This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] • • • Table of Contents Index Examples Windows® Server™ 2003 Active Directory® Infrastructure Exam Cram (Exam 70-294) By David Watts, Will Willis Publisher: Que Pub Date: November 05, 2003 ISBN: 0-7897-2950-4 Pages: 480 This Exam Cram helps you pass the 70-294 exam, which is a core exam in MCSE Windows Server 2003 certification program This book is not intended to teach new material Instead, it assumes that you have a solid foundation of knowledge but could use a refresher on important concepts, as well as a guide to exam topics and objectives The book features test-taking strategies, time-saving study tips, and a special Cram Sheet that includes tips, acronyms, and memory joggers not available anywhere else! The Cram Sheet is especially useful for last-minute review before the test begins The best-selling Exam Cram series is supported online at examcram.com, offering industry news, study tips, practice questions, and discussion forums Each book is published under the direction of Series Editor Ed Tittel, the leading authority on IT certification This book has been subjected to rigorous technical review by a team of industry experts, ensuring content is superior in both coverage and technical accuracy, and has earned the distinction of Cramsession(TM) Approved Study Material [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] • • • Table of Contents Index Examples Windows® Server™ 2003 Active Directory® Infrastructure Exam Cram (Exam 70-294) By David Watts, Will Willis Publisher: Que Pub Date: November 05, 2003 ISBN: 0-7897-2950-4 Pages: 480 Copyright The 70-294 Cram Sheet PLANNING AND IMPLEMENTING FORESTS AND DOMAINS IMPLEMENTING AND MANAGING ACTIVE DIRECTORY SITES OPERATIONS MASTERS AND GLOBAL CATALOG SERVERS USER AND GROUP ADMINISTRATION PLANNING AND IMPLEMENTING AN OU STRUCTURE PLANNING A GROUP POLICY IMPLEMENTATION UNDERSTANDING SECURITY SETTINGS WITH GROUP POLICY TROUBLESHOOTING GROUP POLICY ACTIVE DIRECTORY MAINTENANCE A Note from Series Editor Ed Tittel About the Authors Lead Authors Contributing Author Technical Editors Acknowledgments We Want to Hear from You! Introduction The Microsoft Certified Professional (MCP) Program Taking a Certification Exam Tracking MCP Status How to Prepare for an Exam About This Book How to Use This Book Self-Assessment This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com MCSEs in the Real World The Ideal Windows Server 2003 MCSE Candidate Put Yourself to the Test Assessing Readiness for Exam 70-294 Onward, Through the Fog! Chapter Planning and Implementing Forests and Domains The Windows Server 2003 Domain Requirements for AD The AD Installation Wizard Fault-Tolerant Replicas Troubleshooting Your AD Installation Verifying Your AD Installation AD Removal Unattended Installation of AD Post-AD Installation Options UPN Suffixes Application Data Partitions Trust Relationships Exam Prep Questions Need to Know More? Chapter Implementing and Managing Active Directory Sites Why Use Sites? Sites and Domain Controllers Creating a Site Site Connections Bridgehead Servers Site Link Bridge Connection Objects Optimizing Active Directory Replication with Sites Exam Prep Questions Need to Know More? Chapter Operations Masters and Global Catalog Servers Introducing Operations Masters Planning for Business Continuity of Operations Master Roles Recommendations for Operations Masters Planning a Strategy for Placing Global Catalog Servers Exam Prep Questions Need to Know More? Chapter User and Group Administration Introducing Users and Groups Planning a User Authentication Strategy Administering User Accounts Creating a Password Policy for Domain Users Planning a Smartcard Authentication Strategy Planning a Security Group Strategy User and Group Recommendations Exam Prep Questions Need to Know More? Chapter Planning and Implementing an OU Structure Implementing an Organizational Unit (OU) Structure Analyzing the Administrative Requirements for an OU Creating an OU This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Planning an OU Structure Based on Delegation Requirements Analyzing the Group Policy Requirements for an OU Exam Prep Questions Need to Know More? Chapter Planning a Group Policy Implementation Change and Configuration Basics Group Policy Overview Creating a Group Policy Object Modifying Group Policy Objects Linking a GPO Delegating Administrative Control of Group Policy Group Policy Inheritance Filtering Group Policy Resultant Set of Policy (RSoP) Exam Prep Questions Need to Know More? Chapter Software Distribution with Group Policy Intellimirror Concepts Software Installation and Maintenance Overview Deploying Software with Group Policy and Software Installation Phases of Software Deployment Troubleshooting Software Deployment Problems Exam Prep Questions Need to Know More? Chapter Understanding Security Settings with Group Policy Controlling User Environments with Administrative Templates Policy Application Scenarios Managing Security Configurations Assigning Script Policies to Users and Computers Use of Folder Redirection Automatically Enrolling Certificates with Group Policy Exam Prep Questions Need to Know More? Chapter Troubleshooting Group Policy Introducing Group Policy Troubleshooting General Troubleshooting Tools for Troubleshooting Exam Prep Questions Need to Know More? Chapter 10 Active Directory Maintenance Introducing AD Maintenance Monitoring Active Directory Exam Prep Questions Need to Know More? Chapter 11 Practice Exam Chapter 12 Practice Exam Answer Key Chapter 13 Practice Exam Chapter 14 Practice Exam Answer Key Appendix A What's on the CD-ROM PrepLogic Practice Tests, Preview Edition Appendix B Using the PrepLogic Practice Tests, Preview Edition Software Exam Simulation This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Question Quality Interface Design Effective Learning Environment Software Requirements Installing PrepLogic Practice Tests, Preview Edition Using PrepLogic Practice Tests, Preview Edition Getting More Exams Customer Service Glossary Index [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] Copyright Copyright © 2004 by Que Publishing All rights reserved No part of this book shall be reproduced, stored in a retrieval system, or transmitted by any means, electronic, mechanical, photocopying, recording, or otherwise, without written permission from the publisher No patent liability is assumed with respect to the use of the information contained herein Although every precaution has been taken in the preparation of this book, the publisher and author assume no responsibility for errors or omissions Nor is any liability assumed for damages resulting from the use of the information contained herein Library of Congress Catalog Card Number: 2003103166 Printed in the United States of America First Printing: November 2003 06 05 04 03 Trademarks All terms mentioned in this book that are known to be trademarks or service marks have been appropriately capitalized Que Publishing cannot attest to the accuracy of this information Use of a term in this book should not be regarded as affecting the validity of any trademark or service mark Warning and Disclaimer Every effort has been made to make this book as complete and as accurate as possible, but no warranty or fitness is implied The information provided is on an "as is" basis The author(s) and the publisher shall have neither liability nor responsibility to any person or entity with respect to any loss or damages arising from the information contained in this book or from the use of the CD or programs accompanying it Bulk Sales Que Publishing offers excellent discounts on this book when ordered in quantity for bulk purchases or special sales For more information, please contact U.S Corporate and Government Sales 1-800-382-3419 corpsales@pearsontechgroup.com For sales outside of the U.S., please contact International Sales 1-317-428-3341 international@pearsontechgroup.com Credits Publisher Paul Boger Executive Editor Jeff Riley Acquisitions Editor Jeff Riley Development Editor Steve Rowe Managing Editor This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Managing Editor Charlotte Clapp Project Editor Tricia Liebig Copy Editor Bart Reed Indexer Erika Millen Proofreader Juli Cook Technical Editors Marc Savage Bill Ferguson Team Coordinator Pamalee Nelson Multimedia Developer Dan Scherf Interior Designer Gary Adair Cover Designer Anne Jones Page Layout Bronkella Publishing [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] The 70-294 Cram Sheet This cram sheet provides the distilled, key facts about Exam 70-294, "Windows Server 2003 Active Directory Infrastructure." Review these important points as the last thing you before entering the test center Pay close attention to those you feel you need to review A good exam strategy is to transfer all the facts you can recall from this tool onto a piece of paper once you sit down for the exam [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] PLANNING AND IMPLEMENTING FORESTS AND DOMAINS The SYSVOL folder must reside on an NTFS partition Use convert.exe c: /fs:ntfs to convert a FAT or FAT32 partition to NTFS Use dcpromo.exe to promote and demote servers to and from a domain controller Running dcpromo will the following: Create a domain controller for a new domain Create a new domain tree or join an existing domain as a child domain Create a new forest of domain trees or join an existing forest Domains in Windows 2003 support four functional levels and Forests support three functional levels The Windows Server 2003 Functional Levels are as follows: Windows 2000 Mixed Functional Level Windows 2000 Native Functional Level Windows 2003 Interm Functional Level Windows 2003 Functional Level To create an alternate UPN suffix, open the Active Directory Domains and Trusts administrative console An application data partition is a partitioned section of Active Directory that is replicated only to specified domain controllers It can only be hosted on Windows Server 2003 domain controllers in a Windows 2003 Forest The four ways to create, delete, and manage Application Data Partitions include application-specific tools supplied by software vendors, NTDSUtil command-line utility, LDP Graphical tool included on the installation CD, and Active Directory Service Interfaces (ADSI) The types of trusts in Windows 2003 are Transitive, Forest, External, Realm, and Shortcut 10 Domains map the logical structure of your organization, whereas sites relate to the physical layout of the network The domain namespace is likewise unrelated to the physical sites [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] IMPLEMENTING AND MANAGING ACTIVE DIRECTORY SITES Because of the separation of physical and logical structures, a site can support multiple domains The primary function of a site is to consolidate directory service requests within a high-speed connection area and to control replication with external domain controllers Sites are created via the Active Directory Sites and Services snap-in Windows Server 2003 creates the first site automatically when AD is installed This site is named Default-First-Site-Name and includes all the domain controllers The sites themselves are connected via site links, which are typically lower-bandwidth than the LAN speeds within the Site or unreliable/occasional connections between sites The server that is responsible for evaluating and creating the topology for the intersite replication is known as the Intersite Topology Generator The replication topology among sites is generated automatically by Windows Server 2003 through a service known as the Knowledge Consistency Checker (KCC) A site link bridge is a collection of site links You create site links and add them to the site link bridge You should be familiar with two site parameters: The schedule The replication interval Two different protocols can be used: Remote Procedure Call (RPC) Simple Mail Transfer Protocol (SMTP) [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com seizing operations master roles 2nd 3rd 4th servers [See Windows Server 2003] bridgehead servers configuring 2nd defined DNS (Domain Name Service) configuring 2nd GC (Global Catalog) servers 2nd adding 2nd logon validation 2nd 3rd network traffic considerations 2nd universal group membership caching 2nd 3rd multihomed servers services FRS (File Replication Service) 2nd 3rd 4th 5th monitoring with debug logging monitoring with event log weaknesses KCC (Knowledge Consistency Checker) 2nd Setup Manager SETUP_SECURITY.INF template Shared Folders administrative templates shortcut trusts 2nd shortcuts troubleshooting 2nd Show Answer button (PrepLogic Practice Tests) shutdown, running scripts at SIDs (security identifiers) Simple Mail Transfer Protocol (SMTP) 2nd single sign-on site link bridges Bridge All Site Links feature creating 2nd defined site links configuring 2nd creating 2nd DefaultIPSiteLink defined overview 2nd properties 2nd site link bridges 2nd 3rd 4th sites 2nd advantages 2nd bridgehead servers configuring 2nd defined connection objects 2nd creating 2nd viewing 2nd creating 2nd 3rd domain controllers moving between sites 2nd 3rd 4th overview 2nd relationship with domains replication exam prep questions 2nd 3rd 4th 5th 6th 7th 8th 9th This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com FRS (File Replication Service) recommended reading 2nd replication between sites 2nd replication within sites 2nd RPC (Remote Procedure Call) SMTP (Simple Mail Transfer Protocol) 2nd site link bridges Bridge All Site Links feature creating 2nd defined site links configuring 2nd creating 2nd DefaultIPSiteLink defined overview 2nd properties 2nd site link bridges 2nd 3rd 4th Sites and Services snap-in 2nd 3rd Sites, Domains, or Organizational Units (SDOUs) Group Policy 2nd smartcard authentication 2nd configuring 2nd 3rd 4th remote access 2nd 3rd SMTP (Simple Mail Transfer Protocol) 2nd snap-ins RSoP (Resultant Set of Policy) 2nd logging mode planning mode 2nd Resultant Set of Policy Wizard 2nd Schema MMC snap-in Sites and Services snap-in 2nd 3rd software deployment 2nd 3rd assigned versus published applications 2nd distribution phase distribution points installation phase new packages 2nd 3rd package properties 2nd pilot program phase preparation phase targeting phase to computers 2nd to users 2nd troubleshooting 2nd 3rd 4th 5th 6th 7th 8th 9th 10th 11th patches PrepLogic Practice Tests, Preview Edition requirements Software Installation 2nd exam prep questions 2nd 3rd 4th 5th 6th JIT (Just-In-Time) technology patches properties 2nd 3rd 4th 5th 6th 7th requirements 2nd software deployment 2nd 3rd 4th 5th 6th 7th 8th 9th 10th 11th 12th 13th 14th 15th 16th 17th software uninstallation troubleshooting 2nd 3rd 4th 5th 6th 7th 8th 9th 10th 11th upgrades uninstallation This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com upgrades Software Installation 2nd JIT (Just-In-Time) technology patches properties Advanced tab 2nd Categories tab File Extensions tab General tab 2nd requirements 2nd software deployment 2nd 3rd assigned versus published applications 2nd distribution phase distribution points installation phase new packages 2nd 3rd package properties 2nd pilot program phase preparation phase targeting phase to computers 2nd to users 2nd troubleshooting 2nd software uninstallation troubleshooting Active Directory Will Not Allow the Package to be Deployed error message Cannot Prepare the Package for Deployment error message general guidelines shortcuts 2nd The Feature You Are Trying to Install Cannot be Found in the Source Directory error message 2nd uninstalled applications 2nd uninstalled exam prep questions 2nd 3rd 4th 5th 6th upgrades Software Installation Properties dialog box Advanced tab 2nd Categories tab File Extensions tab General tab 2nd Software Restriction Policies Software Settings container (Group Policy Editor) Standard Edition (Windows Server 2003) Start Menu & Taskbar administrative templates Start menu commands Run starting AD Installation Wizard startup, running scripts at suffixes (UPN) 2nd Sync (/Sync) option (GPUpdate command) System administrative templates System Policies 2nd 3rd 4th 5th system state data 2nd 3rd System.adm files Systems Management SYSVOL folder 2nd verifying 2nd SysVolPath key [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [R] [S] [T] [U] [V] [W] [X] [Z] T (//T) option (cscript command) Target (/Target) option (GPUpdate command) targeting phase (software deployment) templates administrative templates adding/removing 2nd Common.adm Computer Configuration container Conf.adm Control Panel Desktop Inetcorp.adm Inetres.adm Inetset.adm location Network Printers Shared Folders Start Menu & Taskbar structure of 2nd 3rd 4th System System.adm User Configuration container 2nd Windows Components Windows.adm Winnt.adm Wmplayer.adm GPTs (Group Policy Templates) Group Policy Templates security templates 2nd 3rd Compatible COMPATWS.INF DC SECURITY.INF DCFIRST.INF DCUP5.INF DEFLTDC.INF DEFLTSV.INF DSUP.INF DSUPT.INF High Secure HISECDC.INF HISECWS.INF IESACLS.INF implementing ROOTSEC.INF Secure SECUREDC.INF SECUREWS.INF SETUP_SECURITY.INF tests exam prep questions AD maintenance 2nd 3rd 4th domain-related questions 2nd 3rd 4th 5th Group Policy questions 2nd 3rd 4th 5th 6th This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Group Policy troubleshooting 2nd 3rd 4th operation master questions 2nd 3rd 4th 5th 6th OU-related questions 2nd 3rd 4th 5th 6th 7th 8th 9th 10th security questions 2nd 3rd 4th 5th site-related questions 2nd 3rd 4th 5th 6th 7th 8th 9th Software Installation questions 2nd 3rd 4th 5th 6th user/group-related questions 2nd 3rd 4th 5th 6th 7th 8th PrepLogic Practice Tests, Preview Edition 2nd 3rd 4th 5th additional exams buttons 2nd customer service exam review exam simulation Examination Score Report 2nd Flash Review mode 2nd installation 2nd interface design learning environment license agreement Practice Test mode 2nd 3rd PrepLogic contact information product suggestions/comments question quality software requirements time remaining uninstallation 2nd time remaining PrepLogic Practice Tests, Preview Edition tombstone lifetime tools [See also wizards]2nd [See also commands] Active Directory Users and Computers 2nd Event Viewer monitoring AD replication with 2nd GPMC (Group Policy Management Console) 2nd GPMonitor 2nd GPOTool 2nd GPResult 2nd 3rd 4th GPUpdate 2nd 3rd 4th Group Policy Editor Administrative Templates container Computer Configuration container invoking as standalone console 2nd 3rd invoking through Group Policy tab 2nd root container Software Settings container User Configuration container Windows Settings container Ntdsutil seizing operations master roles 2nd 3rd Repadmin 2nd Replmon 2nd Setup Manager WSH (Windows Script Host) CScript.exe 2nd 3rd WScript.exe 2nd transferring operations masters between servers 2nd 3rd 4th transitive trusts 2nd This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Transport property (site links) TreeOrChild key troubleshooting AD (Active Directory) installation 2nd 3rd AD (Active Directory) removal 2nd Group Policy 2nd 3rd 4th AD (Active Directory) 2nd AD replication DNS (Domain Name System) 2nd Event Viewer exam prep questions 2nd 3rd 4th FRS (File Replication Service) 2nd general troubleshooting 2nd GPMC (Group Policy Management Console) 2nd GPMonitor 2nd GPOTool 2nd GPResult 2nd 3rd 4th GPUpdate 2nd 3rd 4th Group Policy application 2nd loopback processing 2nd ping command precedence 2nd RSoP (Resultant Set of Policy) 2nd SDOUs (Sites, Domains, or Organizational Units) 2nd security groups 2nd software deployment 2nd Active Directory Will Not Allow the Package to be Deployed error message Cannot Prepare the Package for Deployment error message general guidelines shortcuts 2nd The Feature You Are Trying to Install Cannot be Found in the Source Directory error message 2nd uninstalled applications 2nd trust relationships 2nd configuring 2nd 3rd 4th defined external trusts 2nd forest trusts 2nd New Trust Wizard 2nd 3rd 4th realm trusts 2nd shortcut trusts 2nd transitive trusts 2nd [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [R] [S] [T] [U] [V] [W] [X] [Z] U (//U) option (cscript command) U (/U) option (GPResult command) unattend.doc file unattended AD (Active Directory) installation 2nd AutoConfigDNS key ChildName key CreateOrJoin key DatabasePath key DCInstall key 2nd 3rd 4th DomainNetBiosName key GuiRunOnce key 2nd 3rd LogPath key NewDomainDNSName key ReplicaDomainDNSName key ReplicaOrNewDomain key SysVolPath key TreeOrChild key uninstallation PrepLogic Practice Tests, Preview Edition 2nd uninstalled applications troubleshooting 2nd uninstalling AD (Active Directory) summary of 2nd troubleshooting removal 2nd uninstalling software universal groups membership caching 2nd 3rd unlocking user accounts 2nd upgrades UPN Suffixes dialog box UPNs [See user principle names] USER (/USER) option (GPResult command) User Configuration container (ADM files) 2nd User Configuration container (Group Policy Editor) user logon names 2nd user principal names 2nd logon validation suffixes 2nd user profiles roaming profiles users administration tasks 2nd built-in user accounts copying 2nd creating 2nd deleting 2nd deployment software to 2nd disabling/enabling 2nd domain user accounts exam prep questions 2nd 3rd 4th 5th 6th 7th 8th local user accounts logon names 2nd This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com rules for 2nd user principal names 2nd 3rd 4th passwords password policies 2nd 3rd resetting 2nd permissions OUs (Organization Units) 2nd 3rd recommendations 2nd recommended reading renaming 2nd single sign-on smartcard authentication 2nd configuring 2nd 3rd 4th remote access 2nd 3rd unlocking 2nd user principal names suffixes 2nd utilities Ntdsutil seizing operations master roles 2nd 3rd Setup Manager utilities [See commands, tools] [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [R] [S] [T] [U] [V] [W] [X] [Z] V (/V) option (GPResult command) validating logons GC (Global Catalog) servers 2nd user principal names VBScript verifying AD (Active Directory) installation event logs 2nd files 2nd SYSVOL folder 2nd versions of Windows Server 2003 viewing connection objects 2nd [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [R] [S] [T] [U] [V] [W] [X] [Z] Wait (/Wait) option (GPUpdate command) Web sites Windows Server 2003 Deployment Kit Windows Server 2003 Resource Kit Windows 2000 mixed mode Windows 2000 native mode 2nd Windows Components administrative templates Windows Script Host (WSH) CScript.exe 2nd 3rd WScript.exe 2nd Windows Server 2003 [See also AD (Active Directory)]2nd [See also Group Policy] AD (Active Directory) AD Installation Wizard 2nd 3rd 4th 5th 6th 7th 8th 9th 10th 11th application data partitions 2nd 3rd 4th 5th event logs 2nd file verification 2nd integrated zones removing 2nd 3rd 4th 5th system requirements 2nd 3rd SYSVOL folder 2nd troubleshooting installation 2nd 3rd unattended installation 2nd 3rd 4th 5th 6th 7th 8th 9th Change and Configuration Management 2nd 3rd [See also GPOs (Group Policy Objects)] domains 2nd 3rd 4th defined DNS (Domain Name System) domain modes 2nd 3rd 4th 5th 6th 7th 8th 9th 10th exam prep questions 2nd 3rd 4th 5th forest root installing 2nd 3rd 4th 5th 6th relationship with sites root domains trust relationships 2nd 3rd 4th 5th 6th 7th 8th 9th 10th 11th 12th 13th 14th 15th 16th 17th 18th 19th 20th 21st GC (Global Catalog) servers 2nd adding 2nd logon validation 2nd 3rd network traffic considerations 2nd universal group membership caching 2nd 3rd GPOs (Group Policy Objects) compared to System Policies 2nd 3rd creating 2nd 3rd DACL (discretionary access control list) defined 2nd delegating administrative control of 2nd 3rd disabling disabling unused portions of 2nd editing 2nd 3rd 4th 5th 6th 7th 8th exam prep questions 2nd 3rd 4th 5th 6th filtering 2nd GPCs (Group Policy Containers) Group Policy Editor 2nd 3rd 4th 5th 6th This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Group Policy Templates GUIDs (globally unique identifiers) inheritance 2nd 3rd 4th 5th 6th 7th linking 2nd 3rd 4th 5th 6th 7th 8th local GPOs 2nd Local Policy non-local GPOs 2nd overview 2nd RSoP (Resultant Set of Policy) 2nd 3rd 4th 5th 6th 7th groups comparison of defined 2nd distribution groups exam prep questions 2nd 3rd 4th 5th 6th 7th 8th nesting recommendations 2nd recommended reading scope security group strategies 2nd 3rd 4th 5th security groups universal groups operations masters 2nd 3rd 4th determining roles Domain Naming Masters 2nd domain-level roles 2nd exam prep questions 2nd 3rd 4th 5th 6th forest-level roles 2nd 3rd Infrastructure Masters 2nd 3rd multimaster concept PDC (Primary Domain Controller) Emulators 2nd permissions recommendations 2nd RID (relative identifier) Masters 2nd role dependencies 2nd Schema Masters 2nd scope 2nd seizing roles 2nd 3rd 4th transferring between servers 2nd 3rd 4th replication FRS (File Replication Service) replication between sites 2nd replication within sites 2nd RPC (Remote Procedure Call) SMTP (Simple Mail Transfer Protocol) 2nd sites 2nd advantages 2nd bridgehead servers 2nd 3rd 4th connection objects 2nd 3rd 4th 5th 6th creating 2nd 3rd domain controllers 2nd 3rd 4th 5th 6th exam prep questions 2nd 3rd 4th 5th 6th 7th 8th 9th recommended reading 2nd relationships with domains replication 2nd 3rd 4th 5th 6th site link bridges 2nd 3rd 4th 5th site links 2nd 3rd 4th 5th 6th 7th 8th 9th 10th 11th 12th 13th 14th System Policies users administration tasks 2nd This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com built-in user accounts copying 2nd creating 2nd deleting 2nd disabling/enabling 2nd domain user accounts exam prep questions 2nd 3rd 4th 5th 6th 7th 8th local user accounts logon names 2nd 3rd 4th 5th 6th 7th 8th passwords 2nd 3rd 4th 5th recommendations 2nd recommended reading renaming 2nd single sign-on smartcard authentication 2nd 3rd 4th 5th 6th 7th 8th 9th unlocking 2nd versions Windows Server 2003 Delta Guide 2nd 3rd 4th 5th Windows Server 2003 Deployment Kit Windows Server 2003 functional levels 2nd 3rd 4th Windows Server 2003 interim mode 2nd Windows Server 2003 Resource Kit Windows Server 2003 Unleashed 2nd 3rd 4th 5th Windows Settings container (Group Policy Editor) Windows.adm files Winnt.adm files wizards AD Installation Wizard 2nd domain installation 2nd 3rd 4th 5th 6th starting Copy Object-User Wizard Delegation of Control Wizard 2nd 3rd 4th New Trust Wizard 2nd 3rd 4th Resultant Set of Policy Wizard 2nd Wmplayer.adm files wscript command WScript.exe 2nd WSH (Windows Script Host) CScript.exe 2nd 3rd WScript.exe 2nd [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [R] [S] [T] [U] [V] [W] [X] [Z] X (//X) option (cscript command) [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com [ Team LiB ] [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [R] [S] [T] [U] [V] [W] [X] [Z] Z (/Z) option (GPResult command) ZAP files zones integrated zones [ Team LiB ] This document is created with a trial version of CHM2PDF Pilot http://www.colorpilot.com Brought to You by Like the book? Buy it! ... group memberships Windows Server 2003 uses "Version 2" templates, whereas Windows 2000 uses "Version 1" templates These two are not completely interchangeable Windows 2000 Active Directory cannot... manager, where he also administered multiple Active Directory domains and servers running BackOffice applications Exchange Server, IIS, Site Server, SQL Server, and SMS He enjoys spending time with... on the Windows Server 2003 track are "70-290: Managing and Maintaining a Microsoft Windows Server 2003 Environment," "70-291: Implementing, Managing, and Maintaining a Microsoft Windows Server