Identity with Windows Server 2016
- Codice corso: 20742B
- Durata corso: 5gg
Introduzione
This five-day instructor-led course teaches IT professionals how to deploy and configure Active Directory Domain Services (AD DS) in a distributed environment, how to implement Group Policy, how to perform backup and restore, and how to monitor and troubleshoot Active Directory–related issues with Windows Server 2016. Additionally, this course teaches students how to deploy other Active Directory server roles, such as Active Directory Federation Services (AD FS) and Active Directory Certificate Services (AD CS).
This course is primarily intended for existing IT professionals who have some AD DS knowledge and experience and who aim to develop knowledge about identity and access technologies in Windows Server 2016. This would typically include:
AD DS administrators who are looking to train in identity and access technologies with Windows Server 2012 or Windows Server 2016.
System or infrastructure administrators with general AD DS experience and knowledge who are looking to cross-train in core and advanced identity and access technologies in Windows Server 2012 or Windows Server 2016.
The secondary audience for this course includes IT professionals who are looking to consolidate their knowledge about AD DS and related technologies, in addition to IT professionals who want to prepare for the 70-742 exam.
Obiettivi del corso
After completing this course, students will be able to:
Install and configure domain controller
Manage objects in AD DS by using graphical tools and Windows PowerShell
Implement AD DS in complex environments.
ImpImplement and administer Active Directory Rights Management Services (AD RMS).
lmplement AD DS sites, and configure and manage replication
Implement and manage Group Policy Objects (GPOs
Manage user settings by using GPOs.
Secure AD DS and user accounts
Implement and manage a certificate authority (CA) hierarchy with AD CS
Deploy and manage certificates
Implement and administer AD FS
Implement synchronization between AD DS and Azure AD
Monitor, troubleshoot, and establish business continuity for AD DS services
Prerequisiti
Discrete competenze di base di informatica, sia Hardware che software (soprattutto Sistemi operativi)
Struttura del Corso
MODULE 1: Installing and configuring domain controllers
This module describes the features of AD DS and how to install domain controllers (DCs). It also covers the considerations for deploying DCs.
Lessons
After completing this module, students will be able to:
Describe and deploy and Administering AD DS and its main components
Describe and deploy AD DS domain controllers
Deploy domain controllers by performing domain controller cloning
Describe the purpose and roles of domain controllers
Describe the considerations for deploying domain controllers
Lab : Deploying and administering AD DS
MODULE 2: Managing objects in AD DS
This module describes how to use various techniques to manage objects in AD DS. This includes creating and configuring user, group, and computer objects.
Lessons
After completing this module, students will be able to:
Create and Manage user accounts in AD DS.
Create and Manage groups in AD DS.
Manage computer objects in AD DS.
Use Windows PowerShell for AD DS administration.
Implement and manage OUs.
Administer AD DS
Delegate administration for OUs
Create and modify AD DS objects with Windows PowerShell
Lab : Managing AD DS objects
Lab : Administering AD DS
MODULE 3: Advanced AD DS infrastructure management
This module describes how to plan and implement an AD DS deployment that includes multiple domains and forests. The module provides an overview of the components in an advanced AD DS deployment, the process of implementing a distributed AD DS environment, and the procedure for configuring AD DS trusts.
Lessons
After completing this module, students will be able to:
Describe the components of an advanced AD DS deployment
Deploy a distributed AD DS environment
Configure AD DS trusts
Implementing forest trusts
Implementing child domains in AD DS
Lab : Domain and trust management in AD DS
MODULE 4: Implementing and administering AD DS sites and replication
This module describes how to plan and implement an AD DS deployment that includes multiple locations. The module explains how replication works in a Windows Server 2016 AD DS environment.
Lessons
After completing this module, students will be able to:
Describe how AD DS replication works.
Configure AD DS sites to help optimize authentication and replication traffic
Create additional sites and subnets
Modify the default site
Configure and monitor AD DS replication
Monitor and troubleshoot AD DS replication
Lab : Implementing AD DS sites and replication
MODULE 5: Implementing Group Policy
This module describes how to implement a GPO infrastructure. The module provides an overview of the components and technologies that compose the Group Policy framework.
Lessons
After completing this module, students will be able to:
Explain what Group Policy is.
Implement and administer GPOs.
Describe Group Policy scope and Group Policy processing.
Create and configure GPOs
Manage GPO scope
Verify GPO application
Troubleshoot GPO application
Lab : Implementing a Group Policy infrastructure
Lab : Troubleshooting Group Policy infrastructure
MODULE 6: Managing user settings with Group Policy
This module describes how to configure Group Policy settings and Group Policy preferences. This includes implementing administrative templates, configuring folder redirection and scripts, and configuring Group Policy preferences.
Lessons
After completing this module, students will be able to:
Implement administrative templates to manage user settings
Implement settings by using Group Policy preferences
Configure Folder Redirection, software installation, and scripts.
Configure Group Policy preferences
Lab : Managing user settings with GPOs
MODULE 7: Securing Active Directory Domain Services
This module describes how to configure domain controller security, account security, password security, and Group Managed Service Accounts (gMSA).
Lessons
After completing this module, students will be able to:
Secure domain controllers
Implement account security
Implement audit authentication
Create and Configure managed service accounts (MSAs)
Implement security policies for accounts, passwords, and administrative groups
Deploy and configure an RODC
Lab : Securing AD DS
MODULE 8: Deploying and managing AD CS
This module describes how to implement an AD CS deployment. This includes deploying, administering, and troubleshooting CAs.
Lessons
After completing this module, students will be able to:
Deploy CAs
Administer CAs
Troubleshoot and maintain CAs
Deploy an offline root CA
Deploy an enterprise subordinate CA
Lab : Deploying and configuring a two-tier CA hierarchy
MODULE 9: Deploying and managing certificates
This module describes how to deploy and manage certificates in an AD DS environment. This involves deploying and managing certificate templates, managing certificate revocation and recovery, using certificates in a business environment, and implementing smart cards.
Lessons
After completing this module, students will be able to:
Configure, Deploy and manage certificate templates
Manage certificates deployment, revocation, and recovery
Use certificates in a business environment
Implement and manage smart cards
Lab : Deploying and using certificates
MODULE 10: Implementing and administering AD FS
This module describes AD FS and how to configure AD FS in a single-organization scenario and in a partner-organization scenario.
Lessons
After completing this module, students will be able to:
Describe AD FS
Deploy and implement an AD FS
Explain how to implement AD FS for a single organization
Configure AD FS for federated business partners
Explain how to extend AD FS to external clients
Implement single sign-on (SSO) to support online services
Web Application Proxy Overview
Lab : Implementing AD FS
MODULE 11: Implementing and administering AD RMS
This module describes how to implement an AD RMS deployment. The module provides an overview of AD RMS, explains how to deploy and manage an AD RMS infrastructure, and explains how to configure AD RMS content protection.
Lessons
After completing this module, students will be able to:
Describe AD RMS.
Install, Configure, Deploy and manage an AD RMS infrastructure
Configuring AD RMS templates
Configure AD RMS content protection
Using AD RMS on clients
Lab : Implementing an AD RMS infrastructure
MODULE 12: Implementing AD DS synchronization with Microsoft Azure AD
This module describes how to plan and configure directory syncing between Microsoft Azure Active Directory (Azure AD) and on-premises AD DS. The modules describes various sync scenarios, such as Azure AD sync, AD FS and Azure AD, and Azure AD Connect.
Lessons
After completing this module, students will be able to:
Plan and prepare for directory synchronization.
Implement directory synchronization by using Microsoft Azure Active Directory Connect (Azure AD Connect).
Manage identities with directory synchronization
Lab : Configuring directory synchronization
MODULE 13: Monitoring, managing, and recovering AD DS
This module describes how to monitor, manage, and maintain AD DS to help achieve high availability of AD DS.
Lessons
After completing this module, students will be able to:
Monitor AD DS.
Manage the Active Directory database.
Describe the backup and recovery options for AD DS and other identity access solutions
Backing up and restoring AD DS
Recovering objects in AD DS
Lab : Recovering objects in AD DS