Windows 2008 R2

Active Directory Design and Implementation

3 Days

Learn How to

  • Identify the components of the Active Directory service
  • Install and configure Active Directory
  • Set up and administer user accounts and groups
  • Delegate administrative control of Active Directory objects
  • Manage Active Directory replication within a site and between sites
  • Create and manage trees and forests in a Windows 2008 R2 domain environment
  • Manage operations masters within Active Directory
  • Maintain and restore the Active Directory database
  • Migrating Active Directory from earlier versions

Pre-Requisites

This course assumes delegates have knowledge of implementing Windows 2008 R2 Servers in a Network business environment.  These skills can be obtained from our Windows 2008 Server Administration course.

Introducing Active Directory

Active Directory and the Business Environment

Logical Structure of Active Directory

Physical Structure of Active Directory

Administering a Windows 2008 R2 Network

Introduction to Trees and Forests

Designing an Active Directory Naming Strategy

 

Implementing a Server 2008 R2 Domain Infrastructure

Planning the Domain Structure

Security Groups and Organisational Units

Create a Windows 2008 R2 Domain

 

Implementing DNS to Support Active Directory

The Need for DNS in Active Directory

DNS and Active Directory Integration

Active Directory DNS Name Resolution

Active Directory Integrated Zones

Configuring DNS to Support Active Directory

Maintaining and Monitoring DNS

 

Installing Windows 2008 R2 Active Directory

Install a new Windows Server 2008 R2 forest

Install a new Windows Server 2008 R2 domain in an existing Forest

What are Read Only Domain Controllers (RODCs)?

Installing and Deploying RODCs

Managing Password Replication Policies

Viewing and Managing Credentials on a RODC

Active Directory Post Installation Tasks

Removing Active Directory

 

Creating an Organizational Unit Structure

Folders V Organizational Units

Planning the Organizational Unit Structure

Creating and Editing Organizational Units

Object Permissions in Active Directory

 

Configuring Users and Groups

Administering Domain User Accounts

Administering Groups in a Single Domain

Using Groups in Trees and Forests

Bulk Importing User Information into Active Directory

Using Security Groups to Manage Access to Resources

 

Delegating Administrative Control

Introduction to Object Security in Active Directory

Securing Active Directory Objects

Designing an Administrative Control Strategy

Delegating Administrative Control of Active Directory Objects

Best Practices for Delegating Administrative Control

 

Managing Active Directory Replication

Introduction to Active Directory Replication

The Replication Processes

Examining Replication Topology

Monitoring Replication Traffic

Configuring Replication Times

Adding/Removing Replication Partners

Troubleshooting Active Directory Replication

 

Creating Multiple Sites

Mastering Site Concepts

Defining a New Site

Adding Servers to Sites

Adding Site Links

Bridgehead Servers

Active Directory Operations Masters

The Roles of Operations Masters

Determine the Holder of an Operations Master Role

Managing Operations Master Failures

What is the Global Catalog?

Installing a Global Catalog Server

 

Active Directory Schema

Introduction to the Active Directory Schema

Accessing the Schema

Adding / Modifying Attributes

Troubleshooting the Schema

 

Maintaining the Active Directory Database

The Active Directory Database

Moving the Active Directory Database

Backing Up and Restoring Active Directory

Maintaining the Active Directory Database

Using NTDSUTIL

Performing Authoritative Restores

 

Configuring Routing and Remote Access (RRAS)

Configuring Network Access

Configuring VPN Access

Overview of Network Policies

Configuring a Custom Network Policy

Overview of the Connection Manager Administration Kit

Configuring Logging

Install and configure the RRAS service

Configure VPN access

Troubleshoot Routing and Remote Access

 

Network Policy Server Role Service (NPS)

Installing and Configuring a Network Policy Server

Configuring RADIUS Clients and Servers

NPS Authentication Methods

Monitoring and Troubleshooting a Network Policy Server

Install and configure the Network Policy Server role

Describe NPS authentication methods

Monitor and troubleshoot a Network Policy server

 

Introduction to Group Policy

The Structure of Group Policy

Group Policy Objects

Understanding Group Policy Inheritance

Administrative Control of Group Policy

 

Migrating

Overview – Migration

Migrating from Earlier Server Releases

Using CSVDE to perform bulk imports/exports

Establishing Trust Relationships

Creating One Way Trusts

Creating 2-way Trusts

Overview –ADMT v3.2

Installing and Configuring the Active Directory Migration Tool

Performing a Live Migration from earlier Server Installations

Understanding and Using ADPREP

ADPREP Switches