COPYRIGHTED MATERIAL. Contents. Assessment Test

Similar documents
MCSA Windows Server 2012

Microsoft Server Administrator

Course Content of MCSA ( Microsoft Certified Solutions Associate )

MCSA Windows Server 2012

MCSA Windows Server 2012 Configuring Advanced Services

Microsoft Certified Solutions Associate (MCSA)

Configuring Advanced Windows Server 2012 Services (412)

Administering. Windows Server 2012 R2. Exam Wiley. Patrick Regan

Microsoft Certified Solutions Expert (MCSE)

This course provides students with the knowledge and skills to administer Windows Server 2012.

Windows Server 2016 MCSA Bootcamp

Server : Advanced Services 3 1 x

Microsoft Certified Solution Associate Windows Server 2016 Training

(Installation, Storage, and Compute with Windows Server 2016)

MCSA Windows Server A Success Guide to Prepare- Microsoft Configuring Advanced Windows Server 2012 Services. edusum.

Installation, Storage, and Compute with Windows Server

MOC 20411B: Administering Windows Server Course Overview

Server : Manage and Administer 3 1 x

Course No. MCSA Days Instructor-led, Hands-on

ASM Educational Center (ASM) Est. 1992

Best MCSA Training in PUNE & Best MCSA Training Institute in MAHARASHTRA

MOC 20417B: Upgrading Your Skills to MCSA Windows Server 2012

TestOut Server Pro 2016: Install and Storage English 4.0.x LESSON PLAN. Revised

Networking with Windows Server 2016 (741)

MOC 20417C: Upgrading Your Skills to MCSA Windows Server 2012

Installing and Configuring Windows Server 2012 R2

MOC 6419B: Configuring, Managing and Maintaining Windows Server based Servers

Microsoft Certified System Engineer

COPYRIGHTED MATERIAL. Contents. Assessment Test

Exam Objectives for MCSA Networking with Windows Server 2016

Upgrading Your Skills to MCSA: Windows Server 2016

70-742: Identity in Windows Server Course Overview

Course Outline. Upgrading Your Skills to MCSA Windows Server 2012 R2 (Course & Lab)

Administering Windows Server 2012

COURSE OUTLINE MOC 20411: ADMINISTERING WINDOWS SERVER 2012 MODULE 1: CONFIGURING AND TROUBLESHOOTING DOMAIN NAME SYSTEM

MCSA: Windows Server MCSA 2016 Windows 2016 Server 2016 MCSA 2016 MCSA : Installation, Storage, and Compute with Windows Server 2016

Administering Windows Server 2012

MCSE Server Infrastructure. This Training Program prepares and enables learners to Pass Microsoft MCSE: Server Infrastructure exams

70-411: Administrating Windows Server 2012

Administering Windows Server 2012

MOC 20410C: Installing and Configuring Windows Server 2012

Windows Server 2008 Administration

20413B: Designing and Implementing a Server Infrastructure

MCSA Windows Server A Success Guide to Prepare- Microsoft Administering Windows Server edusum.com

Updating Your Windows Server 2003 Technology Skills to Windows Server 2008

MCSE- Windows Server 2012

MCSA Windows Server A Success Guide to Prepare- Networking with Windows Server edusum.com

TestOut Server Pro: Advanced Services English 3.1.x LESSON PLAN. Revised 2016/05/17

Administering Windows Server 2012

70-740: Installation, Storage, and Compute with Windows Server 2016

NE Administering Windows Server 2012

MOC 20410B: Installing and Configuring Windows Server 2012

Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services

Identity with Windows Server 2016 (742)

R5: Configuring Windows Server 2008 R2 Network Infrastructure

MCSA: Windows 2012 Server

MOC 6421B: Configuring and Troubleshooting a Windows Server 2008 Network Infrastructure

MCSA / MCSE: Windows 2012 Server Infrastructure

MCSA Windows Server A Success Guide to Prepare- Microsoft Upgrading Your Skills to MCSA Windows Server edusum.

MCITP CURRICULUM Windows 7

Exam Objectives for MCSA Installation, Storage, and Compute with Windows Server 2016

Exam Blueprint (Updated 2/18/14)

Configuring, Managing, and Maintaining Windows Server 2008 R2 Servers

METHODOLOGY This program will be conducted with interactive lectures, PowerPoint presentations, discussions and practical exercises.

M20742-Identity with Windows Server 2016

70-410: Installing and Configuring Windows Server 2012

Microsoft Updating Your Windows Server 2003 Technology Skills to Windows Server 2008

Windows Server : Administering Windows Server 2012 R2. Upcoming Dates. Course Description. Course Outline

Configuring Advanced Windows Server 2012 Services

20742: Identity with Windows Server 2016

SEVENMENTOR TRAINING PVT.LTD. MCSA Server 2016 Syllabus

NET EXPERT SOLUTIONS PVT LTD

Identity with Windows Server 2016

Installation, Storage, and Compute with Windows Server 2016

What s in Installing and Configuring Windows Server 2012 (70-410):

Configuring, Managing and Maintaining Windows Server 2008-based Servers (Course 6419)

SEVENMENTOR TRAINING PVT.LTD

Exam Networking with Windows Server 2016

At Course Completion: Course Outline: Course 20742: Identity with Windows Server Learning Method: Instructor-led Classroom Learning

Administering Windows Server 2012 (NI104)

Identity with Windows Server 2016

Upgrading Your Skills to Windows Server 2016

MS Exam Objectives Installing and Configuring Windows Server 2012 R2

Microsoft - Configuring Windows Server 2008 Active Directory Domain Services (M6425)

Course Outline 20742B

Course Outline. exam, Installation, Storage and Compute with Windows Server Course 20740A: 5 days Instructor Led

Windows Server : Configuring Advanced Windows Server 2012 Services R2. Upcoming Dates. Course Description.

Active Directory Services with Windows Server

70-647: Windows Server Enterprise Administration. Course Overview. Course Outline

Administering Windows Server Contact Hours

Administering Windows Server 2012 (20411D)

Microsoft Configuring, Managing and Maintaining Windows Server 2008

Active Directory Services with Windows Server

MCSA Windows Server 2012 Installation and Configuration

Windows Server : Installation, Storage, and Compute with Windows Server Upcoming Dates. Course Description.

IN YOUR LIFE GO STRAIGHT AND TURN RIGHT

MOC Configuring Advanced Windows Server 2012 Services

Microsoft MCSA Exam

Microsoft Configuring Advanced Windows Server 2012 Services

Designing and Implementing a Server 2012 Infrastructure

Transcription:

Contents Introduction Assessment Test xxxvii lv Chapter 1 Installing Windows Server 2016 1 Features and Advantages of Windows Server 2016 2 Planning the Windows Server 2016 Installation 6 Server Roles in Windows Server 2016 6 Migrating Roles and Features to Windows Server 2016 10 Deciding Which Windows Server 2016 Versions to Use 11 Deciding on the Type of Installation 13 NIC Teaming 16 Installing Windows Server 2016 17 Activating and Servicing Windows 31 Key Management Service 32 Automatic Virtual Machine Activation 33 Active Directory Based Activation 34 Servicing Windows Server 2016 34 Using Windows Deployment Services 35 Preparing the WDS Server 36 WDS Server Requirements 36 Network Services 37 Installing the WDS Server Components 37 Preparing the WDS Client 39 Understanding Features On Demand 39 Summary 41 Video Resources 41 Exam Essentials 41 Review Questions 42 Chapter 2 Installing in the Enterprise 45 Understanding Automated Deployment Options 46 An Overview of the Microsoft Deployment Toolkit 2013 Update 2 47 An Overview of Unattended Installation 55 An Overview of the System Preparation Tool and Disk Imaging 57 Overview of the Windows Assessment and Deployment Kit 61 Windows Imaging and Configuration Designer 62 Summary of Windows Server 2016 Deployment Options 62 COPYRIGHTED MATERIAL

xiv Contents Deploying Unattended Installations 64 Using the System Preparation Tool to Prepare an Installation for Imaging 65 Using Windows Imaging and Configuration Designer (Windows ICD) to Create a Disk Image 67 Installing from a Disk Image 69 Using the Deployment Image Servicing and Management Tool 70 Using Windows System Image Manager to Create Answer Files 73 Microsoft Assessment and Planning (MAP) Toolkit 75 Understanding Hyper-V 77 What Is Virtualization? 78 Linux and FreeBSD Image Deployments 78 Summary 79 Video Resources 80 Exam Essentials 80 Review Questions 81 Chapter 3 Configuring Storage and Replication 85 Understanding File Systems 86 Resilient File System (ReFS) 87 NTFS 88 Storage in Windows Server 2016 91 Initializing Disks 91 Configuring Basic and Dynamic Disks 92 Managing Volumes 94 Storage Spaces in Windows Server 2016 95 Redundant Array of Independent Disks 96 Mount Points 99 Microsoft MPIO 100 Configuring iscsi Target 102 Internet Storage Name Service 103 Implement Thin Provisioning and Trim 105 Fibre Channel 106 Network Attached Storage 106 Virtual Disk Service 106 Understanding Data Center Bridging 108 Configuring Permissions 109 Understanding SMB 109 Understanding NTFS 110 Understanding Shared Permissions 112 How NTFS Security and Shared Permissions Work Together 114 Understanding NFS Shares 116

Contents xv Configuring Disk Quotas 118 Windows PowerShell 120 Using Server Manager 125 Booting from a VHD 126 Understanding Data Deduplication 127 Backup and Restoring Deduplicated Volumes 128 Installing and Enabling Data Deduplication 129 Monitoring Data Deduplicated 132 Summary 132 Video Resources 133 Exam Essentials 133 Review Questions 135 Chapter 4 Understanding Hyper-V 137 Hyper-V Overview 139 What Is Virtualization? 139 Hyper-V Features 140 Hyper-V Architecture 145 Hyper-V Requirements 147 Hyper-V Installation and Configuration 148 Install the Hyper-V Role 148 Hyper-V in Server Manager 151 Using Hyper-V Manager 152 Configure Hyper-V Settings 153 Manage Virtual Switches 154 Managing Virtual Hard Disks 157 Configuring Virtual Machines 162 Creating and Managing Virtual Machines 162 Linux and FreeBSD Image Deployments 175 PowerShell Commands 179 Summary 182 Video Resources 183 Exam Essentials 183 Review Questions 185 Chapter 5 Configuring High Availability 187 Components of High Availability 188 Achieving High Availability 189 High Availability Foundation 190 Understanding Network Load Balancing 191 NLB Requirements 193 Installing NLB Nodes 193 Upgrading an NLB Cluster 198 PowerShell Commands for an NLB Cluster 199

xvi Contents Achieving High Availability with Hyper-V 200 Implementing a Hyper-V Replica 201 Understanding Live Migration 205 Implementing Storage Migration 208 PowerShell Commands for Hyper-V High Availability 210 Summary 211 Video Resources 212 Exam Essentials 212 Review Questions 213 Chapter 6 Understanding Clustering 215 Achieving High Availability with Failover Clustering 216 Failover Clustering Requirements 218 Workgroup and Multi-Domain clusters 219 Site-Aware, Stretched, or Geographically Dispersed Clusters (Geoclustering) 220 Cluster Quorum 220 Validating a Cluster Configuration 223 Creating a Cluster 228 Clustered Application Settings 231 Resource Properties 233 Windows Server 2016 Clustering Features 236 PowerShell Commands for Clustering 239 Implementing Storage Spaces Direct 241 The Benefits of Storage Spaces Direct 243 Deployment Options 243 Requirements to Set Up Storage Spaces Direct 244 Storage Spaces Direct Using Windows PowerShell 245 Summary 247 Video Resources 247 Exam Essentials 247 Review Questions 248 Chapter 7 Configuring Windows Containers 251 Understanding Windows Containers 252 Container Terminology 253 Install and Configure Server Containers 253 Install and Configure Windows Containers 260 Tagging an Image 265 Uninstall an Operating System Image 265 Creating New Images Using Dockerfile 266 Understanding Hyper-V Containers 268 Managing Container Networking 269 Using Docker Hub Repository 270 Using Microsoft Azure for Images 271

Contents xvii Using PowerShell for Containers 271 Summary 273 Video Resources 274 Exam Essentials 274 Review Questions 275 Chapter 8 Maintaining Windows Server 277 Configuring Windows Server Updates 278 Windows Update 279 Using Windows Server Update Services 282 Understanding Backups 297 Overview of the Windows Server 2016 Backup Utility 298 Setting Up an Active Directory Backup 303 Restoring Active Directory 306 Active Directory Recycle Bin 308 Understanding the ntdsutil Utility 309 Wbadmin Command-Line Utility 310 Backing Up Virtual Machines 311 PowerShell Commands 312 Summary 314 Video Resources 315 Exam Essentials 315 Review Questions 316 Chapter 9 Understanding Monitoring 319 Overview of Windows Server 2016 Performance Monitoring 321 Using Windows Server 2016 Performance Tools 323 Introducing Performance Monitor 323 Using Other Monitoring Tools 332 Summary 347 Video Resources 348 Exam Essentials 348 Review Questions 349 Chapter 10 Configuring TCP/IP 351 Understanding TCP/IP 352 Details of the TCP/IP Model 352 How TCP/IP Layers Communicate 353 Understanding Port Numbers 354 Understanding IP Addressing 355 The Hierarchical IP Addressing Scheme 355 Understanding Network Classes 356 Subnetting a Network 360 Implementing Subnetting 361 An Easier Way to Apply Subnetting 368

xviii Contents Applying Subnetting the Traditional Way 372 Working with Classless Inter-Domain Routing 379 Supernetting 382 Understanding IPv6 383 IPv6 History and Need 383 New and Improved IPv6 Concepts 384 IPv6 Addressing Concepts 386 IPv6 Integration/Migration 391 Summary 395 Exam Essentials 395 Review Questions 397 Chapter 11 Configuring DNS 401 Introducing DNS 402 The Form of an IP Address 403 Understanding Servers, Clients, and Resolvers 408 Understanding the DNS Process 409 Introducing DNS Database Zones 415 Understanding Primary Zones 415 Understanding Secondary Zones 416 Understanding Active Directory Integrated DNS 417 Understanding Stub Zones 419 GlobalName Zones 420 Zone Transfers and Replication 421 Advantages of DNS in Windows Server 2016 424 Background Zone Loading 424 Support for IPv6 Addresses 425 Support for Read-Only Domain Controllers 425 DNS Socket Pools 425 DNS Cache Locking 426 Response Rate Limiting 426 Unknown Record Support 427 IPv6 Root Hints 427 DNS Security Extensions 427 DNS Devolution 428 Record Weighting 429 Netmask Ordering 429 DnsUpdateProxy Group 429 DNS Policies 429 Introducing DNS Record Types 430 Start of Authority (SOA) Records 431 Name Server Records 432 Host Record 433 Alias Record 433

Contents xix Pointer Record 433 Mail Exchanger Record 434 Service Record 434 Configuring DNS 435 Installing DNS 436 Load Balancing with Round Robin 436 Configuring a Caching-Only Server 437 Setting Zone Properties 438 Configuring Zones for Dynamic Updates 441 Delegating Zones for DNS 442 DNS Forwarding 443 Manually Creating DNS Records 444 DNS Aging and Scavenging 445 Monitoring and Troubleshooting DNS 445 Monitoring DNS with the DNS Snap-In 446 Troubleshooting DNS 448 Integrating Dynamic DNS and IPv4 DHCP 457 DNS PowerShell Commands 458 Summary 461 Exam Essentials 462 Review Questions 464 Chapter 12 Configuring DHCP 467 Understanding DHCP 468 Introducing the DORA Process 469 Advantages and Disadvantages of DHCP 470 Ipconfig Lease Options 471 Understanding Scope Details 472 Installing and Authorizing DHCP 474 Installing DHCP 474 Introducing the DHCP Snap-In 475 Authorizing DHCP for Active Directory 476 Creating and Managing DHCP Scopes 478 Creating a New Scope in IPv4 479 Creating a New Scope in IPv6 486 Changing Scope Properties (IPv4 and IPv6) 489 Changing Server Properties 490 Managing Reservations and Exclusions 491 Setting Scope Options for IPv4 493 Activating and Deactivating Scopes 496 Creating a Superscope for IPv4 496 Creating IPv4 Multicast Scopes 497 Integrating Dynamic DNS and IPv4 DHCP 499 Using DHCP Failover Architecture 501 Working with the DHCP Database Files 502

xx Contents Working with Advanced DHCP Configuration Options 503 Implement DHCPv6 504 Configure High Availability for DHCP, Including DHCP Failover and Split Scopes 505 Configure DHCP Name Protection 507 PowerShell Commands 508 Summary 510 Exam Essentials 511 Review Questions 512 Chapter 13 Implement IP Address Management 515 Understanding IPAM 516 Installing IPAM 517 Provision IPAM Manually or by Using Group Policy 520 Configure Server Discovery 526 Create and Manage IP Blocks and Ranges 527 Managing Services 528 Managing DNS 529 Managing DHCP 534 IPAM Access and Auditing 539 Migrate to IPAM 541 Delegate IPAM Administration 541 Manage IPAM Collections 545 Virtual Machine Manager and IPAM 545 Auditing IPAM 547 PowerShell Commands for IPAM 550 Summary 553 Exam Essentials 553 Video Resources 553 Review Questions 554 Chapter 14 Configuring Network Access 557 Overview of Dial-Up Networking 558 What DUN Does 559 How DUN Works 559 Overview of Virtual Private Networks 562 What VPNs Do 563 VPNs and Windows Server 2016 563 How VPNs Work 564 Configuring Your Remote Access Server 567 Configuring PPP Options 567 Understanding a VPN 574 How a VPN Works 574 Enabling RRAS as a VPN 575

Contents xxi Configuring a VPN 575 Configuring VPN Ports 575 Troubleshooting VPNs 576 Managing Your Remote Access Server 579 Managing Remote Users with a RADIUS Server 579 Monitoring Overall Activity 579 Controlling Remote Access Logging 579 Reviewing the Remote Access Event Log 583 Monitoring Ports and Port Activity 583 Network Address Translation 584 Configuring Routes 584 RAS Gateway 586 Configuring a VPN Client 586 The General Tab 587 The Options Tab 588 The Security Tab 589 The Networking Tab 591 The Sharing Tab 592 Configuring a Web Application Proxy 593 Publishing Applications 593 Configuring Pass-Through Authentication 594 Understanding DirectAccess 595 DirectAccess vs. VPNs 595 Understanding the DirectAccess Process 595 Knowing the DirectAccess Infrastructure Requirements 597 Overview of Wireless Access 598 Configuring Wireless Access 599 Remote Access Security 600 User Authentication 600 Connection Security 602 Access Control 603 Configuring User Access 603 Setting Up User Profiles 604 Using Network Access Policies 606 NPS as a RADIUS Proxy Server 609 Importing and Exporting NPS Policies 611 Using Remote Access Profiles 613 Setting Up a VPN Network Access Policy 616 Configuring Security 618 Controlling Server Security 618 Configuring Network Access Protection 620 PowerShell for Remote Access 622 Summary 623

xxii Contents Exam Essentials 624 Video Resources 624 Review Questions 625 Chapter 15 Understanding File Services 627 Configuring File Server Resource Manager 628 FSRM Features 628 Installing the FSRM Role Service 629 Configure File and Disk Encryption 630 Using BitLocker Drive Encryption 630 Features of BitLocker 631 Windows 7 and 2008 R2 vs. Windows 10 and 2016 633 Using EFS Drive Encryption 635 Configuring Distributed File System 637 Advantages of DFS 637 Types of DFS 638 What s New in Windows Server 2016 640 Remote Differential Compression 642 Configure Advanced File Services 645 Configure the NFS Data Store 645 Configure BranchCache 646 Implementing an Audit Policy 653 Overview of Auditing 653 Implementing Auditing 654 Viewing Auditing Information 655 Using the Auditpol.exe Command 656 Windows Server 2016 Auditing Features 657 Configure and Optimize Storage 658 Configure iscsi Target and Initiator 658 Configure Internet Storage Name Server 659 Implement Thin Provisioning and Trim 661 Manage Server Free Space Using Features on Demand 661 Configure Tiered Storage 662 Summary 662 Exam Essentials 662 Review Questions 664 Chapter 16 Configuring High Availability 667 Components of High Availability 668 Achieving High Availability 669 High Availability Foundation 670 Understanding Network Load Balancing 671 NLB Requirements 673 Installing NLB Nodes 673

Contents xxiii Upgrading an NLB Cluster 678 Setting the Affinity 678 PowerShell Commands for an NLB Cluster 679 Achieving High Availability with Failover Clustering 680 Failover Clustering Requirements 682 Workgroup and Multi-Domain Clusters 684 Site-Aware, Stretched, or Geographically Dispersed Clusters (Geoclustering) 684 Cluster Quorum 685 Validating a Cluster Configuration 687 Creating a Cluster 692 Clustered Application Settings 695 Resource Properties 697 Windows Server 2016 Clustering Features 700 PowerShell Commands for Clustering 704 Implementing Storage Spaces Direct 705 The Benefits of Storage Spaces Direct 707 Deployment Options 708 Requirements to Set up Storage Spaces Direct 708 Storage Spaces Direct Using Windows PowerShell 709 Achieving High Availability with Hyper-V 711 Implementing a Hyper-V Replica 711 Understanding Live Migration 719 Implementing Storage Migration 722 PowerShell Commands for Hyper-V High Availability 724 Summary 725 Exam Essentials 726 Video Resources 726 Review Questions 727 Chapter 17 Implementing Software Defined Networking 729 Understanding Software Defined Networking 730 Network Controllers 731 Internal DNS Service (idns) 731 Remote Direct Memory Access and Switch Embedded Teaming 734 Windows Server Containers 735 Hyper-V Components 737 Hyper-V Overview 737 What Is Virtualization? 737 Hyper-V Features 738 Hyper-V Architecture 743 Hyper-V Requirements 744

xxiv Contents Hyper-V Installation and Configuration 746 Install the Hyper-V Role 746 Hyper-V in Server Manager 749 Using Hyper-V Manager 749 Configure Hyper-V Settings 751 Manage Virtual Switches 752 Managing Virtual Hard Disks 755 Configuring Virtual Machines 760 Creating and Managing Virtual Machines 760 Linux and FreeBSD Image Deployments 772 PowerShell Commands 776 Summary 780 Exam Essentials 780 Review Questions 781 Chapter 18 Installing Active Directory 783 Verifying the File System 784 Resilient File System (ReFS) 785 NTFS 786 Verifying Network Connectivity 789 Basic Connectivity Tests 789 Tools and Techniques for Testing Network Configuration 790 Understanding Domain and Forest Functionality 792 About the Domain Functional Level 792 About Forest Functionality 794 Planning the Domain Structure 795 Installing Active Directory 796 New to Active Directory 796 Read-Only Domain Controllers 797 Adprep 797 Active Directory Prerequisites 798 The Installation Process 798 Deploying Active Directory in Windows Azure 806 Installing Additional Domain Controllers by Using Install from Media 806 Verifying Active Directory Installation 807 Using Event Viewer 807 Using Active Directory Administrative Tools 809 Testing from Clients 811 Creating and Configuring Application Data Partitions 812 Creating Application Data Partitions 813 Managing Replicas 814 Removing Replicas 815 Using ntdsutil to Manage Application Data Partitions 815

Contents xxv Configuring DNS Integration with Active Directory 817 Summary 819 Exam Essentials 819 Review Questions 821 Chapter 19 Administer Active Directory 825 Active Directory Overview 826 Understanding Active Directory Features 827 Understanding Security Principals 828 An Overview of OUs 829 The Purpose of OUs 830 Benefits of OUs 830 Planning the OU Structure 831 Logical Grouping of Resources 831 Understanding OU Inheritance 833 Delegating Administrative Control 833 Applying Group Policies 835 Creating OUs 835 Managing OUs 839 Moving, Deleting, and Renaming OUs 839 Administering Properties of OUs 840 Delegating Control of OUs 841 Troubleshooting OUs 844 Creating and Managing Active Directory Objects 845 Overview of Active Directory Objects 845 Managing Object Properties 852 Understanding Groups 856 Filtering and Advanced Active Directory Features 858 Moving, Renaming, and Deleting Active Directory Objects 859 Resetting an Existing Computer Account 861 Understanding Dynamic Access Control 861 Managing Security and Permissions 862 Using ACLs and ACEs 863 Using Group Policy for Security 864 Fine-Grained Password Policies 866 Publishing Active Directory Objects 868 Making Active Directory Objects Available to Users 869 Publishing Printers 869 Publishing Shared Folders 870 Querying Active Directory 871 Using the Active Directory Administrative Center 872 Using the Command Prompt for Active Directory Configuration 876

xxvi Contents PowerShell for Active Directory 877 Summary 879 Exam Essentials 879 Review Questions 881 Chapter 20 Maintaining Active Directory 885 Overview of Network Planning 886 The Three Types of Networks 887 Exploring Network Constraints 887 Overview of Active Directory Replication and Sites 888 Replicating Active Directory 889 Understanding Active Directory Site Concepts 889 Understanding Distributed File System Replication 893 Implementing Sites and Subnets 894 Creating Sites 895 Creating Subnets 897 Configuring Sites 898 Configuring Replication 899 Intrasite Replication 900 Intersite Replication 900 RODCs and Replication 906 Configuring Server Topology 907 Using Universal Group Membership Caching 910 Configuring DNS SRV Records 911 Monitoring and Troubleshooting Active Directory Replication 911 About System Monitor 912 Troubleshooting Replication 912 Reasons for Creating Multiple Domains 914 Reasons for Using Multiple Domains 914 Drawbacks of Multiple Domains 917 Creating Domain Trees and Forests 917 Planning Trees and Forests 918 The Promotion Process 921 Creating a Domain Tree 922 Joining a New Domain Tree to a Forest 924 Adding Additional Domain Controllers 924 Demoting a Domain Controller 925 Managing Multiple Domains 926 Managing Single-Master Operations 927 Managing Trusts 931 Managing UPN Suffixes 935 Name Suffix Routing 935 Managing Global Catalog Servers 935

Contents xxvii Managing Universal Group Membership Caching 937 Upgrading Existing Domains and Forests 938 Maintain Active Directory 939 Overview of the Windows Server 2016 Backup Utility 940 Setting Up an Active Directory Backup 945 Restoring Active Directory 946 Active Directory Recycle Bin 948 Restartable Active Directory 948 Offline Maintenance 949 Monitoring Replication 951 Using the ADSI Editor 952 Wbadmin Command-Line Utility 952 Summary 953 Exam Essentials 954 Review Questions 957 Chapter 21 Implementing GPOs 961 Introducing Group Policy 962 Understanding Group Policy Settings 963 The Security Settings Section of the GPO 966 Client-Side Extensions 967 Group Policy Objects 967 Group Policy Inheritance 968 Planning a Group Policy Strategy 969 Implementing Group Policy 970 Creating GPOs 970 Linking Existing GPOs to Active Directory 973 Forcing a GPO to Update 973 Managing Group Policy 975 Managing GPOs 975 Security Filtering of a Group Policy 977 Delegating Administrative Control of GPOs 979 Controlling Inheritance and Filtering Group Policy 980 Assigning Script Policies 981 Understanding the Loopback Policy 983 Managing Network Configuration 983 Configuring Network Settings 985 Automatically Enrolling User and Computer Certificates in Group Policy 985 Redirecting Folders 987 Managing GPOs with Windows PowerShell Group Policy Cmdlets 988 Item-Level Targeting 989 Back Up, Restore, Import, Copy, and Migration Tables 990

xxviii Contents Deploying Software Through a GPO 993 The Software Management Life Cycle 993 The Windows Installer 995 Deploying Applications 999 Implementing Software Deployment 1000 Preparing for Software Deployment 1000 Software Restriction Policies 1001 Using AppLocker 1002 Group Policy Slow Link Detection 1002 Publishing and Assigning Applications 1002 Applying Software Updates 1004 Verifying Software Installation 1005 Configuring Automatic Updates in Group Policy 1006 Configuring Software Deployment Settings 1006 The Software Installation Properties Dialog Box 1007 Removing Programs 1010 Microsoft Windows Installer Settings 1011 Troubleshooting Group Policies 1011 RSoP in Logging Mode 1013 RSoP in Planning Mode 1015 Using the gpresult.exe Command 1016 Using the Group Policy Infrastructure Status Dashboard 1018 Summary 1018 Exam Essentials 1019 Review Questions 1021 Chapter 22 Understanding Certificates 1025 Features of Windows Server 2016 Certificate Services 1026 Active Directory Certificate Services Roles 1027 Planning the Certificate Authority Hierarchy 1028 Installing AD CS 1034 Configuring Active Directory Certificate Services 1037 PowerShell for AD CS 1048 Summary 1049 Exam Essentials 1050 Review Questions 1051 Chapter 23 Configure Access and Information Protection Solutions 1055 Implement Active Directory Federation Services 1056 What Is a Claim? 1056 What s New for AD FS in Windows Server 2016? 1060 Active Directory Federation Services Installation 1062

Contents xxix Workplace Join 1074 Device Registration Service 1074 Workplace Join Your Device 1074 Active Directory Rights Management Services 1075 Considerations and Requirements for AD RMS 1076 Installing AD RMS 1078 Managing AD RMS: AD RMS Service Connection Point 1080 Configuring a Web Application Proxy 1088 Publishing Applications 1088 Configuring Pass-Through Authentication 1089 Authentication Capabilities 1090 PowerShell Commands 1091 Summary 1093 Exam Essentials 1093 Review Questions 1095 Appendix Answers to the Review Questions 1097 Chapter 1: Installing Windows Server 2016 1098 Chapter 2: Installing in the Enterprise 1098 Chapter 3: Configuring Storage and Replication 1099 Chapter 4: Understanding Hyper-V 1100 Chapter 5: Configuring High Availability 1101 Chapter 6: Understanding Clustering 1102 Chapter 7: Configuring Windows Containers 1103 Chapter 8: Maintaining Windows Server 1103 Chapter 9: Understanding Monitoring 1104 Chapter 10: Configuring TCP/IP 1105 Chapter 11: Configuring DNS 1107 Chapter 12: Configuring DHCP 1108 Chapter 13: Implement IP Address Management 1109 Chapter 14: Configuring Network Access 1110 Chapter 15: Understanding File Services 1110 Chapter 16: Configuring High Availability 1111 Chapter 17: Implementing Software Defined Networking 1112 Chapter 18: Installing Active Directory 1113 Chapter 19: Administer Active Directory 1114 Chapter 20: Maintaining Active Directory 1115 Chapter 21: Implementing GPOs 1115 Chapter 22: Understanding Certificates 1116 Chapter 23: Configure Access and Information Protection Solutions 1117 Index 1119

Table of Exercises Exercise 1.1 Installing Windows Server 2016 Datacenter (Desktop Experience)..... 17 Exercise 1.2 Installing Windows Server 2016 Using Server Core................. 21 Exercise 1.3 Creating a Nano Server VHD.................................... 25 Exercise 2.1 Downloading and Installing MDT 2013............................ 49 Exercise 2.2 Configuring MDT 2013.......................................... 51 Exercise 2.3 Prepare a System for Imaging by Using the System Preparation Tool.. 67 Exercise 2.4 Installing Windows Server 2016 from a Disk Image................. 70 Exercise 2.5 Installing the Microsoft Assessment and Planning Toolkit............ 76 Exercise 2.6 Configuring MAP.............................................. 77 Exercise 3.1 Viewing Disk Configurations.................................... 90 Exercise 3.2 Initializing Disk Drives.......................................... 91 Exercise 3.3 Converting a Basic Disk to a Dynamic Disk........................ 93 Exercise 3.4 Creating a Volume Set.......................................... 94 Exercise 3.5 Creating Mount Points.......................................... 99 Exercise 3.6 Installing Microsoft MPIO...................................... 101 Exercise 3.7 Configuring iscsi Storage Connection........................... 103 Exercise 3.8 Installing the isns Feature..................................... 103 Exercise 3.9 Configuring Shared and NTFS Settings.......................... 115 Exercise 3.10 Configure the NFS Data Store.................................. 117 Exercise 3.11 Configuring Disk Quotas....................................... 119 Exercise 3.12 Starting the Windows PowerShell Utility......................... 125 Exercise 4.1 Installing Hyper-V in Full Installation Mode....................... 149 Exercise 4.2 Creating an Internal Virtual Network............................. 156 Exercise 4.3 Creating a Differencing Hard Disk............................... 159 Exercise 4.4 Creating a New Virtual Machine................................ 163 Exercise 4.5 Installing Hyper-V Integration Components....................... 174 Exercise 4.6 Creating a Linux Virtual Machine................................ 176 Exercise 4.7 Updating Linux Ubuntu 16.10................................... 178 Exercise 5.1 Installing NLB Nodes.......................................... 193 Exercise 6.1 Installing the Failover Cluster Feature............................ 223 Exercise 6.2 Running the Validate A Configuration Wizard..................... 226 Exercise 6.3 Creating a Cluster............................................ 228 Exercise 6.4 Clustering the Print Services Role............................... 230

xxxii Table of Exercises Exercise 6.5 Using the Dependency Viewer.................................. 232 Exercise 7.1 Installing Docker............................................. 256 Exercise 7.2 Installing a Base Operating System.............................. 260 Exercise 7.3 Adding an Image to a Container................................ 264 Exercise 7.4 Uninstalling an Image......................................... 266 Exercise 8.1 Installing a WSUS Server...................................... 284 Exercise 8.2 Setting WSUS Server Options.................................. 289 Exercise 8.3 Configuring a GPO for WSUS................................... 295 Exercise 8.4 Backing Up Active Directory.................................... 303 Exercise 9.1 Using Performance Monitor.................................... 332 Exercise 9.2 Installing SNMP.............................................. 343 Exercise 9.3 Configuring SNMP............................................ 344 Subnet Mask Exercise 10.1 Class C, 10 Hosts per Subnet......................... 369 Subnet Mask Exercise 10.2 Class C, 20 Hosts per Subnet......................... 369 Subnet Mask Exercise 10.3 Class C, Five Subnets............................... 370 Subnet Mask Exercise 10.4 Class B, 1,500 Hosts per Subnet....................... 370 Subnet Mask Exercise 10.5 Class B, 3,500 Hosts per Subnet....................... 370 Exercise 11.1 Installing and Configuring the DNS Service....................... 436 Exercise 11.2 Configuring a Zone for Dynamic Updates......................... 441 Exercise 11.3 Creating a Delegated DNS Zone................................. 443 Exercise 11.4 Manually Creating DNS RRs.................................... 444 Exercise 11.5 Simple DNS Testing........................................... 447 Exercise 11.6 Using the nslookup Command.................................. 452 Exercise 11.7 Enabling DHCP-DNS Integration................................. 458 Exercise 12.1 Installing the DHCP Service..................................... 474 Exercise 12.2 Authorizing a DHCP Server..................................... 477 Exercise 12.3 Unauthorizing a DHCP Server................................... 478 Exercise 12.4 Creating a New Scope......................................... 486 Exercise 12.5 Configuring User Class Options................................. 495 Exercise 12.6 Creating a Superscope......................................... 496 Exercise 12.7 Creating a New Multicast Scope................................. 498 Exercise 12.8 Enabling DHCP-DNS Integration................................. 500 Exercise 12.9 Creating and Activating a New DHCPv6 Scope..................... 504 Exercise 12.10 Configuring DHCP Failover..................................... 505 Exercise 12.11 Configuring DHCP Filtering..................................... 506

Table of Exercises xxxiii Exercise 12.12 Enabling DHCP Name Protection................................ 507 Exercise 13.1 Installing the IPAM Feature..................................... 519 Exercise 13.2 Provisioning an IPAM Server.................................... 522 Exercise 13.3 Configuring IPAM Server Discovery.............................. 526 Exercise 13.4 Manually Add IPAM IP Address and Blocks........................ 528 Exercise 13.5 Adding Resource Records...................................... 530 Exercise 13.6 Managing the DNS Zone....................................... 532 Exercise 13.7 Creating a DHCP Scope........................................ 535 Exercise 13.8 Setting Up DHCP Policies....................................... 537 Exercise 13.9 Configuring Role-Based Access Control.......................... 543 Exercise 13.10 Configuring Auditing.......................................... 549 Exercise 14.1 Installing the Remote Access Role............................... 571 Exercise 14.2 Setting Up a VPN Server....................................... 578 Exercise 14.3 Changing Remote Access Logging Settings....................... 582 Exercise 14.4 Creating a Network Access Policy............................... 608 Exercise 14.5 Restricting a User Profile for Dial-In Access....................... 613 Exercise 14.6 Configuring Encryption........................................ 615 Exercise 14.7 Creating a VPN Network Access Policy........................... 616 Exercise 15.1 Enabling BitLocker in Windows Server 2016....................... 634 Exercise 15.2 Installing the DFS Namespace Service........................... 638 Exercise 15.3 Setting Up a DFS Namespace................................... 642 Exercise 15.4 Configure the NFS Data Store................................... 645 Exercise 15.5 Configuring BranchCache Firewall Exceptions..................... 647 Exercise 15.6 Installing BranchCache on Windows Server 2016.................. 649 Exercise 15.7 Enabling Auditing of Active Directory Objects..................... 655 Exercise 15.8 Generating and Viewing Audit Logs.............................. 655 Exercise 15.9 Configuring iscsi Storage Connection........................... 659 Exercise 15.10 Installing the isns Feature on Windows Server 2016............... 660 Exercise 16.1 Installing NLB Nodes.......................................... 673 Exercise 16.2 Installing the Failover Cluster Feature............................ 688 Exercise 16.3 Running the Validate a Configuration Wizard...................... 690 Exercise 16.4 Creating a Cluster............................................. 693 Exercise 16.5 Clustering the Print Services Role............................... 695 Exercise 16.6 Using the Dependency Viewer.................................. 697 Exercise 17.1 Installing Hyper-V in Full Installation Mode........................ 746

xxxiv Table of Exercises Exercise 17.2 Creating an Internal Virtual Network............................. 754 Exercise 17.3 Creating a Differencing Hard Disk............................... 757 Exercise 17.4 Creating a New Virtual Machine................................. 761 Exercise 17.5 Installing Hyper-V Integration Components....................... 772 Exercise 17.6 Creating a Linux Virtual Machine................................ 773 Exercise 17.7 Updating Linux Ubuntu 16.10................................... 776 Exercise 18.1 Viewing the Disk Configurations................................. 788 Exercise 18.2 Promoting a Domain Controller................................. 799 Exercise 18.3 Installing AD DS on Server Core Using PowerShell................. 803 Exercise 18.4 Creating an RODC Server....................................... 804 Exercise 18.5 Viewing the Active Directory Event Log........................... 807 Exercise 18.6 Joining a Computer to an Active Directory Domain................. 811 Exercise 18.7 Configuring DNS Integration with Active Directory................. 818 Exercise 19.1 Creating an OU Structure....................................... 837 Exercise 19.2 Modifying OU Structure........................................ 839 Exercise 19.3 Using the Delegation of Control Wizard........................... 842 Exercise 19.4 Delegating Custom Tasks....................................... 842 Exercise 19.5 Creating Active Directory Objects............................... 848 Exercise 19.6 Creating a User Template....................................... 850 Exercise 19.7 Managing Object Properties.................................... 854 Exercise 19.8 Moving Active Directory Objects................................ 860 Exercise 19.9 Resetting an Existing Computer Account......................... 861 Exercise 19.10 Applying Security Policies by Using Group Policy.................. 866 Exercise 19.11 Fine-Grained Password Policy.................................. 867 Exercise 19.12 Creating and Publishing a Printer................................ 869 Exercise 19.13 Creating and Publishing a Shared Folder......................... 870 Exercise 19.14 Finding Objects in Active Directory.............................. 871 Exercise 19.15 Creating a PSO Using the Active Directory Administrative Center.... 873 Exercise 20.1 Creating Sites................................................ 896 Exercise 20.2 Creating Subnets............................................. 897 Exercise 20.3 Configuring Sites............................................. 899 Exercise 20.4 Creating Site Links and Site Link Bridges......................... 903 Exercise 20.5 Moving Server Objects Between Sites............................ 905 Exercise 20.6 Creating a New Subdomain..................................... 922 Exercise 20.7 Assigning Single-Master Operations............................. 929

Table of Exercises xxxv Exercise 20.8 Managing Trust Relationships................................... 934 Exercise 20.9 Adding a UPN Suffix........................................... 935 Exercise 20.10 Managing GC Servers......................................... 936 Exercise 20.11 Managing Universal Group Membership Caching.................. 937 Exercise 20.12 Backing Up Active Directory.................................... 945 Exercise 21.1 Creating a Group Policy Object Using the GPMC.................. 972 Exercise 21.2 Linking Existing GPOs to Active Directory........................ 973 Exercise 21.3 Filtering Group Policy Using Security Groups..................... 978 Exercise 21.4 Delegating Administrative Control of Group Policy................. 979 Exercise 21.5 Configuring Automatic Certificate Enrollment in Group Policy....... 986 Exercise 21.6 Configuring Folder Redirection in Group Policy.................... 987 Exercise 21.7 Creating a Software Deployment Share......................... 1001 Exercise 21.8 Publishing and Assigning Applications Using Group Policy......... 1003 Exercise 21.9 Applying Software Updates................................... 1004 Exercise 22.1 Installing AD CS Through Server Manager....................... 1034 Exercise 22.2 Configuring AD CS Through Server Manager..................... 1037 Exercise 22.3 Configure an Auto-Enrollment Group Policy for a Domain.......... 1040 Exercise 22.4 Creating a Certificate Template................................. 1044 Exercise 22.5 Publishing a Certificate Template............................... 1044 Exercise 22.6 Revoking a Certificate........................................ 1045 Exercise 22.7 Configuring CA Policy Auditing................................ 1046 Exercise 22.8 Backing Up the Certificate Authority Server...................... 1047 Exercise 23.1 Installing the AD FS Role on a Computer Using Server Manager..... 1062 Exercise 23.2 Configuring the AD FS Role on the Computer Using Server Manager.......................................... 1065 Exercise 23.3 Configuring Multifactor Authentication.......................... 1073 Exercise 23.4 Workplace Joining a Device................................... 1075 Exercise 23.5 Installing an AD RMS Role on the Local Computer Using Server Manager.......................................... 1078 Exercise 23.6 Backing Up an AD RMS Database............................... 1084 Exercise 23.7 Adding a Trusted User Domain................................. 1085 Exercise 23.8 Exporting the Trusted User Domain............................. 1086 Exercise 23.9 Exporting the Trusted Publishing Domain........................ 1086 Exercise 23.10 Adding the Trusted Publishing Domain.......................... 1087

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback