You are previewing Microsoft Windows Server 2003 Unleashed, R2 Edition.
O'Reilly logo
Microsoft Windows Server 2003 Unleashed, R2 Edition

Book Description

Microsoft Windows Server 2003 Unleashed, 3rd Edition is the first book on the market to cover Windows Server 2003 R2. This latest edition will keep the text viable with the major "R2" update being released from Microsoft late in 2005. Many of the Windows Server 2003 titles have not been revised since release in 2003 even though Microsoft has released a service pack and now the R2 update.

This book will provide detailed guidance focused on the most commonly used yet most complicated planning, installation, migration, and problem solving topics that challenge IT professionals. This title goes far beyond the basic installation and setup information found in hundreds of other resources and focus on the less understood yet most important details for system configuration, tips, tricks, and techniques to successfully implement and administer a Windows networking system.

Table of Contents

  1. Copyright
    1. Dedication
  2. About the Authors
  3. Acknowledgments
  4. We Want to Hear from You!
  5. Introduction
  6. I. Windows Server 2003 Overview
    1. 1. Windows Server 2003 Technology Primer
      1. Windows Server 2003 Defined
        1. Windows .NET Framework Versus Windows Server 2003
        2. Understanding the Windows .NET Framework
        3. Understanding the Core Windows Server 2003 Operating System
      2. Choosing to Implement Windows Server 2003
        1. Windows Server 2003 Core to an Active Directory Environment
        2. Windows Server 2003 Running Built-in Application Server Functions
        3. Windows Server 2003 Running Add-in Applications Server Functions
      3. When Is the Right Time to Migrate?
        1. Adding a Windows Server 2003 to an NT4 or Windows 2000 Environment
        2. Migrating from Windows 2000 to Windows Server 2003
        3. Migrating Directly from Windows NT4 to Windows Server 2003
      4. Versions of Windows Server 2003
        1. Windows Server 2003 Web Edition
        2. Windows Server 2003 Standard Edition
        3. Windows Server 2003 Enterprise Edition
        4. Windows Server 2003 Datacenter Edition
        5. Windows Server 2003 x64-bit Edition
      5. What’s New in Windows Server 2003?
        1. Visual Changes in Windows Server 2003
          1. Customization and Programmability of the .NET Server Interface
        2. Changes That Simplify Tasks
          1. Drag-and-Drop Capabilities in Administrative Tools
          2. Built-in Setup, Configuration, and Management Wizards
        3. Improved Security
          1. IPSec and Wireless Security Improvements
          2. Microsoft Passport Support
        4. Performance and Functionality Improvements
          1. Global Catalog Caching on a Domain Controller
          2. Fine-Tuning on Global Catalog Synchronization
          3. Ability to Disable Compression on High-Speed Links
        5. Increased Support for Standards
          1. Support for IPv6
          2. Support for XML Web Services
          3. Support for IETF Security Standards
        6. Ability to Delete Active Directory Schema Objects
      6. Windows Server 2003 Benefits for Administration
        1. File Server Resource Manager (FSRM)
        2. Print Management Console (PMC)
        3. Volume Shadow Copy
          1. Online Backup of Open Files
          2. User-Level Retrieval of Archived File Copies
        4. Global Catalog Build from Media
        5. IPSec NAT Traversal
      7. Windows Server 2003 for Better User Services
        1. File Management with Distributed File System
        2. Redundancy and Fault Tolerance of Data with DFSR
        3. Redundancy with Printer Queues
      8. Benefits for Thin Client Terminal Services
        1. Local Drive and Audio Redirection
          1. Local Drive Redirection
          2. Audio Redirection
        2. Local Time Zone Support
        3. Specifying Connection Type
        4. Session Directory
      9. Benefits for Improved Management
        1. Automatic Server Recovery
        2. Remote Installation Service for Servers
        3. Out-of-Band Management
      10. Extending the Directory Beyond Active Directory
        1. Active Directory Federation Services (ADFS)
        2. Active Directory in Application Mode (ADAM)
        3. Identity Management for Unix (IdMU)
      11. Going Beyond the Basic Features of Windows 2003 with Feature Packs
        1. Group Policy Management Console
        2. Software Update Service
        3. Identity Integration Feature Pack
        4. Directory Services Markup Language Services for Windows
        5. Remote Control Add-on for Active Directory Users and Computers
        6. Services for NetWare 5.03
        7. Windows SharePoint Services
        8. Windows Rights Management Services
        9. Windows System Resource Manager
      12. Extending the Capabilities of Windows 2003 with Downloadable Tools
        1. Active Directory Migration Tool v2.0
        2. Domain Rename
        3. Application Compatibility Tools
        4. Log Parser Tool
        5. Microsoft Operations Manager Tools
        6. File Replication Management Tools
        7. Getting to Know Windows 2003 Resource Kit Tools
      13. Getting Started with Windows Server 2003
      14. Best Practices
    2. 2. Planning, Prototyping, Migrating, and Deploying Windows Server 2003 Best Practices
      1. Determining the Scope of Your Project
      2. Identifying the Business Goals and Objectives to Implement Windows Server 2003
        1. High-Level Business Goals
        2. Business Unit or Departmental Goals
      3. Identifying the Technical Goals and Objectives to Implement Windows Server 2003
        1. Defining the Scope of the Work
        2. Determining the Time Frame for Implementation or Migration
        3. Defining the Participants of the Design and Deployment Teams
      4. The Discovery Phase: Understanding the Existing Environment
        1. Understanding the Geographical Depth and Breadth
        2. Managing Information Overload
      5. The Design Phase: Documenting the Vision and the Plan
        1. Collaboration Sessions: Making the Design Decisions
        2. Organizing Information for a Structured Design Document
          1. The Executive Summary
          2. The Goals and Objectives
          3. The Background
          4. The Approach
          5. The End State
          6. The Budget Estimate
        3. Windows Server 2003 Design Decisions
        4. Agreeing on the Design
      6. The Migration Planning Phase: Documenting the Process for Migration
        1. Time for the Project Plan
        2. Speed Versus Risk
        3. Creating the Migration Document
          1. The Executive Summary
          2. The Goals and Objectives Section
          3. The Roles and Responsibilities Section
          4. The Approach Section
          5. The Project Plan Section
          6. The Budget Section
      7. The Prototype Phase: Creating and Testing the Plan
        1. How Do You Build the Lab?
        2. Results of the Lab Testing Environment
      8. The Pilot Phase: Validating the Plan to a Limited Number of Users
        1. The First Server in the Pilot
        2. Rolling Out the Pilot Phase
          1. Quantity of Pilot Users
          2. Application Complexity of Pilot Users
          3. Role Complexity of Pilot Users
          4. Geographical Diversity of Pilot Users
        3. Fixing Problems in the Pilot Phase
        4. Documenting the Results of the Pilot
      9. The Migration/Implementation Phase: Conducting the Migration or Installation
        1. Verifying End User Satisfaction
        2. Supporting the New Windows Server 2003 Environment
      10. Summary
      11. Best Practices
        1. The Discovery Phase
        2. The Design Phase
        3. The Migration Planning Phase
        4. The Prototype Phase
        5. The Pilot Phase
        6. The Migration/Implementation Phase
    3. 3. Installing Windows Server 2003
      1. Preplanning and Preparing a Server Installation
        1. Verifying Minimum Hardware Requirements
        2. Choosing a New Installation or an Upgrade
          1. Should You Perform a New Installation?
          2. Should You Upgrade an Existing Server?
        3. Determining the Type of Server to Install
        4. Gathering the Information Necessary to Proceed
          1. Selecting the Computer Name
          2. Name of the Workgroup or Domain
          3. Network Protocol and IP Address of the Server
        5. Backing Up Files
      2. Setting Up the Windows Server 2003 Operating System
        1. Formatting the Partition
          1. Quick Formatting or Regular Formatting
          2. FAT or NTFS
        2. Customizing Regional and Language Options
        3. Personalizing the Software
        4. Inserting a Product Key
          1. Using a Retail Media Activation Key
          2. Using a Volume Media Activation Key
        5. Selecting Licensing Modes
          1. Per Server Licensing
          2. Per Device Licensing
        6. Setting Computer Name and Administrator Password
          1. Choosing Your Computer Name
          2. Selecting an Administrator Password
        7. Modifying Date and Time Settings
        8. Modifying Network Settings
          1. Typical Settings
          2. Custom Settings
        9. Joining a Workgroup or Computer Domain
        10. Completing the Installation
        11. Logging In
        12. Activating Windows Server 2003
          1. Activating Windows over the Internet
          2. Activating Windows Server 2003 by Telephone
      3. Upgrading to Windows Server 2003
        1. Backing Up the Server
        2. Verifying System Compatibility
          1. Checking the System Automatically
        3. Performing Additional Tasks
        4. Performing the Upgrade
      4. Using Alternative Methods of Installation
      5. Performing an Unattended Windows Server 2003 Installation
        1. Deciding When to Use an Unattended Installation
        2. Using the Improved Setup Manager
        3. Preparing for an Unattended Installation
        4. Creating an Unattended Installation Script
          1. Sample unattend.txt File
        5. Launching an Unattended Installation Script
          1. Sample unattend.bat File
      6. Installing Windows Server 2003 from an Image
        1. Using Remote Installation Services
          1. Improvements to Remote Installation Services
          2. Client Requirements for RIS
        2. Using the System Preparation Tool
          1. Improvements to the System Preparation Tool
        3. Using the Automated Deployment Services Tool
      7. Installing Windows Server 2003 with Group Policy and Systems Management Server
      8. Updating a Windows 2003 Server with a Service Pack
        1. Installing the Service Pack
        2. Slipstreaming the Service Pack into a New Installation Media
      9. Preparing a System and Installing the Windows 2003 R2 Components
        1. Preparing the Installation of Windows 2003 R2
          1. Preparing a System Without Service Packs
          2. Preparing a System with a Service Pack
          3. Preparing Windows 2003 R2 from Windows 2003 R2 Media
        2. Installing the Windows 2003 R2 Component Files
        3. Installing Specific Windows 2003 R2 Components
        4. Configuring the Individual Windows 2003 R2 Components
      10. Summary
      11. Best Practices
  7. II. Windows Server 2003 Active Directory
    1. 4. Active Directory Primer
      1. The Evolution of Directory Services
        1. The Original Microsoft Directory Systems
        2. Key Features of Active Directory
      2. Understanding the Development of Active Directory
        1. The Limitations of NT 4.0 Domains
        2. Microsoft’s Adoption of Internet Standards
      3. Active Directory’s Structure
        1. The Active Directory Domain
        2. Active Directory Domain Trees
        3. Forests in Active Directory
        4. Active Directory Authentication Modes
        5. Functional Levels in Windows Server 2003 Active Directory
      4. Active Directory’s Components
        1. Understanding Active Directory’s X.500 Roots
        2. The AD Schema
          1. Schema Objects
          2. Extending the Schema
          3. Performing Schema Modifications Using the ADSIEdit Tool
        3. Lightweight Directory Access Protocol
          1. Distinguished Names in AD
          2. Relative Distinguished Names
        4. Multi-Master Replication with AD Domain Controllers
        5. Global Catalog and Global Catalog Servers
        6. Operations Master (OM) Roles
      5. Domain Trusts
        1. Transitive Trusts
          1. Explicit Trusts
      6. Organizational Units
        1. Determining Domain Usage Versus OU Usage
      7. The Role of Groups in an Active Directory Environment
        1. Choosing Between OUs and Groups
      8. Active Directory Replication
        1. Sites, Site Links, and Site Link Bridgeheads
        2. Originating Writes
      9. The Role of DNS in Active Directory
        1. DNS Namespace Concepts
        2. Dynamic DNS
        3. Comparing Standard DNS Zones and AD-Integrated DNS Zones
        4. Understanding How AD DNS Works with Foreign DNS
      10. Active Directory Security
        1. Kerberos Authentication
        2. Understanding Why Internet Information Server v6 Is Disabled by Default
        3. Taking Additional Security Precautions
      11. Active Directory Changes in Windows Server 2003
        1. Active Directory in Application Mode (ADAM)
        2. Additional Changes in Windows Server 2003
      12. Summary
      13. Best Practices
    2. 5. Designing a Windows Server 2003 Active Directory
      1. Active Directory Domain Design
        1. Domain Trusts
          1. Transitive Trusts
          2. Explicit Trusts
          3. Shortcut Trusts
          4. Cross-Forest Transitive Trusts
      2. Choosing Your Domain Namespace
        1. External (Published) Namespace
        2. Internal Namespace
      3. New Domain Design Features in Windows Server 2003
      4. Choosing Your Domain Structure
      5. Single Domain Model
        1. Choosing the Single Domain Model
        2. A Single Domain Real-World Design Example
      6. Multiple Domain Model
        1. When to Add Additional Domains
        2. A Multiple Domain Real-World Design Example
      7. Multiple Trees in a Single Forest Model
        1. When to Deploy a Multiple Tree Domain Model
        2. A Multiple Tree Domain Real-World Design Example
      8. Federated Forests Design Model
        1. Determining When to Choose Federated Forests
        2. A Federated Forest Real-World Design Example
      9. Peer-Root Domain Model
        1. Determining When to Choose the Peer-Root Model
        2. A Real-World Peer-Root Domain Design Example
      10. Placeholder Domain Model
        1. A Placeholder Domain Real-World Design Example
      11. Special-Purpose Domain Design Models
        1. A Special-Purpose Domain Real-World Design Example
      12. Renaming an Active Directory Domain
        1. Domain Rename Limitations
        2. Domain Rename Prerequisites
        3. Renaming a Domain
          1. Step 1: List Current Forest Description
          2. Step 2: Modify Forest Description with New Domain Name(s)
          3. Step 3: Upload Rename Script to DCs
          4. Step 4: Prepare DCs for Domain Rename
          5. Step 5: Execute Domain Rename Procedure
          6. Step 6: Post-Rename Tasks
      13. Summary
      14. Best Practices
    3. 6. Designing Organizational Unit and Group Structure
      1. Defining Organizational Units in Active Directory
      2. AD Groups
        1. Group Types: Security or Distribution
          1. Security Groups
          2. Distribution Groups
          3. Mail-Enabled Groups
        2. Group Scope
          1. Machine Local Groups
          2. Domain Local Groups
          3. Global Groups
          4. Universal Groups
      3. OU and Group Design
      4. Starting an OU Design
        1. Mapping the OU Design to an NT Resource Domain Layout
        2. Overuse of OUs in Domain Design
        3. OU Flexibility
      5. Using OUs to Delegate Administration
      6. Group Policies and OU Design
      7. Understanding Group Design
        1. Best Practice for Groups
        2. Establishing Group Naming Standards
        3. Group Nesting
        4. Distribution Group Design
      8. Sample Design Models
        1. Business Function–Based Design
          1. OU Design for a Business Function–Based Design
          2. Group Design for a Business Function–Based Design
        2. Geographical-Based Design
          1. OU Design for a Geographical-Based Design
          2. Group Design for a Geographical-Based Design
      9. Summary
      10. Best Practices
    4. 7. Active Directory Infrastructure
      1. Understanding Active Directory Replication
        1. Understanding the Role of Replication in Active Directory
        2. Multimaster Topology Concepts
        3. Update Sequence Numbers
        4. Replication Collisions
        5. Property Version Numbers
        6. Connection Objects
        7. Replication Latency
        8. SMTP Versus IP Replication
      2. Active Directory Sites
        1. Windows Server 2003 Site Improvements
        2. Associating Subnets with Sites
        3. Using Site Links
        4. Site Link Bridging
        5. The Knowledge Consistency Checker and the Intersite Topology Generator
        6. Detailing Site Cost
        7. Preferred Site Link Bridgeheads
      3. Planning Replication Topology
        1. Mapping Site Design into Network Design
        2. Establishing Sites
        3. Choosing Between One Site or Many Sites
        4. Associating Subnets with Sites
        5. Determining Site Links and Site Link Costs
        6. Choosing Replication Scheduling
        7. Choosing SMTP or IP Replication
        8. Encrypting SMTP Site Links
        9. Windows Server 2003 Replication Enhancements
        10. Domain Controller Promotion from Media
        11. Identifying Linked-Value Replication/Universal Group Membership Caching
        12. Removing Lingering Objects
        13. Disabling Replication Compression
        14. No Full Synchronization of Global Catalog with Schema Changes
        15. Intersite Topology Generator Algorithm Improvements
      4. Windows Server 2003 IPv6 Support
        1. Defining the Structure of IPv6
        2. Understanding IPv6 Addressing
        3. Installing IPv6
        4. Migrating to IPv6
        5. Making the Leap to IPv6
      5. Real-World Replication Designs
        1. Hub-and-Spoke Replication Design
        2. Decentralized Replication Design
      6. Summary
      7. Best Practices
    5. 8. Integrating Active Directory with Novell, Oracle, Unix, and NT4 Directories
      1. Understanding and Using Services for Unix 3.5
        1. The Development of Services for Unix
        2. The Components of Services for Unix
        3. Prerequisites for Services for Unix
        4. Installing Services for Unix R2
      2. Subsystem for Unix-Based Applications as a Component of Services for Unix
        1. SUA Scripting
        2. SUA Tools and Programming Languages
      3. Sharing Files Between Unix NFS and Windows
        1. Using Server for NFS
        2. Deploying the NFS Client
      4. Taking Advantage of User Synchronization in SFU
        1. User Name Mapping
        2. Synchronizing Passwords with IDMU
        3. Adding NIS Users to Active Directory
      5. Administrative Improvements in Services for Unix
        1. Performing Remote Administration with Telnet Server and Client
        2. Scripting with ActivePerl and SFU
      6. Connecting Windows and NetWare Environments with Services for NetWare
        1. Gateway Services for NetWare
        2. Using Services for NetWare
        3. Installing Services for NetWare 5.03
        4. File and Print Services for NetWare
        5. Microsoft Directory Synchronization Services
        6. Migrating Using the File Migration Utility
      7. Microsoft Identity Integration Server 2003
        1. The History of MIIS
        2. Presenting the Identity Integration Feature Pack (IIFP)
        3. The SQL Server Database for MIIS
        4. MIIS Terminology
        5. MIIS Management Agents
        6. Management Agent Run Profiles
        7. Installing Microsoft Identity Integration Server 2003
      8. Harnessing the Power and Potential of MIIS
        1. Managing Identities with MIIS
        2. Provisioning and Deprovisioning Accounts with MIIS
        3. Summarizing MIIS 2003
      9. Working with Active Directory Federation Services
        1. Understanding the Key Components of ADFS
        2. Installing the ADFS with Windows Server 2003 R2
        3. Working with ADFS
      10. Summary
      11. Best Practices
  8. III. Network Services
    1. 9. The Domain Name System
      1. Inside the Domain Name System
        1. The Need for DNS
        2. DNS History
      2. Framework for DNS
        1. DNS Hierarchy
        2. The DNS Namespace
      3. Getting Started with DNS on Windows Server 2003
        1. Installing DNS Using the Configure Your Server Wizard
        2. Configuring DNS to Point to Itself
      4. Understanding Resource Records
        1. Start of Authority Records
        2. Host (A) Records
        3. Name Server (NS) Records
        4. Service (SRV) Records
        5. Mail Exchanger (MX) Records
        6. Pointer (PTR) Records
        7. Canonical Name (CNAME) Records
        8. Other Records
      5. DNS Zones
        1. Forward Lookup Zones
        2. Reverse Lookup Zones
        3. Primary Zones
        4. Secondary Zones
        5. Stub Zones
      6. Zone Transfers
        1. Performing Full Zone Transfers
        2. Initiating Incremental Zone Transfers
      7. DNS Queries
        1. Recursive Queries
        2. Iterative Queries
      8. Other DNS Components
        1. Dynamic DNS
        2. The Time to Live Value
        3. Performing Secure Updates
        4. Aging and Scavenging
        5. Root Hints
        6. Forwarders
        7. Using WINS for Lookups
      9. The Evolution of Microsoft DNS
        1. Active Directory–Integrated Zones
        2. Dynamic Updates
        3. Unicode Character Support
      10. DNS Changes in Windows Server 2003
        1. DNS Is Stored in the Application Partition
        2. Automatic Creation of DNS Zones
        3. No “Island” Problem
        4. Forest Root Zone for _msdcs Moved to Separate Zone
      11. DNS in an Active Directory Environment
        1. The Impact of DNS on Active Directory
        2. Active Directory in Non-Microsoft DNS Implementations
        3. Using Secondary Zones in an AD Environment
        4. SRV Records and Site Resolution
      12. Troubleshooting DNS
        1. Using the DNS Event Viewer to Diagnose Problems
        2. Using Performance Monitor to Monitor DNS
        3. Client-Side Cache and HOST Resolution Problems
        4. Using the NSLOOKUP Command-Line Utility
        5. Using the IPCONFIG Command-Line Utility
        6. Using the TRACERT Command-Line Utility
        7. Using the DNSCMD Command-Line Utility
      13. Summary
      14. Best Practices
    2. 10. DHCP/WINS/Domain Controllers
      1. Overview of the “Other” Network Services
      2. Key Components of an Enterprise Network
        1. Network Addressing
        2. Name Resolution
        3. Directory Integration
        4. Outlining Network Services Changes in Windows Server 2003
      3. Dynamic Host Configuration Protocol (DHCP)
        1. Detailing the Need for DHCP
        2. DHCP Predecessors: RARP and BOOTP
        3. The DHCP Server Service
        4. The DHCP Client Service
        5. Automatic Private IP Addressing (APIPA)
        6. DHCP Relay Agents
        7. DHCP and Dynamic DNS
        8. Installing DHCP and Creating New Scopes
      4. DHCP Changes in Windows Server 2003
        1. Automating DHCP Database Backup and Restore
        2. DHCP Client Alternate Network Capability
      5. DHCP Failover
        1. The 50/50 Failover Approach for DHCP Fault Tolerance
        2. The 80/20 Failover Approach to DHCP Fault Tolerance
        3. The 100/100 Failover Approach to DHCP Fault Tolerance
        4. Standby Scopes Approach
        5. Clustering DHCP Servers
      6. Advanced DHCP Concepts
        1. DHCP Superscopes
        2. DHCP Multicast Scopes
        3. Delegating Administration of DHCP
        4. Netsh Command-Line Utility
        5. Performing DHCP Database Maintenance
      7. DHCP Security
        1. DHCP Authorization
        2. DHCP and Domain Controller Security
      8. The Windows Internet Naming Service
        1. Legacy Microsoft NetBIOS Resolution
        2. WINS and DNS Integration
        3. Changes in Windows Server 2003 WINS
      9. Installing and Configuring WINS
        1. Installing WINS
        2. Configuring Push/Pull Partners
        3. WINS Replication
        4. NetBIOS Client Resolution and the LMHOSTS File
      10. Planning, Migrating, and Maintaining WINS
        1. Designing a WINS Environment
        2. Upgrading a WINS Environment
        3. Maintaining the WINS Database
      11. Global Catalog Domain Controller Placement
        1. Understanding the Role of the Active Directory Global Catalog
        2. Global Catalog/Domain Controller Placement
        3. Universal Group Caching
        4. Global Catalog and Domain Controller Placement
      12. Summary
      13. Best Practices
    3. 11. Internet Information Services v6
      1. Improvements in IIS 6
      2. Planning and Designing IIS
        1. Determining Server Requirements
        2. Determining Fault Tolerance Requirements
      3. Installing and Upgrading IIS
        1. Upgrading from Other Versions of IIS
      4. Configuring IIS
        1. Using the IIS Snap-in
        2. Configuring Web Services
        3. Creating a Web Site with IIS
        4. Selecting Web Site Properties
        5. Creating and Configuring a Virtual Directory
      5. Configuring and Optimizing Applications
        1. Application Isolation and Pooling
        2. IIS 6 Process Recycling
        3. Monitoring IIS Health
        4. Application Performance
        5. Application Options
      6. Installing and Configuring FTP Services
        1. Isolating FTP Users for Content Protection
        2. Creating an FTP Site
        3. FTP Properties Page
      7. Examining Optional IIS Components
        1. SMTP Services
        2. NNTP Service
        3. Indexing Internet Services
      8. Securing IIS
        1. Windows Server 2003 Security
        2. Locking Down Web Service Extensions
        3. IIS Authentication
        4. Auditing Web Services
        5. Using SSL Certificates
        6. Configuring FTP Security Options
          1. Securing FTP Transfer
          2. Securing FTP Authentication
          3. Other FTP Security Measures
      9. Maintaining IIS
        1. IIS Logging
      10. Internet Explorer Enhanced Security Configuration for Servers
      11. Summary
      12. Best Practices
  9. IV. Security
    1. 12. Server-Level Security
      1. Defining Windows Server 2003 Security
        1. Microsoft’s “Trustworthy Computing” Initiative
        2. Common Language Runtime
        3. The Layered Approach to Server Security
      2. Deploying Physical Security
        1. Restricting Physical Access
        2. Restricting Login Access
        3. Using the Run As Command for Administrative Access
        4. Using Smartcards for Login Access
        5. Securing Wireless Networks
        6. Firewall Security
      3. Hardening Server Security
        1. Defining Server Roles
        2. Securing a Server Using the Configure Your Server Wizard
      4. Using Security Templates to Secure a Server
        1. Shutting Off Unnecessary Services
      5. File-Level Security
        1. NT File System Security
        2. Share-Level Security Versus NTFS Security
        3. Auditing File Access
        4. Encrypting Files with the Encrypting File Service
      6. Additional Security Mechanisms
        1. Antivirus Precautions
        2. Deploying Backup Security
      7. Using Windows Server Update Services
        1. Understanding the Background of WSUS: Windows Update
        2. Deploying the Automatic Updates Client
        3. Understanding the Development of Windows Server Update Services
        4. WSUS Prerequisites
        5. Installing a Windows Server Update Services System
        6. Setting WSUS Options
        7. Synchronizing a WSUS Server
        8. Approving WSUS Software Patches
        9. Automatically Configuring Clients via Group Policy
        10. Deploying Security Patches with WSUS
      8. Summary
      9. Best Practices
    2. 13. Transport-Level Security
      1. Introduction to Transport-Level Security in Windows Server 2003
        1. The Need for Transport-Level Security
        2. Security Through Multiple Layers of Defense
        3. Encryption Basics
      2. Virtual Private Networks
        1. VPN Tunnels
        2. Tunneling Protocols
        3. PPTP and L2TP Protocols
        4. L2TP/IPSec Secure Protocol
        5. Administering a VPN Using an Internet Authentication Service Server
        6. Using Routing and Remote Access Service to Establish VPNs
      3. Public Key Infrastructure
        1. Private Key Versus Public Key Encryption
        2. Certificates
        3. Certificate Services in Windows Server 2003
        4. Using Smartcards in a PKI Infrastructure
        5. Encrypting File System
        6. Integrating PKI with Non-Microsoft Kerberos Realms
      4. Using IPSec Encryption with Windows Server 2003
        1. The IPSec Principle
        2. Key IPSec Functionality
        3. IPSec NAT Transversal
      5. Configuring Simple IPSec Between Servers in a Windows Server 2003 Domain
        1. Viewing the IPSec Security Monitor
        2. Establishing an IPSec Policy on the Server
        3. Establishing an IPSec Policy on the Client
        4. Verifying IPSec Functionality in Event Viewer
      6. Summary
      7. Best Practices
    3. 14. Windows Server 2003 Passports
      1. The Benefits of Using .NET Passports
      2. Installing and Configuring .NET Passports
        1. Obtaining a PREP ID
        2. Using the Passport Manager Administration Utility
        3. Obtaining an Encryption Key
        4. Building .NET Passport for Production
      3. Working with .NET Passport Accounts
        1. Converting Accounts
        2. Using Site Accounts and .NET Passport
        3. Creating Passport Accounts
      4. Using Passports with Web-Based Applications
      5. Using .NET Passports and Mobile Devices
      6. Additional Layers of Security
        1. .NET Passport Authentication
        2. .NET Passport Cookies
        3. Securing Communications
      7. .NET Passport Policies
        1. Fair Information Practices
      8. Other Passport Services
        1. .NET Passport for Kids
      9. Passport Licensing
      10. Summary
      11. Best Practices
    4. 15. Security Policies and Tools
      1. Security Policies
        1. Policy Levels
          1. Enterprise Policy Hierarchy
          2. Issue-Specific Policy Hierarchy
          3. Procedures and Checklists Policy Hierarchy
        2. Roles and Responsibilities
          1. Desktop Security Policy
          2. Application Security Policy
          3. Network Security Policy
      2. Security Framework
        1. Administrative Controls
          1. Educating the Organization
          2. Policy Enforcement
          3. Employee Forms
          4. IT Personnel Forms
        2. Physical Controls
        3. Technical Controls
          1. Firewalls
          2. Intrusion Detection System
          3. Address-Based Restrictions
          4. Authentication
          5. Authorization
          6. Base Installations
          7. PKI
          8. Monitoring Tools
          9. Auditing Tools
      3. Windows Server 2003 Security Policy Toolbox
        1. Certificate Services
        2. Security Configuration and Analysis
        3. Microsoft Baseline Security Analyzer
        4. Security Configuration Wizard
        5. Windows Rights Management Services
      4. Summary
      5. Best Practices
  10. V. Migrating to Windows Server 2003
    1. 16. Migrating from Windows NT4 to Windows Server 2003
      1. Migration Paths to Windows Server 2003
        1. Determining the Best Migration Path for Your Organization
          1. Conducting an Inplace Upgrade
          2. Migrating an Existing Windows NT4 Domain to a New Windows Server 2003 Forest
          3. Consolidating Multiple Windows NT4 Domains to Active Directory
      2. Preparing Windows NT4 Domains to Migrate to Windows Server 2003
        1. Hardware and Software Compatibility
        2. Reviewing Hardware and Software Requirements
          1. Operating System Requirements
          2. Server Hardware Requirements
        3. Migrating Windows NT4 Volumes, Mirrors, and Stripe Sets
          1. Mirrored Volumes
          2. Volume Sets, Striped Sets, and Striped Sets with Parity
        4. Installing and Configuring Services for Compatibility with Windows Server 2003
        5. Preparing an NT 4.0 SAM Database
      3. Performing an Inplace Upgrade
        1. Upgrading the Windows NT4 Primary Domain Controller
        2. Upgrading to Active Directory
        3. Setting Forest Functionality Levels
        4. Applying Security to the Directory Services Restore Mode
        5. Migrating Backup Domain Controllers and Domain Member Servers
        6. Starting the Domain Controller/Member Server Upgrade
        7. Upgrading the Windows NT4 BDC to a Windows Server 2003 Domain Controller
      4. Migrating Existing NT4 Domains to a New Windows Server 2003 Forest
        1. Installing and Configuring a New Windows Server 2003 Forest and Domain
        2. Configuring Domain Trust Between Windows NT4 and Windows Server 2003
        3. Migrating Account and Resource Domains to Windows Server 2003 and Active Directory
        4. Implication of Migrating Security Principles
      5. Consolidating Windows NT4 Domains
        1. Upgrading an Existing NT4 Domain to a New Active Directory Forest Root Domain
        2. Restructuring Existing Account and Resource Domains to Active Directory
      6. Using Microsoft Active Directory Migration Tool
        1. Installing the Active Directory Migration Tool
        2. Migrating Domain Accounts and Groups to Active Directory
          1. Resolving Naming Conflicts
        3. Migrating NT4 Groups into Active Directory
        4. Migrating Computer Accounts to Active Directory
        5. Migrating Service Accounts to Active Directory
      7. Summary
      8. Best Practices
    2. 17. Migrating from Windows 2000 to Windows Server 2003
      1. Windows Server 2003 Migration Overview
      2. Beginning the Migration Process
        1. Identifying Migration Objectives
        2. Establishing Migration Project Phases
        3. Comparing the Inplace Upgrade Versus New Hardware Migration Methods
        4. Identifying Migration Strategies: “Big Bang” Versus Slow Transition
        5. Migration Options
      3. Upgrading a Single Member Server
        1. Verifying Hardware Compatibility
        2. Verifying Application Readiness
        3. Backing Up and Creating a Recovery Process
        4. Upgrading a Standalone Server
      4. Upgrading a Windows 2000 Active Directory Forest
        1. Migrating Domain Controllers
        2. Upgrading the AD Schema Using adprep
        3. Upgrading Existing Domain Controllers
        4. Replacing Existing Domain Controllers
        5. Moving Operation Master Roles
        6. Retiring Existing Windows 2000 Domain Controllers
        7. Retiring “Ghost” Windows 2000 Domain Controllers
        8. Upgrading Domain and Forest Functional Levels
        9. Moving AD-Integrated DNS Zones to Application Partition
      5. Upgrading Separate AD Forests to a Single Forest Using Mixed-Mode Domain Redirect
        1. Prerequisites and Limitations of the Mixed-Mode Domain Redirect Procedure
        2. Mixed-Mode Domain Redirect Procedure
          1. Establishing a Temporary Windows 2000 Domain Controller
          2. Moving Operations Master Roles and Demoting Existing Domain Controllers
          3. Demoting Production Domain Controllers
          4. Building a Temporary NT 4.0 Domain Controller
          5. Retiring the Existing Forest
          6. Promoting the Second Temporary Server to NT PDC
          7. Promoting the NT PDC to Windows Server 2003 and Integrating with the Target Forest
          8. Re-establishing Prior Domain Controllers and Moving OM Roles
          9. Retiring the Temporary Domain Controller
      6. Consolidating and Migrating Domains Using the Active Directory Migration Tool v2.0
        1. Understanding ADMT v2.0 Functionality
      7. Consolidating a Windows 2000 Domain to a Windows Server 2003 Domain Using ADMT v2.0
        1. Using ADMT in a Lab Environment
        2. ADMT v2.0 Installation Procedure
          1. ADMT Domain Migration Prerequisites
          2. Creating Two-Way Trusts Between Source and Target Domains
          3. Assigning Proper Permissions on Source Domain and Source Domain Workstations
          4. Creating Target OU Structure
          5. Modifying Default Domain Policy on the Target Domain
          6. Exporting Password Key Information
          7. Installing a Password Migration DLL on the Source Domain
          8. Setting Proper Registry Permissions on the Source Domain
        3. Migrating Groups
        4. Migrating User Accounts
        5. Migrating Computer Accounts
        6. Migrating Other Domain Functionality
      8. Summary
      9. Best Practices
    3. 18. Compatibility Testing for Windows Server 2003
      1. The Importance of Compatibility Testing
      2. Preparing for Compatibility Testing
        1. Determining the Scope for Application Testing
        2. Defining the Goals for Compatibility Testing
          1. Timeframe for Testing
          2. Budget for the Testing
          3. Resources to Be Used
          4. Extent of the Testing
          5. Training Requirements During Testing
          6. Documentation Required
          7. Extent of User Community Involvement
          8. Fate of the Testing Lab
        3. Documenting the Compatibility Testing Plan
      3. Researching Products and Applications
        1. Taking Inventory of Network Systems
        2. Taking Inventory of Applications on Existing Servers
        3. Understanding the Differences Between Applications and Windows Services
        4. Completing an Inventory Sheet per Application
        5. Prioritizing the Applications on the List
      4. Verifying Compatibility with Vendors
        1. Tracking Sheets for Application Compatibility Research
        2. Six States of Compatibility
        3. Using a Windows Server 2003-Compatible Application
        4. Requiring a Minor Update or Service Patch for Compatibility
        5. Applications That Require a Version Upgrade for Compatibility
        6. Handling an Incompatible Application That Will Remain “As Is”
        7. Incompatible Applications That Won’t Be Used
        8. Officially Incompatible Applications That Seem to Work Fine
        9. Creating an Upgrade Decision Matrix
        10. Assessing the Effects of the Compatibility Results on the Compatibility Testing Plan
      5. Lab-Testing Existing Applications
        1. Allocating and Configuring Hardware
        2. Allocating and Configuring Windows Server 2003
        3. Loading the Remaining Applications
        4. Application Compatibility Testing Tool
        5. Testing the Migration and Upgrade Process
      6. Documenting the Results of the Compatibility Testing
      7. Determining Whether a Prototype Phase Is Required
      8. Summary
      9. Best Practices
  11. VI. Windows Server 2003 Administration and Management
    1. 19. Windows Server 2003 Administration
      1. Defining the Administrative Model
        1. The Centralized Administration Model
        2. The Distributed Administration Model
        3. The Mixed Administration Model
      2. Examining Active Directory Site Administration
        1. Site Components
          1. Subnets
          2. Site Links
          3. Licensing Server (Per Site)
          4. Site Group Policies
      3. Configuring Sites
        1. Creating a Site
          1. Creating Site Subnets
          2. Adding Domain Controllers to Sites
        2. Configuring Licensing for the Enterprise
          1. Configuring Server/Workstation Licensing Options
          2. Adding Licenses
        3. Establishing Site Links
        4. Delegating Control at the Site Level
      4. Examining Windows Server 2003 Active Directory Groups
        1. Group Types
          1. Distribution Groups
          2. Security Groups
        2. Group Scopes in Active Directory
          1. Domain Local Groups
          2. Global Groups
          3. Universal Groups
      5. Creating Groups
        1. User Administration in a Single Domain
        2. User Administration Across a Forest of Domains
        3. Domain Functionality Level and Groups
        4. Creating AD Groups
        5. Populating Groups
        6. Group Management
      6. Handling User Administration
      7. Understanding User Profiles
        1. Examining Profile Types
          1. Local Profile
          2. Roaming Profile
          3. Mandatory Profile
          4. Default User Profile
          5. Temporary Profile
          6. All Users Profile
          7. Template Profiles
        2. Creating a Default Profile
        3. Copying Profiles for the Default User Profile
      8. Managing Users with Local Security and Group Policies
        1. Viewing Policies with the Group Policy Object Editor
        2. Creating New Group Policies
        3. Configuring and Optimizing Group Policy
          1. Block Policy Inheritance
          2. The No Override Options
        4. Troubleshooting Group Policy Applications
          1. The Resultant Set of Policies MMC Snap-in
      9. Managing Printers with Print Management Component
        1. Installing the Print Management Component
        2. Configuring the Print Management Component
        3. Adding New Printers as Network Shared Resources
          1. Using the Add Printer Option in Windows to Add a Local Printer
          2. Using the Add Printer Option in Windows to Add a Network-Attached Printer
          3. Using the Add Printer Option in the Print Management Component
        4. Adding Print Servers to the Print Management Component
        5. Using the Print Management Component
          1. Performing General Printer Administration Tasks
          2. Creating Custom Printer Filters
      10. Summary
      11. Best Practices
    2. 20. Windows Server 2003 System Registry
      1. Windows Server 2003 Registry Architecture
        1. Hives, Keys, and Subkeys
        2. Registry Location and Storage
        3. HKEY_LOCAL_MACHINE
          1. The HARDWARE Subkey
          2. The SAM Subkey
          3. The SECURITY Subkey
          4. The SOFTWARE Subkey
          5. The SYSTEM Subkey
        4. HKEY_CLASSES_ROOT
        5. HKEY_CURRENT_CONFIG
        6. HKEY_CURRENT_USER
        7. HKEY_USERS
      2. The Windows Server 2003 Registry Editor
        1. Modifying Registry Entries
          1. Adding a Key
          2. Adding a Value
          3. Changing a Value
          4. Removing a Key or Value
        2. Searching the Registry
        3. Working with Favorites
        4. Connecting to a Remote Registry
      3. Protecting the Registry
        1. Preventing Remote Access
        2. Auditing the Registry
        3. Analyzing Event Logs
      4. Maintaining the Registry
        1. Managing Registry Size
        2. Keeping the Registry Fit
        3. Cleaning the Registry
          1. The Add/Remove Programs Applet
          2. Windows Installer Cleanup Utility (MSICUU.EXE)
          3. Windows Installer Zapper (MSIZAP.EXE)
      5. Backing Up the Registry
        1. Using Backup Utility
          1. Using Automated System Recovery
        2. Backing Up Individual Keys
        3. Speeding Up Individual Key Backups
        4. Restoring Individual Registry Keys
      6. Summary
      7. Best Practices
    3. 21. Windows Server 2003 Group Policies
      1. Leveraging Group Policies
        1. Using Computer Policies
        2. Using User Policies
        3. Understanding Group Policy Refresh Intervals
      2. General Best Practices for Group Policy Deployment
        1. The Fewer Policies, the Better: The “Less Is More” Approach
        2. Knowing Resultant Set of Policies (RSoP)
        3. Group Policy Order of Inheritance
        4. Knowing the Impact of Slow Link Detection
        5. Delegating GP Management Rights
        6. Avoiding Cross-Domain Policy Assignments
        7. Using Group Policy Naming Conventions
        8. Understanding the Default Domain Policy
      3. Understanding GP Inheritance and Application Order
        1. Best Practices for Group Policy Inheritance
        2. Understanding the Order in Which Group Policy Objects Are Applied
        3. Modifying Group Policy Inheritance
        4. Configuring Group Policy Loopback
      4. Understanding the Effects of Slow Links on Group Policy
        1. What Is the Effect of a Slow Link on a Site?
        2. Determining Slow Link Speed
        3. Configuring a Unique Slow Link Speed
      5. Using Tools to Make Things Go Faster
      6. Linking Group Policies
        1. Configuring the Group Policy Snap-in
        2. Disabling Configuration Settings
        3. Viewing Group Policy Using the Show Configured Policies Only
        4. Deleting Orphaned Group Policies
      7. Automating Software Installations
        1. Determining Whether a Push Was Successful
      8. Enhancing Manageability with Group Policy Management Console
        1. GPO Operations: Backup, Restore, Copy, and Import
        2. Migrating Tables
        3. Supporting Group Policy Management Across Forests
        4. HTML Reporting Functionality and the Settings Tab
        5. Linking WMI Filters
        6. Searching the GPMC for Group Policies
      9. Using Resultant Set of Policies in GPMC
        1. Group Policy Modeling Using Resultant Set of Policy
        2. Using RSoP Logging Mode to Discover Applied Policies
      10. Understanding Windows Management Instrumentation
        1. Using WMI Scripting
        2. Using WMI Filters
          1. Adding a New WMI Filter to a Group Policy Object
          2. Importing to and Exporting from a Group Policy Object
      11. Maximizing Security with Group Policy
        1. Predefined Security Templates
        2. Required Default Domain Group Policy Settings
        3. Restricted Groups: Assigning Local Groups Through GP
      12. Getting the Most Out of Folder Redirection
        1. Creating a Folder for Each User Under the Root Path
        2. Redirecting to Home Directory (My Documents)
        3. Redirecting to a Special Path
        4. Redirecting to the Local User Profile
        5. Using Roaming Profiles
      13. Other Useful Tools for Managing Group Policies
        1. Using the gpupdate.exe Tool
        2. Using the gpresult.exe Tool
        3. Using the Group Policy Monitor Tool
        4. Using the GPOTool.exe Tool
        5. Using the FRSDiag.exe Tool
        6. Using the Sonar.exe Tool
      14. Using Administrative Templates
        1. Policies Versus Preference
        2. Using Microsoft Add-on GP Templates
      15. Modifying Administrative Templates
        1. Outlook Client Policy Options
        2. Adding the Outlook Administrative Template
        3. Assigning Group Policy Delegates
          1. How to Delegate Rights over GPOs
        4. Managing Group Policy Configurations
        5. Defining Baseline Outlook Preferences
          1. Email Options
          2. Calendar Options
          3. Contact Options
        6. Managing the Look and Feel of the Outlook Client
          1. Web Options Overview
        7. Configuring and Applying Outlook Group Policy Settings
        8. Customizing Administrative Group Policy Templates
      16. Working with Group Policy Objects
        1. Opening the Group Policy Snap-in
        2. Editing a Group Policy Object
        3. Creating a Group Policy Object
        4. Deleting a Group Policy Object
        5. Unlinking a Group Policy Object
        6. Disabling a Group Policy Object
      17. Working Within the Group Policy Snap-in Namespace
        1. Using Computer and User Configurations
        2. Working with Software Settings
        3. Working with Windows Settings
        4. Working with Security Settings
        5. Leveraging Administrative Templates
        6. Deploying Software Installations
        7. Creating and Modifying Scripts
      18. Summary
      19. Best Practices
    4. 22. Windows Server 2003 Management and Maintenance Practices
      1. Managing Windows Server 2003
        1. Managing Based on Server Roles
          1. File Servers
          2. Print Servers
          3. Web Servers
          4. Messaging Servers
          5. Terminal Servers
        2. Domain Controllers
      2. Auditing the Environment
        1. Auditing Policies
        2. Tracking Logon and Logoff Events
        3. Monitoring Resource Access
          1. Monitoring Files and Folders
          2. Monitoring Printers
      3. Managing Windows Server 2003 Remotely
        1. Administrative Tools
        2. Remote Desktop for Administration
        3. Using the Remote Control Add-on for Active Directory Users and Computers
        4. Using Telnet for Remote Access Management
        5. WinRM for Remote Management
      4. Identifying Security Risks
      5. Tracking and Managing Licenses
      6. Using Microsoft Operations Manager to Simplify Management
      7. Employing Windows Server 2003 Maintenance Practices
        1. Maintaining DHCP and WINS
        2. Maintaining DNS Aging and Scavenging
      8. Keeping Up with Service Packs and Updates
        1. Windows Update
        2. Software Update Services
        3. Maintaining Consistency
      9. Maintaining Windows Server 2003
        1. Daily Maintenance
          1. Checking Overall Server Functionality
          2. Verifying That Backups Are Successful
          3. Monitoring the Event Viewer
        2. Weekly Maintenance
          1. Checking Disk Space
          2. Verifying Hardware
          3. Checking Archive Event Logs
          4. Running Disk Defragmenter
          5. Running the Domain Controller Diagnostic Utility
        3. Monthly Maintenance
          1. Maintaining File System Integrity
          2. Testing the UPS
          3. Validating Backups
          4. Updating Automated System Recovery Sets
          5. Updating Documentation
        4. Quarterly Maintenance
          1. Checking Storage Limits
          2. Changing Administrator Passwords
          3. Maintaining the AD Database
        5. MMC 3.0
      10. Summary of Maintenance Tasks and Recommendations
      11. Summary
      12. Best Practices
    5. 23. Automating Tasks Using Windows Server 2003 Scripting
      1. Scripting Overview
        1. Documented Instruction Scripts
        2. Server Management
        3. Workstation Management
        4. Scripts for User Configuration
        5. Directory Administration Scripts
        6. Advantages of Scripting
      2. Introduction to VBScript
        1. Visual Basic Script Options
          1. Windows Scripting Host
          2. Active Server Pages
      3. Active Directory Scripting Overview
        1. Active Directory Objects
        2. Active Directory Services Interface
        3. Working with Active Directory Objects
      4. Discovering Object Properties
        1. ADSI Edit MMC Snap-in
          1. Discovering the Directory Name of a User Attribute
        2. Active Directory Schema MMC Snap-in
      5. Scripting User Management
        1. Scripting User Creation
        2. Populating Optional User Attributes
        3. Populating User Attributes Using Variables
        4. Scripting Exchange 2000 Properties for Active Directory
          1. Collaborative Data Objects
      6. Creating a User from File Data
        1. Using Ldifde.exe or Csvde.exe
        2. Connecting to Flat File Data Sources
      7. Searching Active Directory
        1. ActiveX Data Objects
        2. Creating a Search Using ADO
        3. Searching Using the Active Directory Users and Computers MMC Snap-in
      8. Windows Server 2003 Scripting
        1. Introducing Windows Management Instrumentation
        2. Creating a Simple WMI Script
      9. Leveraging Sample Scripts
        1. Finding Orphaned Group Policies
        2. Scanning for Installed Software Components
        3. Checking Local Group Membership
        4. Locating Domain Printers
        5. Creating Users from Data in a CSV File
        6. Checking Domain Servers for Volume Free Space
      10. Summary
      11. Best Practices
    6. 24. Documenting a Windows Server 2003 Environment
      1. Benefits of Documentation
        1. Knowledge Management
        2. Financial Benefits
        3. Baselining with Document Comparisons
        4. Using Documentation for Troubleshooting Purposes
      2. Design and Planning Documentation
        1. Documenting the Design
      3. Migration Documentation
        1. Project Plans
        2. Developing the Test Plan
        3. Server Migration Procedures
        4. Desktop Migration Procedures
        5. User Migration Procedures
        6. Checklists
      4. Active Directory Infrastructure
      5. Network Infrastructure
        1. Documenting the WAN Infrastructure
        2. Network Device Documentation
        3. Configuration (As-Built) Documentation
      6. Administration and Maintenance Documentation
        1. Step-by-Step Procedure Documents
        2. Policies
        3. Documented Checklists
        4. Procedural Documents
      7. Disaster Recovery Documentation
        1. Disaster Recovery Planning
        2. Backup and Recovery
        3. Monitoring and Performance Documentation
        4. Failover
        5. Change Management Procedures
      8. Performance Documentation
        1. Routine Reporting
        2. Management-Level Reporting
        3. Technical Reporting
      9. Security Documentation
        1. Change Control
        2. Routine Reporting
        3. Management-Level Reporting
      10. Training Documentation
        1. Technical Training
        2. End-User Training
        3. System Usage Policies
      11. Summary
      12. Best Practices
    7. 25. Integrating Microsoft Operations Manager with Windows Server 2003
      1. What Is Microsoft Operations Manager?
      2. How MOM Works
        1. Processing Events and Performance Data
        2. Generating Alerts and Responses
      3. Outlining MOM Architecture
        1. How MOM Stores Captured Data
        2. The Role of the Data Access Server
        3. The Consolidator Component
        4. Determining the Role of Agents in System Monitoring
        5. Creating Administrative Boundaries with Configuration Groups
      4. How to Use MOM
        1. Managing and Monitoring with MOM
        2. Reporting from MOM
        3. Using Performance Monitoring
      5. Exploring Management Packs
        1. Legacy Management Integration
        2. Extended Management Packs
        3. MOM Resource Kit Tools
      6. MOM Component Requirements
        1. Hardware Requirements
        2. Determining Software Requirements
        3. Identifying MOM Service Accounts
        4. MOM Backup Considerations
        5. Deploying MOM Agents
      7. Advanced MOM Concepts
        1. DCAM Versus D-DCAM Servers
        2. Multiple Configuration Groups
        3. Deploying Geographic-Based Configuration Groups
        4. Deploying Political or Security-Based Configuration Groups
        5. Sizing the MOM Database
        6. Capacity Limits
        7. Scaling MOM Environments
        8. System Redundancy
      8. MOM Security
        1. Physically Securing MOM
        2. Securing MOM Agents
        3. Firewall Requirements
        4. Service Account Security
      9. Identifying Sample Designs of Successful MOM Implementations
        1. Deploying a Single Server MOM Configuration
        2. Deploying a Multiple MOM Server Configuration
      10. Summary
      11. Best Practices
  12. VII. Remote and Mobile Technologies
    1. 26. Remote and Mobile Access
      1. Windows Server 2003 Routing and Remote Access Features and Services
        1. Point-to-Point Protocol Over Ethernet Dial-On-Demand
        2. Background Intelligent Transfer Service Version 1.5
        3. NAT Traversal Using Universal Plug and Play
        4. Quarantine Policy Check
      2. Routing and Remote Access Service Architecture
        1. SNMP Agent for RRAS
        2. Management Applications
        3. Authentication, Authorization, and Accounting
        4. Dynamic Interface Manager (Mprdim.dll)
        5. Connection Manager
        6. Telephony Application Programming Interface
        7. IP Router Manager (Iprtmgr.dll)
        8. IPX Router Manager (Ipxrtmgr.dll)
        9. Unicast Routing Protocols
        10. IP Multicast Routing Protocols
        11. Route Table Manager (Rtm.dll)
        12. Multicast Group Manager
        13. IP Filtering Driver (Ipfltdrv.sys)
        14. IP Unicast Forwarder
        15. IP Multicast Forwarder
        16. IPX Filtering Driver (Nwlnkflt.sys)
        17. IPX Forwarder Driver (Nwlnkfwd.sys)
      3. Virtual Private Networking in Windows 2003
        1. Components Needed to Create a VPN Connection
          1. The VPN Client
          2. The VPN Server
          3. Tunnel/VPN Connection
          4. Internet/Intranet Infrastructure
      4. Authentication Options to an RRAS System
        1. Authentication Protocols for PPTP Connections
        2. EAP-TLS Authentication Protocols
        3. Authentication Protocols for L2TP/IPSec Connections
        4. Choosing the Best Authentication Protocol
      5. VPN Protocols
        1. Tunneling Within a Windows Server 2003 Networking Environment
        2. Point-to-Point Tunneling Protocol
        3. Layer 2 Tunneling Protocol
        4. IP Security
      6. Choosing Between PPTP and L2TP/IPSec
        1. Advantages of L2TP/IPSec Over PPTP
        2. Advantages of PPTP Over L2TP/IPSec
      7. Installing and Configuring Routing and Remote Access
      8. Configuring Remote Access Clients
        1. VPN Client Configuration
        2. Connection Manager Client Dialer
        3. Connection Manager Administration Kit
        4. Connection Point Services
        5. Single Sign-on
        6. The Impact of NAT Traversal at Improving Remote Connectivity
      9. RRAS Tools and Utilities
        1. Routing and Remote Access MMC Snap-in
        2. The Netsh Command-Line Tool
        3. Authentication and Accounting Logging
        4. Event Logging
        5. Tracing
      10. Leveraging the Capabilities of the Quarantine Policy Check Tool
        1. How the Quarantine Policy Check Works
        2. Quarantine Control Components and System Requirements
        3. Installing the RQS.EXE Utility on an RRAS Server
        4. Creating a Script File for Post-Connection Execution
        5. Creating a Quarantine Connection Manager Profile
        6. Launching the CM Profile on Remote Access Client Systems
      11. Remote Access Scenarios
        1. Remote Mobile and Home Users
        2. Site-to-Site Connections
      12. Summary
      13. Best Practices
    2. 27. Windows Server 2003 Terminal Services
      1. Why Implement Terminal Services?
        1. Remote Desktop for Administration
        2. Terminal Services for LAN Users
        3. Terminal Services for Remote User Support
        4. Terminal Services for Application Service Providers
      2. How Terminal Services Works
        1. Modes of Operation
          1. Remote Desktop for Administration Mode
          2. Terminal Server Mode
        2. Client-Side Terminal Services
          1. Remote Assistance
          2. Remote Desktop Connection
      3. Leveraging Terminal Services Features
        1. Using Local Resource Redirection Functionality
          1. Disk Drive Redirection
          2. Printer Redirection
          3. Local Time Zone Redirection
        2. Using Session Directory Server
        3. Granular Session Control
        4. Terminal Server Console Access
        5. Terminal Server Fault Tolerance
      4. Planning for Terminal Services
        1. Planning for Remote Desktop for Administration Mode
        2. Planning for Terminal Server Mode
          1. User Requirements
          2. Antivirus on Terminal Services
        3. Terminal Server Upgrades
        4. Physical Placement of Terminal Servers
        5. Planning for Hosted Applications
        6. Networking Requirements
        7. Terminal Server Fault Tolerance
        8. Working with Terminal Server Licensing
      5. Deploying Terminal Services
        1. Enabling Remote Desktop for Administration
          1. Enabling Remote Assistance
        2. Installing Terminal Server Mode
        3. Installing Applications for Terminal Server
      6. Configuring Terminal Services
        1. Local Security Policy Settings
        2. Using the Computer Management Tool
        3. Active Directory Users and Computers (Dsa.msc)
        4. Terminal Services Configuration (Tscc.msc)
          1. Server Settings
          2. Connections
        5. Group Policy for Terminal Server
      7. Installing a Terminal Services License Server
        1. Activating the Terminal Services License Server
        2. Installing Client Access Licenses
        3. Configuring the Licensing Type on a Terminal Server
      8. Installing and Configuring Fault-Tolerant Terminal Services
        1. Network Load Balancing Terminal Server
        2. Configuring the Session Directory Server
      9. Securing Terminal Services
        1. Changing the RDP Port
        2. Perimeter Protection Considerations
        3. Securely Building Terminal Servers
        4. Segmenting Resources
        5. Securing Terminal Services with GPOs
      10. Sizing and Optimizing Terminal Services Environments
        1. Scaling Terminal Services
          1. Adding Redundancy and Scalability to Session Directory
        2. Optimizing Terminal Services Performance
          1. Monitoring Terminal Server
          2. Using Windows System Resource Manager to Control Resources
      11. Supporting Terminal Services
        1. Using the Terminal Server Manager
        2. Managing the Command-Line Terminal Services
        3. Managing Terminal Services Using WMI
        4. Supporting and Enabling Terminal Server Users
          1. Disabling Terminal Services
          2. Remotely Managing a Terminal Session
        5. Applying Service Packs and Updates
        6. Performing Disaster Recovery on a Terminal Server
      12. Accessing a Terminal Server
        1. Accessing Terminal Services Using the 32-bit Windows RDP Client
        2. Accessing Terminal Services Using the Web Client
        3. Using the Remote Desktops MMC (Tsmmc.msc)
        4. Remotely Connecting to a Terminal Server Console
      13. Summary
      14. Best Practices
  13. VIII. Desktop Administration
    1. 28. Windows Server 2003 Administration Tools for Desktops
      1. Examining Desktop Deployment Options
        1. Manual Installation
        2. Unattended Installations
        3. Desktop Imaging
          1. Remote Installation Services
          2. Third-Party Imaging Software
          3. Multicast Imaging Software
      2. Using Remote Installation Services to Deploy System Images
        1. Planning RIS Deployments
        2. Installing RIS
        3. Configuring RIS
        4. Configuring DHCP for RIS Clients
        5. Establishing Client Requirements
      3. Creating Windows XP Images
        1. Installing Desktop Software
        2. Standardizing the Desktop
        3. Minimizing Common Image Errors
        4. Using the Windows XP Deployment Tools
          1. Setup Manager
          2. System Preparation Tool
          3. Installing the Windows XP Deployment Tools
        5. Creating a Custom Desktop Image for RIS
        6. Creating an Unattended Installation
      4. Managing Windows XP Installation Media and Image Versions
        1. Updating Desktop Images
      5. Updating Existing XP and 2000 Workstations
        1. Deploying Service Packs
        2. Deploying Hotfixes and Security Updates
        3. Using Windows Automatic Update for System Updates
        4. Choosing to Use Software Update Services for System Updates
      6. Managing Desktop Applications
        1. Managing Applications Using Group Policy
          1. Group Policy Software Installation
        2. Using Third-Party Application Packaging Software
        3. Manually Installing Applications
          1. Remote Installation Using Remote Desktop
          2. Remote Installation Using Remote Assistance
      7. Managing Windows XP Desktops Remotely
        1. Using the Remote Control Add-on for Active Directory Users and Computers
        2. Using the Remote Desktop Connection for Windows 2003
      8. Summary
      9. Best Practices
    2. 29. Group Policy Management for Network Clients
      1. Leveraging the Power of Group Policy
        1. Managing Group Policy
        2. Understanding Policies and Preferences
        3. Group Policy and Security Templates
        4. Defining the Order of Application
        5. Group Policy Refresh Intervals
      2. Baseline Administration for Group Policy Deployment
        1. Delegating Group Policy Management Rights
        2. Working with Resultant Set of Policies
        3. Managing Group Policy Inheritance
        4. Group Policy Backup, Restore, Copy, and Import
      3. General Recommendations for Managing Clients Through Group Policy
        1. Keeping Group Policy Manageable
        2. Managing Client Software Installations
        3. Using Folder Redirection
      4. Using Group Policy for System Updates and Patch Management
        1. Deployment Options When Updating Network Clients
        2. Deploying Client Updates
        3. Pushing Client Updates
        4. Determining the Success of a Push
      5. Real-Life Scenarios of Group Policy Management
        1. Working with Mobile Users
        2. Managing Remote Users
        3. Locking Down Workstations
        4. Supporting Power Users
        5. Providing a High Level of Security
        6. Maintaining Administrator Workstations
      6. Summary
      7. Best Practices
  14. IX. Fault Tolerance Technologies
    1. 30. File System Fault Tolerance
      1. Examining Windows Server 2003 File System Services
        1. Distributed File System
        2. Distributed File System Replication
        3. File Replication Service
        4. Volume Shadow Copy Service
        5. Remote Storage
      2. Using Fault-Tolerant Disk Arrays
        1. Disk Types
          1. Basic Disks
          2. Dynamic Disks
        2. Disk Formatting
        3. Managing Disks
          1. Using the Disk Management MMC Snap-in
          2. Using the Diskpart.exe Command-Line Utility
        4. Creating Fault-Tolerant Volumes
          1. Converting Basic Disks to Dynamic Disks
          2. Creating Fault-Tolerant Disk Volumes Using Dynamic Disks
      3. Managing File Share Access and Volume Usage
        1. Managing File Shares
          1. Client-Side Caching
      4. Leveraging the Capabilities of File Server Resource Manager
        1. Uses of File Server Resource Manager
        2. Installing the File Server Resource Manager Component
        3. Configuring User Storage Limits with File Server Resource Manager
        4. Creating a Quota Template
        5. Creating File Screens
        6. Creating a File Screen Template
        7. Generating Storage Reports from FSRM
          1. Generating Reports in Real Time
          2. Scheduling Reports to Be Generated on a Regular Basis
      5. Monitoring Disks and Volumes
        1. Managing Volume Usage with NTFS Quotas
        2. Using the Performance Console to Monitor Disks and Volumes
        3. Using the Fsutil.exe Command-Line Utility
        4. Auditing File and Folder Security
          1. Enabling Auditing for an NTFS Folder
          2. Reading Audit Events Using the Event Viewer Security Event Log
        5. Reviewing NTFS Volume Quota Usage
      6. Working with Operating System Files: Fault Tolerance
        1. Windows File Protection
          1. Driver Signing
          2. Windows Hardware Quality Lab
          3. File Signature Verification (Sigverif.exe)
          4. System File Checker (Sfc.exe)
      7. Using the Distributed File System Replication
        1. Benefits of DFSR
        2. DFS Terminology
        3. FRS Terminology
      8. Planning a DFS Deployment
        1. Configuring File Share and NTFS Permissions for DFS Root and Link Targets
        2. Choosing a DFS Type
          1. Standalone DFS Root
          2. Domain DFS Root
        3. Planning for Domain DFS and Replication
          1. Initial Master
        4. Using the File Replication Service
          1. The Staging Folder
          2. The Pre-Install Directory
        5. Determining the Replication Topology
          1. Hub-and-Spoke
          2. Full Mesh
          3. Ring
          4. Custom
          5. Replication Latency
      9. Installing DFS
        1. Creating the DFS Root File Share
        2. Creating the DFS Root
        3. Creating a DFS Link
        4. Adding Additional Targets
        5. Publishing DFS Roots in Active Directory
        6. Best Practices for DFS Replication
      10. Optimizing DFS
        1. Prestaging a New DFS Replica
      11. Managing and Troubleshooting DFS
        1. Monitoring FRS Using the System Monitor
        2. Monitoring FRS Using SONAR
        3. Monitoring DFS Using the System Monitor
        4. Taking a Target Offline for Maintenance
        5. Disabling Replication for Extended Downtime
        6. Event Logging for FRS
      12. Backing Up DFS
        1. Using the DFScmd.exe Utility
      13. Handling Remote Storage
        1. Remote Storage Best Practices
        2. Installing Remote Storage
        3. Configuring Remote Storage
          1. Configuring the Backup Device
          2. Allocating Removable Media for Remote Storage
          3. Configuring a Volume for Remote Storage Management
      14. Using the Volume Shadow Copy Service
        1. Using VSS and Windows Server 2003 Backup
        2. Configuring Shadow Copies
        3. Recovering Data Using Shadow Copies
        4. Managing Shadow Copies
      15. Summary
      16. Best Practices
    2. 31. System-Level Fault Tolerance (Clustering/Network Load Balancing)
      1. Building Fault-Tolerant Systems
        1. Using Uninterruptible Power Supplies
        2. Choosing Networking Hardware for Fault Tolerance
        3. Selecting Server Storage for Redundancy
        4. Improving Application Reliability
      2. Examining Windows Server 2003 Clustering Technologies
        1. Reviewing Cluster Terminology
          1. Active/Passive Clustering Mode
          2. Active/Active Clustering Mode
      3. Choosing the Right Clustering Technology
        1. Microsoft Cluster Service
        2. Using Network Load Balancing
      4. Implementing Cluster Service
        1. The Single-Quorum Device Cluster
        2. The Single-Node Cluster
        3. The Majority Node Set Cluster
          1. An MNS Cluster Scenario
        4. Choosing Applications for Cluster Service
        5. Shared Storage Devices
          1. Multipath I/O
          2. Volume Shadow Copy for Shared Storage Volume
          3. Single-Quorum Cluster Scalability
      5. Installing Cluster Service
        1. Working Through the Cluster Pre-Installation Checklist
        2. Installing the First Node in the Cluster
        3. Adding Additional Nodes to a Cluster
      6. Managing Clusters
        1. Cluster Administrator
        2. The Cluster.exe Utility
        3. Cluster Automation Server
        4. Configuring Failover and Failback
          1. Cluster Group Failover Configuration
          2. Cluster Group Failback Configuration
        5. Testing Clusters
          1. Testing Cluster Group Manual Failover
          2. Initiating Failure of a Cluster Resource
          3. Initiating Cluster Node Network Failure
        6. Maintaining Cluster Nodes
          1. Pre-Maintenance Tasks
          2. Post-Maintenance Tasks
        7. Creating Additional Cluster Groups and Resources
          1. Creating Groups
          2. Creating New Resources
        8. Changing the Cluster Service Account Password
        9. Moving Cluster Groups
        10. Removing a Node from a Cluster
      7. Backing Up and Restoring Clusters
        1. Cluster Node Backup Best Practices
        2. Automated System Recovery Backup
        3. Backing Up the Cluster Quorum
        4. Backing Up the Cluster Node System State
        5. Backing Up the Local Disks on a Cluster Node
        6. Backing Up Shared Disks on a Cluster
        7. Restoring a Single-Node Cluster When the Cluster Service Fails
        8. Restoring a Single Node After a Complete Server Failure
          1. Evicting and Rebuilding the Failed Node
          2. Restoring the Failed Node Using the ASR Restore
        9. Restoring an Entire Cluster to a Previous State
        10. Restoring Cluster Nodes After a Cluster Failure
      8. Upgrading Cluster Nodes
        1. Rolling Upgrades
        2. Last Node Rolling Upgrade
      9. Installing Network Load Balancing Clusters
        1. NLB Applications and Services
        2. Creating Port Rules
        3. Port Rules Filtering Mode and Affinity
          1. The Single Host Mode
          2. The Disable Port Range Mode
          3. The Multiple Host Mode
        4. Avoiding Switch Port Flooding
        5. Using Cluster Operation Mode
        6. Configuring Network Cards for NLB
        7. Using the Network Load Balancing Manager to Create a Cluster
        8. Adding Additional Nodes to an Existing NLB Cluster
      10. Managing NLB Clusters
        1. Backing Up and Restoring NLB Nodes
        2. Performing Maintenance on a Cluster Node
        3. Removing a Node from an NLB Cluster
        4. Deleting the Entire Cluster
      11. Summary
      12. Best Practices
    3. 32. Backing Up a Windows Server 2003 Environment
      1. Disaster Recovery Planning
        1. Elements of a Disaster
          1. Physical Site Disaster
          2. Power Outage
          3. Network Outage
          4. Server Hardware Failures
          5. Hard Drive Failure
          6. Software Corruption
      2. Discovery: Learning the Environment
        1. Identifying the Different Services and Technologies
        2. Identifying Single Points of Failure
        3. Prioritizing the Environment
        4. Identifying Bare Minimum Services
        5. Creating the Disaster Recovery Solution
        6. Getting Disaster Recovery Solutions Approved
      3. Documenting the Enterprise
        1. Server Configuration Documentation
        2. The Server Build Document
        3. Hardware Inventory
        4. Network Configurations
          1. WAN Connection
          2. Router, Switch, and Firewall Configurations
        5. Recovery Documentation
        6. Updating Documentation
      4. Developing a Backup Strategy
        1. Creating a Master Account List
        2. Assigning Tasks and Designating Team Members
        3. Creating Regular Backup Procedures
        4. Creating a Service-Level Agreement for Each Critical Service
          1. Determining a Reasonable SLA
        5. Determining Which Devices Need to Be Backed Up
          1. Creating a Windows Server 2003 Boot Floppy
      5. Backing Up the Windows Server 2003 Operating System and Services
        1. Backing Up Boot and System Volumes
        2. Backing Up Data Volumes
        3. Backing Up Windows Server 2003 Services
        4. Backing Up the System State
        5. Using the Directory Services Restore Mode Password
      6. Examining the Windows Server 2003 Backup Programs
        1. Windows Server 2003 Backup Utility (ntbackup.exe)
        2. Remote Storage
        3. Volume Shadow Copy
      7. Virtual Disk Service
      8. Using the Windows Server 2003 Backup Utility (ntbackup.exe)
        1. Modes of Operation
        2. Advanced Mode
        3. Automated System Recovery
          1. Creating an ASR Backup
          2. Tips on Using ASR
      9. Using Remote Storage
        1. Remote Storage Media Management
      10. Using the Volume Shadow Copy Service
        1. Configuring Shadow Copies
        2. Volume Shadow Copy Best Practices
        3. Limitations
        4. Shadow Copy Management Using vssadmin.exe
      11. Windows Server 2003 Service Backup Options
        1. Disk Configuration (Software RAID Sets)
        2. Certificate Services
        3. Domain Name Service
        4. Windows Internet Naming Service
        5. Dynamic Host Configuration Protocol
        6. Distributed File System
        7. Internet Information Services
        8. Backing Up the Remote Storage Service
        9. Backing Up the Removable Storage Service
      12. Media Management for Windows Server 2003 Backup and the Remote Storage Service
        1. Media Pools
          1. Free Pool
          2. Remote Storage Pool
          3. Imported Pool
          4. Backup Pool
          5. Custom Media Pools
      13. Windows Server 2003 Startup Troubleshooting Utilities
        1. Recovery Console
        2. Emergency Management Services Console Redirection
      14. Summary
      15. Best Practices
    4. 33. Recovering from a Disaster
      1. Validating Backup Data and Procedures
        1. Documenting the Recovery
        2. Including Test Restores in the Scheduled Maintenance
      2. Isolating Failures
        1. Using a Test Workstation
        2. Configuring a Test User Account
        3. Validating the Failure
        4. Locating Application and Service Dependencies
      3. Site Failure Recovery
        1. Creating Redundant and Failover Sites
        2. Planning for Site Failover
        3. Creating the Failover Site
        4. Failing Over Between Sites
        5. Failing Back After Site Recovery
        6. Providing Alternative Methods of Client Connectivity
      4. Recovering from a Disk Failure
        1. Hardware-Based RAID Array Failure
        2. Re-creating the System Volume
        3. Installing the Boot Volume
        4. Regaining Data Volume Access
      5. Resolving Boot Failure Problems
        1. The Recovery Console
      6. Recovering from a Complete Server Failure
        1. Restoring Versus Rebuilding
        2. Manually Recovering a Server
        3. Restoring a Server Using a System State Restore
          1. System State Restore
        4. Restoring a System Using ASR Restore
        5. Restoring the Boot Loader File
      7. Resolving Windows Server 2003 Networking Services Errors
        1. Repairing Certificate Services
          1. Restoring the CA Private Key and CA Certificate
          2. Restoring the CA Database
        2. Re-establishing Dynamic Host Configuration Protocol
        3. Windows Internet Naming Service
        4. Recovering Domain Name System
      8. Re-creating Windows Server 2003 File Services and Data
        1. Recovering Data Using NTBackup.exe
        2. Recovering Data with Volume Shadow Copy
        3. Using Distributed File System Replication for File System Recovery
      9. Restoring Internet Information Services
        1. Recovering IIS Data and Logs
      10. Re-establishing the Cluster Service
      11. Resolving Windows Server 2003 Domain Controller Failure
      12. Restoring Active Directory
        1. Restoring the Active Directory Database
          1. Active Directory Nonauthoritative Restore
          2. Active Directory Authoritative Restore
          3. Partial Active Directory Authoritative Restore
          4. Rebuilding the Global Catalog
          5. Restoring the SYSVOL Folder
      13. Recovering the Removable Storage Database
      14. Restoring Remote Storage Database
        1. Recovering Data When Reparse Points Are Missing
      15. Achieving 99.999% Uptime Using Windows Server 2003
        1. Providing Redundant Domain Services
      16. Summary
      17. Best Practices
  15. X. Problem Solving, Debugging, and Optimization
    1. 34. Logging and Debugging
      1. Using the Task Manager for Logging and Debugging
        1. Monitoring Applications
        2. Monitoring Processes
        3. Monitoring Performance
        4. Monitoring Network Performance
        5. Monitoring User Activity
      2. Using the Event Viewer
        1. Getting the Most out of the Event Viewer
        2. Viewing Logs on Remote Servers
        3. Event Filtering
        4. Archiving Events
        5. Customizing the Event Log
        6. Understanding the Security Log
        7. Auditing System Events Through Group Policies
      3. System Monitoring
        1. Performance Monitoring Tools
        2. Terms Used in the Performance Monitoring Tools
        3. The Performance Console
          1. The System Monitor
          2. Performance Logs and Alerts
        4. Configuring Trace Logs
        5. Common Log File System
      4. Setting Baseline Values
        1. Reducing Performance Monitoring Overhead
        2. Important Objects to Monitor
      5. Network Monitoring in Windows Server 2003
        1. Understanding How Netmon Works
        2. Installing Netmon
        3. Capturing Frames Within Netmon
        4. Using the Capture Filter
      6. Using the Debugging Tools Available in Windows Server 2003
        1. TCP/IP Tools
          1. PING
          2. Tracert
          3. Pathping
          4. Ipconfig
          5. Arp
          6. Netstat
          7. NetDiag
          8. DCDiag
          9. Route
          10. Nslookup
        2. System Startup and Recovery
        3. Memory-Related Debugging
        4. The Software Error-Reporting Mechanism
        5. Dr. Watson for Windows
      7. Summary
      8. Best Practices
    2. 35. Capacity Analysis and Performance Optimization
      1. Defining Capacity Analysis
        1. The Benefits of Capacity Analysis
      2. Establishing Policy and Metric Baselines
        1. Benchmark Baselines
          1. Workload Characterization
          2. Benchmarks
      3. Using Capacity-Analysis Tools
        1. Built-in Toolset
          1. Task Manager
          2. Network Monitor
          3. The Performance Console
        2. Third-Party Toolset
      4. Monitoring System Performance
        1. Key Elements to Monitor
          1. Monitoring System Memory
          2. Analyzing Processor Usage
          3. Evaluating the Disk Subsystem
          4. Monitoring the Network Subsystem
      5. Optimizing Performance by Server Roles
        1. Terminal Services Server
        2. Domain Controllers
          1. Monitoring AD
          2. Monitoring DNS
          3. Monitoring AD Replication
      6. Using Server Performance Analyzer 2.0
      7. Using the Windows System Resource Manager
      8. Managing Patches
        1. Automating Patch Management
        2. Windows Automatic Update
      9. Summary
      10. Best Practices
  16. XI. Integrated Windows Application Services
    1. 36. Windows SharePoint Services
      1. The History of SharePoint Technologies
        1. WSS’s Predecessor: SharePoint Team Services
        2. Understanding the Original SharePoint Portal Server
        3. Differences Between SharePoint Products
        4. Microsoft’s Current SharePoint Technology Direction
      2. Identifying the Need for Windows SharePoint Services
        1. Changing Methodology from File Servers to a WSS Document Management Platform
        2. Enabling Team Collaboration with WSS
        3. Customizing WSS to Suit Organizational Needs
      3. Installing Windows SharePoint Services
        1. Outlining WSS Requirements
          1. Hardware and Software
        2. Detailing Pre-installation Steps
        3. Updating and Patching a WSS Server
        4. Performing a Windows SharePoint Services Installation
      4. Exploring Basic Windows SharePoint Services Features
        1. Creating a Shared Workspace from Microsoft Word
        2. Working Within the Windows SharePoint Services Site
        3. Understanding Document Libraries
        4. Using Picture Libraries
        5. Working with SharePoint Lists
        6. Using SharePoint Discussions
        7. Understanding Surveys
      5. Exploring End User Features in WSS
        1. Expanding Document Management Capabilities
        2. Introducing Meeting Workspaces
        3. Taking Advantage of Personal Sites
        4. Integrating with Microsoft Office 2003
        5. Personalizing Windows SharePoint Services
        6. Taking Advantage of Lists
        7. Improving on SharePoint Alerts
        8. Exploring Additional New/Enhanced End User Features
      6. Customizing and Developing WSS Sites
        1. Using the Browser to Customize SharePoint
        2. Development Enhancements for Site Templates
        3. Improving on FrontPage 2003 Integration
      7. Summary
      8. Best Practices
    2. 37. Windows Media Services
      1. Understanding Windows Media Services
        1. System Requirements for Windows Media Services
        2. Testing the Load on a Windows Media Server
        3. Installing Windows Media Services
        4. Configuring the Windows Media Services
      2. Using Windows Media Services for Real-Time Live Broadcasts
        1. Configuring a Server for Real-Time Live Broadcasts
        2. Starting a Real-Time Live Broadcast
      3. Broadcasting Stored Single Files
        1. Configuring a Server for Single On-Demand Video Playback
        2. Starting a Single File Publishing Point
      4. Hosting a Directory of Videos for On-Demand Playback
        1. Configuring a Server to Host a Directory of Videos for Playback
        2. Starting a File from Within the Directory Publishing Point
      5. Combining Multiple Files for a Combined Single Broadcast
        1. Configuring a Server for Playlist Broadcasting of Multiple Files
        2. Starting a Playlist from Within the Playlist Publishing Point
      6. Understanding Windows Media Encoder
        1. Understanding the Requirements for the Windows Media Encoder
        2. Installing the Windows Media Encoder
      7. Broadcasting a Live Event
        1. Preparing for a Live Broadcast
        2. Initiating a Live Broadcast
      8. Capturing Audio or Video for Future Playback
        1. Preparing for a Captured Session
        2. Capturing a Session for Future Broadcast
      9. Using Other Windows Media Encoder Options
        1. Capturing Screen Content with the Windows Media Encoder Software
        2. Converting Videos to Windows Media Video Format
      10. Using Microsoft Producer for Sophisticated Presentations
        1. Downloading and Installing Microsoft Producer
        2. Using the Microsoft Producer Add-on
      11. Summary
      12. Best Practices
    3. Appendix
      1. License Agreement
      2. Microsoft Software