Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống
1
/ 2.610 trang
THÔNG TIN TÀI LIỆU
Thông tin cơ bản
Định dạng
Số trang
2.610
Dung lượng
26,9 MB
Nội dung
Microsoft® Windows Server 2003 Unleashed, R2 Edition By Rand Morimoto, Michael Noel, Alex Lewis Publisher: Sams Pub Date: May 10, 2006 Print ISBN-10: 0-672-32898-4 Print ISBN-13: 978-0-672-32898-5 Pages: 1368 Table of Contents | Index Microsoft Windows Server 2003 Unleashed, 3rd Edition is the first book on the market to cover Windows Server 2003 R2 This latest edition will keep the text viable with the major "R2" update being released from Microsoft late in 2005 Many of the Windows Server 2003 titles have not been revised since release in 2003 even though Microsoft has released a service pack and now the R2 update This book will provide detailed guidance focused on the most commonly used yet most complicated planning, installation, migration, and problem solving topics that challenge IT professionals This title goes far beyond the basic installation and setup information found in hundreds of other resources and focus on the less understood yet most important details for system configuration, tips, tricks, and techniques to successfully implement and administer a Windows networking system Microsoft® Windows Server 2003 Unleashed, R2 Edition By Rand Morimoto, Michael Noel, Alex Lewis Publisher: Sams Pub Date: May 10, 2006 Print ISBN-10: 0-672-32898-4 Print ISBN-13: 978-0-672-32898-5 Pages: 1368 Table of Contents | Index Copyright About the Authors Acknowledgments We Want to Hear from You! Introduction Part I: Windows Server 2003 Overview Chapter 1 Windows Server 2003 Technology Primer Windows Server 2003 Defined Choosing to Implement Windows Server 2003 When Is the Right Time to Migrate? Versions of Windows Server 2003 What's New in Windows Server 2003? Windows Server 2003 Benefits for Administration Windows Server 2003 for Better User Services Benefits for Thin Client Terminal Services Benefits for Improved Management Extending the Directory Beyond Active Directory Going Beyond the Basic Features of Windows 2003 with Feature Packs Extending the Capabilities of Windows 2003 with Downloadable Tools Getting Started with Windows Server 2003 Best Practices Chapter 2 Planning, Prototyping, Migrating, and Deploying Windows Server 2003 Best Practices Determining the Scope of Your Project Identifying the Business Goals and Objectives to Implement Windows Server 2003 Identifying the Technical Goals and Objectives to Implement Windows Server 2003 The Discovery Phase: Understanding the Existing Environment The Design Phase: Documenting the Vision and the Plan The Migration Planning Phase: Documenting the Process for Migration The Prototype Phase: Creating and Testing the Plan The Pilot Phase: Validating the Plan to a Limited Number of Users The Migration/Implementation Phase: Conducting the Migration or Installation Summary Best Practices Chapter 3 Installing Windows Server 2003 Preplanning and Preparing a Server Installation Setting Up the Windows Server 2003 Operating System Upgrading to Windows Server 2003 Using Alternative Methods of Installation Performing an Unattended Windows Server 2003 Installation Installing Windows Server 2003 from an Image Installing Windows Server 2003 with Group Policy and Systems Management Server Updating a Windows 2003 Server with a Service Pack Preparing a System and Installing the Windows 2003 R2 Components Summary Best Practices Part II: Windows Server 2003 Active Directory Chapter 4 Active Directory Primer The Evolution of Directory Services Understanding the Development of Active Directory Active Directory's Structure Active Directory's Components Domain Trusts Organizational Units The Role of Groups in an Active Directory Environment Active Directory Replication The Role of DNS in Active Directory Active Directory Security Active Directory Changes in Windows Server 2003 Summary Best Practices Chapter 5 Designing a Windows Server 2003 Active Directory Active Directory Domain Design Choosing Your Domain Namespace New Domain Design Features in Windows Server 2003 Choosing Your Domain Structure Single Domain Model Multiple Domain Model Multiple Trees in a Single Forest Model Federated Forests Design Model Peer-Root Domain Model Placeholder Domain Model Special-Purpose Domain Design Models Renaming an Active Directory Domain Summary Best Practices Chapter 6 Designing Organizational Unit and Group Structure Defining Organizational Units in Active Directory AD Groups OU and Group Design Starting an OU Design Using OUs to Delegate Administration Group Policies and OU Design Understanding Group Design Sample Design Models Summary Best Practices Chapter 7 Active Directory Infrastructure Understanding Active Directory Replication Active Directory Sites Planning Replication Topology Windows Server 2003 IPv6 Support Real-World Replication Designs Summary Best Practices Chapter 8 Integrating Active Directory with Novell, Oracle, Unix, and NT4 Directories Understanding and Using Services for Unix 3.5 Subsystem for Unix-Based Applications as a Component of Services for Unix Sharing Files Between Unix NFS and Windows Taking Advantage of User Synchronization in SFU Administrative Improvements in Services for Unix Connecting Windows and NetWare Environments with Services for NetWare Microsoft Identity Integration Server 2003 Harnessing the Power and Potential of MIIS Working with Active Directory Federation Services Summary Best Practices Part III: Network Services Chapter 9 The Domain Name System Inside the Domain Name System Framework for DNS Getting Started with DNS on Windows Server 2003 Understanding Resource Records DNS Zones Zone Transfers DNS Queries Other DNS Components The Evolution of Microsoft DNS DNS Changes in Windows Server 2003 DNS in an Active Directory Environment Troubleshooting DNS Summary Best Practices Chapter 10 DHCP/WINS/Domain Controllers Overview of the "Other" Network Services Key Components of an Enterprise Network Dynamic Host Configuration Protocol (DHCP) DHCP Changes in Windows Server 2003 DHCP Failover Advanced DHCP Concepts DHCP Security The Windows Internet Naming Service Installing and Configuring WINS Planning, Migrating, and Maintaining WINS Global Catalog Domain Controller Placement Summary Best Practices Chapter 11 Internet Information Services v6 Improvements in IIS 6 Planning and Designing IIS Installing and Upgrading IIS Configuring IIS Configuring and Optimizing Applications Installing and Configuring FTP Services Examining Optional IIS Components Securing IIS Maintaining IIS Internet Explorer Enhanced Security Configuration for Servers Summary Best Practices Part IV: Security Chapter 12 Server-Level Security Defining Windows Server 2003 Security Deploying Physical Security Hardening Server Security Using Security Templates to Secure a Server File-Level Security Additional Security Mechanisms Using Windows Server Update Services Summary Best Practices Chapter 13 Transport-Level Security Introduction to Transport-Level Security in Windows Server 2003 Virtual Private Networks Public Key Infrastructure Using IPSec Encryption with Windows Server 2003 Configuring Simple IPSec Between Servers in a Windows Server 2003 Domain Summary Best Practices Chapter 14 Windows Server 2003 Passports The Benefits of Using NET Passports Installing and Configuring NET Passports Working with NET Passport Accounts Using Passports with Web-Based Applications Using NET Passports and Mobile Devices Additional Layers of Security .NET Passport Policies Other Passport Services Passport Licensing Summary Best Practices Chapter 15 Security Policies and Tools Security Policies Security Framework Windows Server 2003 Security Policy Toolbox Summary Best Practices Part V: Migrating to Windows Server 2003 Chapter 16 Migrating from Windows NT4 to Windows Server 2003 Migration Paths to Windows Server 2003 Preparing Windows NT4 Domains to Migrate to Windows Server 2003 Performing an Inplace Upgrade Migrating Existing NT4 Domains to a New Windows Server 2003 Forest Consolidating Windows NT4 Domains Using Microsoft Active Directory Migration Tool Summary Best Practices Chapter 17 Migrating from Windows 2000 to Windows Server 2003 Windows Server 2003 Migration Overview Beginning the Migration Process Upgrading a Single Member Server Upgrading a Windows 2000 Active Directory Forest Upgrading Separate AD Forests to a Single Forest Using Mixed-Mode Domain Redirect Consolidating and Migrating Domains Using the Active Directory Migration Tool v2.0 Consolidating a Windows 2000 Domain to a Windows Server 2003 Domain Using ADMT v2.0 Summary Best Practices Chapter 18 Compatibility Testing for Windows Server 2003 The Importance of Compatibility Testing Preparing for Compatibility Testing Researching Products and Applications Verifying Compatibility with Vendors Lab-Testing Existing Applications Documenting the Results of the Compatibility Testing Determining Whether a Prototype Phase Is Required Summary Best Practices Part VI: Windows Server 2003 Administration and Management Chapter 19 Windows Server 2003 Administration Defining the Administrative Model Examining Active Directory Site Administration Configuring Sites Examining Windows Server 2003 Active Directory Groups Creating Groups Handling User Administration Understanding User Profiles Managing Users with Local Security and Group Policies Managing Printers with Print Management Component Summary Best Practices Chapter 20 Windows Server 2003 System Registry Windows Server 2003 Registry Architecture The Windows Server 2003 Registry Editor Protecting the Registry Maintaining the Registry Backing Up the Registry Summary Best Practices Chapter 21 Windows Server 2003 Group Policies Leveraging Group Policies General Best Practices for Group Policy Deployment Understanding GP Inheritance and Application Order Understanding the Effects of Slow Links on Group Policy Using Tools to Make Things Go Faster Linking Group Policies Automating Software Installations Enhancing Manageability with Group Policy Management Console Using Resultant Set of Policies in GPMC Understanding Windows Management Instrumentation Maximizing Security with Group Policy Getting the Most Out of Folder Redirection Other Useful Tools for Managing Group Policies Using Administrative Templates Modifying Administrative Templates Working with Group Policy Objects Working Within the Group Policy Snap-in Namespace Summary Best Practices Chapter 22 Windows Server 2003 Management and Maintenance Practices Managing Windows Server 2003 Auditing the Environment Managing Windows Server 2003 Remotely Identifying Security Risks Tracking and Managing Licenses Using Microsoft Operations Manager to Simplify Management Employing Windows Server 2003 Maintenance Practices Keeping Up with Service Packs and Updates Maintaining Windows Server 2003 Summary of Maintenance Tasks and Recommendations Summary Best Practices Chapter 23 Automating Tasks Using Windows Server 2003 Scripting Scripting Overview Introduction to VBScript Active Directory Scripting Overview Discovering Object Properties Scripting User Management Creating a User from File Data Searching Active Directory Windows Server 2003 Scripting Leveraging Sample Scripts Summary Best Practices Chapter 24 Documenting a Windows Server 2003 Environment Benefits of Documentation Design and Planning Documentation Migration Documentation Active Directory Infrastructure Network Infrastructure Administration and Maintenance Documentation Disaster Recovery Documentation Performance Documentation Security Documentation Training Documentation Summary Best Practices Chapter 25 Integrating Microsoft Operations Manager with Windows Server 2003 What Is Microsoft Operations Manager? How MOM Works Outlining MOM Architecture How to Use MOM Exploring Management Packs MOM Component Requirements Advanced MOM Concepts MOM Security Identifying Sample Designs of Successful MOM Implementations Summary Best Practices Part VII: Remote and Mobile Technologies Chapter 26 Remote and Mobile Access Windows Server 2003 Routing and Remote Access Features and Services Routing and Remote Access Service Architecture Virtual Private Networking in Windows 2003 Authentication Options to an RRAS System VPN Protocols Choosing Between PPTP and L2TP/IPSec Installing and Configuring Routing and Remote Access Configuring Remote Access Clients hardware/software requirements inplace upgrade AD upgrade backup domain controllers BDC upgrade Directory Services Restore Mode security domain controller upgrades domain member servers forest functionality levels starting migration paths domains, consolidating inplace upgrades selecting mirrored volumes NT4 SAM database operating system requirements preparations server requirements striped sets striped sets with parity volume sets Windows NT 4 to Windows Server 2003 migration paths, Windows Server 2003 forest Windows NT resource domain layouts, mapping OU designs Windows Rights Management [See RMS (Rights Management Services).] Windows Script Development Center Windows Scripting Host (WSH) 2nd 3rd Windows Server 2003 activating Active Directory add-in applications administration benefits allocating compatibility testing application server functions cluster servers collaborative design decisions configuring compatibility testing DataCenter edition design agreements design decisions design phase DFS server DHCP server directory services discovery phase DNS (domain name service) server domain controller domains, renaming end state (technology configurations) end-user satisfaction, verifying Enterprise edition environment, supporting executive summaries 2nd File Server Resource Manager (FSRM) GANTT charts geographical depth and breadth global catalog servers global catalog servers, building Group Policies installations image installations implementing information overload management installing administrator passwords alternative methods computer names 2nd date and time domain names existing domains, joining file backups hardware requirements information, gathering IP addresses languages licensing modes network settings new installation operating system partitions, formatting personalizing product keys server types upgrade workgroup names IPSec NAT Transversal lab testing process results labs, building logging in maintenance daily 2nd MMC 3.0 monthly quarterly weekly management improvements ASR Out-of-Band Management RIS for Servers media servers migration documents, creating migration planning phase migration process goals and objectives migration/implementation phase migrations 2nd ADMT (Active Directory Migration Tool) approach to defining steps and milestones budget estimates 2nd business goals and objectives, identifying network background information new features Active Directory schema objects, deleting configuration wizards dragging and dropping functionality improvements global catalog information, caching global catalog synchronization high-speed links, disabling compression IETF security standards, supporting interface, customizing and programming IPSec security improvements IPv6 standard, supporting management wizards Passport security improvements performance improvements security improvements setup wizards standards, supporting tasks, simplifying visual changes wireless security improvements XML Web Services, supporting pilot phase pilot results, documenting pilot users, application usage requirements pilot users, geographical diversity pilot users, quantity of pilot users, role requirements Print Management Console (PMC) problem solving project goals and objectives project plans project scope prototype phase prototype testing phase project plan remote access servers Service Pack updates setup information SMS installations solutions, implementation approach speed and risk, comparing Standard edition structured design documents, organizing information table of contents (sample) 2nd team members' roles and responsibilities technical goals and objectives, identifying terminal servers thin client Terminal Services unattended installations preparations script script example script launching selecting Setup Manager upgrading user services versions Volume Shadow Copy Web edition Web servers to Windows NT4 to Windows 2000 Windows NET Framework, comparing Windows 2000, migrating to Windows NT4, migrating to x64-bit edition Windows Server 2003 domain functional level 2nd Windows Server 2003 forest, NT4 migration account/resource domains domain installation domain trusts security Windows Server Update Services [See WSUS (Windows Server Update Services).] Windows Settings (Computer Configuration and User Configuration) Windows SharePoint Services (WSS) [See SharePoint.] Windows Software Update Server Windows System Resource Manager [See WSRM (Windows System Resource Manager).] Windows Terminal Services [See WTS (Windows Terminal Services).] Windows Update hotfixes SPs Web site 2nd 3rd Windows XP desktop management image deployment deployment tools desktop customization desktop software, installing errors RIS customizations tools unattended installation installing 2nd remote desktop management unattended installation workstations, updating WinRM, remote access management WINS (Windows Internet Naming Service) 2nd backing up 2nd compacting database maintenance DNS integration DNS lookups environment installing LMHOSTS file maintenance NetBIOS resolution new features pull record filtering push/pull partners replication replication partner acceptance restoring searches wire security wireless networks, security 2nd 3rd WKS (Well Known Service) records WMI (Windows Management Instrumentation) 2nd Filters scripting system scripting Terminal Services Word, creating Shared Workspaces work, scope of worker process isolation mode (IIS 6) workers, handlers/worker processes (applications) workgroups, names working sets workload characterizations (capacity analysis) workspaces SharePoint 2nd Word Shared Workspaces workstation management scripts workstations administrator locking down management scripts resealing test Windows XP/2000, updating wrapper playlists, creating WSH (Windows Scripting Host) 2nd WSRM (Windows System Resource Manager) 2nd 3rd performance optimization Terminal Services performance WSS (Windows SharePoint Services) [See SharePoint.] WSUS (Windows Server Update Services) [See also SUS (Software Update Services).] Automatic Updates client configuration customizing history installing requirements synchronizing updates approving deploying testing WTS (Windows Terminal Services) Index [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Y] [Z] X.500 directory services x64-bit edition of Windows Server 2003 XML documents, forest descriptions Web Services, supporting XMPs (Extended Management Packs) XrML (Extensible Rights Markup Language) Index [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Y] [Z] y command-line parameter Index [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Y] [Z] z command-line parameter zombies, detecting zone transfer counters of DC (domain controller) zone transfers zones AD-Integrated DNS, moving AXFR (full zone transfers) DNS 2nd AD-integrated automatic creation forward lookup integrated primary restoring reverse lookup secondary standard and AD-integrated, comparing storing stub zone transfers IXFR (incremental zone transfers) time (local), supporting ... Performing an Unattended Windows Server 2003 Installation Installing Windows Server 2003 from an Image Installing Windows Server 2003 with Group Policy and Systems Management Server Updating a Windows 2003 Server with a Service Pack... We Want to Hear from You! Introduction Part I: Windows Server 2003 Overview Chapter 1 Windows Server 2003 Technology Primer Windows Server 2003 Defined Choosing to Implement Windows Server 2003 When Is the Right Time to Migrate?... When Is the Right Time to Migrate? Versions of Windows Server 2003 What's New in Windows Server 2003? Windows Server 2003 Benefits for Administration Windows Server 2003 for Better User Services Benefits for Thin Client Terminal Services