Revised 04/2006
ITN 118 - Windows 2003 Active Directory Infrastructure Planning (3 CR.)
Course Description
Provides instruction on how to plan, implement, and maintain a Microsoft Windows Server 2003 Active Directory infrastructure. Lecture – 3 hours per week RECOMMENDED CO-REQUISITES OR PRE-REQUISITES ITN 115 – Windows 2003 Server (or ITN 111 – Windows 2000 Server)
General Course Purpose
None.
Course Prerequisites/Corequisites
None.
Course Objectives
- This course is intended to serve as a resource to aid the student seeking Microsoft Certified System Engineer (MCSE) certification in Windows 2003, roughly mapping to the contents tested over in the Microsoft Exam 70-294: Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure. Upon completion of this course, students will be able to: Plan, install and configure an Active Directory infrastructure. Manage forest and domain structure and site replication. Create and manage OU structure and user and group accounts. Plan Group Policy strategy using Resultant Set of Policy (RsoP). Configure user and computer security settings. Manage and troubleshoot Group Policy and Active Directory performance. COURSE CONTENT Concept 1: Planning and Implementing an Active Directory Infrastructure Plan a strategy for placing global catalog servers. Plan flexible operations master role placement. Implement an Active Directory Service forest and domain structure. Implement an Active Directory site topology. Plan an administrative delegation strategy. Concept 2: Managing and Maintaining an Active Directory Infrastructure Manage an Active Directory forest and domain structure. Manage an Active Directory site. Monitor Active Directory replication failures. Tools might include Replication Monitor, Event Viewer, and support tools. Restore Active Directory Troubleshoot Active Directory. Concept 3: Planning and Implementing User, Computer, and Group Strategies Plan a security group strategy. Plan a user authentication strategy. Plan an OU structure. Implement an OU structure. Concept 4: Planning and Implementing Group Policy Plan Group Policy strategy. Configure the user environment by using Group Policy. Deploy a computer environment by using Group Policy. Concept 5: Managing and Maintaining Group Policy Troubleshoot issues related to Group Policy application. deployment. Tools might include RSoP and the gpresult command. Maintain installed software by using Group Policy. Troubleshoot the application of Group Policy security settings. Tools might include RSoP and the gpresult command. STUDENT LEARNING OUTCOMES Upon completion of the course, students will be able to demonstrate their knowledge and skills in the following: Concept 1: Planning and Implementing an Active Directory Infrastructure Plan a strategy for placing global catalog servers. Evaluate network traffic considerations when placing global catalog servers. Evaluate the need to enable universal group caching. Plan flexible operations master role placement Plan for business continuity of operations master roles. Identify operations master role dependencies. Implement an Active Directory Service forest and domain structure. Create the forest root domain. Create a child domain. Create and configure Application Data Partitions. Install and configure an Active Directory domain controller. Set an Active Directory forest and domain functional level based on requirements. Establish trust relationships. Types of trust relationships might include external trusts, shortcut trusts, and cross-forest trusts. Implement an Active Directory site topology. Configure site links. Configure preferred bridgehead servers. Plan an administrative delegation strategy. Plan an organizational unit (OU) structure based on delegation requirements. Plan a security group hierarchy based on delegation requirements. Concept 2: Managing and Maintaining an Active Directory Infrastructure Manage an Active Directory forest and domain structure. Manage trust relationships. Manage schema modifications. Add or remove a UPN suffix. Manage an Active Directory site. Configure replication schedules. Configure site link costs. Configure site boundaries. Monitor Active Directory replication failures. Tools might include Replication Monitor, Event Viewer, and support tools. Monitor Active Directory replication. Monitor File Replication service (FRS) replication. Restore Active Directory. Perform an authoritative restore operation. Perform a nonauthoritative restore operation. Troubleshoot Active Directory. Diagnose and resolve issues related to Active Directory replication. Diagnose and resolve issues related to operations master role failure. Diagnose and resolve issues related to the Active Directory database. Concept 3: Planning and Implementing User, Computer, and Group Strategies Plan a security group strategy. Plan a user authentication strategy. Plan a smart card authentication strategy. Create a password policy for domain users. Plan an OU structure. Analyze the administrative requirements for an OU. Analyze the Group Policy requirements for an OU structure. Implement an OU structure. Create an OU. Delegate permissions for an OU to a user or to a security group. Move objects within an OU hierarchy. Concept 4: Planning and Implementing Group Policy Plan Group Policy strategy. Plan a Group Policy strategy by using Resultant Set of Policy (RSoP) Planning mode. Plan a strategy for configuring the user environment by using Group Policy. Plan a strategy for configuring the computer environment by using Group Policy. Configure the user environment by using Group Policy. Distribute software by using Group Policy. Automatically enroll user certificates by using Group Policy. Redirect folders by using Group Policy. Configure user security settings by using Group Policy. Deploy a computer environment by using Group Policy. Distribute software by using Group Policy. Automatically enroll computer certificates by using Group Policy. Configure computer security settings by using Group Policy. Concept 5: Managing and Maintaining Group Policy Troubleshoot issues related to Group Policy application. deployment. Tools might include RSoP and the gpresult command. Maintain installed software by using Group Policy. Distribute updates to software distributed by Group Policy. Configure automatic updates for network clients by using Group Policy. Troubleshoot the application of Group Policy security settings. Tools might include RSoP and the gpresult command.