Cover image for Identity with Windows Server 2016: Microsoft 70-742 MCSA Exam Guide

Identity with Windows Server 2016: Microsoft 70-742 MCSA Exam Guide

Author Sasha Kranjac , Vladimir Stefanovic
Release Date: 2019/01/01
ISBN: 9781838555139
Topic:
0%
196
Chapters
0-1
Hours read
0k
Total Words
    Start Reading Now    
       Add to Wishlist       
View table of contents

Book Description

Equip yourself with the most complete and comprehensive preparation experience for Identity with Windows Server 2016: Microsoft 70-742 exam.

Key Features

  • Helps you demonstrate real-world mastery of Windows Server 2016 identity features and functionality and prepare for 70-742
  • Acquire skills to reduce IT costs and deliver more business value
  • Enhance your existing skills through practice questions and mock tests

Book Description

MCSA: Windows Server 2016 certification is one of the most sought-after certifications for IT professionals, which includes working with Windows Server and performing administrative tasks around it. This book is aimed at the 70-742 certification and is part of Packt's three-book series on MCSA Windows Server 2016 certification, which covers Exam 70-740, Exam 70-741, and Exam 70-742.

This exam guide covers the exam objectives for the 70-742 Identity with Windows Server 2016 exam. It starts with installing and configuring Active Directory Domain Services (AD DS), managing and maintaining AD DS objects and advanced configurations, configuring Group Policy, Active Directory Certificate Services, and Active Directory Federation Services and Rights Management. At the end of each chapter, convenient test questions will help you in preparing for the certification in a practical manner.

By the end of this book, you will be able to develop the knowledge and skills needed to complete MCSA Exam 70-742: Identity with Windows Server 2016 with confidence.

What you will learn

  • Install, configure, and maintain Active Directory Domain Services (AD DS)
  • Manage Active Directory Domain Services objects
  • Configure and manage Active Directory Certificate Services
  • Configure and manage Group Policy
  • Design, implement, and configure Active Directory Federation Services
  • Implement and configure Active Directory Rights Management Services

Who this book is for

This book primarily targets system administrators who are looking to gain knowledge about identity and access technologies with Windows Server 2016 and aiming to pass the 70-742 certification. This will also help infrastructure administrators who are looking to gain advanced knowledge and understanding of identity and access technologies with Windows Server 2016. Familiarity with the concepts such as Active Directory, DNS is assumed.

Table of Contents

  1. Title Page
  2. Copyright and Credits
    1. Identity with Windows Server 2016: Microsoft 70-742 MCSA Exam Guide
  3. About Packt
    1. Why subscribe?
    2. Packt.com
  4. Contributors
    1. About the authors
    2. About the reviewer
    3. Packt is searching for authors like you
  5. Preface
    1. Who this book is for
    2. What this book covers
    3. To get the most out of this book
      1. Conventions used
    4. Get in touch
      1. Reviews
  6. Installing and Configuring Active Directory
    1. Introduction to Active Directory
      1. Logical components
        1. Partitions
        2. Schemas
        3. Domains
        4. Domain trees
        5. Forests
        6. Sites
        7. Organizational Units
        8. Containers
      2. Physical components
        1. Domain controllers
        2. Read-only domain controllers
        3. Data stores
        4. Global catalogs
      3. What's new in AD DS in Windows Server 2016
      4. AD DS administration tools
    2. Installing and configuring the Active Directory
      1. Installing a new forest and domain controller
        1. Installing a new forest (GUI)
        2. Installing a new forest on a Server Core installation
        3. Installing a domain controller from Install from Media (IFM)
      2. Removing a domain controller from a domain
      3. Upgrading a domain controller
        1. In-place upgrade
        2. Domain-controller migration
      4. Configuring a global catalog server
      5. Transferring and seizing operation master roles
        1. Transferring FSMO roles
        2. Seizing FSMO roles
      6. Installing and configuring a read-only domain controller (RODC)
      7. Configuring domain controller cloning
    3. Active Directory users and computers
      1. Creating and managing users accounts
      2. Creating and managing computer accounts
      3. Configuring templates
      4. Performing bulk Active Directory operations
      5. Implementing offline domain joins
      6. Managing accounts
    4. Active Directory groups and organizational units
      1. Creating, configuring, and deleting groups
      2. Configuring group nesting
      3. Converting groups
      4. Managing group membership using Group Policy
      5. Enumerating group memberships
      6. Automating group-membership management using Windows PowerShell
      7. Delegating the creation and management of Active Directory groups
      8. Active Directory containers
      9. Creating, configuring, and deleting OUs
    5. Summary
    6. Questions
    7. Further reading
  7. Managing and Maintaining Active Directory
    1. Active directory authentication and account policies 
      1. Creating and configuring managed service accounts 
      2. Configuring Kerberos Constrained Delegation (KCD)
      3. Managing service principal names (SPNs) 
      4. Configuring domain and local user password policy settings 
      5. Configuring and applying Password Settings Objects (PSOs)
      6. Delegating password settings management
      7. Configuring account lockout policy settings
      8. Configuring the Kerberos policy settings within the group policy
      9. Configuring authentication policies
    2. Maintaining AD
      1. Backing up AD and SYSVOL
      2. Restoring AD
        1. Non-authoritative restoration
        2. Authoritative restoration
      3. Managing the AD offline
      4. Performing the offline defragmentation of an AD database
      5. Configuring AD snapshots
      6. Performing object-level and container-level recovery
      7. AD Recycle Bin (configuring and restoring objects)
      8. Configuring the Password Replication Policy (PRP) for RODC
      9. Monitoring and managing replication
    3. AD in enterprise scenarios
      1. Configuring a multi-domain and multi-forest AD infrastructure
      2. Upgrading existing domains and forests
      3. Configuring the domain and forest functional levels
      4. Configuring multiple user principal name (UPN) suffixes
      5. Configuring external, forest, shortcut, and realm trusts
      6. Configuring trust filtering
        1. SID filtering
        2. Selective authentication
        3. Named suffix routing
      7. Configuring sites and subnets
      8. Creating and configuring site links
      9. Moving domain controllers between sites
    4. Summary
    5. Questions
    6. Further reading
  8. Creating and Managing Group Policy
    1. Creating and managing GPOs
      1. Introduction to Group Policy
      2. Managing starter GPOs
      3. Configuring GPO links
      4. Configuring multiple Local Group Policy
      5. Backing up, importing, copying, and restoring GPOs
      6. Resetting default GPOs
      7. Delegate Group Policy management
      8. Detecting health issues using Group Policy
    2. Understanding Group Policy processing
      1. Configuring the processing order and precedence
      2. Configuring inheritance blocking
      3. Configuring enforced policies
      4. Configuring security filtering and WMI filtering
      5. Configuring loopback processing
      6. Configuring Group Policy caching
      7. Forcing a Group Policy update
    3. Configuring Group Policy settings and preferences
      1. Defining network drive mappings
      2. Configuring custom registry settings
      3. Configuring the Control Panel settings
      4. Configuring folder redirections
      5. Configuring shortcut deployment
      6. Configuring item-level targeting
    4. Summary
    5. Questions
    6. Further reading
  9. Understanding and Implementing Active Directory Certificate Services
    1. Installing and configuring AD CS
      1. An overview of AD CS
      2. Installing Active Directory Integrated Enterprise Certificate Authority
      3. Installing offline roots and subordinate CAs
        1. Configuring Offline Root CA
        2. Configuring the subordinate CA
      4. Installing Standalone CAs
      5. Configuring Certificate Revocation List (CRL) distribution points
      6. Installing and configuring Online Responder
      7. Implementing administrative role separation
      8. Configuring CA backup and recovery
        1. Backing up CA
        2. Restoring CA
    2. Managing certificates and templates
      1.  Managing certificates
      2. Managing certificate templates
      3. Implementing and managing certificate deployment, validation, and revocation
      4. Managing certificate renewal
    3. Managing AD CS
      1. Configuring and managing key archival and recovery
    4. Summary
    5. Questions
    6. Further reading
  10. Understanding and Implementing Federation and Rights Management
    1. Installing and configuring Active Directory Federation Services (AD FS)
      1. AD FS overview
      2. Upgrading and migrating AD FS workloads to Windows Server 2016
        1. Installing AD FS
        2. Upgrading AD FS
      3. Implementing claim-based authentication and relying party trust
      4. Implementing and configuring device registration
      5. Configuring AD FS for use with Microsoft Azure and Office 365
    2. Installing and configuring Web Application Proxy
      1. Installing and configuring WAP
      2. Implementing WAP in pass-through mode and as AD FS proxy
        1. Pass-through pre-authentication
        2. AD FS pre-authentication
      3. Publishing Remote Desktop Gateway applications
    3. Installing and configuring the Active Directory Rights Management Services (AD RMS)
      1. AD RMS overview
      2. AD RMS certificates
      3. How AD RMS works
      4. Deploying the AD RMS Cluster
      5. Managing AD RMS Service Connection Point (SCP)
      6. Managing AD RMS templates
      7. Configuring Exclusion Policies
      8. Backing up and restoring AD RMS
    4. Summary
    5. Questions
    6. Further reading
  11. Assessements
    1. Chapter 1:  Installing and Configuring Active Directory
    2. Chapter 2: Managing and Maintaining Active Directory
    3. Chapter 3: Creating and Managing Group Policy
    4. Chapter 4: Understanding and Implementing Active Directory Certificate Services
    5. Chapter 5: Understanding and Implementing Federation and Rights Management