文件名称:Active Directory Cookbook, 3rd Edition.pdf
文件大小:8.07MB
文件格式:PDF
更新时间:2022-08-14 07:15:04
Domain Active Directory AD Windwos
Chapter 1, Getting Started Sets the stage for the book by covering where you can find the tools used in the book, VBScript and PowerShell issues to consider, and where to find additional information. Chapter 2, Forests, Domains, and Trusts Covers how to create and remove forests and domains, update the domain mode or functional levels, create different types of trusts, and other administrative trust tasks. Chapter 3, Domain Controllers, Global Catalogs, and FSMOs Covers promoting and demoting domain controllers, finding domain controllers, enabling the global catalog, and finding and managing Flexible Single Master Operations (FSMO) roles. This will include coverage of the new Read-Only Domain Controller (RODC) that was introduced with Windows Server 2008. Chapter 4, Searching and Manipulating Objects Covers the basics of searching Active Directory: creating, modifying, and deleting objects, using LDAP controls, and importing and exporting data using LDAP Data Interchange Format (LDIF) and comma-separated variable (CSV) files. Chapter 5, Organizational Units Covers creating, moving, and deleting Organizational Units, and managing the objects contained within them. Chapter 6, Users Covers all aspects of managing user objects, including creating, renaming, moving, resetting passwords, unlocking, modifying the profile attributes, and locating users that have certain criteria (e.g., password is about to expire). This chapter includes coverage of the new Fine-Grained Password Policy feature that was introduced in Windows Server 2008. Chapter 7, Groups Covers how to create groups, modify group scope and type, and manage membership. Chapter 8, Computer Objects Covers creating computers, joining computers to a domain, resetting computers, and locating computers that match certain criteria (e.g., have been inactive for a number of weeks). Chapter 9, Group Policy Objects Covers how to create, modify, link, copy, import, back up, restore, and delete GPOs using the Group Policy Management Console and scripting interface, including new Group Policy features that were introduced in Windows Server 2008. Chapter 10, Schema Covers basic schema administration tasks, such as generating object identifiers (OIDs) and schemaIDGUIDs, how to use LDIF to extend the schema, and how to locate attributes or classes that match certain criteria (e.g., all attributes that are indexed). Chapter 11, Site Topology Covers how to manage sites, subnets, site links, and connection objects. Chapter 12, Replication Covers how to trigger and disable the Knowledge Consistency Checker (KCC), how to query metadata, force replication, and determine what changes have yet to replicate between domain controllers. Chapter 13, DNS and DHCP Covers creating zones and resource records, modifying DNS server configuration, querying DNS, and customizing the resource records a domain controller dynamically registers. Chapter 14, Security and Authentication Covers how to delegate control, view and modify permissions, view effective permissions, and manage Kerberos tickets. Chapter 15, Logging, Monitoring, and Quotas Covers how to enable auditing, diagnostics, DNS, NetLogon, and Kerberos and GPO logging; obtain LDAP query statistics; and manage quotas. Chapter 16, Backup, Recovery, DIT Maintenance, and Deleted Objects Covers how to back up Active Directory, perform authoritative and nonauthoritative restores, check DIT file integrity, perform online and offline defrags, and search for deleted objects. Chapter 17, Application Partitions Covers creating and managing application partitions. Chapter 18, Active Directory Application Mode and Active Directory Lightweight Directory Service Covers the new Active Directory Application Mode (ADAM) functionality that’s available with R2. Chapter 19, Active Directory Federation Services Covers the new Active Directory Federation Services (AD FS) that are included with Windows Server 2003 R2. Chapter 20, Microsoft Exchange Server 2007 and Exchange Server 2003 Covers common administrative tasks for Exchange Server 2003. Chapter 21, Microsoft Identity Lifecycle Manager Provides an introduction to Microsoft’s Identity Integration Server (MIIS), a service that can be used to synchronize multiple directories or enforce data integrity within a single or multiple stores.