Issuu on Google+

FMTOC.indd Page xxiii 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

Brief Contents

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19

Installing Servers Configuring Servers

1 32

Configuring Local Storage

59

Configuring File and Share Access

97

Configuring Print and Document Services

135

Configuring Servers for Remote Management

169

Creating and Configuring Virtual Machine Settings

197

Creating and Configuring Virtual Machine Storage

225

Creating and Configuring Virtual Networks Configuring IPv4 and IPv6 Addressing

267

Deploying and Configuring the DHCP Service Deploying and Configuring the DNS Service Installing Domain Controllers

248 298 333

370

Creating and Managing Active Directory Users and Computers

405

Creating and Managing Active Directory Groups and Organizational Units 430 Creating Group Policy Objects Configuring Security Policies

460 489

Configuring Application Restriction Policies Configuring Windows Firewall

Appendix A

522

550

574

Index 575

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)

| xxiii


FMTOC.indd Page xxiv 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s


FMTOC.indd Page xxv 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

Contents

Lesson 1: Installing Servers 1

6

Installing Windows Server 2012 7 System Requirements 7 Performing a Clean Installation 8 Installing Third-Party Drivers 13 Working with Installation Partitions

14

Choosing Installation Options 14 Using Server Core 15 Server Core Defaults 16 Server Core Capabilities 16 Using the Minimal Server Interface 17 Using Features on Demand 19

Upgrading Servers

20

Upgrade Paths 20 Preparing to Upgrade 21 Performing an Upgrade Installation

21

Migrating Roles 23 Installing Windows Server Migration Tools 24 Using Migration Guides 27

Skill Summary 28 Knowledge Assessment 28 Business Case Scenarios 31

Lesson 2: Configuring Servers 32 Completing Post-Installation Tasks 32 Using GUI Tools 33 Using Command-Line Tools 37 Converting Between GUI and Server Core 37 Configuring NIC Teaming 39

43

Adding Roles and Features 47 Deploying Roles to VHDs 51 Configuring Services 53

Selecting a Windows Server 2012 Edition 2 Supporting Server Roles 3 Supporting Server Virtualization Server Licensing 6

Using Roles, Features, and Services Using Server Manager 46

Delegating Server Administration 54 Skill Summary 55 Knowledge Assessment 55 Business Case Scenarios 58

Lesson 3: Configuring Local Storage 59 Planning Server Storage

60

Determining the Number of Servers Needed 60 Estimating Storage Requirements 61 Selecting a Storage Technology 62 Selecting a Physical Disk Technology 62 Using External Drive Arrays 63 Planning for Storage Fault Tolerance 65 Using Disk Mirroring 65 Using RAID 66 Using Storage Spaces 67

Understanding Windows Disk Settings 68 Selecting a Partition Style 69 Understanding Disk Types 70 Understanding Volume Types 71 Choosing a Volume Size 72 Understanding File Systems 72

Working with Disks 72 Adding a New Physical Disk 74 Creating and Mounting VHDs 76 Creating a Storage Pool 78 Creating Virtual Disks 82 Creating a Simple Volume 87 Creating a Striped, Spanned, Mirrored, or RAID-5 Volume 90 Extending and Shrinking Volumes and Disks

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)

92

| xxv


FMTOC.indd Page xxvi 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

xxvi | Contents

Skill Summary 93 Knowledge Assessment 94 Business Case Scenario 96

Managing Documents 148 Managing Printers 150 Setting Printer Priorities 150 Scheduling Printer Access 151 Creating a Printer Pool 152

Lesson 4: Configuring File and Share Access 97 Designing a File-Sharing Strategy

98

Arranging Shares 98 Controlling Access 99 Mapping Drives 100

Creating Folder Shares 100 Assigning Permissions 108 Understanding the Windows Permission Architecture 109 Understanding Basic and Advanced Permissions 110 Allowing and Denying Permissions 111 Inheriting Permissions 112 Understanding Effective Access 114 Setting Share Permissions 115 Understanding NTFS Authorization 119 Assigning Basic NTFS Permissions 120 Assigning Advanced NTFS Permissions 123 Understanding Resource Ownership 126 Combining Share and NTFS Permissions 126

Configuring Volume Shadow Copies 127 Configuring NTFS Quotas 129 Skill Summary 130 Knowledge Assessment 131 Business Case Scenarios 133

Lesson 5: Configuring Print and Document Services 135 Deploying a Print Server

136

Understanding the Windows Print Architecture 136 Understanding Windows Printing 136 Windows Printing Flexibility 137 Sharing a Printer 141 Managing Printer Drivers 144 Using Remote Access Easy Print 145 Configuring Printer Security 146

Using the Print and Document Services Role 153 Using the Print Management Console 156 Adding Print Servers 156 Viewing Printers 158 Managing Printers and Print Servers 161 Deploying Printers with Group Policy 162

Skill Summary 164 Knowledge Assessment 165 Business Case Scenarios 168

Lesson 6: Configuring Servers for Remote Management 169 Using Server Manager for Remote Management 170 Adding Servers 171 Adding Workgroup Servers 174 Calibrating Server Manager Performance 174 Managing Windows Server 2012 Servers 175 Configuring WinRM 175 Configuring Windows Firewall 176 Managing Down-Level Servers 180 Creating Server Groups 183

Using Remote Server Administration Tools 184 Using Windows PowerShell Web Access 186 Installing Windows PowerShell Web Access 186 Configuring the Windows PowerShell Web Access Gateway 188 Configuring a Test Installation 188 Customizing a Gateway Installation 189 Creating Authorization Rules 190

Working with Remote Servers 191 Skill Summary 192 Knowledge Assessment 193 Business Case Scenarios 196

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)


FMTOC.indd Page xxvii 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

Contents | xxvii

Lesson 7: Creating and Configuring Virtual Machine Settings 197 Virtualizing Servers 198 Virtualization Architectures 198 Hyper-V Implementations 199 Hyper-V Licensing 200 Hyper-V Hardware Limitations 200 Hyper-V Server 200

Installing Hyper-V 201 Using Hyper-V Manager

205

Creating a Virtual Machine 207 Installing an Operating System 213 Configuring Guest Integration Services 215 Allocating Memory 217 Using Dynamic Memory 218 Configuring Smart Paging 219

Configuring Resource Metering Skill Summary 221 Knowledge Assessment 221 Business Case Scenarios 224

220

Lesson 8: Creating and Configuring Virtual Machine Storage 225 Working with Virtual Disks 226 Understanding Virtual Disk Formats 227 Creating Virtual Disks 227 Creating a Virtual Disk with a VM 227 Creating a New Virtual Disk 228 Adding Virtual Disks to Virtual Machines 232 Creating Differencing Disks 232 Configuring Pass-Through Disks 235 Modifying Virtual Disks 235 Creating Snapshots 239

Connecting to a SAN

240

Understanding SAN Technologies 242 Using Fibre Channel 242 Connecting Virtual Machines to a SAN 242

Skill Summary 244 Knowledge Assessment 245 Business Case Scenarios 247

Lesson 9: Creating and Configuring Virtual Networks 248 Using Virtual Networking 249 Creating Virtual Switches 249 Creating the Default Virtual Switch 249 Creating a New Virtual Switch 252 Configuring MAC Addresses 254 Creating Virtual Network Adapters 256 Using Synthetic Adaptors and Emulated Adapters 258 Configuring Hardware Acceleration Settings 259 Configuring Advanced Network Adapter Features 260 Creating Virtual Network Configurations 262 Extending a Production Network into Virtual Space 262 Creating an Isolated Network 262

Skill Summary 263 Knowledge Assessment 263 Business Case Scenarios 266

Lesson 10: Configuring IPv4 and IPv6 Addressing 267 Understanding IPv4 Addressing

268

IPv4 Classful Addressing 268 Subnetting Example 1 270 Classless Inter-Domain Routing 270 Subnetting Example 2 271 Public and Private IPv4 Addressing 272 Using Network Address Translation 273 Using a Proxy Server 273 IPv4 Subnetting 274 Supernetting 275 Assigning IPv4 Addresses 276 Manual IPv4 Address Configuration 276 Dynamic Host Configuration Protocol 278 Automatic Private IP Addressing (APIPA) 278

Understanding IPv6 Addressing

278

Introducing IPv6 279 Contracting IPv6 Addresses 279 Expressing IPv6 Network Addresses 279 IPv6 Address Types 279 Global Unicast Addresses 280 Link-Local Unicast Addresses 283

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)


FMTOC.indd Page xxviii 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

xxviii | Contents Unique Local Unicast Addresses 284 Special Addresses 284 Multicast Addresses 285 Anycast Addresses 286 Assigning IPv6 Addresses 286 Manual IPv6 Address Allocation 286 Stateless IPv6 Address Autoconfiguration 287 Dynamic Host Configuration Protocol v6 287

Planning an IP Transition

288

Using a Dual IP Stack 288 Tunneling 289 Configuring Tunnels Manually 289 Configuring Tunnels Automatically 290

Skill Summary 293 Knowledge Assessment 294 Business Case Scenarios 296

Lesson 11: Deploying and Configuring the DHCP Service 298 Understanding DHCP 299 DHCP Packets 300 DHCP Options 302 The Magic Cookie 302 The Option Format 302 The DHCP Message Type Option 303 The Pad Option 303 The Option Overload Option 303 The Vendor-Specific Information Option 303 The End Option 304 Other Configuration Options 304 DHCP Communications 305 DHCP Lease Negotiation 306 DHCP Lease Renewal 307

Designing a DHCP Infrastructure

308

Using a Distributed DHCP Infrastructure 309 Using a Centralized DHCP Infrastructure 309 Using a Hybrid DHCP Infrastructure 311 Regulating DHCP Network Traffic 311

Deploying a DHCP Server

312

Creating a Scope 313 Configuring DHCP Options 318 Creating a Reservation 319 Using PXE 320 Using PXE with WDS 321 Configuring a Custom DHCP Option

321

Deploying a DHCP Relay Agent Skill Summary 328 Knowledge Assessment 329 Business Case Scenarios 332

323

Lesson 12: Deploying and Configuring the DNS Service 333 Understanding the DNS Architecture 334 Creating a DNS Standard 334 Understanding DNS Naming 336 Understanding The DNS Domain Hierarchy 337 Top-Level Domains 337 Second-Level Domains 339 Subdomains 339 Using DNS Messaging 340 Understanding DNS Communications 340 Comprehending DNS Server Caching 343 Negative Caching 344 Cache Data Persistence 344 Understanding DNS Referrals and Queries 345 Using DNS Forwarders 346 Understanding Reverse Name Resolution 347

Designing a DNS Deployment

348

Resolving Internet Names 349 Hosting Internet Domains 350 Hosting Active Directory Domains 350 Integrating DHCP and DNS 351 Separating DNS Services 351

Creating Internet Domains 352 Creating Internal Domains 353 Creating Subdomains 354 Combining Internal and External Domains 354 Creating Host Names 355

Deploying a DNS Server

356

Creating Zones 356 Using Active Directory-Integrated Zones 358 Creating an Active Directory Zone 358 Creating Resource Records 361 Configuring DNS Server Settings 364 Configuring Active Directory DNS Replication 364 Configuring Root Hints 365

Skill Summary 365 Knowledge Assessment 366 Business Case Scenarios 369

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)


FMTOC.indd Page xxix 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

Contents | xxix

Lesson 13: Installing Domain Controllers 370 Introducing Active Directory 371 Understanding Active Directory Functions 371 Understanding Active Directory Architecture 372 Understanding Objects and Attributes 372 Understanding Domains 373 Zooming In: Organizational Units 373 Zooming In: Groups 374 Zooming Out: Domain Trees 374 Zooming Out: Forests 375 Introducing the Global Catalog 376 Understanding Functional Levels 376 Understanding Active Directory Communications 377 Introducing LDAP 377 Understanding Replication 377 Using Read-Only Domain Controllers 378 Expanding Outward: Sites 379

Deploying Active Directory Domain Services 380 Installing the Active Directory Domain Services Role 380 Creating a New Forest 383 Adding a Domain Controller to an Existing Domain 387 Creating a New Child Domain in a Forest 389 Installing AD DS on Server Core 392 Using Install from Media (IFM) 393 Upgrading Active Directory Domain Services 395 Removing a Domain Controller 396 Configuring the Global Catalog 398 Troubleshooting DNS SRV Registration Failure 399

Skill Summary 400 Knowledge Assessment 401 Business Case Scenarios 404

Lesson 14: Creating and Managing Active Directory Users and Computers 405 Creating User Objects 406 Understanding User Creation Tools 407 Creating Single Users 408 Using Dsadd.exe 411 Using Windows PowerShell 412 Creating User Templates 413

Creating Multiple Users 415 Using Batch Files 415 Using CSVDE.exe 415 Using LDIFDE.exe 416 Using Windows PowerShell

417

Creating Computer Objects 417 Creating Computer Objects Using Active Directory Users and Computers 418 Creating Computer Objects with Active Directory Administrative Center 419 Creating Computer Objects Using Dsadd.exe 419

Managing Active Directory Objects

420

Managing Multiple Users 421 Joining Computers to a Domain 422 Joining a Domain Using Netdom.exe 423 Creating Computer Objects While Joining 423 Joining a Domain While Offline 424 Managing Disabled Accounts 425

Skill Summary 425 Knowledge Assessment 426 Business Case Scenarios 428

Lesson 15: Creating and Managing Active Directory Groups and Organizational Units 430 Designing an Internal Domain Structure Understanding Inheritance 431 Using Organizational Units 432 Using Group Objects 433

Working with Organizational Units 433 Creating OUs 434 Using OUs to Delegate Active Directory Management Tasks 435

Working with Groups 439 Understanding Group Types 440 Understanding Group Scopes 440 Domain Local Groups 440 Global Groups 441 Universal Groups 441 Working with Default Groups 441 Nesting Groups 445 Using Special Identities 446 Creating Groups 448 Creating Groups from the Command Line 449

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)

431


FMTOC.indd Page xxx 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

xxx | Contents Managing Group Memberships 450 Managing Group Membership Using Group Policy Managing Group Objects with Dsmod.exe 452 Converting Groups 453 Deleting a Group 454

451

Skill Summary 454 Knowledge Assessment 455 Business Case Scenarios 458

Lesson 16: Creating Group Policy Objects 460 Introducing Group Policy

Configuring Local Users and Groups

507

Using the User Accounts Control Panel 507 Creating a New Local User Account 507 Using the Local Users and Groups Snap-In 510 Creating a Local Group 511

461

Understanding Group Policy Objects 462 Local GPOs 462 Domain GPOs 463 Starter GPOs 463 Viewing the Group Policy Container 463 Viewing Group Policy Templates 465 Configuring a Central Store 466

Configuring User Account Control

512

Performing Administrative Tasks 512 Using Secure Desktop 513 Configuring User Account Control Settings 514

Using the Group Policy Management Console 467 Creating and Linking Nonlocal GPOs 468 Using Security Filtering 471 Understanding Group Policy Processing 472 Processing Multiple GPOs 474 Applying GPO Settings 474 Configuring Exceptions to GPO Processing 475 Managing Starter GPOs 477 Configuring Group Policy Settings 478 Policy Explanations 479 Understanding Policy States 480 Searching Policies 481

Creating Multiple Local GPOs 481 Skill Summary 485 Knowledge Assessment 485 Business Case Scenarios 488

Skill Summary 516 Knowledge Assessment 517 Business Case Scenarios 521

Lesson 18: Configuring Application Restricted Policies 522 Installing Software with Group Policy

523

Repackaging Software 524 Deploying Software Using Group Policy 524 Assigning an Application to a User or Computer 525 Publishing an Application 525 Customizing Software Installation Packages 530

Configuring Software Restriction Policies

Lesson 17: Configuring Security Policies 489 Configuring Security Policies Using Group Policy 490 Defining Local Policies 491 Planning and Configuring an Audit Policy Assigning User Rights 497

Configuring Security Options 498 Customizing Event Log Policies 500 Understanding Restricted Groups 501 Using Security Templates 502 Using the Security Templates Console 502 Planning a Security Template Strategy 503 Creating Security Templates 503 Working with Security Template Settings 504 Importing Security Templates into GPOs 504 Maintaining and Optimizing Group Policy 505 Manually Refreshing Group Policy 506 Optimizing Group Policy Processing 506

491

533

Enforcing Restrictions 534 Configuring Software Restriction Rules 535 Hash Rules 536 Certificate Rules 536 Path Rules 536 Network Zone Rules 537 Using Multiple Rules 537 Configuring Software Restriction Properties 537 Enforcement 537 Designated File Types 538 Trusted Publishers 539 Software Restriction Best Practices 539

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)


FMTOC.indd Page xxxi 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s

Contents | xxxi

Using AppLocker 540

Using the Windows Firewall with Advanced Security Console 558

Understanding Rule Types 540 Creating Default Rules 542 Creating Rules Automatically 543 Creating Rules Manually 544

Configuring Profile Settings 559 Creating Rules 560 Importing and Exporting Rules 565 Creating Rules Using Group Policy 566 Using Filters 567 Creating Connection Security Rules 567

Skill Summary 545 Knowledge Assessment 546 Business Case Scenarios 549

Lesson 19: Configuring Windows Firewall 550

Skill Summary 570 Knowledge Assessment 570 Business Case Scenarios 573 Appendix A 574

Building a Firewall

551

Understanding Windows Firewall Settings Working with Windows Firewall 552

551

Using the Windows Firewall Control Panel

Index 575 555

Customizing Settings 556 Allowing Applications 557

www.wiley.com/college/microsoft or call the MOAC Toll-Free Number: 1+(888) 764-7001 (U.S. & Canada only)


FMTOC.indd Page xxxii 1/3/13 2:06 PM user-fw429

/201/WB00972/9781118511077/fmmatter/text_s


Brief Contents