Active Directory Services with Windows Server
- Codice corso: 10969B
- Durata corso: 5gg
Introduzione
Get Hands on instruction and practice administering Active Directory technologies in Windows Server 2012 and Windows Server 2012 R2 in this 5-day Microsoft Official Course. You will learn the skills you need to better manage and protect data access and information, simplify deployment and management of your identity infrastructure, and provide more secure access to data. You will learn how to configure some of the key features in Active Directory such as Active Directory Domain Services (AD DS), Group Policy, Dynamic Access Control (DAC), Work Folders, Work Place Join, Certificate Services, Rights Management Services (RMS), Federation Services, as well as integrating your on premise environment with cloud based technologies such as Windows Azure Active Directory. As part of the learning experience, you will perform hands-on exercises in a virtual lab environment.
This course is intended for Information Technology (IT) Professionals who have Active Directory Domain Services (AD DS) experience and are looking to for a single course that will further develop knowledge and skills using Access and Information Protection technologies in Windows Server 2012 and Windows Server 2012 R2. This would typically include:
AD DS Administrators who are looking to further develop skills in the latest Access and Information Protection technologies with Windows Server 2012 and Windows Server 2012 R2.
System or Infrastructure administrators with general AD DS experience and knowledge who are lookig to build upon that core knowledge and cross-train into advanced Active Directory technologies in Windows Server 2012 and Windows Server 2012 R2.
IT Professionals who have taken the 10967A: Fundamentals of a Windows Server Infrastructure course and are looking to build upon that Active directory knowledge.
Obiettivi del corso
After completing this course, students will be able to:
Understand available solutions for identity management and be able to address scenarios with appropriate solutions
Deploy and administer AD DS in Windows Server 2012
Secure AD DS deployment
Implement AD DS sites, configure and manage replication
Implement and manage Group Policy
Manage user settings with Group Policy
Implement certification authority (CA) hierarchy with AD CS and how to manage CAs.
Implement, deploy and manage certificates
Implement and manage AD RMS
Implement and administer AD FS
Secure and provision data access using technologies such as Dynamic Access Control, Work Folders and Workplace Join
Monitor, troubleshoot and establish business continuity for AD DS services
Implement Windows Azure Active Directory
Implement and administer Active Directory Lightweight Directory Services (AD LDS)
Prerequisiti
Before attending this course, students must have:
Experience working with Active Directory Domain Services (AD DS)
Experience working in a Windows Server Infrastructure enterprise environment
Experience working with and troubleshooting core networking infrastructure technologies such as name resolution, IP Addressing, Domain Name System (DNS) and Dynamic Host Configuration Protocol (DHCP)
Experience working with Hyper-V and Server Virtualization concepts
An awareness and understanding of general security best practices
Experience working hands on with Windows client operating systems such as Windows Vista, Windows 7 or Windows 8
Struttura del Corso
MODULE 1: Overview of Access and Information Protection
This module provides an overview of multiple Access and Information Protection (AIP) technologies and services what are available with Windows Server 2012 and Windows Server 2012 R2 from a business perspective and maps business problems to technical solutions. It also includes coverage of Forefront Identify Manager (FIM).
Lessons
After completing this module students will be able to:
Describe Access and Information Protection (AIP) Solutions in Windows Server 2012
Describe Access and Information Protection solutions in Windows Server 2012 and Windows Server 2012 R2.
Describe Microsoft Forefront Identity Manager (FIM) 2010 R2.
Lab : Choosing an Appropriate Access and Information Protection Management Solution
MODULE 2: Advanced Deployment and Administration of AD DS
This module explains how to deploy AD DS remotely and describes the virtualization safeguards, cloning abilities and extending AD DS to the cloud.
Lessons
After completing this module, students will be able to:
Describe and perform various deployment techniques for AD DS
Deploying and Cloning Virtual Domain Controllers
Explain how new technologies in Windows Server 2012 and Windows Server 2012 R2 support virtual domain controllers
Describe Domain Controller cloning
Deploying Domain Controllers in Windows Azure
Implement AD DS using the tools provided in Windows Server 2012 and Windows Server 2012 R2
Lab : Deploying and Administering AD DS
MODULE 3: Securing AD DS
This module describes the threats to domain controllers and what methods can be used to secure the AD DS and its domain controllers.
Lessons
After completing this module, students will be able to:
Understand the importance Securing Domain Controllers
Describe the benefit of read-only domain controllers (RODCs)
Explain and implement password and account lockout policies
Implement audit authentication
Lab : Securing AD DS
MODULE 4: Implementing and Administering AD DS Sites and Replication
This module explains how AD DS replicates information between domain controllers within a single site and throughout multiple sites. This module also explains how to create multiple sites and how to monitor replication to help optimize AD DS replication and authentication traffic.
Lessons
After completing this module, students will be able to:
Describe AD DS Replication
Configure AD DS Sites
Configure and Monitor AD DS Replication
Lab : Implementing AD DS Sites and Replication
MODULE 5: Implementing Group Policy
This module describes Group Policy, how it works, and how best to implement it within your organization.
Lessons
After completing this module, students will be able to:
Describe Group Policy
Implement and administer GPOs
Describe Group Policy scope and Group Policy processing
Troubleshoot the application of GPOs
Lab : Implementing and Troubleshooting a Group Policy Infrastructure
MODULE 6: Managing User Settings with Group Policy
This module describes how to how to use GPO Administrative Templates, Folder Redirection, and Group Policy features to configure users’ computer settings.
Lessons
After completing this module, students will be able to:
Implement Administrative Templates
Configure Folder Redirection and scripts
Configure Group Policy preferences.
Lab : Managing User Desktops with Group Policy
MODULE 7: Deploying and Managing AD CS
This module explain how to deploy and manage Certificate Authorities (CAs) with Active Directory Certificate Services (AD CS)
Lessons
After completing this module, students will be able to:
Deploy Certificate Authorities (CAs)
Administer Certificate Authorities (CAs)
Troubleshoot, Maintain, and Monitor Certificate Authorities (CAs)
Lab : Deploying and Configuring a Two-Tier CA Hierarchy
MODULE 8: Deploying and Managing Certificates
This module describes certificate usage in business environments and explains how to deploy and manage certificates, configure certificate templates and manage enrolment process.
This module also covers the deployment and management of smart cards.
Lessons
After completing this module, students will be able to:
Use certificates in Business Environment
Deploy and manage Certificate Templates
Manage certificates Deployment, Revocation, and Recovery
Implement and Manage Smart Cards
Lab : Deploying and Using Certificates
MODULE 9: Implementing and Administering AD RMS
This module introduces Active Directory Rights Management Services (AD RMS). It also describes how to deploy AD RMS, how to configure content protection, and how to make AD RMS–protected documents available to external users.
Lessons
After completing this module, students will be able to:
Describe AD RMS
Explain how to Deploy and Manage an AD RMS infrastructure
Explain how to Configure AD RMS Content Protection
Explain how to Configure External Access to AD RMS
Lab : Implementing an AD RMS Infrastructure
MODULE 10: Implementing and Administering AD FS
This module explains AD FS, and then provides details on how to configure AD FS in both a single organization scenario and in a partner organization scenario. This module also describes the Web Application Proxy feature in Windows Server 2012 R2 that functions as an AD FS proxy and reverse proxy for web-based applications.
Lessons
After completing this module, students will be able to:
Describe AD FS
Explain how to configure the AD FS prerequisites, and deploy AD FS services
Describe how to implement AD FS for a Single Organization
Deploy AD FS in a Business-to-Business Federation Scenario
Extending AD FS to External Clients
Deploy the Web Application Proxy
Lab : Implementing AD FS
MODULE 11: Implementing Secure Shared File Access
This module explains how to use Dynamic Access Control (DAC), Work Folders, Work place Join and how to plan and implement these technologies.
Lessons
After completing this module, students will be able to:
Describe Dynamic Access Control (DAC)
Implement DAC Components
Implement DAC for Access Control
Implement Access-Denied Assistance
Implement and manage Work Folders
Implement Workplace Join
Lab : Implementing Secure File Access
MODULE 12: Monitoring, Managing, and Recovering AD DS
This module explains how to use tools that help monitor performance in real time, and how to record performance over time to spot potential problems by observing performance trends. This module also explains how to optimize and protect your directory service and related identity and access solutions so that if a service does fail, you can restart it as quickly as possible.
Lessons
After completing this module, students will be able to:
Monitor AD DS
Manage the AD DS database
Recover objects from the AD DS database
Lab : Monitoring AD DS
Lab : Recovering Objects in AD DS and Other Identity and Access Solutions
MODULE 13: Implementing Windows Azure Active Directory
This module explains the concepts and technologies in Windows Azure Active Directory and how to implement and integrate it within your organization
Lessons
After completing this module, students will be able to:
Describe Windows Azure AD
Administer Azure AD
Lab : Implementing Windows Azure AD
MODULE 14: Implementing and Administering AD LDS
This module explains how to deploy and configure Active Directory Lightweight Directory Services (AD LDS)
Lessons
After completing this module, students will be able to:
Describe AD LDS
Explain how to deploy AD LDS
Explain how to configure AD LDS instances and partitions
Explain how to configure AD LDS replication
Integrating AD LDS with AD DS
Lab : Implementing and Administering AD LDS