Beruflich Dokumente
Kultur Dokumente
Section Objectives
Section Overview
This section explains how to use the RSoP tools to determine whether policies are being
processed in the correct manner. It also explains how to use the available tools to troubleshoot
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize=
1/51
16/11/2014
policy issues; back up, restore, import, copy, and search for GPOs; and migrate GPOs from
one domain to another.
Note: The gpotool.exe and replmon.exe tools are considered deprecated and are no
longer supported or enhanced by Microsoft. They are now replaced by other tools and
functionality in newer versions of Windows.
This topic describes some of the more common tools that you can use with Group Policy,
which are listed in Figure 104. This topic also explains how you can use these tools to
troubleshoot Group Policy.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize=
2/51
16/11/2014
3/51
16/11/2014
Description:
This command line tool displays the Resultant Set of Policy
(RSoP)
information for a target user and computer.
Parameter List:
/S
system
[domain\]user
to.
/U
the command
should execute.
Can not be used with /X, /H.
/P
[password]
given user
context. Prompts for input if omitted.
Can not be used with /X, /H.
/SCOPE
scope
computer
settings needs to be displayed.
Valid values: "USER","COMPUTER".
/USER
[domain\]user
/X
<filename>
the location
and with the file name specified
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize=
4/51
16/11/2014
/H
<filename>
the location
with the file name specified by
the <filename> parameter. (valid
in Windows
Vista SP1 and Windows Server 2008)
/F
file name
specified in the /X or /H command.
/R
/V
should be
displayed. Verbose information provides additional detailed
settings that have
been applied with a precedence of 1.
/Z
information
should be displayed. Super-verbose information provides
additional detailed
settings that have been applied with a precedence of 1 and
higher. This allows
you to see if a setting was set in multiple places. See the Group
Policy
online help topic for more information.
/?
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize=
5/51
16/11/2014
Examples:
GPRESULT /R
GPRESULT /H GPReport.html
GPRESULT /USER targetusername /V
GPRESULT /S system /USER targetusername /SCOPE COMPUTER /Z
GPRESULT /S system /U username /P password /SCOPE USER /V
Note
When you use the super-verbose option (/Z) in the Gpresults tool, the output will
overload the command prompt window. Use the redirect (>) option and direct the output to a
file: C:\gpresult /Z > gpsettings.txt
6/51
16/11/2014
Windows 2000 computer systems used the Secedit command-line tool to refresh Group Policy
settings without rebooting. For Windows XP and later versions, the command-line tool,
Gpupdate is used.
Running gpupdate without any switches will ask for a gpupdate of any policies whose
version numbers are not up to date. It will, therefore, only download the policies that have
changed.
Some policy changes do not update with this normal refresh. On other occasions, the version
numbering on the policies may become out of sync. In these situations, it may be necessary to
force a download of all the policies from scratch using the gpupdate /force command.
Unfortunately, in a large environment where many policies are available, the gpupdate /force
command will download all of the policies that could apply to the user or computer.
Therefore, use the /force switch only when it is necessary.
Using the Gpupdate Tool
To use the Gpupdate tool, open a command prompt and type gpupdate.exe. You can use
various switches to control the output of the Gpupdate tool.
The syntax for the Gpupdate.exe command is:
gpupdate [/target:{computer | user}] [/force] [/wait:value] [/logoff] [/boot]
Following are the details for each of the switches:
By default, both user and computer policy settings are updated. Use the following switch to
specify that only the user or computer policy settings are immediately updated.
/target: Computer | User
By default, only the policy settings that have been changed are applied. Use the following
switch to reapply all the policy settings:
/force
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize=
7/51
16/11/2014
Use the following switch to set the number of seconds you have to wait for the processing
of the policy to finish:
/wait:value
Use the following switch to log off from the selected computer after the policy settings have
been updated:
/logoff
Some policy settings can be processed only at startup; for example, computer-based policy
settings usually require a reboot. Use the following switch to restart your computer after the
policy settings have been updated:
/boot
Note
The default update cycle for refreshing Group Policy is 90 minutes (with a
random 30-minute offset) on domain members and 5 minutes on domain controllers.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize=
8/51
16/11/2014
9/51
16/11/2014
Every domain in Active Directory should have more than one domain controller. When you
have multiple domain controllers, you can use the Gpotool command-line tool to ensure that
the contents of all the linked Sysvol folders in the domain contain valid and up-to-date GPOs.
Note
The Gpotool is considered a deprecated tool as of Windows Server 2012 and has
been replaced by greater functionality within the GPMC via the Infrastructure Status tab.
The Gpotool tool can also check for version mismatches between the GPT stored in the
Sysvol folder and the GPC in Active Directory.
If errors occur, check the System and Directory Services event logs on the listed domain
controller showing the problem. For instance, if you want to verify if a GPO called Corporate
Desktop Settings on a certain domain called MyDomain is in sync, type the following in a
command prompt window:
Gpotool/gpo:Corporate Desktop Settings/dc:MyDomain
When you use the Gpotool tool, you can also check the following Group Policy components:
Group Policy object consistency: You can check the GUID of each GPO and all Sysvol
data.
Group Policy object replication: You can check the times and instances of when
replication has occurred.
Friendly-name searching: You can search your GPOs by the given name of each GPO.
Selective search: You can specify which domain controllers the Gpotool tool will query.
Multiple domains: You can check policies in different domains.
Verbose mode: You can display a validation list of each working GPO and a detailed error
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
10/51
16/11/2014
Note
Replication Monitor
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
11/51
16/11/2014
2.
Right-click Add Monitored Server and enter the FQDN of the server.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
12/51
16/11/2014
3.
4.
Click the Status Logging tab, select GPO Policy Objects under Monitored Servers,
and then click OK.
5.
Click the Update Manually button and type 1 for the refresh monitor cycle.
After 1 minute, and for every minute thereafter, the current GPOs display an updated status
as shown in Figure 112.
Note
To install the support tools, on the Windows 2000 and Windows 2003 Server CDs, click
rktools.msi in the Support\Tools folder.
The Replmon tool is not included in any toolset specific to Windows
Server 2008 or later. However, you can install the rktools.exe package from Windows Server
2003 on Windows Vista or later operating systems to obtain these tools.
Using the Replmon Tool to Check GPO Version Numbers
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
13/51
16/11/2014
Figure 113: Using the Replmon Tool to Check GPO Version Numbers
To find additional details on the replication status, right-click the server icon and, from the
context menu, select Show Group Policy Replication.
Any differences between the GPC and the GPT will result in different version numbers: the
Version column corresponds to the GPC status, and the Sysvol version represents the GPT.
You can add additional domain controllers to the view of the Replmon tool for comparison
purposes.
Repadmin
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
14/51
16/11/2014
C:\>repadmin
Usage: repadmin <cmd> <args> [/u:{domain\user}] [/pw:
{password|*}]
[/retry[:<retries>][:<delay>]]
[/csv]
/?
in repadmin and
their
description.
/help
Same as /?
/?:<cmd>
appropriate
syntaxes and examples for the specified command
<cmd>.
/help:<cmd> Same as /?:<cmd>
/experthelp Displays a list of commands for use by advanced
users only.
/listhelp
the DSA_NAME,
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
15/51
16/11/2014
immediately
recalculate its inbound replication topology.
/prp
/queue
DC
needs to issue
to become consistent with its source
replication partners.
/replicate
specified directory
partition to the destination domain controller
from the
source DC.
/replsingleobj Replicates a single object between any two
domain
controllers that have common directory
partitions.
16/51
16/11/2014
17/51
16/11/2014
partners.
Supported additional parameters:
/u:
backslash
{domain\user} that has permissions to perform
operations in
Active Directory. UPN logons not supported.
/pw:
with the /u
parameter.
/csv
separated
value format. See /csvhelp
18/51
16/11/2014
dc-01
dc-01.microsoft.com
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
19/51
16/11/2014
Get-GPResultantSetOfPolicy
NAME
Get-GPResultantSetOfPolicy
SYNOPSIS
Outputs the Resultant Set of Policy (RSoP) information
for a user, a
computer, or both to a file.
SYNTAX
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
20/51
16/11/2014
DESCRIPTION
The Get-GPResultantSetofPolicy cmdlet outputs the
Resultant Set of Policy
(RSoP) information for a user, a computer, or both to a
file.
-Computer
which to generate
the report.
-Path
-ReportType
or XML.
-User
21/51
16/11/2014
-path c:\reports\computer-08.xml
Invoke-GPUpdate
NAME
Invoke-GPUpdate
SYNOPSIS
Schedule a remote Group Policy refresh (gpupdate) on the
specified
computer.
SYNTAX
Invoke-GPUpdate [[-Computer] <String>] [[https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
22/51
16/11/2014
RandomDelayInMinutes] <Int32>]
[-AsJob
Force
[<SwitchParameter>]] [-LogOff
[<SwitchParameter>]] [-Target
<String>]
[<CommonParameters>]
LogOff
[<SwitchParameter>]] [-Sync
[<SwitchParameter>]] [-Target
<String>]
[<CommonParameters>]
-AsJob
-Boot
-Computer
schedule a refresh
for.
-Force
of only
updating changes.
-Logoff
23/51
16/11/2014
-ReandomDelayInMinutes
to be performed
Synchronously instead of the default Asynchronous processing.
-Target
policy settings.
PS C:\> Invoke-GPUpdate
24/51
16/11/2014
When you consider the HTML reporting capabilities of the GPMC, it is hard to see why
anybody would continue to use the RSoP tool if they have access to GPMC. In fact,
Microsoft recommends that you abandon the older tool.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
25/51
16/11/2014
Results Wizard.
When the run is complete, the details pane of the GPMC shows three tabs:
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
26/51
16/11/2014
Summary: An HTML report of the warnings, errors and alerts that may have occurred
during polciy processing.
Settings: An HTML report of the policy settings, the GPO list, security group
memberships, and WMI filters that would be applied in the scenario
Events: A list of policy-related events from the event log of the target computer and a
useful troubleshooting resource
These three tabs correlate with a new sub-node in the console pane under the Group Policy
Results node. These sub-nodes will continue to accumulate with every new run of the wizard.
By right-clicking the sub-node corresponding to a specific modeling session, you can:
Save the results to disk.
Run the query again.
Run a new query with this one as a template.
Choose Advanced View to invoke the RSoP console and view the precedence information
that does not appear in the HTML Settings report. (The HTML Setting report only lists the
winning GPO.)
27/51
16/11/2014
if that is not the case, the node will not appear in the GPMC.
To start a modeling run, in the console pane of the GPMC window, right-click the Group
Policy Objects node, and select Group Policy Modeling Wizard. However, you will
probably find it more convenient to right-click the specific domain or OU node, which
preloads the wizard with the appropriate data.
In a modeling run, you can select the following:
User container
Computer container
Slow network simulation (yes/no)
Loopback mode (no/merge/replace)
Site name
User security groups
Computer security groups
WMI filters for users
WMI filters for computers
When the run is complete, the details pane of the GPMC shows three tabs:
Summary: An HTML report of the GPO list, security group memberships, and WMI filters
Settings: An HTML report of the policy settings that would be applied in the scenario
Query: A listing of the selections that you made when running the wizard
These three tabs correlate with a new sub-node in the console pane under the Group Policy
Modeling node. These sub-nodes continue to accumulate with every new run of the wizard.
By right-clicking the sub-node corresponding to a specific modeling session, you can:
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
28/51
16/11/2014
29/51
16/11/2014
Under Group Policy Objects, right-click an entry and select Save Report to create an
HTML file with the settings (see Figure 120). The report contains the full contents of the
Settings tab, plus information from the Scope, Details, and Delegation tabs.
Right-click anywhere on the Settings tab and select Print to print the report as it appears
on the window.
Report on the results of an RSoP session (that is, Group Policy Results or Group Policy
Modeling).
Under Group Policy Results or Group Policy Modeling, right-click a saved session
and select Save Report to create an HTML file with the settings.
Right-click anywhere on the Settings tab and select Print to print the report as it appears
on the window.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
30/51
16/11/2014
31/51
16/11/2014
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
32/51
16/11/2014
LOGFILE 0x00010000
DEBUGGER 0x00020000
You can combine the previous values. For example, you can combine VERBOSE
0x00000002 and LOGFILE 0x00010000 to get 0x00010002. This turns on both LOGFILE
and VERBOSE.
Note
Event Logs
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
33/51
16/11/2014
Many Group Policy error codes have not been well documented. However, you
can find a reference list on microsoft.com. Search for Troubleshooting Group Policy Using
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
34/51
16/11/2014
Event Logs.
Backing Up GPOs
35/51
16/11/2014
already have redundancy. However, without the GPMC, you do not have a convenient way
of restoring individual GPOs and importing GPO settings into other GPOs. Both of these
capabilities are enabled by the GPMC backup facility. When you are backing up GPOs,
remember the following: Backing up refers to the process of copying the contents of a live
GPO into any specified folder location on the computer or network where you have write
permissions (see Figure 126).
You can back up multiple policy objects to the same folder.
You can back up multiple versions of the same policy object to the same folder.
You can restore or import backed-up GPOs.
The GPMC includes a user interface for managing backed-up policy objects (right-click the
Group Policy Objects node and select Manage Backups).
36/51
16/11/2014
1.
2.
3.
Right-click the policy object that you want to back up, and select Back Up.
Procedure for Backing Up GPOs (2)
Select a target folder to which you have write access. You can browse to this location,
and you can also create a new folder, if necessary.
5.
Create a description for the backup. This description will appear later when you are
managing your backups from within the GPMC.
6.
7.
An alternative method is available if you wish to back up all the GPOs in a given domain. You
can use this approach to re-create the entire Group Policy structure on another domain.
To back up all the GPOs, navigate to the domain of interest, right-click the Group Policy
Objects node, and then select Back Up All. Follow steps 4 through 7 to finish backing up all
the GPOs.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
37/51
16/11/2014
Restoring GPOs
38/51
16/11/2014
In these situations, restoring a GPO is much the same as restoring a file or folder.
When you are restoring backed up files, remember the following:
Restoring refers to the process of putting a backed-up GPO back into its original location
(that is, domain) with all its original settings intact (including security settings).
Even if you are restoring a deleted GPO, it will have the same GUID that it had originally.
You cannot restore a GPO to a domain other than the one from which it was backed up.
The following topics describe how to restore GPOs and some of the caveats of restoring them.
Procedure for Restoring GPOs
The procedure for restoring a GPO varies depending on whether the GPO exists or has been
deleted.
If the GPO still exists, and you just want to return it to some prior state, right-click the
GPO in the Group Policy Objects container and select Restore from Backup.
Follow the wizard.
To restore a GPO with this procedure, you must have the following permissions on it:
edit settings, delete, and modify security.
If the GPO has been deleted, right-click the Group Policy Objects container, select
Manage Backups, find the backed-up GPO, select it, and click the Restore button.
To restore a GPO with this procedure, you must have the right to create GPOs.
39/51
16/11/2014
If you restore a deleted GPO, the links it had are not automatically restored. You have to
restore them manually.
If you restore a deleted GPO that includes software deployment settings, and those settings
included the option to uninstall when the application falls outside the scope of
management, users might see those assigned or published applications uninstall and then
reinstall, after the restoration of the GPO. The reason for this is that Windows thinks the
applications are new because they get a new deployment object GUID after the restore
(even though the GUID of the actual GPO remains the same as it was).
If you rename a domain, you cannot restore a GPO that was backed up before the rename
operation.
Importing GPOs
40/51
16/11/2014
In the Group Policy Objects node of the console, right-click an existing GPO, and
select Import.
2.
Specify the backed-up GPO whose settings you would like to import. You can also
specify a migration table.
Copying GPOs
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
41/51
16/11/2014
42/51
16/11/2014
43/51
16/11/2014
The types of policies that could include UNC information, and therefore possibly need
remapping, include the following:
Folder redirection
Software settings
Logon, logoff, startup, and shutdown scripts
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
44/51
16/11/2014
45/51
16/11/2014
for Dont change a thing; in fact, this entry doesnt even need to be here except perhaps to
clarify that we know this entry doesnt need to change.
Helpful Hint
You can use migration tables both for copying and for importing GPOs.
Acronyms
The following acronyms are used in this section:
ACE
ACL
CD
compact disc
FRS
GPC
GPT
GUID
identification or identifier
IPSec
IP Security
IT
Information Technology
MMC
NTFS
OU
organizational unit
PDC
RSoP
SID
security identifier
SP1
Service Pack 1
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
46/51
16/11/2014
UNC
WAN
WMI
Windows Management
Instrumentation
XML
Section Review
Summary
A few of the command-line tools that you can use to troubleshoot Group Policy
deployment and the health of the existing GPOs are:
Group Policy Results: This tool provides RSoP details.
Group Policy Update: This tool refreshes Group Policy settings without rebooting.
GPO Verification tool: This tool ensures that the contents of all the linked Sysvol
folders in the domain contain valid and up-to-date GPOs. It also checks for version
mismatches between the GPT stored in the Sysvol folder and the GPC in Active
Directory.
Replication Monitor: This tool gathers a wide variety of replication details. It also
monitors the replication status of current GPOs per domain.
The RSoP helps to trace how the policy links are applied for a specified user and a
specified computer. It also identifies effective settings and winning policy objects.
Some of the RSoP tools that you can use to troubleshoot GPO processing are:
Group Policy Results: This tool presents real information that reflects how the policy
is applied.
Group Policy Modeling: This tool permits you to perform a simulation before actually
applying the policy.
HTML file for reporting: Both the GPMC and the Gpresult command-line tools can
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
47/51
16/11/2014
produce reports in the form of HTML file output. Using these reports, you can view and
analyze the policies that are configured and determine where the policies came from.
The GPO logging tools that you can use to obtain more detail about the GPO processing
issues are:
The Userenv.log: This log contains a detailed verbose log of the logon process.
Event logs: These logs record all GPO events with a minimum amount of detail.
You can back up, restore, import, and copy GPOs. The purpose of these functions are:
Back Up: This function copies the contents of a live GPO into any specified folder
location on the computer or network where you have write permissions.
Restore: This function restores a GPO when you have deleted it and want it back, or
when you have modified it (either its contents or its ACL) and want to return it to some
prior condition.
Import: This function transfers the settings in a backed-up GPO to an existing and active
GPO. (The import process does not create a new GPO.)
Copy: This function creates a new GPO at the destination location. It starts with an
active GPO.
Use the Mtedit tool to build migration tables. You can either run the tool or invoke it from
within the GPMC (right-click the Domains node and select Open Migration Table
Editor).
Knowledge Check
1.
2.
3.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
48/51
16/11/2014
4.
a.
Userenv
b.
GPO Migration
c.
Mtedit
d.
Event log
Match each GPO process with its correct description. Write the letter of the description
in the Answer column.
Answer
GPO
Description
Process
Restore
1.________
Back up
2.________
B.Restores a GPO when you have deleted it and want it back, or when
you have modified it (either its contents or its ACL) and want to return it
to some prior condition.
3.________
Copy
Import
4.________
5.
D.Copies the contents of a live GPO into any specified folder location on
the computer or network where you have write permissions.
b.
c.
d.
49/51
16/11/2014
2.
3.
4.
Userenv
b.
GPO Migration
c.
Mtedit
d.
Event log
Group
Description
Policy
Feature
1.
2.
Restore
A.Creates a new GPO at the destination location. It starts with an active GPO.
Back up
B.Restores a GPO when you have deleted it and want it back, or when you
have modified it (either its contents or its ACL) and want to return it to some
prior condition.
3.
4.
Copy
Import
D.Copies the contents of a live GPO into any specified folder location on the
computer or network where you have write permissions.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
50/51
16/11/2014
5.
b.
c.
d.
https://skillpipe.courseware-marketplace.com/reader/en-GB/Book/BookPrintView/b6175ac1-149e-4f52-83bd-6350c9133320?ChapterNumber=6&FontSize
51/51