangePasswordAtLogon $true -AccountPassword (ConvertTo-SecureString "Password123" -AsPlainText -Force)
- 设置文件共享权限:
Copy Code
$SharePath = "C:\SharedFolder"
$Account = "Domain\User"
$Permission = "FullControl"
$ACL = Get-Acl -Path $SharePath
$Rule = New-Object System.Security.AccessControl.FileSystemAccessRule($Account, $Permission, "ContainerInherit, ObjectInherit", "None", "Allow")
$ACL.SetAccessRule($Rule)
Set-Acl -Path $SharePath -AclObject $ACL
- 配置远程 PowerShell 访问:
Copy Code
Enable-PSRemoting -Force
- 创建计划任务:
Copy Code
$action = New-ScheduledTaskAction -Execute "powershell.exe" -Argument "-File 'C:\Scripts\Script.ps1'"
$trigger = New-ScheduledTaskTrigger -AtLogOn
$settings = New-ScheduledTaskSettingsSet -AllowStartIfOnBatteries -DontStopIfGoingOnBatteries
Register-ScheduledTask -Action $action -Trigger $trigger -TaskName "TaskName" -Description "Description" -Settings $settings
- 设置防火墙规则:
powershellCopy Code
New-NetFirewallRule -DisplayName "Allow HTTP" -Direction Inbound -Protocol TCP -LocalPort 80 -Action Allow
- 安装更新:
powershellCopy Code
Install-WindowsUpdate -AcceptAll -AutoReboot
- 配置远程桌面服务:
powershellCopy Code
Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server' -name "fDenyTSConnections" -Value 1
Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp' -name "UserAuthentication" -Value 0
- 创建新的站点和应用程序池(IIS):
powershellCopy Code
Import-Module WebAdministration
New-WebSite -Name "MyWebsite" -Port 80 -PhysicalPath "C:\inetpub\wwwroot\MyWebsite"
New-WebAppPool -Name "MyAppPool" -ManagedRuntimeVersion "v4.0" -ProcessModel IdentityType.NetworkService
Set-ItemProperty -Path "IIS:\Sites\MyWebsite" -Name ApplicationPool -Value "MyAppPool"
- 配置活动目录域控制器:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Install-ADDSForest -DomainName "mydomain.com" -DomainNetbiosName "MYDOMAIN" -InstallDns -NoRebootOnCompletion
- 配置网络适配器设置:
powershellCopy Code
$NetworkAdapter = Get-NetAdapter -Name "Ethernet"
$IPv4Address = "192.168.0.100"
$SubnetMask = "255.255.255.0"
$Gateway = "192.168.0.1"
$IPAddress = New-NetIPAddress -InterfaceIndex $NetworkAdapter.InterfaceIndex -IPAddress $IPv4Address -PrefixLength 24
$DefaultGateway = New-NetRoute -InterfaceIndex $NetworkAdapter.InterfaceIndex -DestinationPrefix 0.0.0.0/0 -NextHop $Gateway
- 配置远程管理:
powershellCopy Code
Enable-PSRemoting -Force
Set-NetFirewallRule -Name "WINRM-HTTP-In-TCP-PUBLIC" -Enabled True
Set-Item WSMan:\localhost\Client\TrustedHosts -Value "RemoteServer" -Concatenate
- 查找和终止进程:
powershellCopy Code
Get-Process -Name "ProcessName"
Stop-Process -Name "ProcessName" -Force
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Scope -Name "ScopeName" -StartRange "192.168.0.100" -EndRange "192.168.0.200" -SubnetMask "255.255.255.0" -State Active
Set-DhcpServerv4OptionValue -OptionId 3 -Value "192.168.0.1"
- 创建本地用户账户:
powershellCopy Code
New-LocalUser -Name "UserName" -FullName "User Full Name" -Description "User Description"
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerPrimaryZone -Name "mydomain.com" -ReplicationScope Forest
Add-DnsServerResourceRecordA -Name "www" -ZoneName "mydomain.com" -IPv4Address "192.168.0.100"
- 配置文件共享:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer
$FolderPath = "C:\ShareFolder"
$ShareName = "MyShare"
New-Item -Path $FolderPath -ItemType Directory
New-SmbShare –Name $ShareName –Path $FolderPath –FullAccess "Everyone"
- 配置远程桌面许可证:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "LicenseServerName" -Mode PerUser -ConnectionBroker "ConnectionBrokerName"
- 配置互联网信息服务(IIS):
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
New-Item -Path "C:\inetpub\wwwroot\MyWebsite" -ItemType Directory
New-WebAppPool -Name "MyAppPool"
New-Website -Name "MyWebsite" -Port 80 -PhysicalPath "C:\inetpub\wwwroot\MyWebsite" -ApplicationPool "MyAppPool"
- 配置 Hyper-V 虚拟机:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VM -Name "VMName" -MemoryStartupBytes 2048MB -NewVHDPath "C:\VMs\VMName.vhdx" -NewVHDSizeBytes 40GB -Generation 2
Set-VMNetworkAdapter -VMName "VMName" -StaticMacAddress "00:15:5D:00:01:01" -SwitchName "Virtual Switch"
- 配置 Windows 防火墙规则:
powershellCopy Code
New-NetFirewallRule -DisplayName "Allow Ping" -Direction Inbound -Protocol ICMPv4 -Action Allow
New-NetFirewallRule -DisplayName "Allow RDP" -Direction Inbound -Protocol TCP -LocalPort 3389 -Action Allow
- 配置 SMTP 服务器:
powershellCopy Code
Install-WindowsFeature -Name SMTP-Server -IncludeManagementTools
Set-SmtpServerConfiguration -DomainName "mydomain.com" -MaxMessageSize 10MB -RelayRestrictions "192.168.0.0/24"
Set-TransportService -DeliveryStatusNotificationEnabled $true -UseExternalDNSServersEnabled $false
- 配置网络适配器:
powershellCopy Code
Get-NetAdapter
Set-NetAdapter -Name "Ethernet" -IPv4Address "192.168.0.100" -DefaultGateway "192.168.0.1" -DnsServer "192.168.0.1"
- 配置远程管理:
powershellCopy Code
Enable-PSRemoting
Set-Item WSMan:\localhost\Client\TrustedHosts -Value "RemoteComputer" -Concatenate
Enter-PSSession -ComputerName "RemoteComputer" -Credential "Domain\User"
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerInDC
Set-DhcpServerv4Scope -ScopeID "192.168.0.0" -SubnetMask "255.255.255.0" -StartRange "192.168.0.100" -EndRange "192.168.0.200" -LeaseDuration "8:00:00"
- 配置组策略:
powershellCopy Code
Install-WindowsFeature -Name GPMC -IncludeManagementTools
New-GPO -Name "MyGPO"
New-GPLink -Name "MyGPO" -Target "OU=Computers,DC=mydomain,DC=com"
- 配置文件服务器复制:
powershellCopy Code
Install-WindowsFeature -Name FS-DFS-Namespace -IncludeManagementTools
New-DfsnRoot -Path "\\Domain\Namespace" -Type DomainV2
New-DfsnFolder -Path "\\Domain\Namespace\Folder" -TargetPath "C:\Folder" -Type DomainV2
- 配置远程访问 VPN:
powershellCopy Code
Install-WindowsFeature -Name DirectAccess-VPN -IncludeManagementTools
Install-RemoteAccess -VpnType VpnSstp
Add-VpnSstpDialinRoute -DestinationPrefix "192.168.0.0/24"
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Import-NlbClusterConfig -Path "C:\NLBConfig.xml"
Start-NlbCluster
- 配置证书服务:
powershellCopy Code
Install-WindowsFeature -Name ADCS-Cert-Authority -IncludeManagementTools
Install-AdcsCertificationAuthority -CAType "EnterpriseRootCA" -CACommonName "Contoso Root CA"
- 配置远程桌面服务:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionHost -CollectionName "MyCollection" -ConnectionBroker "MyBroker" -SessionHost "MyServer"
New-RDRemoteApp -Alias "MyApp" -DisplayName "My Application" -FilePath "C:\Program Files\MyApp\MyApp.exe" -CollectionName "MyCollection"
- 配置存储空间直通:
powershellCopy Code
Install-WindowsFeature -Name FS-Storage-Spaces -IncludeManagementTools
Enable-PhysicalDiskDirect
New-StoragePool -FriendlyName "MyPool" -PhysicalDisks (Get-PhysicalDisk) -ProvisioningType Fixed -ResiliencySettingName Mirror
New-VirtualDisk -FriendlyName "MyDisk" -StoragePoolFriendlyName "MyPool" -Size 100GB -ProvisioningType Fixed -ResiliencySettingName Mirror
- 配置 IIS 站点:
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
New-Website -Name "MySite" -PhysicalPath "C:\inetpub\wwwroot" -BindingInformation "*:80:" -Port 80
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerPrimaryZone -Name "mydomain.com" -ReplicationScope "Forest" -DynamicUpdate Secure
Add-DnsServerResourceRecordA -ZoneName "mydomain.com" -Name "WebServer" -IPv4Address "192.168.0.100"
- 配置 DHCP 中继代理:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Install-WindowsFeature -Name Routing -IncludeManagementTools
New-NetIPAddress -IPAddress "10.0.0.1" -PrefixLength 24
New-NetRoute -DestinationPrefix "192.168.0.0/24" -InterfaceIndex 2 -NextHop "10.0.0.2"
Add-DhcpServerv4OptionValue -OptionID "003" -Value "10.0.0.1"
- 配置远程访问网关:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Install-RemoteAccess -VpnType Sstp
Set-RemoteAccess -SslVpnClientAuthenticationMethod EAP
Add-VpnSstpDialinRoute -DestinationPrefix "192.168.0.0/24"
- 配置 Hyper-V 虚拟机:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VHD -Path "C:\VirtualMachines\MyVM.vhdx" -SizeBytes 100GB -Dynamic
New-VM -Name "MyVM" -MemoryStartupBytes 4GB -BootDevice VHD -VHDPath "C:\VirtualMachines\MyVM.vhdx"
Start-VM -Name "MyVM"
- 配置 DHCP 客户端:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-DhcpClient -IPv4Address "192.168.0.100" -SubnetMask "255.255.255.0" -DnsServer "192.168.0.1"
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "MyCluster" -InterfaceName "Ethernet1" -OperationMode Unicast -Affinity Single
Add-NlbClusterNode -ClusterName "MyCluster" -NewNodeName "Node1" -NewNodeInterfaceName "Ethernet2"
- 配置文件服务器角色:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-SmbShare -Name "DataShare" -Path "C:\Shares\Data" -FullAccess "CONTOSO\Domain Admins"
Set-SmbPathAcl -ShareName "DataShare" -PathAcl "CONTOSO\Domain Users" -AccessRights Read
- 配置远程管理:
powershellCopy Code
Enable-PSRemoting -Force
winrm set winrm/config/client '@{TrustedHosts="Server1,Server2"}'
Enter-PSSession -ComputerName "Server1" -Credential "CONTOSO\Administrator"
- 配置 DHCP 范围:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Scope -Name "LAN" -StartRange "192.168.0.100" -EndRange "192.168.0.200" -SubnetMask "255.255.255.0" -LeaseDuration "8:00:00"
Set-DhcpServerv4OptionValue -ScopeId 192.168.0.0 -OptionID 003 -Value "192.168.0.1"
- 配置 Internet Information Services (IIS):
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
New-WebSite -Name "MySite" -PhysicalPath "C:\inetpub\MySite" -BindingInformation "*:80:"
- 配置 Active Directory 域服务角色:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Install-ADDSForest -DomainName "contoso.com" -DomainNetbiosName "CONTOSO" -ForestMode "WinThreshold" -DomainMode "WinThreshold"
- 配置 Hyper-V 容器:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Install-Module -Name DockerMsftProvider -Repository PSGallery -Force
Install-Package -Name docker -ProviderName DockerMsftProvider
New-Container -Name "MyContainer" -Image "microsoft/nanoserver" -SwitchName "Virtual Switch"
Start-Container -Name "MyContainer"
- 配置远程桌面服务:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "LicenseServer1.contoso.com" -Mode PerUser -ConnectionBroker "RDSServer1.contoso.com"
Add-RDServer -Server "RDSServer1.contoso.com" -Role RDS-RD-Server
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerPrimaryZone -Name "contoso.com" -ReplicationScope Forest -DynamicUpdate Secure
Add-DnsServerResourceRecordA -ZoneName "contoso.com" -Name "WebServer1" -IPv4Address "192.168.0.100"
- 配置远程存储服务:
powershellCopy Code
Install-WindowsFeature -Name FS-DFS-Namespace -IncludeManagementTools
New-DfsnRoot -Path "\\Contoso\Namespace" -Type Standalone -TargetPath "\\FileServer1\Share"
- 配置网络策略和访问服务:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-RemoteAccess -VpnType VpnS2S
- 配置远程桌面网关:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Gateway" -Name "TSGatewayExternalFqdn" -Value "gateway.contoso.com"
- 配置文件同步:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Enable-SyncShare -Name "MySyncShare" -Path "C:\Shares\Data" -User "CONTOSO\Domain Users" -EnableFullAccess
- 配置远程访问 VPN 服务器:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Install-RemoteAccess -VpnType VpnS2S
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerV4Scope -Name "Scope1" -StartRange "192.168.0.100" -EndRange "192.168.0.200" -SubnetMask "255.255.255.0" -LeaseDuration "8.00:00:00"
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "NLBCluster1" -InterfaceName "Ethernet1" -OperationMode Unicast -Affinity Single
- 配置远程桌面会话主机:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Add-RDSessionHost -Server "RDSServer1.contoso.com" -Role RDS-RD-Server
- 配置文件和存储服务:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-SmbShare -Name "DataShare" -Path "C:\Shares\Data" -FullAccess "CONTOSO\Domain Users"
- 配置容器网络:
powershellCopy Code
Install-WindowsFeature -Name Containers -IncludeManagementTools
New-ContainerNetwork -Name "MyNetwork" -SubnetPrefix "10.0.0.0/24"
- 配置域控制器:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Install-ADDSForest -DomainName "contoso.com" -DomainNetbiosName "CONTOSO" -DomainMode "Win2012R2" -ForestMode "Win2012R2"
- 配置远程桌面会话集合:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionCollection -CollectionName "MyCollection" -SessionHost "RDSServer1.contoso.com" -ConnectionBroker "RDSBroker1.contoso.com"
- 配置网络策略服务器:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-Nps -ServerName "NPS1" -NpsDatabasePath "C:\NPS" -NpsLogPath "C:\NPSLogs"
- 配置软件定义网络 (SDN):
powershellCopy Code
Install-WindowsFeature -Name SDN-Infrastructure -IncludeManagementTools
Install-Module -Name DataCenterBridging -Force
Install-Module -Name SDNWAN -Force
- 配置远程访问 Web 服务器:
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
Install-WindowsFeature -Name Web-Http-Redirect -IncludeManagementTools
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerPrimaryZone -Name "contoso.com" -ReplicationScope "Forest" -DynamicUpdate "Secure"
- 配置远程桌面网关:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
New-Item -Path "C:\RDS\RDG\Certificates" -ItemType Directory
New-SelfSignedCertificate -DnsName "rdg.contoso.com" -CertStoreLocation Cert:\LocalMachine\My -FriendlyName "RDG Certificate"
- 配置网络控制器:
powershellCopy Code
Install-WindowsFeature -Name NetworkController -IncludeAllSubFeature
Install-NetworkController -SetupDev
- 配置 Hyper-V:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VHD -Path "C:\VMs\MyVM.vhdx" -SizeBytes 50GB -Dynamic
New-VM -Name "MyVM" -MemoryStartupBytes 4GB -VHDPath "C:\VMs\MyVM.vhdx"
- 配置 Internet Information Services (IIS):
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
New-WebAppPool -Name "MyAppPool"
New-Website -Name "MyWebsite" -PhysicalPath "C:\inetpub\wwwroot" -ApplicationPool "MyAppPool"
- 配置文件服务器:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-SmbShare -Name "DataShare" -Path "C:\Data" -FullAccess "Domain\Administrator"
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerInDC
- 配置容器服务:
powershellCopy Code
Install-WindowsFeature -Name Containers -IncludeManagementTools
Install-Module -Name DockerMsftProvider -Force
Install-Package -Name docker -ProviderName DockerMsftProvider
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Enable-NetAdapterBinding -Name "Ethernet" -ComponentID "ms_tcpip" -DisplayName "Network Load Balancing"
- 配置远程访问 VPN 服务器:
powershellCopy Code
Install-WindowsFeature -Name Remote-Access -IncludeManagementTools
Install-RemoteAccess -VpnType "RoutingOnly"
- 配置远程存储空间:
powershellCopy Code
Install-WindowsFeature -Name FS-StorageServices -IncludeManagementTools
New-StoragePool -FriendlyName "DataPool" -PhysicalDisks (Get-PhysicalDisk -CanPool $true) -StorageSubSystemFriendlyName "Windows Storage*"
- 配置远程桌面会话主机:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionHost -CollectionName "MyCollection" -ConnectionBroker "RDSBroker1.contoso.com" -SessionHost "RDSServer1.contoso.com"
- 配置 DHCP 中继代理:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Relay -IPAddress "192.168.1.100" -Name "DHCP Relay Agent" -ServerFqdn "DHCPServer1.contoso.com"
- 配置网络监视器:
powershellCopy Code
Install-WindowsFeature -Name NMAS-Health -IncludeManagementTools
Initialize-NetworkMonitoring -Name "NetworkMonitor1" -IPAddress "192.168.1.100" -Gateway "192.168.1.1"
- 配置远程访问 DirectAccess 服务器:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Install-RemoteAccess -VpnType "DirectAccess"
- 配置网络策略服务器:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-RemoteAccess -VpnType "RAS"
- 配置远程桌面会话集合:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionCollection -CollectionName "MyCollection" -SessionHost "RDSServer1.contoso.com"
- 配置 DHCP 范围:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Scope -Name "LAN Scope" -StartRange "192.168.1.100" -EndRange "192.168.1.200" -SubnetMask "255.255.255.0" -LeaseDuration "8.00:00:00"
- 配置网络访问保护:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-RemoteAccess -VpnType "NetworkAccessProtection"
- 配置远程桌面网关认证方法:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Set-RDAuthenticationMethod -ConnectionBroker "RDSBroker1.contoso.com" -AuthMethod "SmartCard"
- 配置文件服务器:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-SmbShare -Name "SharedFolder" -Path "C:\SharedFolder" -FullAccess "Domain\Administrator", "Domain\Users"
- 配置远程桌面网关服务器证书:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Set-Item -Path "RDS:\GatewayServer\SSLCertificate\Thumbprint" -Value "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
- 配置网络负载均衡器:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "NLBCluster" -InterfaceName "Ethernet" -OperationMode "Unicast" -IPAddress "192.168.1.100"
- 配置 DHCP 安全性:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-DhcpServerv4OptionValue -ScopeId "192.168.1.0" -OptionId 82 -Value "1,192.168.1.100" -VendorClass "PXEClient"
- 配置远程桌面许可证服务器:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "RDLicenseServer1.contoso.com" -Mode PerUser -ConnectionBroker "RDSBroker1.contoso.com"
- 配置 DHCP 服务器备份:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Failover -Name "Failover" -ScopeId "192.168.1.0" -PartnerServer "DHCPServer2.contoso.com" -Mode HotStandby
- 配置域控制器安全性策略:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Set-ADDefaultDomainPasswordPolicy -MaxPasswordAge "30.00:00:00" -MinPasswordLength 8 -PasswordHistoryCount 5
- 配置远程桌面会话主机许可证模式:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "RDLicenseServer1.contoso.com" -Mode PerDevice -SessionHost "RDSServer1.contoso.com"
- 配置网络负载均衡器故障检测方法:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Set-NlbClusterNode -ClusterName "NLBCluster" -InterfaceName "Ethernet" -NodeName "Node1" -Affinity Single | Set-NlbClusterPortRule -Protocol TCP -Port 80 -Affinity Single
- 配置文件服务器配额:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Enable-Quota -Path "C:\SharedFolder" -QuotaType Hard -Limit 10GB
- 配置网络策略服务器:
powershellCopy Code
Install-WindowsFeature -Name NPAS-Policy-Server -IncludeManagementTools
Set-NpsRadiusClient -Name "Client1" -Address "192.168.1.10" -SharedSecret "SharedSecret123"
- 配置远程桌面会话主机连接限制:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionCollectionConfiguration -CollectionName "RDCollection" -MaxConnectionAllowed 100
- 配置文件服务器配额报警阈值:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Set-FsrmQuota -Path "C:\SharedFolder" -Notification "Email" -Thresholds 80GB, 90GB -EmailAddress "admin@contoso.com"
- 配置 DHCP 范围选项:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-DhcpServerv4Scope -ScopeId "192.168.1.0" -OptionId 6 -Value "192.168.1.1"
- 配置远程桌面许可证高可用性:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "RDLicenseServer1.contoso.com" -Mode PerDevice -HighAvailabilityEnabled $true
- 配置网络访问保护:
powershellCopy Code
Install-WindowsFeature -Name NPAS-Policy-Server -IncludeManagementTools
Add-NpsRadiusClient -Name "Client1" -Address "192.168.1.10" -SharedSecret "SharedSecret123"
- 配置远程桌面会话主机用户限制:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionCollectionConfiguration -CollectionName "RDCollection" -UserConnectionLimit 50
- 配置文件服务器配额报警动作:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Set-FsrmQuota -Path "C:\SharedFolder" -Notification "EventLog" -Thresholds 80GB, 90GB -EventLogAction $true
- 配置 DHCP 范围租约时间:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-DhcpServerv4Scope -ScopeId "192.168.1.0" -LeaseDuration "7.00:00:00"
- 配置远程桌面许可证高可用性模式:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "RDLicenseServer1.contoso.com" -Mode PerDevice -HighAvailabilityMode "Failover"
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "NLBCluster" -InterfaceName "Ethernet1" -NodeName "Node1", "Node2" -OperationMode Unicast
- 配置远程桌面会话主机用户组限制:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionCollectionConfiguration -CollectionName "RDCollection" -UserGroup "Domain\Group1"
- 配置存储空间缓存:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-Volume -StoragePoolFriendlyName "StoragePool" -FriendlyName "Cache" -Size 100GB -MediaType SSD -ResiliencySettingName Mirror
- 配置 DHCP 租约策略:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Policy -Name "Policy1" -Condition "ClientIPV4Address -like '192.168.1.*'" -Action Allow -LeaseDuration "0.12:00:00"
- 配置远程桌面许可证高可用性模式和优先级:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "RDLicenseServer1.contoso.com" -Mode PerUser -HighAvailabilityMode "Failover" -Priority 1
- 配置远程桌面许可证报告:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Set-RDLicenseConfiguration -LicenseServer "RDLicenseServer1.contoso.com" -ReportToEmailAddress "admin@contoso.com" -ReportMode Monthly
- 配置存储空间配额管理:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Set-FsrmQuota -Path "C:\SharedFolder" -Template "General File Server" -HardLimitEnabled $true -HardLimitThreshold 90%
- 配置 DHCP 范围策略:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Policy -Name "Policy1" -Condition "ClientIPV4Address -like '192.168.1.*'" -Action Allow -LeaseDuration "0.12:00:00"
- 配置远程桌面网关证书:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Import-RDServerCert -Role RDGateway -Path "C:\Certificates\GatewayCert.pfx" -Password (ConvertTo-SecureString -String "Password123" -AsPlainText -Force)
- 配置 WSUS 自动更新规则:
powershellCopy Code
Install-WindowsFeature -Name UpdateServices -IncludeManagementTools
Set-WsusServerSynchronization -SyncAutomatically $true -SyncFromMicrosoftUpdate $true
- 配置远程桌面网关 RADIUS 认证:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Set-RemoteDesktopGatewayAuthenticationMethod -ConnectionBroker "RDConnectionBroker1" -AuthMethod RADIUS
- 配置存储空间快照:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Enable-VolumeSnapshot -DriveLetter "D"
- 配置 DHCP 容错伙伴关系:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Failover -Name "Failover1" -ScopeId "192.168.1.0" -PartnerServer "DHCPFailover2.contoso.com" -Mode HotStandby
- 配置远程桌面网关网络资源授权策略:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RemoteDesktopGatewayAuthorizationPolicy -Name "Policy1" -UserGroup "Domain\Group1" -ResourceGroup "Domain\Group2"
- 配置 Hyper-V 主机群集存储复制:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Set-ClusterParameter -Name "EnableStorageReplica" -Value 1
以下是更多的 Windows Server 2022 管理任务示例:
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "NLBCluster1" -InterfaceName "Ethernet1" -OperationMode Unicast -Affinity Single
- 配置存储空间直通:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Enable-VMStoragePath -ControllerType SCSI -Path "C:\VirtualDisks\Disk1.vhdx"
- 配置 DHCP 客户端预分配:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Reservation -ScopeId "192.168.1.0" -IPAddress "192.168.1.100" -ClientId "00-11-22-33-44-55" -Description "Reserved for Client1"
- 配置远程桌面网关设备授权:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RemoteDesktopGatewayDeviceAuthorizationPolicy -Name "Policy1" -DeviceGroup "Domain\Group1" -UserGroup "Domain\Group2"
- 配置 Hyper-V 虚拟机复制:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Set-VMReplication -VMName "VM1" -ReplicaServerName "ReplicaServer1" -ReplicaServerPort 80 -AuthenticationType Kerberos
- 配置网络访问保护:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-Nps -ServerName "NPS1" -NpsDatabasePath "C:\NPS\NPS1.mdb"
- 配置存储迁移服务:
powershellCopy Code
Install-WindowsFeature -Name Migration -IncludeManagementTools
Initialize-SmigServerFeature -FeatureName "StorageMigration" -SourcePath "C:\Windows\winsxs"
- 配置 DHCP 网络防火墙:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-DhcpServerv4FirewallException -ScopeId "192.168.1.0" -Allow -Port 67
- 配置远程桌面网关设备授权策略:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RemoteDesktopGatewayDeviceAuthorizationPolicy -Name "Policy1" -DeviceGroup "Domain\Group1" -UserGroup "Domain\Group2"
- 配置 Hyper-V 虚拟机备份:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Set-VMSnapshot -VMName "VM1" -SnapshotFilePath "C:\Snapshots\Snapshot1.avhdx"
- 配置网络隔离:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VMSwitch -Name "VMSwitch1" -SwitchType Private
- 配置存储池缓存:
powershellCopy Code
Install-WindowsFeature -Name Storage-Server -IncludeManagementTools
Enable-PhysicalDiskCache -FriendlyName "Disk1"
- 配置 DHCP 范围选项:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-DhcpServerv4OptionValue -ScopeId "192.168.1.0" -OptionId 6 -Value "192.168.1.1,192.168.1.2"
- 配置远程桌面网关访问控制策略:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RemoteDesktopGatewayResourceAuthorizationPolicy -Name "Policy1" -UserGroup "Domain\Group1" -ComputerGroup "Domain\Group2"
- 配置 Hyper-V 虚拟机快照:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Checkpoint-VM -VMName "VM1" -SnapshotName "Snapshot1"
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "NLBCluster1" -InterfaceName "Ethernet1" -OperationMode Unicast
- 配置存储空间:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-StoragePool -FriendlyName "StoragePool1" -StorageSubsystemFriendlyName "Storage Spaces*" -PhysicalDisks (Get-PhysicalDisk -CanPool $True)
- 配置 DNS 区域转发:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerZoneForwarder -Name "Zone1" -MasterServers "192.168.1.10" -IPAddress "192.168.2.10"
- 配置远程桌面会话主机策略:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionHost -SessionHost "RDHost1" -ConnectionBroker "RDBroker1" -UserGroup "Domain\Group1"
- 配置 Hyper-V 容器:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Enable-WindowsOptionalFeature -FeatureName Containers -All
- 配置网络策略服务器:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
New-NpsRadiusClient -Name "Client1" -Address "192.168.1.100" -SharedSecret "Secret1"
- 配置存储迁移:
powershellCopy Code
Install-WindowsFeature -Name Storage-Migration -IncludeManagementTools
Enable-SmServer
- 配置 DHCP 服务器备份:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Backup-DhcpServer -ComputerName "DHCPServer1" -Path "C:\DHCPBackup"
- 配置远程桌面会话集合:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionCollection -CollectionName "Collection1" -ConnectionBroker "RDBroker1" -SessionHost "RDHost1"
- 配置 Hyper-V 虚拟交换机:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VMSwitch -Name "VMSwitch1" -SwitchType External -NetAdapterName "Ethernet1"
- 配置网络接口团队:
powershellCopy Code
Install-WindowsFeature -Name NetworkController -IncludeManagementTools
New-NetLbfoTeam -Name "Team1" -TeamMembers "Ethernet1","Ethernet2" -TeamingMode SwitchIndependent -LoadBalancingAlgorithm Dynamic
- 配置存储 QoS:
powershellCopy Code
Install-WindowsFeature -Name Storage-QoS -IncludeManagementTools
New-StorageQosPolicy -PolicyName "Policy1" -MinimumIops 1000 -MaximumIops 5000 -PolicyType Volume
- 配置 DNS 区域传送:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerSecondaryZone -Name "Zone1" -MasterServers "192.168.1.10"
- 配置远程桌面网关服务器:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RDGatewayCert -Path "C:\Certificates\Gateway1.pfx" -Password (ConvertTo-SecureString -String "Password1" -AsPlainText -Force)
- 配置 Hyper-V 检查点自动删除:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Set-VMHost -AutomaticCheckpointsEnabled $True -CheckpointType ProductionOnly
- 配置 DHCP 服务器高可用性:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerInDC
- 配置远程桌面许可证服务器:
powershellCopy Code
Install-WindowsFeature -Name RDS-Licensing -IncludeManagementTools
Install-RDLicense -ConnectionBroker "RDBroker1" -LicenseServer "LicenseServer1" -LicenseKey "XXXXX-XXXXX-XXXXX-XXXXX-XXXXX"
- 配置网络访问保护:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Set-NpsRadiusClient -Name "Client1" -SharedSecret "NewSecret1"
- 配置文件服务器资源管理器配额:
powershellCopy Code
Install-WindowsFeature -Name FS-Resource-Manager -IncludeManagementTools
Enable-FsrmQuota -Path "C:\Shares" -Template "SoftLimit"
- 配置 Hyper-V 容器网络连接:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VMSwitch -Name "ContainerSwitch" -SwitchType NAT
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "Cluster1" -InterfaceName "Ethernet1" -OperationMode Multicast
- 配置存储空间上的数据去重:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-Deduplication -IncludeManagementTools
Enable-DedupVolume -Volume "D:"
- 配置 DNS 反向查找区域:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerPrimaryZone -NetworkID "192.168.1.0/24" -ZoneType Reverse -Name "1.168.192.in-addr.arpa"
- 配置远程桌面部署:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionDeployment -ConnectionBroker "RDBroker1" -WebAccessServer "RDWeb1" -SessionHost "RDHost1"
- 配置 Hyper-V 存储池配额:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-StoragePool -FriendlyName "Pool1" -StorageSubsystemFriendlyName "Windows Storage Spaces" -PhysicalDisks "PhysicalDisk1","PhysicalDisk2"
Set-StoragePool -FriendlyName "Pool1" -IsReadOnly $False -Threshold 90 -NotificationInterval 30
- 配置远程桌面网关服务器:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RDServer -Role "RDS-Gateway" -Server "RDGateway1"
- 配置网络策略服务器:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-Nps -NpsDatabasePath "C:\NPS" -NpsDomain "domain.com" -NpsDomainController "DC1.domain.com"
- 配置存储空间上的磁盘缓存:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-Deduplication -IncludeManagementTools
Enable-DedupVolume -Volume "D:"
Set-DedupVolume -Volume "D:" -MinimumFileAgeDays 30 -OptimizeInUseFiles -UsageType HyperV
- 配置远程桌面会话主机:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Add-RDServer -Role "RDS-RD-Server" -Server "RDHost1"
- 配置 Hyper-V 虚拟交换机:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VMSwitch -Name "Switch1" -SwitchType External -NetAdapterName "Ethernet1"
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerV4Scope -Name "Scope1" -StartRange "192.168.1.100" -EndRange "192.168.1.200" -SubnetMask "255.255.255.0" -LeaseDuration 8.00:00:00
- 配置远程桌面会话集合:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionCollection -CollectionName "Collection1" -SessionHost "RDHost1" -ConnectionBroker "RDBroker1"
- 配置存储空间上的数据分类:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-Classification -IncludeManagementTools
New-DataClassification -Name "Confidential" -Description "Contains confidential data" -MatchType Contains -Keywords "confidential","secret" -Path "D:\Data"
- 配置 Active Directory 域服务:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Install-ADDSForest -DomainName "domain.com" -DomainNetbiosName "DOMAIN" -ForestMode "Windows2016Forest" -DomainMode "Windows2016Domain" -InstallDns -NoRebootOnCompletion
- 配置 Hyper-V 虚拟机复制:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Enable-VMReplication -VMName "VM1" -ReplicaServerName "ReplicaServer1" -ReplicaServerPort 80 -AuthenticationType Kerberos -CompressionEnabled $True
- 配置文件服务器:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-SmbShare -Name "Share1" -Path "C:\Share1" -FullAccess "Domain\Users"
- 配置远程桌面网关策略:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Set-RDGatewayConfiguration -RDGatewayExternalFqdn "rdgateway.domain.com" -RDGatewayServerName "RDGateway1" -LogonMethod Domain
- 配置存储空间上的磁盘快照:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-FileSystem -IncludeManagementTools
Enable-FileSystemRapidCache
Checkpoint-Volume -Volume "D:" -Description "Before software installation"
- 配置远程桌面会话主机集合:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionCollection -CollectionName "Collection1" -SessionHost "RDHost1","RDHost2" -ConnectionBroker "RDBroker1"
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerPrimaryZone -Name "domain.com" -ZoneFile "domain.com.dns" -DynamicUpdate None
- 配置 DHCP 客户端:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters" -Name "DhcpConnForceBroadcastFlag" -Value 0 -Type DWord
- 配置远程桌面网关服务器:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Add-RDServer -Role RDS-Gateway -Server "RDGateway1"
- 配置存储空间上的磁盘配额:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-FileSystem -IncludeManagementTools
Enable-Quota -Path "D:\" -LogFileMode Overwrite
New-FsrmQuota -Path "D:\" -Size 10GB -Template "SoftLimit"
- 配置远程桌面会话集合部署:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
New-RDSessionDeployment -ConnectionBroker "RDBroker1" -WebAccessServer "RDWeb1" -SessionHost "RDHost1","RDHost2" -VirtualDesktopTemplateName "Win10Desktop"
- 配置网络负载均衡器:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Import-NlbConfiguration -Path "C:\NLBConfig.xml"
Start-NlbCluster
- 配置 Active Directory 域服务:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Import-Module ADDSDeployment
Install-ADDSForest -DomainName "domain.com" -DomainNetbiosName "DOMAIN" -DomainMode "Win2016" -ForestMode "Win2016" -InstallDns -NoRebootOnCompletion
- 配置远程桌面会话主机连接:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Set-RDSessionHost -ConnectionBroker "RDBroker1" -SessionHost "RDHost1","RDHost2"
- 配置网络策略服务器:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-Nps -NpsDatabasePath "C:\NPS" -NpsDatabaseSecurityGroupName "NPS Users" -FullInstall
- 配置存储空间上的数据去重:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-Deduplication -IncludeManagementTools
Enable-DedupVolume -Volume "D:" -UsageType Default
Set-DedupVolume -Volume "D:" -MinimumFileAgeDays 30
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerInDC -DnsName "DC1.domain.com" -IPAddress "192.168.1.10"
Add-DhcpServerv4Scope -Name "Scope1" -StartRange "192.168.1.100" -EndRange "192.168.1.200" -SubnetMask "255.255.255.0"
- 配置远程访问 VPN 服务器:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Install-RemoteAccess -VpnType "Automatic" -Nat -SkipAutoConfig
- 配置网络负载均衡器的故障转移:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Import-NlbConfiguration -Path "C:\NLBConfig.xml"
Set-NlbClusterNode -InterfaceName "Ethernet1" -NewClusterIPAddress "192.168.1.100"
- 配置 Hyper-V 虚拟交换机:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
New-VMSwitch -Name "InternalSwitch" -SwitchType Internal
New-VMSwitch -Name "ExternalSwitch" -NetAdapterName "Ethernet1" -AllowManagementOS $false
- 配置存储空间上的卷故障转移群集:
powershellCopy Code
Install-WindowsFeature -Name Failover-Clustering -IncludeManagementTools
Import-Module Storage
New-Cluster -Name "Cluster1" -Node "Node1","Node2" -StaticAddress "192.168.1.200"
Add-ClusterDisk -Cluster "Cluster1" -Disk "PhysicalDisk1","PhysicalDisk2"
- 配置 Windows 容器:
powershellCopy Code
Install-WindowsFeature -Name Containers -IncludeManagementTools
Install-ContainerHost
- 配置 IIS 网站:
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
New-Item -Path "C:\inetpub\wwwroot\Site1" -ItemType Directory
New-IISSite -Name "Site1" -PhysicalPath "C:\inetpub\wwwroot\Site1" -BindingInformation "*:80:"
- 配置 DHCP 服务器故障转移:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerInDC -DnsName "DC1.domain.com" -IPAddress "192.168.1.10"
Add-DhcpServerv4Failover -Name "Failover1" -ScopeId "192.168.1.0" -PartnerServer "DHCP2.domain.com" -Mode "LoadBalance" -LoadBalancePercent 50
- 配置远程桌面网关:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Import-Module RemoteAccess
Install-RemoteAccess -VpnType "Sstp" -Nat -SkipAutoConfig
New-RemoteAccessAuthorizationPolicy -Name "Policy1" -Action "Allow" -UserOrGroup "Domain Users" -ComputerGroup "RDGateway Computers"
- 配置存储空间上的卷缩减:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-Deduplication -IncludeManagementTools
Enable-DedupVolume -Volume "D:" -UsageType Default
Set-DedupVolume -Volume "D:" -MinimumFileAgeDays 30 -OptimizePartialFiles $true
Optimize-Volume -DriveLetter "D:" -ReTrim -Verbose
- 配置 Windows 更新服务:
powershellCopy Code
Install-WindowsFeature -Name UpdateServices -IncludeManagementTools
Import-Module Updateservices
Initialize-WSUSServer -UpdateServicesPackagesFolder "C:\WSUS" -SynchronizeAutomatically $true -ProxyServer "http://proxy.domain.com:8080"
- 配置 DNS 区域转发:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Add-DnsServerZone -Name "domain.com" -ZoneFile "domain.com.dns"
Add-DnsServerZoneTransferRestriction -ZoneName "domain.com" -Mode "None"
Add-DnsServerForwarder -IPAddress "8.8.8.8","8.8.4.4"
- 配置 Active Directory 域服务:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Import-Module ADDSDeployment
Install-ADDSForest -DomainName "domain.com" -DomainNetbiosName "DOMAIN" -ForestMode "WindowsThresholdForest" -DomainMode "WindowsThresholdDomain"
- 配置 WSUS 自动批准规则:
powershellCopy Code
Install-WindowsFeature -Name UpdateServices -IncludeManagementTools
Import-Module UpdateServices
New-Item -Path "C:\WSUS\ApprovedUpdates" -ItemType Directory
$rule1 = New-Object Microsoft.UpdateServices.Administration.AutoApprovalRule
$rule1.Name = "Critical Updates"
$rule1.UpdateApprovalActions = [Microsoft.UpdateServices.Administration.UpdateApprovalAction]::Approve
$rule1.ProductCategories = "Windows Server 2016","Windows Server 2019"
$rule1.Classifications = "Critical Updates"
$rule1.ApproveOptional = $false
$rule1.Enabled = $true
$rule1.Save()
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Add-DhcpServerv4Scope -Name "Scope1" -StartRange "192.168.1.50" -EndRange "192.168.1.100" -SubnetMask "255.255.255.0" -LeaseDuration 8.00:00:00
Add-DhcpServerv4OptionValue -ScopeId "192.168.1.0" -OptionId 6 -Value "192.168.1.1"
- 配置 Hyper-V Replica:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Set-VMReplicationServer -ReplicationEnabled $true -AuthenticationType "Kerberos" -AllowedAuthenticationType "Kerberos" -CertificateThumbprint "1234567890abcdef1234567890abcdef12345678"
New-VMReplication -VMName "Server1" -ReplicaServerName "ReplicaServer1.domain.com" -ReplicaServerPort 80 -AuthenticationType "Kerberos" -CompressionEnabled $true
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
New-NlbCluster -ClusterName "NLBCluster1" -InterfaceName "Ethernet1" -OperationMode "Multicast" -ClusterPrimaryIP "192.168.1.10" -ClusterNetworkMask "255.255.255.0"
Add-NlbClusterNode -ClusterName "NLBCluster1" -NewNodeName "Server1" -NewNodeInterfaceName "Ethernet2" -NewNodeIPAddress "192.168.1.11" -NewNodeNetworkMask "255.255.255.0"
- 配置文件共享服务:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
New-SmbShare -Name "Share1" -Path "C:\Shares\Share1" -FullAccess "Domain Users"
Set-SmbPathAcl -ShareName "Share1" -Path "C:\Shares\Share1" -AccountName "Domain Users" -AccessControlType Allow -FileSystemRights FullControl
- 配置远程桌面会话主机:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Import-Module RemoteDesktopServices
New-RDSessionDeployment -ConnectionBroker "RDCBServer.domain.com" -SessionHost "RDHost1.domain.com" -WebAccessServer "RDWebAccessServer.domain.com" -LicenseServer "RDLicenseServer.domain.com"
- 配置存储空间直通:
powershellCopy Code
Enable-WindowsOptionalFeature -Online -FeatureName "VirtualMachinePlatform"
Enable-WindowsOptionalFeature -Online -FeatureName "Microsoft-Hyper-V-ComputeStack"
Enable-WindowsOptionalFeature -Online -FeatureName "Microsoft-Hyper-V-Services"
Set-VMProcessor -VMName "VM1" -ExposeVirtualizationExtensions $true
- 配置远程桌面会话集合:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Import-Module RemoteDesktopServices
New-RDSessionCollection -CollectionName "Collection1" -SessionHost "RDHost1.domain.com","RDHost2.domain.com" -ConnectionBroker "RDCBServer.domain.com" -WebAccessServer "RDWebAccessServer.domain.com" -LicenseServer "RDLicenseServer.domain.com" -CollectionDescription "Collection 1 Description"
- 配置网络策略和访问服务(NPS):
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Install-Nps -SkipHealthChecks
Add-NpsRadiusClient -Address "192.168.1.100" -SharedSecret "SharedSecret123"
Set-NpsRadiusAuthentication -ConnectionRequestPolicyName "Default Connection Request Policy" -RadiusServerGroup "Default" -UseWindowsAuthentication $true
- 配置远程访问服务(RRAS):
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Install-RemoteAccess -VpnType VpnSstp
Set-VpnSstpConfiguration -SslCertificateThumbprint "1234567890abcdef1234567890abcdef12345678" -SstpEnabled $true
Add-RemoteAccessRadius -ServerAddress "192.168.1.100" -AuthenticationProvider RADIUS -SharedSecret "SharedSecret123"
- 配置 Internet Information Services(IIS):
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
New-WebAppPool -Name "AppPool1" -ManagedPipelineMode Integrated -IdentityType ApplicationPoolIdentity
New-Website -Name "Website1" -Port 80 -PhysicalPath "C:\inetpub\wwwroot" -ApplicationPool "AppPool1"
- 配置 Windows防火墙:
powershellCopy Code
Set-NetFirewallProfile -Profile Domain,Public,Private -Enabled True
New-NetFirewallRule -DisplayName "Allow HTTP" -Direction Inbound -Action Allow -Protocol TCP -LocalPort 80
New-NetFirewallRule -DisplayName "Allow RDP" -Direction Inbound -Action Allow -Protocol TCP -LocalPort 3389
- 配置远程存储管理器:
powershellCopy Code
Install-WindowsFeature -Name FS-Data-Deduplication -IncludeManagementTools
Import-Module RemoteStorage
Enable-DedupVolume -Volume "D:" -UsageType HyperV
- 配置域控制器:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Import-Module ADDSDeployment
Install-ADDSForest -DomainName "domain.com" -DomainNetbiosName "DOMAIN" -InstallDns -SafeModeAdministratorPassword (ConvertTo-SecureString -String "P@ssw0rd" -AsPlainText -Force) -Force
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Import-Module DHCPServer
Add-DhcpServerInDC
Add-DhcpServerv4Scope -Name "Scope1" -StartRange "192.168.1.100" -EndRange "192.168.1.200" -SubnetMask "255.255.255.0" -LeaseDuration "8:00:00"
- 配置 Hyper-V 虚拟交换机:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Import-Module Hyper-V
New-VMSwitch -Name "Switch1" -SwitchType External -NetAdapterName "Ethernet1"
- 配置组策略:
powershellCopy Code
Install-WindowsFeature -Name GPMC -IncludeManagementTools
New-GPO -Name "GPO1"
New-GPLink -Name "GPO1_Link" -Target "OU=Computers,DC=domain,DC=com"
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Import-Module DnsServer
Add-DnsServerPrimaryZone -Name "domain.com" -ZoneFile "domain.com.dns"
Add-DnsServerResourceRecordA -Name "Host1" -ZoneName "domain.com" -IPv4Address "192.168.1.10"
- 配置存储池和存储空间:
powershellCopy Code
Install-WindowsFeature -Name Storage-Spaces-Direct,Storage-Replica -IncludeManagementTools
New-StoragePool -FriendlyName "Pool1" -PhysicalDisk (Get-PhysicalDisk -CanPool $true) -ProvisioningType Fixed -ResiliencySettingName Mirror
New-VirtualDisk -StoragePoolFriendlyName "Pool1" -FriendlyName "VD1" -Size 1TB -ProvisioningType Fixed -ResiliencySettingName Mirror
New-Volume -FileSystem CSVFS_NTFS -DriveLetter D -Path "D:\ClusterStorage\Volume1"
- 配置远程桌面服务:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Import-Module RemoteDesktop
New-RDSessionDeployment -ConnectionBroker "Server1.domain.com" -WebAccessServer "Server2.domain.com" -SessionHost "Server3.domain.com"
New-RDRemoteApp -Alias "App1" -DisplayName "Application 1" -FilePath "C:\Program Files\App1\app.exe" -CollectionName "RemoteApp Collection"
- 配置网关和负载均衡器:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Install-RemoteAccess -VpnType VpnSstp -InternetAdapterName "Ethernet1"
Add-VpnSstpVpn -ServerAddress "vpn.domain.com" -AllowedUser "Domain\User1","Domain\User2" -AuthenticationMethod MSChapv2
New-NlbCluster -ClusterPrimaryIP "192.168.1.100" -ClusterName "NLB1" -InterfaceName "Ethernet2"
Add-NlbClusterNode -ClusterName "NLB1" -NewNodeName "Server1" -NewNodeInterfaceName "Ethernet2"
- 配置远程数据库访问:
powershellCopy Code
Install-WindowsFeature -Name MSSQL-Server -IncludeManagementTools
Import-Module SQLPS
New-SqlLogin -LoginType WindowsUser -Credential (Get-Credential) -ServerInstance "Server1"
New-SqlDatabase -Name "Database1" -ServerInstance "Server1"
Grant-SqlDatabaseAccess -LoginName "Domain\User1" -Database "Database1" -ServerInstance "Server1"
- 配置文件和文件夹共享:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Import-Module ServerManager
New-SmbShare -Name "Share1" -Path "D:\Share1" -FullAccess "Domain\User1","Domain\User2" -ChangeAccess "Domain\User3","Domain\User4" -ReadAccess "Domain\User5","Domain\User6"
- 配置网络策略和访问服务:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Import-Module NetworkPolicyServer
Install-Nps -RegisterInDomain "domain.com"
Set-NpsRadiusClient -Name "RADIUSClient1" -Address "192.168.1.10" -SharedSecret (ConvertTo-SecureString -String "Secret123" -AsPlainText -Force)
Add-NpsRadiusServer -Address "192.168.1.10" -AuthenticationMethod MSChapv2 -SharedSecret (ConvertTo-SecureString -String "Secret123" -AsPlainText -Force)
- 配置远程存储管理:
powershellCopy Code
Install-WindowsFeature -Name FS-Storage-Services -IncludeManagementTools
Import-Module Storage
Enable-RemoteStorageManagement -TargetServer "Server1"
New-RemoteStoragePool -FriendlyName "Pool1" -PhysicalDiskPath "C:\Disks\Disk1.vhdx" -Size 1TB
New-RemoteStorageVirtualDisk -FriendlyName "VD1" -StoragePoolFriendlyName "Pool1" -Size 500GB
- 配置远程桌面网关:
powershellCopy Code
Install-WindowsFeature -Name RDS-Gateway -IncludeManagementTools
Import-Module RemoteDesktopGateway
Install-RDGateway -GatewayServer "Server1" -InternetDomainName "gateway.domain.com" -CertificateThumbprint "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
New-Item -Path RDS:\GatewayServer\SSLCertificate\Thumbprint -Value "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" -Type String
- 配置网络负载均衡:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Import-Module NetworkLoadBalancingClusters
New-NlbCluster -InterfaceName "Ethernet1" -ClusterPrimaryIP "192.168.1.100" -ClusterName "NLB1"
Add-NlbClusterNode -NewNodeName "Server1" -NewNodeInterfaceName "Ethernet1" -ClusterName "NLB1"
Set-NlbClusterNode -NodeName "Server1" -ClusterName "NLB1" -OperationMode Unicast
- 配置远程打印服务:
powershellCopy Code
Install-WindowsFeature -Name Print-Services -IncludeManagementTools
Import-Module PrintManagement
Add-Printer -ConnectionName "\\PrintServer\Printer1"
Set-Printer -Name "Printer1" -Shared $true
Add-PrintDriver -Name "PrinterDriver1" -InfPath "C:\Drivers\PrinterDriver1.inf"
Add-PrinterPort -Name "IP_Port" -PrinterHostAddress "192.168.1.10"
- 配置域控制器:
powershellCopy Code
Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools
Import-Module ADDSDeployment
Install-ADDSForest -DomainName "domain.com" -DomainNetbiosName "DOMAIN" -DomainMode Win2016 -ForestMode Win2016 -InstallDns -NoRebootOnCompletion
- 配置 DHCP 服务器:
powershellCopy Code
Install-WindowsFeature -Name DHCP -IncludeManagementTools
Import-Module DhcpServer
Add-DhcpServerv4Scope -Name "Scope1" -StartRange "192.168.1.100" -EndRange "192.168.1.200" -SubnetMask "255.255.255.0" -LeaseDuration "8.00:00:00"
Add-DhcpServerv4Reservation -IPAddress "192.168.1.150" -ClientId "00-11-22-33-44-55" -Description "Reservation1" -ScopeId "192.168.1.0"
- 配置远程访问 VPN 服务:
powershellCopy Code
Install-WindowsFeature -Name RemoteAccess -IncludeManagementTools
Import-Module RemoteAccess
Install-RemoteAccess -VpnType VpnSstp -Nat -DirectAccess
Set-RemoteAccessVpn -ServerName "Server1" -CustomizeVpnStorePath "C:\VPN"
- 配置网络防火墙规则:
powershellCopy Code
Install-WindowsFeature -Name NPAS -IncludeManagementTools
Import-Module NetSecurity
New-NetFirewallRule -DisplayName "Allow Inbound TCP Port 80" -Direction Inbound -Protocol TCP -LocalPort 80 -Action Allow
New-NetFirewallRule -DisplayName "Allow Outbound UDP Port 53" -Direction Outbound -Protocol UDP -LocalPort 53 -Action Allow
- 配置远程监视和管理:
powershellCopy Code
Install-WindowsFeature -Name RSAT -IncludeAllSubFeature
Get-WindowsCapability -Name RSAT* -Online | Add-WindowsCapability -Online
Enable-PSRemoting
- 配置文件和存储服务:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Import-Module Fsrm
New-FsrmQuota -Path "C:\Shares\Share1" -Size 100GB -Notification "User1, User2" -Template "Soft Limit 80GB"
New-FsrmFileScreen -Path "C:\Shares\Share1" -IncludePattern *.mp3, *.avi -ExecuteCommand "cmd /c echo File blocked" -Notification "User1, User2"
- 配置 Hyper-V:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Import-Module Hyper-V
New-VHD -Path "C:\VMs\VM1.vhdx" -Dynamic -SizeBytes 100GB
New-VM -Name "VM1" -MemoryStartupBytes 4GB -BootDevice VHD -VHDPath "C:\VMs\VM1.vhdx"
Add-VMNetworkAdapter -VMName "VM1" -SwitchName "Virtual Switch"
- 配置 Web 服务器:
powershellCopy Code
Install-WindowsFeature -Name Web-Server -IncludeManagementTools
Import-Module WebAdministration
New-WebAppPool -Name "AppPool1"
Set-ItemProperty IIS:\AppPools\AppPool1 -Name "managedRuntimeVersion" -Value "v4.0"
New-Website -Name "Website1" -PhysicalPath "C:\Websites\Site1" -Port 80 -ApplicationPool "AppPool1"
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Import-Module DnsServer
Add-DnsServerPrimaryZone -Name "domain.com" -ZoneFile "C:\Zones\domain.com.dns"
Add-DnsServerResourceRecordA -Name "Server1" -IPv4Address "192.168.1.10" -ZoneName "domain.com"
- 配置远程数据库访问:
powershellCopy Code
Install-WindowsFeature -Name RSAT-RemoteAccess -IncludeAllSubFeature
Import-Module SqlServer
Set-MSSQLFirewallRule -RuleName "SQL Server" -Enabled $true -Profile Domain, Private, Public
New-MSSQLInstance -SqlEngineEdition Evaluation -InstanceName "SQLServer1" -InstanceRootDirectory "C:\Program Files\Microsoft SQL Server" -InstanceID "MSSQLSERVER" -InstallSharedDir "C:\Program Files\Microsoft SQL Server\Shared" -TCPEnabled $true
- 配置远程桌面服务:
powershellCopy Code
Install-WindowsFeature -Name RDS-RD-Server -IncludeManagementTools
Import-Module RemoteDesktopServices
New-RDSessionCollection -CollectionName "SessionCollection1" -SessionHost "Server1" -ConnectionBroker "Broker1"
Set-RDSessionCollectionConfiguration -CollectionName "SessionCollection1" -CustomRdpProperty "authentication level:i:2"
- 配置文件共享服务:
powershellCopy Code
Install-WindowsFeature -Name FS-FileServer -IncludeManagementTools
Import-Module FS-FileServer
New-SmbShare -Name "Share1" -Path "C:\Shares\Share1" -FullAccess "Domain\User1", "Domain\User2" -ReadAccess "Everyone"
Set-SmbShare -Name "Share1" -FolderEnumerationMode AccessBased
- 配置远程打印服务:
powershellCopy Code
Install-WindowsFeature -Name Print-Server -IncludeManagementTools
Import-Module PrintManagement
Add-Printer -ConnectionName "\\PrintServer\Printer1"
Set-Printer -Name "Printer1" -Shared $true -Published $true
- 配置网络加载平衡服务:
powershellCopy Code
Install-WindowsFeature -Name NLB -IncludeManagementTools
Import-Module NetworkLoadBalancingClusters
New-NlbCluster -InterfaceName "Ethernet1" -ClusterPrimaryIP "192.168.1.100" -SubnetMask "255.255.255.0" -OperationMode Unicast
Add-NlbClusterNode -ClusterIPAddress "192.168.1.100" -NewNodeName "Server2" -InterfaceName "Ethernet1"
- 配置远程存储服务:
powershellCopy Code
Install-WindowsFeature -Name FS-SMBDirect -IncludeManagementTools
Enable-NetAdapterRDMA -Name "Ethernet1"
Enable-ClusterS2D
New-Volume -StoragePoolFriendlyName "S2D on Cluster1" -FriendlyName "Volume1" -FileSystem CSVFS_ReFS -Size 1TB
- 配置 DNS 服务器:
powershellCopy Code
Install-WindowsFeature -Name DNS -IncludeManagementTools
Import-Module DnsServer
Add-DnsServerPrimaryZone -Name "contoso.com" -ZoneFile "C:\Windows\System32\dns\contoso.com.dns"
Add-DnsServerResourceRecordA -ZoneName "contoso.com" -Name "www" -IPv4Address "192.168.1.100"
- 配置 Hyper-V 服务:
powershellCopy Code
Install-WindowsFeature -Name Hyper-V -IncludeManagementTools
Import-Module Hyper-V
New-VHD -Path "C:\VirtualMachines\Disk1.vhdx" -SizeBytes 50GB
New-VM -Name "VM1" -MemoryStartupBytes 4GB -NewVHDPath "C:\VirtualMachines\Disk1.vhdx" -NewVHDSizeBytes 50GB
Start-VM -Name "VM1"
- 配置 Windows 防火墙:
powershellCopy Code
Install-WindowsFeature -Name "WF-Firewall-Service" -IncludeManagementTools
Import-Module NetSecurity
New-NetFirewallRule -DisplayName "Allow HTTP" -Direction Inbound -Protocol TCP -LocalPort 80 -Action Allow
Set-NetFirewallProfile -Profile Domain,Public,Private -Enabled True
- 配置远程存储卷:
powershellCopy Code
Install-WindowsFeature -Name Storage-Services -IncludeManagementTools
Import-Module Storage
New-StoragePool -FriendlyName "Pool1" -PhysicalDisks (Get-PhysicalDisk -CanPool $true) -StorageSubsystemFriendlyName "Windows Storage"
New-VirtualDisk -StoragePoolFriendlyName "Pool1" -FriendlyName "VDisk1" -Size 1TB -ProvisioningType Thin
Initialize-Disk -VirtualDisk (Get-VirtualDisk -FriendlyName "VDisk1") -PassThru | New-Partition -AssignDriveLetter -UseMaximumSize | Format-Volume -FileSystem NTFS -NewFileSystemLabel "Data" -Confirm:$false
- 配置远程访问管理工具:
powershellCopy Code
Install-WindowsFeature -Name RSAT-RemoteAccess-PowerShell -IncludeAllSubFeature
Install-WindowsFeature -Name RSAT-RemoteAccess-Mgmt -IncludeAllSubFeature
【推荐】编程新体验,更懂你的AI,立即体验豆包MarsCode编程助手
【推荐】凌霞软件回馈社区,博客园 & 1Panel & Halo 联合会员上线
【推荐】抖音旗下AI助手豆包,你的智能百科全书,全免费不限次数
【推荐】博客园社区专享云产品让利特惠,阿里云新客6.5折上折
【推荐】轻量又高性能的 SSH 工具 IShell:AI 加持,快人一步
· 微软正式发布.NET 10 Preview 1:开启下一代开发框架新篇章
· 没有源码,如何修改代码逻辑?
· PowerShell开发游戏 · 打蜜蜂
· 在鹅厂做java开发是什么体验
· WPF到Web的无缝过渡:英雄联盟客户端的OpenSilver迁移实战