Jump to content.

FAQ/ Windows/ Network Resources

The EECS Domain

The EECS domain is a set of users, computers, and printers organized under a unified security policy. With an EECS user ID, you can log into most machines on the domain, and your home directory will be automapped to those machines. If you join your machine to the domain, it can be used as a workstation by most users in the domain, and you can map network drives and connect to domain printers from it without further authentication.

Permission to Join the EECS Domain

For any particular machine, the person listed as its system administrator in the IRIS Network Database has permission to add it to the domain. To change who this person is, please submit a System Update Request.

Joining the EECS Domain

Before adding your computer to the EECS domain, you should do the following:

After you get a reply from IDSG stating that you add your computer to the EECS domain, do the following:

  1. Right-click the “My Computer” icon and choose properties.

    start menu with “my computer selected”

  2. Click on “Computer Name” tab and then on “Change.”

    computer name dialog

  3. Click the domain button and type in “eecs.berkeley.edu” and click OK.

    join domain dialog box

  4. Enter your name and password (or those of the system's administrator) when prompted. It may be necessary to type “EECS\<your username>”).
  5. Click okay. You will be added to the EECS domain and the following screen will pop up. Reboot your computer to complete the process.

    “welcome to the EECS domain” dialog

Note: After you reboot, new software may begin to install. Depending on applied group policies, it may take up to an hour for the installation to finish.

Note:If you have trouble in the last steps, it may help to temporarily join a workgroup, reboot, then try again to join the domain.

Windows Authentication Level

As part of our ongoing efforts to harden security of systems on the EECS network, some weaker forms of authentication have been disabled. Systems need to be configured to speak either Kerberos or NTLM2 to authenticate successfully with network resources. Windows systems which are members of the EECS Active Directory domain do not need modification. However, administrators of systems outside the EECS Active Directory domain will need to do the following:

NOTE: If you are using Windows XP Home Edition, the procedure for setting NTLMv2 authentication involves editing the Windows registry. The instructions for doing this can be found on this website. This is an advanced procedure; please contact the EECS helpdesk if you need assistance.

Logging In/Out of the EECS Domain

How to log in

  1. Start your machine and boot into windows. The domain logon screen will appear.
  2. In the “User Name” field, enter your EECS username.
  3. Enter your Windows password in the password field.
  4. Select EECS from the “log on to:” dropdown menu.
  5. Click OK

How to log out

  1. Press the control, alt, and delete keys simultaneously.
  2. Click “Log Off” or “Shut Down”.
  3. Click OK.

Accessing Your Home Directory

Checking file permissions

  1. Right-click on the file or folder you want to check or change; choose Properties.
  2. Click on the Security tab.
  3. Add or remove individual access information as needed.

IMPORTANT: All files on your H:\ drive must be readable by EECS\Domain Administrators so that network staff are able to back up your files. DO NOT REMOVE THIS PERMISSION.

Note: It's generally best to never use “deny” boxes. It is much better to uncheck “allow” permissions. If you choose to “deny” the group called “everyone”, you have locked everyone out, including yourself.

Accessing EECS Computing Resources Using VPN

IST runs the Campus VPN Service. The VPN allows a computer to securely connect to the campus network, thus allowing connections to other systems as if your computer was on campus.

Mapping Network Shares from Off Campus

To map a network drive/directory from off campus, use the following procedure:

  1. Connect to the Campus VPN Service.
  2. Use the “run” command to connect to the desired server, e.g., \\home.eecs.berkeley.edu\<your username>.
  3. Navigate to the drive/directory you wish to map, right-click on it, and choose “Map Network Drive...”
  4. Choose the desired drive letter, then click on “Finish.” (Note: uncheck the “Reconnect at logon” box to avoid problems at Windows startup). You have now successfully mapped the drive!

Using Remote Desktop to Copy Files to a Local Drive

If you are blocked by the firewall, you can still copy files back and forth to your local system by using a Remote Desktop session.

Installation:

Copying Files:

  1. Launch the Remote Desktop Connection client (START -> Program Files -> Accessories -> Communications -> Remote Desktop Connection).
  2. Click the Options button.
  3. Click on the “Local Resources Tab” at the top.
  4. Under “Local Devices,” check the box next to Disk Drives.
  5. Click on the “General” Tab.
  6. In the Computer field, type in: winterm.eecs.berkeley.edu.

    remote desktop login

     
  7. Enter in your EECS username and password, then click “Connect.”
  8. You will be prompted with a security warning as shown below. Click OK.

    security warning dialog box

     
  9. On WINTERM, go to “START -> My Computer”. You will see your local drives mapped as shown:

    drive list

  10. From here, copy files in the usual way back and forth between your local system and WINTERM.

Services Status

Low Severity