Managing Active Directory Domain Services with Windows 2008 Server Operating System

Printer-friendly version
Vendor: 
Microsoft
Subject: 
Networking
Overview: 

This course provides students with the knowledge and skills in configuring, managing, and supporting user and computer accounts, groups, Domain Name System zones and client settings; group policy objects; the new Active Directory Lightweight Directory Service and Active Directory Rights Management Service; backup and recovery; and communication security in Windows 2008 Server based Active Directory environments.

Course Contents: 

Module 1: Creating and Maintaining Active Directory Objects

Lessons

  • Automate creation of Active Directory accounts: May include but is not limited to: bulk import, configure the UPN, create computer, user, and group accounts (scripts, import, migration), template accounts, contacts, distribution lists
  • Maintain Active Directory accounts: May include but is not limited to: configure group membership, account resets, delegation, AGDLP/AGGUDLP, deny domain local group, local versus domain, Protected Admin, disabling accounts versus deleting accounts, deprovisioning, contacts, creating organizational units (OUs), delegation of control
  • Create and apply Group Policy objects (GPOs): May include but is not limited to: enforce, OU hierarchy, block inheritance, and enabling user objects, group policy processing priority, WMI, group policy filtering, group policy loopback
  • Configure GPO templates: May include but is not limited to: user rights, ADMX Central Store, administrative templates, security templates, restricted groups, security options, starter GPOs, shell access policies
  • Configure software deployment GPOs: May include but is not limited to: publishing to users, assigning software to users, assigning to computers, software removal
  • Configure account policies: May include but is not limited to: domain password policy, account lockout policy, fine-grain password policies
  • Configure audit policy by using GPOs: May include but is not limited to: audit logon events, audit account logon events, audit policy change, audit access privilege use, audit directory service access, audit object access

    Module 2: Maintaining the Active Directory Environment

    Lessons

  • Configure backup and recovery: May include but is not limited to: using Windows Server Backup, back up files and system state data to media, back up and restore by using removable media, perform an authoritative or non-authoritative Active Directory restore, linked value replication, Directory Services Recovery Mode (DSRM) (reset admin password), back up and restore GPOs
  • Perform offline maintenance: May include but is not limited to: offline defragmentation and compaction, Restartable Active Directory, Active Directory database storage allocation Monitor Active Directory: May include but is not limited to: Network Monitor, Task Manager, Event Viewer, ReplMon, RepAdmin, Windows System Resource Manager, Reliability and Performance Monitor, Server Performance Advisor, RSOP

    Module 3: Configuring Active Directory Certificate Services

    Lessons:

  • Install Active Directory Certificate Services: May include but is not limited to: standalone versus enterprise, CA hierarchies-root versus subordinate, certificate requests, certificate practice statement
  • Configure CA server settings: May include but is not limited to: key archival, certificate database backup and restore, assigning administration roles
  • Manage certificate templates: May include but is not limited to: certificate template types, securing template permissions, managing different certificate template versions, key recovery agent
  • Manage enrollments: May include but is not limited to: network device enrollment service (NDES), autoenrollment, Web enrollment, smart card enrollment, creating enrollment agents Manage certificate revocations: May include but is not limited to: configure Online Responders, CertificateRevocation List (CRL), CRL Distribution Point (CDP), Authority Information Access (AIA)
    • Prerequisites: 
  • Have basic Windows and Active Directory knowledge. For example, domain user accounts, domain vs. local user accounts, user profiles, and group membership
  • Worked on or in Windows Server 2000/2003 Active Directory Environment or have the equivalent knowledge and skills on other NOS environments.
    • Benefits: 

    Credit towards professional certification exam MCTS: Windows Server 2008 Active Directory Configuration, MCITP: Server Administrator, MCITP: Enterprise Administrator

    Audience: 

    The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have a minimum of one year of experience implementing and administering a network operating system to earn one of the following certification MCTS: Windows Server 2008 Active Directory Configuration, MCTS: Windows Server 2008 Network Infrastructure Configuration and
    MCTS: Windows Server 2008 Applications Infrastructure Configuration.

    Materials Available: 
    Yes
    Duration: 
    24 hours
    For more information on Managing Active Directory Domain Services with Windows 2008 Server Operating System please feel free to contact us online or call us at 416-513-1535.