Remote Administration of Windows System


Windows based system can be penetrated from outside by using different tools. Some are tools from microsoft themselves and others are from around the globe. I would like to shed light on some tools that I think are very important. Microsoft uses IPC share, remote desktop, remote registry, WMIC and RPC for controlling itself remotely. In which  the most important is RPC or remote procedure call. RPC is not only powerful but also must vulnerable service that windows has. WMIC stands for windows management instrumentation command-line. The scope of this article limits going any further on wmic and rpc, have to write another blog for them.

Tools other than microsoft's own, uses protocols like wmic, rpc, snmp or self opened ports to communicate between server and client software. These tools are very efficient but also a threat if the system admin could not identify the real motive of the software. For security reason automated remote system administration is very risky. Manual administration puts the system admin in total control of the network thus, keeping the risks at bay.

The reason behind doing remote administration of windows system is to minimize the loss of time, cost and increase efficiency. Computers are being very advanced everyday and normal users cannot catch up the pace. With this advancement comes severe threat of viruses and malwares. To control, monitor and repair compromized systems, remote administration is a must.

Remote administration also includes remote installation of operating system. For remotely installing windows in computers in the network, disk clonning and disk imaging are being widely popular. Free and Open Source tools like FOG, commercial product like Norton Ghost are growing favourite of admins. This tools use PXE network boot to pull disk images from client computers to servers. After pulling all information, it can also write back to the client disk all the information from the previously pulled disk image. This means installing windows and all necessary software in one computer and distributing it to many computers around the network. Later on you must have to authorize the licence of windows on each computer. This can also be done remotely. You have to consult microsoft for multiple licence.

Installing software remotely is very crucial. To make things work better and with ease, system admin must be able to do so. But remote software installation is not like eating cheese pie. You can use remote execute (reexec.exe) for doing so. There are windows terminal services and remote desktop which can help you do that with ease. If you want to do it in your own, remote installation can be done with RPC.

Tweaking and configuring remote computers can be done by creating inf files. These files are registry editing system built by microsoft. With INF files you can delete, add and edit registry values. You can remotely install inf files and edit registry for performance tweaks.

Creating scheduled tasks in client systems will also make your work lot easier. Tasks like disk cleaning, defragmentation and scanning can be scheduled to minimize multiple initialization of routine tasks.