Course Outline
Module 1: Installing and Configuring Windows Server 2008This module explains how to plan and prepare the environment and servers for installation, upgrade, and migration to Windows Server 2008 and Windows Server 2008 R2 operating systems from Windows Server 2003.Lessons
Overview of Windows Server
Introduction to Windows Server 2008
Preparing Servers for Installation
Installing Windows Server 2008
Windows Deployment Services
Lab : Installing Server Roles and Configuring Server Core
Install Web Server Role by Using Server Manager Console
Install DHCP Server Role by Using PowerShell
Configure Server Core
Lab : Capturing and Deploying Images by Using WDS
Use Sysprep to Prepare a System for Imaging
Capture an Operating System Image by Using WDS
Deploy an Operating System Image by Using WDS
After completing this module, students will be able to:
Provide an overview of the Windows Server operating system.
Describe the operating system editions, versions, licensing options, and activation options, as well as upgrade and migration scenarios supported in Windows Server 2008.
Prepare the installation media, network environment, and server hardware for the Windows Server 2008 installation.
Install Windows Server 2008 and configure Windows activation.
Deploy images by using Windows Deployment Services (WDS).
Module 2: Managing Servers with Windows Server 2008This module explains new technologies and options available to manage the operating system environment (OSE). The module discusses and allows students practice storage configuration, boot configuration, scheduled tasks and services, event logs, and performance monitoring.Lessons
Managing Server Storage Configuration
Managing and Monitoring Service Processes
Logging and Auditing in Windows Server 2008
Performance Monitoring in Windows Server 2008
Managing Server Security with BitLocker
Manage Backup and Restore
Managing Server Updates
Lab : Configuring and Monitoring Server Storage by Using PowerShell
Use IPCONFIG as an example of the normal .EXE command
Use Get-Process to list all processes
Filter the result to display only five processes with the highest VM usage
Use Restart-Service to restart the NetLogon service
Use Get-WmiObject to get Win32_LogicalDisk from ADDS machine and remotely from WDS
Change default boot options with MSCONFIG and restart the machine by using Restart-Computer
Lab : Managing Event Logs and Auditing
Practice event filtering and create a custom view
Configure event forwarding from ADDS into Storage Server
Enable advanced auditing for File Share (Object Access) on FS and test the events being logged
Lab : Managing Server Performance by Using Performance Monitor
Practice with Performance Monitor
Working with Data Collector Sets
Lab : Configuring BitLocker
Enable no-TPM requirement + AD backup
Encrypt the boot volume with BitLocker
Check the status with MANAGE-BDE
Test restart with the numerical password
Recover the numerical password from AD
Lab : Configuring and Restoring Backups
Backup Doc folder on FS
Restore some files from the backup into an alternate location
Schedule regular backup to a remote folder by using WBADMIN and Task Scheduler GUI
After completing this module, students will be able to:
Configure servers to manage storage and disk volumes.
Configure, manage, and troubleshoot service processes.
Monitor servers by using event log management and advanced auditing.
Configure performance monitoring.
Manage server security by using BitLocker.
Manage server backup and restore by using Windows Server Backup.
Configure Windows Server Update Services for server updates.
Module 3: Configuring Networking and Network ServicesThis module describes how to configure and troubleshoot the new networking technologies and settings on Windows Server 2008.Lessons
What’s New in Networking in Windows Server 2008
Configuring IPv6 Addressing
Configuring IPv6 Name Resolution
Configuring DHCP Server Role
IPv6 Transition
Securing Windows Firewall with Advanced Security
Planning for PKI Implementation
Lab : Configuring IPv6 Addressing
Check IPCONFIG /ALL auto-configured IP address
Ping FE80:: from FS to ADDS
Ping -6 from FS
Configure ADDS and FS with a static IPv6 Address
Check the IPv6 addresses and AAAA DNS records appear in DNS
Ping -6 from FS
Lab : Configuring IPv6 Name Resolution
Disable LLMNR by using a GPO
Test the IPv6 DNS AAAA name resolution is used primarily
On FS remove the IPv4 DNS server address, configure IPv6 DNS server address manually and test PING -4 still works normally
Lab : Configuring DHCP Server Role
Install DHCP Server role in a statefull mode
Configure best-practice DNS update settings
Configure the DHCP Server with a valid IPv6 range to be issued to clients
Test client lease
Enable MAC filters and block all others than explicitly allowed
Monitor blocked client request and enable Seven1 to receive IP address
Lab : Configuring and Troubleshooting Windows Firewall
Investigate default Windows Firewall settings on the DefaultInst machine
Confirm whether the machine is accessible from ADDS
Enable PING, shared files, and WMI and test the connection
Create WMI filters that filter for XP, Seven, and R2 machines
Create a GPO with Firewall settings that would apply only to the Seven computers
After completing this module, students will be able to:
Describe networking, TCP/IP, and IPv6 and some of their central management aspects.
Configure IPv6 addressing in Windows Server 2008.
Configure IPv6 name resolution in Windows Server 2008.
Configure the DHCP Server role.
Configure IPv4 and IPv6 addressing with interoperability between the two formats.
Configure Windows Firewall with advanced security features.
Module 4: Configuring and Managing Network Policy and Access ServicesThis module explains how the new NPS role works and its role. This module also describes the changes in the Windows Server 2003 role and Internet Authentication Services. It also describes how to deploy and manage the NAP role in Windows Server 2008.Lessons
Installing and Configuring Network Policy Services Server
Managing Network Policy Services Server
Deploying and Managing Network Access Protection
Configuring NAP Enforcement Methods
Lab : Installing and Configuring Network Policy Services Server
Install and configure the NPS role server
Create a Connection Request Policy
Lab : Deploying and Managing Network Access Protection
Configure NAP for VPN Clients
Configure VPN Enforcement
Test NAP for VPN Clients
After completing this module, students will be able to:
Install and configure the Network Policy Services server role
Manage a Network Policy Services Server
Configure Network Access Protection clients
Configure NAP enforcement.
Module 5: Configuring and Managing Remote AccessThis module explains the changes in RAS of Windows Server 2008 and how the new tunneling protocols work to provide easier management of secure communications in Windows Server 2008 and the IKEv2 and VPN Reconnect features in Windows Server 2008. This module also explains the new DirectAccess feature available in Windows Server 2008 and Windows 7.Lessons
Installing and Configuring Remote Access
Managing New Tunneling Protocols in Windows Server 2008
Managing DirectAccess in Windows Server 2008 R2 and Windows 7
Lab : Installing and Configuring Remote Access Services
Install the RRAS service, create a VPN server, and change authentication and accounting to the NPS Server
Lab : Configuring Tunneling Protocols
Configure certificates for VPN connections
Establish an SSTP and IKEv2 VPN connection from a client computer into the corporate network
Establish VPN Reconnect for the connection built in EX 2
Lab : Managing DirectAccess in Windows Server 2008 R2 and Windows 7
Configure a Windows Server 2008 R2 as a DirectAccess Server
Configure Windows 7 as a DirectAccess client
Ensure name resolution policy table is configured on the Name Location Server
After completing this module, students will be able to:
Install and configure Routing and Remote Access Services.
Configure remote access by using the new tunneling protocols in Windows Server 2008
Configure DirectAccess in Windows Server 2008 and Windows 7.
Module 6: Configuring and Managing Active Directory Domain ServicesThis module explains the new and improved features of Windows 2008 and Windows 2008 Active Directory Domain Services such as RODC, fine-grained password policies, or advanced auditing.Lessons
What’s New in Active Directory Domain Services
Installing and Configuring Active Directory Domain Services
Configuring Security within Active Directory Domain Services
Configuring and Managing Read-Only Domain Controllers
Lab : Configuring Active Directory Objects
Display Advanced Features in DSA console
Enable AD DS Recycle Bin
Delete some objects
Restore the objects
Lab : Configuring AD DS Security
Create two password settings objects
Assign the two policy objects to two separate user groups
Enable AD Change auditing
Test the protected objects feature
Lab : Installing and Managing RODC
Install RODC
Configure Password Replication Policy
Test remote site logon
Monitor remote passwords
Remove RODC forcibly
After completing this module, students will be able to:
Describe the new features of AD DS.
Install and configure AD DS in Windows Server 2008.
Configure security for Active Directory objects.
Configure and manage Read-Only Domain Controllers.
Module 7: Managing Group Policy in Active Directory Domain ServicesThis module explains what is new in the management of an Active Directory Domain Services infrastructure, what improvements were made to Group Policy, what are Group Policy Preferences, and how the ability to restart the Active Directory database service (NTDS) supports and simplifies advanced administrative tasks.Lessons
Group Policy Enhancements
Managing Clients with Group Policy Preferences
Managing AD DS Database Offline
Lab : Managing Group Policies
Install RSAT on Seven1, install GPMC
Create and use a starter GPO
Create a filter to display only printer-related settings
Configure central storage for Policy Definitions
Verify the central storage is being used by the consoles
Lab : Managing Clients with Group Policy Preferences
Manage clients with group policy preferences
Lab : Managing Active Directory Database Offline
Install AD on ADDS2 as a replica DC
Stop NTDS on ADDS2 and back up the database offline manually
Use NTDSUTIL to perform offline defragmentation of the original database
On ADDS, run a malicious script to modify some user objects in a destructive way
Use NTDSUTIL on ADD2 to mount the previous manual snapshot and investigate its contents
Use NTDSUTIL to restore authoritatively the modified OU contents
After completing this module, students will be able to:
Manage group policies in AD DS.
Manage clients by using Group Policy Preferences in AD DS.
Manage AD DS databases offline.
Module 8: Installing and Configuring Active Directory Certificate ServicesThis module explains how to manage enterprise PKI smoothly and with the highest level of security while maintaining application and legacy system compatibility.Lessons
What’s New in Cryptography in Windows 2008
What’s New in Active Directory Certificate Services
Installing Active Directory Certificate Services
Configuring AD CS
Managing Certificate Templates
Configuring Online Certificate Status Protocol
Lab : Configuring Standalone CAs
Remove all certificate templates
Add only Kerberos Authentication template
Enable CA Auditing in CA console and with AUDITPOL
Create a public DNS name for CRL HTTP access
Configure CRL and AIA paths to use only the newly created HTTP paths
Enable content expiration in IIS properties
CertEnroll virtual directory
Configure basic GPO settings with Autoenrollment and CRL validity extension
Lab : Configuring Certificate Policies
Create AD DS groups
Create two web server certificate templates
Create two user certificate logon templates
Lab : Managing Server and User Certificates
On WEB computer, enroll for a web server certificate
On Seven1 computer, use an Enrollment Agent account to enroll for a user logon certificate on behalf of another user
Reconfigure web server’s default website to require a client SSL certificate for logon
Lab : Configuring and Troubleshooting OCSP Responder
Configure and enable OCSP Response signing certificate template
Configure OCSP Responder Revocation Configuration
Verify the OCSP revocation check works from the client
After completing this module, students will be able to:
Describe the new cryptographic algorithms supported by Windows Server 2008.
Describe the new features of AD CS in Windows Server 2008 R2.
Install AD CS roles and services.
Configure AD CS.
Manage certificate templates by using Certificate Managers and Enrollment Agents features.
Configure Online Certificate Status Protocol and Online Responders.
Module 9: Configuring Active Directory Identity and Access SolutionsThis module explains the new Active Directory (AD) roles of AD LDS, AD FS, and AD RMS, how they fit into the overall Windows Server 2008 management concept, and how to configure a Windows Server 2008 system to incorporate these roles.Lessons
Installing and Configuring AD LDS
Overview of AD FS
Configuring AD FS
Configuring AD RMS
Configuring AD RMS Templates and Trust Policies
Lab : Configuring AD LDS
Install an instance of AD LDS for a new application
Review the new schema objects
Create the application users and group
Lab : Configuring AD RMS Templates and Trust Policies
Install an AD RMS Cluster
Configure a AD RMS Trust Policy
After completing this module, students will be able to:
Install and configure AD LDS.
Provide an overview of AD FS.
Configure AD FS.
Configure AD RMS.
Configure AD RMS templates and trust policies.
Module 10: Installing and Configuring Remote Desktop Services
This module explains new features of the Remote Desktop Services Session Host and Connection Broker. This module also describes how to install, configure, manage, and troubleshoot the services and enable effective load balancing as well as failover for application services.
Lessons
Overview of Remote Desktop Services
Installing and Configuring Remote Desktop Services Session Host
Installing and Configuring Remote Desktop Services Connection Broker
Lab : Installing and Configuring the Remote Desktop Services Session Host
Install and configure the RDS Session Host
Lab : Installing and Configuring the Remote Desktop Services Connection Broker
Install and configure the Remote Desktop Services connection broker
After completing this module, students will be able to:
Describe the new features of Remote Desktop Services.
Install and configure the Remote Desktop Services Session Host server role.
Install and configure the Remote Desktop Services Connection Broker service.
Module 11: Managing Remote Desktop ServicesThis module explains the new Remote Desktop Services role server and licensing for client access to these servers as well as how to monitor and manage proper system resource allocation in them by using the Windows System Resource Manager tool. This module also explains how single sign-on benefits RD host server users.Lessons
Configuring Remote Desktop Licensing
Managing Remote Desktop Client Processing with Windows System Resource Manager
Configuring Single Sign-On for Remote Desktop Clients
Installing and Configuring a Remote Desktop Gateway
Lab : Installing RDL and Monitoring Remote Desktop Resources
Install the RDL role service and review the RDL manager tool
Use WSRM to apply an equal per user resource management policy
Use Remote Desktop Session Host Configuration in the RD Services admin tool to set up single sign-on authentication for a user’s client computer
Lab : Installing and Configuring Remote Desktop Gateway
Install the RDG role, map a certificate to it, and create an RD RAP and RD CAP, making the CAP in the NPS server
After completing this module, students will be able to:
Configure Remote Desktop Services Licensing.
Manage resources by using Windows System Resource Manager.
Configure single sign-on for remote desktop clients and manage RDS.
Install and configure a Remote Desktop Gateway.
Module 12: Installing and Configuring Web Servers and Applications with Internet Information ServicesThis module explains the new Web Server (IIS) 7.0 and 7.5 roles available on Windows Server 2008 and Windows Server 2008 R2, respectively. This module also describes the application servers that help configure a simple website, an FTP server, and an SMTP server within the IIS role.Lessons
Managing websites
Configuring web applications
Configuring a File Transfer Protocol Server and Simple Mail Transfer Protocol Server
Lab : Installing and Configuring IIS and Creating a Website in Internet Information Services
Install IIS 7.0 on a Windows 2008 Server
Create a simple website on a virtual directory
Lab : Managing Websites by Using FTP and SMTP Services in Internet Information Services
Add the new FTP 7.5 service on a Windows Server 2008
Add the SMTP Service on a Windows Server 2008 and allow email on the website created
After completing this module, students will be able to:
Manage websites by using the web server role.
Configure web applications.
Configure FTP servers and SMTP server services.
Module 13: Maintaining Web Servers and Applications with Internet Information ServicesThis module explains how to maintain and manage the Web Server (IIS) 7.0 and 7.5 roles available on Windows Server 2008 and Windows Server 2008 R2, respectively to secure a website via authentication and permissions, as well as with an SSL configuration.Lessons
Managing the Web Server Role
Configuring Website Authentication and Permissions
Configuring and Managing Secure Websites by Using SSL
Lab : Maintaining Web Servers and Applications with Internet Information Services
Configure the IIS 7.0 Web Server Role
Troubleshooting Request Processing
Lab : Configuring and Managing Secure Websites by Using SSL
Configure the IIS 7.0 SSL site
Manage the IIS 7.0 SSL site
After completing this module, students will be able to:
Describe how to manage the web server role by using GUI and command-line tools.
Describe how to configure website authentication and permissions for website security.
Configure and manage secured websites by using SSL encryption.
Module 14: Configuring High Availability and Advanced StorageThis module explains the functionality of Network Load Balancing and how it has changed from previous versions of Windows Server to Windows Server 2008 to understand and implement a Windows Server 2008 failover cluster, review new features in distributed file system operations and replication, and manage the File System Resource Manager and storage area network (SAN) technologies.Lessons
What’s New in Windows Server 2008 Network Load Balancing
Overview of Failover Clustering
Planning for Failover Clustering
Configuring Failover Clustering
Managing Advanced Storage Options
Lab : Configuring High Availability
Creating and Validating a Cluster
Clustering the Print Services Role by Using Failover Cluster Management
Configuring Cluster Resources
Lab : Configuring Advanced Storage in Windows Server 2008
Mount a VHD as a partition
Configure system to boot to mounted VHD
Boot system to a newly mounted and configured VHD
After completing this module, students will be able to:
Describe the new features of NLB in Windows Server 2008.
Describe failover clustering.
Configure failover cluster clustering.
Install failover clustering.
Manage advanced storage options.
Social Media
Live Contact