MCSE PDF Print E-mail

Managing and Maintaining a Microsoft Windows Server 2003 Environment (70-290)

Managing and Maintaining Physical and Logical Devices

*
Manage basic disks and dynamic disks.
*
Monitor server hardware. Tools might include Device Manager, the Hardware Troubleshooting Wizard, and appropriate Control Panel items.
*
Optimize server disk performance.
o Implement a RAID solution.
o Defragment volumes and partitions.
*
Troubleshoot server hardware devices.
o Diagnose and resolve issues related to hardware settings.
o Diagnose and resolve issues related to server hardware and hardware driver upgrades.
*
Install and configure server hardware devices.
o Configure driver signing options.
o Configure resource settings for a device.
o Configure device properties and settings.

Managing Users, Computers, and Groups

*
Manage local, roaming, and mandatory user profiles.
*
Create and manage computer accounts in an Active Directory environment.
*
Create and manage groups.
o Identify and modify the scope of a group.
o Find domain groups in which a user is a member.
o Manage group membership.
o Create and modify groups by using the Active Directory Users and Computers Microsoft Management Console (MMC) snap-in.
o Create and modify groups by using automation.
*
Create and manage user accounts.
o Create and modify user accounts by using the Active Directory Users and Computers MMC snap-in.
o Create and modify user accounts by using automation.
o Import user accounts.
*
Troubleshoot computer accounts.
o Diagnose and resolve issues related to computer accounts by using the Active Directory Users and Computers MMC snap-in.
o Reset computer accounts.
*
Troubleshoot user authentication issues.

Managing and Maintaining Access to Resources

*
Configure access to shared folders.
o Manage shared folder permissions.
*
Troubleshoot Terminal Services.
o Diagnose and resolve issues related to Terminal Services security.
o Diagnose and resolve issues related to client access to Terminal Services.
*
Configure file system permissions.
o Verify effective permissions when granting permissions.
o Change ownership of files and folders.
*
Troubleshoot access to files and shared folders.

Managing and Maintaining a Server Environment

*
Monitor and analyze events. Tools might include Event Viewer and System Monitor.
*
Manage software update infrastructure
*
Manage software site licensing.
*
Manage servers remotely.
o Manage a server by using Remote Assistance.
o Manage a server by using Terminal Services remote administration mode.
o Manage a server by using available support tools.
*
Troubleshoot print queues.
*
Monitor system performance.
*
Monitor file and print servers. Tools might include Task Manager, Event Viewer, and System Monitor.
o Monitor disk quotas.
o Monitor print queues.
o Monitor server hardware for bottlenecks.
*
Monitor and optimize a server environment for application performance.
o Monitor memory performance objects
o Monitor network performance objects
o Monitor process performance objects
o Monitor disk performance objects
*
Manage a Web server
o Manage Internet Information Services (IIS).
o Manage security for IIS.

Managing and Implementing Disaster Recovery

*
Perform system recovery for a server.
o Implement Automated System Recovery (ASR).
o Restore data from shadow copy volumes.
o Back up files and System State data to media.
o Configure security for backup operations.
*
Manage backup procedures.
o Verify the successful completion of backup jobs.
o Manage backup storage media.
*
Recover from server hardware failure.
*
Restore backup data.
*
Schedule backup jobs.


Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure (70-291)

Implementing, Managing, and Maintaining IP Addressing

*
Configure TCP/IP addressing on a server computer.
*
Manage DHCP.
o Manage DHCP clients and leases.
o Manage DHCP Relay Agent.
o Manage DHCP databases.
o Manage DHCP scope options.
o Manage reservations and reserved clients.
*
Troubleshoot TCP/IP addressing.
o Diagnose and resolve issues related to Automatic Private IP Addressing (APIPA).
o Diagnose and resolve issues related to incorrect TCP/IP configuration.
*
Troubleshoot DHCP.
o Diagnose and resolve issues related to DHCP authorization.
o Verify DHCP reservation configuration.
o Examine the system event log and DHCP server audit log files to find related events.
o Diagnose and resolve issues related to configuration of DHCP server and scope options.
o Verify that the DHCP Relay Agent is working correctly.
o Verify database integrity.

Implementing, Managing, and Maintaining Name Resolution

*
Install and configure the DNS Server service.
o Configure DNS server options.
o Configure DNS zone options.
o Configure DNS forwarding.
*
Manage DNS.
o Manage DNS zone settings.
o Manage DNS record settings.
o Manage DNS server options.
*
Monitor DNS. Tools might include System Monitor, Event Viewer, Replication Monitor, and DNS debug logs.

Implementing, Managing, and Maintaining Network Security

*
Implement secure network administration procedures.
o Implement security baseline settings and audit security settings by using security templates.
o Implement the principle of least privilege.
*
Install and configure software update infrastructure.
o Install and configure software update services.
o Install and configure automatic client update settings.
o Configure software updates on earlier operating systems.
*
Monitor network protocol security. Tools might include the IP Security Monitor Microsoft Management Console (MMC) snap-in and Kerberos support tools.
*
Troubleshoot network protocol security. Tools might include the IP Security Monitor MMC snap-in, Event Viewer, and Network Monitor.

Implementing, Managing, and Maintaining Routing and Remote Access

*
Configure Routing and Remote Access user authentication.
o Configure remote access authentication protocols.
o Configure Internet Authentication Service (IAS) to provide authentication for Routing and Remote Access clients.
o Configure Routing and Remote Access policies to permit or deny access.
*
Manage remote access.
o Manage packet filters.
o Manage Routing and Remote Access routing interfaces.
o Manage devices and ports.
o Manage routing protocols.
o Manage Routing and Remote Access clients.
*
Manage TCP/IP routing.
o Manage routing protocols.
o Manage routing tables.
o Manage routing ports.
*
Implement secure access between private networks.
*
Troubleshoot user access to remote access services.
o Diagnose and resolve issues related to remote access VPNs.
o Diagnose and resolve issues related to establishing a remote access connection.
o Diagnose and resolve user access to resources beyond the remote access server.
*
Troubleshoot Routing and Remote Access routing.
o Troubleshoot demand-dial routing.
o Troubleshoot router-to-router VPNs.

Maintaining a Network Infrastructure

*
Monitor network traffic. Tools might include Network Monitor and System Monitor.
*
Troubleshoot connectivity to the Internet.
*
Troubleshoot server services.
o Diagnose and resolve issues related to service dependency.
o Use service recovery options to diagnose and resolve service-related issues.


Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure (70-293)

Planning and Implementing Server Roles and Server Security

*
Configure security for servers that are assigned specific roles.
*
Plan a secure baseline installation.
o Plan a strategy to enforce system default security settings on new systems.
o Identify client operating system default security settings.
o Identify all server operating system default security settings.
*
Plan security for servers that are assigned specific roles. Roles might include domain controllers, Web servers, database servers, and mail servers.
o Deploy the security configuration for servers that are assigned specific roles.
o Create custom security templates based on server roles.
*
Evaluate and select the operating system to install on computers in an enterprise.
o Identify the minimum configuration to satisfy security requirements.

Planning, Implementing, and Maintaining a Network Infrastructure

*
Plan a TCP/IP network infrastructure strategy.
o Analyze IP addressing requirements.
o Plan an IP routing solution.
o Create an IP subnet scheme.
*
Plan and modify a network topology.
o Plan the physical placement of network resources.
o Identify network protocols to be used.
*
Plan an Internet connectivity strategy.
*
Plan network traffic monitoring. Tools might include Network Monitor and System Monitor.
*
Troubleshoot connectivity to the Internet.
o Diagnose and resolve issues related to Network Address Translation (NAT).
o Diagnose and resolve issues related to name resolution cache information.
o Diagnose and resolve issues related to client configuration.
*
Troubleshoot TCP/IP addressing.
o Diagnose and resolve issues related to client computer configuration.
o Diagnose and resolve issues related to DHCP server address assignment.
*
Plan a host name resolution strategy.
o Plan a DNS namespace design.
o Plan zone replication requirements.
o Plan a forwarding configuration.
o Plan for DNS security.
o Examine the interoperability of DNS with third-party DNS solutions.
*
Plan a NetBIOS name resolution strategy.
o Plan a WINS replication strategy.
o Plan NetBIOS name resolution by using the Lmhosts file.
*
Troubleshoot host name resolution.
o Diagnose and resolve issues related to DNS services.
o Diagnose and resolve issues related to client computer configuration.

Planning, Implementing, and Maintaining Routing and Remote Access

*
Plan a routing strategy.
o Identify routing protocols to use in a specified environment.
o Plan routing for IP multicast traffic.
*
Plan security for remote access users.
o Plan remote access policies.
o Analyze protocol security requirements.
o Plan authentication methods for remote access clients.
*
Implement secure access between private networks.
o Create and implement an IPSec policy.
*
Troubleshoot TCP/IP routing. Tools might include the route, tracert, ping, pathping, and netsh commands and Network Monitor.

Planning, Implementing, and Maintaining Server Availability

*
Plan services for high availability.
o Plan a high-availability solution that uses clustering services.
o Plan a high-availability solution that uses Network Load Balancing.
*
Identify system bottlenecks, including memory, processor, disk, and network related bottlenecks.
o Identify system bottlenecks by using System Monitor.
*
Implement a cluster server.
o Recover from cluster node failure.
*
Manage Network Load Balancing. Tools might include the Network Load Balancing Monitor Microsoft Management Console (MMC) snap-in and the WLBS cluster control utility.
*
Plan a backup and recovery strategy.
o Identify appropriate backup types. Methods include full, incremental, and differential.
o Plan a backup strategy that uses volume shadow copy.
o Plan system recovery that uses Automated System Recovery (ASR).

Planning and Maintaining Network Security

*
Configure network protocol security.
o Configure protocol security in a heterogeneous client computer environment.
o Configure protocol security by using IPSec policies.
*
Configure security for data transmission.
o Configure IPSec policy settings.
*
Plan for network protocol security.
o Specify the required ports and protocols for specified services.
o Plan an IPSec policy for secure network communications.
*
Plan secure network administration methods.
o Create a plan to offer Remote Assistance to client computers.
o Plan for remote administration by using Terminal Services.
*
Plan security for wireless networks.
*
Plan security for data transmission.
o Secure data transmission between client computers to meet security requirements.
o Secure data transmission by using IPSec.
*
Troubleshoot security for data transmission. Tools might include the IP Security Monitor MMC snap-in and the Resultant Set of Policy (RSoP) MMC snap-in.

Planning, Implementing, and Maintaining Security Infrastructure.

*
Configure Active Directory directory service for certificate publication.
*
Plan a public key infrastructure (PKI) that uses Certificate Services.
o Identify the appropriate type of certificate authority to support certificate issuance requirements.
o Plan the enrollment and distribution of certificates.
o Plan for the use of smart cards for authentication.
*
Plan a framework for planning and implementing security.
o Plan for security monitoring.
o Plan a change and configuration management framework for security.
*
Plan a security update infrastructure. Tools might include Microsoft Baseline Security Analyzer and Microsoft Software Update Services.


Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure (70-294)

Planning and Implementing an Active Directory Infrastructure

*
Plan a strategy for placing global catalog servers.
o Evaluate network traffic considerations when placing global catalog servers.
o Evaluate the need to enable universal group caching.
*
Plan flexible operations master role placement.
o Plan for business continuity of operations master roles.
o Identify operations master role dependencies.
*
Implement an Active Directory directory service forest and domain structure.
o Create the forest root domain.
o Create a child domain.
o Create and configure Application Data Partitions.
o Install and configure an Active Directory domain controller.
o Set an Active Directory forest and domain functional level based on requirements.
o Establish trust relationships. Types of trust relationships might include external trusts, shortcut trusts, and cross-forest trusts.
*
Implement an Active Directory site topology.
o Configure site links.
o Configure preferred bridgehead servers.
*
Plan an administrative delegation strategy.
o Plan an organizational unit (OU) structure based on delegation requirements.
o Plan a security group hierarchy based on delegation requirements.

Managing and Maintaining an Active Directory Infrastructure

*
Manage an Active Directory forest and domain structure.
o Manage trust relationships.
o Manage schema modifications.
o Add or remove a UPN suffix.
*
Manage an Active Directory site.
o Configure replication schedules.
o Configure site link costs.
o Configure site boundaries.
*
Monitor Active Directory replication failures. Tools might include Replication Monitor, Event Viewer, and support tools.
o Monitor Active Directory replication.
o Monitor File Replication service (FRS) replication.
*
Restore Active Directory directory services.
o Perform an authoritative restore operation.
o Perform a nonauthoritative restore operation.
*
Troubleshoot Active Directory.
o Diagnose and resolve issues related to Active Directory replication.
o Diagnose and resolve issues related to operations master role failure.
o Diagnose and resolve issues related to the Active Directory database.

Planning and Implementing User, Computer, and Group Strategies

*
Plan a security group strategy.
*
Plan a user authentication strategy.
o Plan a smart card authentication strategy.
o Create a password policy for domain users.
*
Plan an OU structure.
o Analyze the administrative requirements for an OU.
o Analyze the Group Policy requirements for an OU structure.
*
Implement an OU structure.
o Create an OU.
o Delegate permissions for an OU to a user or to a security group.
o Move objects within an OU hierarchy.

Planning and Implementing Group Policy

*
Plan Group Policy strategy.
o Plan a Group Policy strategy by using Resultant Set of Policy (RSoP) Planning mode.
o Plan a strategy for configuring the user environment by using Group Policy.
o Plan a strategy for configuring the computer environment by using Group Policy.
*
Configure the user environment by using Group Policy.
o Distribute software by using Group Policy.
o Automatically enroll user certificates by using Group Policy.
o Redirect folders by using Group Policy.
o Configure user security settings by using Group Policy.
*
Deploy a computer environment by using Group Policy.
o Distribute software by using Group Policy.
o Automatically enroll computer certificates by using Group Policy.
o Configure computer security settings by using Group Policy.

Managing and Maintaining Group Policy

*
Troubleshoot issues related to Group Policy application deployment. Tools might include RSoP and the gpresult command.
*
Maintain installed software by using Group Policy.
o Distribute updates to software distributed by Group Policy.
o Configure automatic updates for network clients by using Group Policy.
*
Troubleshoot the application of Group Policy security settings. Tools might include RSoP and the gpresult command.

Configuring Microsoft Windows Vista Client (70-620)

Installing and upgrading Windows Vista

*
Identify hardware requirements.
*
Perform a clean installation.
*
Upgrade to Windows Vista from previous versions of Windows.
*
Upgrade from one edition of Windows Vista to another edition.
* Troubleshoot Windows Vista installation issues.
* Install and configure Windows Vista drivers.

Configuring and troubleshooting Post-installation system settings

* Troubleshoot post-installation configuration issues.
* Configure and troubleshoot Windows Aero.
* Configure and troubleshoot parental controls.
* Configure Microsoft Internet Explorer.

Configuring Windows security features

* Configure and troubleshoot User Account Control.
* Configure Windows Defender.
* Configure Dynamic Security for Microsoft Internet Explorer 7.
* Configure security settings in Windows Firewall.

Configuring network connectivity

* Configuring networking by using the Network and Sharing Center.
* Troubleshoot connectivity issues.
* Configure remote access.

Configuring applications included with Windows Vista

* Configure and troubleshoot media applications.
* Configure Windows Mail.
* Configure Windows Meeting Space.
* Configure Windows Calendar.
* Configure Windows Fax and Scan.
* Configure Windows Sidebar.

Maintaining and optimizing systems that run Windows Vista

* Troubleshoot performance issues.
* Troubleshoot reliability issues by using built-in diagnostic tools.
* Configure Windows Update.
* Configure data protection.

Configuring and troubleshooting mobile computing

* Configure mobile display settings.
* Configure mobile devices.
* Configure Tablet PC software.
* Configure power options.

(OR)

Installing, Configuring, and Administering Microsoft Windows XP Professional (70-270)

Installing Windows XP Professional

*
Perform and troubleshoot an attended installation of Windows XP Professional.
*
Perform and troubleshoot an unattended installation of Windows XP Professional.
o Install Windows XP Professional by using Remote Installation Services (RIS).
o Install Windows XP Professional by using the System Preparation Tool.
o Create unattended answer files by using Setup Manager to automate the installation of Windows XP Professional.
*
Upgrade from a previous version of Windows to Windows XP Professional.
o Prepare a computer to meet upgrade requirements.
o Migrate existing user environments to a new installation.
*
Perform post-installation updates and product activation.
*
Troubleshoot failed installations.

Implementing and Conducting Administration of Resources

*
Monitor, manage, and troubleshoot access to files and folders.
o Configure, manage, and troubleshoot file compression.
o Control access to files and folders by using permissions.
o Optimize access to files and folders.
*
Manage and troubleshoot access to shared folders.
o Create and remove shared folders.
o Control access to shared folders by using permissions.
o Manage and troubleshoot Web server resources.
*
Connect to local and network print devices.
o Manage printers and print jobs.
o Control access to printers by using permissions.
o Connect to an Internet printer.
o Connect to a local print device.
*
Configure and manage file systems.
o Convert from one file system to another file system.
o Configure NTFS, FAT32, or FAT file systems.
*
Manage and troubleshoot access to and synchronization of offline files.

Implementing, Managing, Monitoring, and Troubleshooting Hardware Devices and Drivers

*
Implement, manage, and troubleshoot disk devices.
o Install, configure, and manage DVD and CD-ROM devices.
o Monitor and configure disks.
o Monitor, configure, and troubleshoot volumes.
o Monitor and configure removable media, such as tape devices.
*
Implement, manage, and troubleshoot display devices.
o Configure multiple-display support.
o Install, configure, and troubleshoot a video adapter.
*
Configure Advanced Configuration Power Interface (ACPI).
*
Implement, manage, and troubleshoot input and output (I/O) devices.
o Monitor, configure, and troubleshoot I/O devices, such as printers, scanners, multimedia devices, mouse, keyboard, and smart card reader.
o Monitor, configure, and troubleshoot multimedia hardware, such as cameras.
o Install, configure, and manage modems.
o Install, configure, and manage Infrared Data Association (IrDA) devices.
o Install, configure, and manage wireless devices.
o Install, configure, and manage USB devices.
o Install, configure, and manage hand held devices.
o Install, configure, and manage network adapters.
*
Manage and troubleshoot drivers and driver signing.
*
Monitor and configure multiprocessor computers.

Monitoring and Optimizing System Performance and Reliability

*
Monitor, optimize, and troubleshoot performance of the Windows XP Professional desktop.
o Optimize and troubleshoot memory performance.
o Optimize and troubleshoot processor utilization.
o Optimize and troubleshoot disk performance.
o Optimize and troubleshoot application performance.
o Configure, manage, and troubleshoot Scheduled Tasks.
*
Manage, monitor, and optimize system performance for mobile users.
*
Restore and back up the operating system, System State data, and user data.
o Recover System State data and user data by using Windows Backup.
o Troubleshoot system restoration by starting in safe mode.
o Recover System State data and user data by using the Recovery console.

Configuring and Troubleshooting the Desktop Environment

*
Configure and manage user profiles and desktop settings.
*
Configure support for multiple languages or multiple locations.
o Enable multiple-language support.
o Configure multiple-language support for users.
o Configure local settings.
o Configure Windows XP Professional for multiple locations.
*
Manage applications by using Windows Installer packages.

Implementing, Managing, and Troubleshooting Network Protocols and Services

*
Configure and troubleshoot the TCP/IP protocol.
*
Connect to computers by using dial-up networking.
o Connect to computers by using a virtual private network (VPN) connection.
o Create a dial-up connection to connect to a remote access server.
o Connect to the Internet by using dial-up networking.
o Configure and troubleshoot Internet Connection Sharing (ICS).
*
Connect to resources by using Internet Explorer.
*
Configure, manage, and implement Internet Information Services (IIS).
*
Configure, manage, and troubleshoot Remote Desktop and Remote Assistance.
*
Configure, manage, and troubleshoot an Internet Connection Firewall (ICF).

Configuring, Managing, and Troubleshooting Security

*
Configure, manage, and troubleshoot Encrypting File System (EFS).
*
Configure, manage, and troubleshoot a security configuration and local security policy.
*
Configure, manage, and troubleshoot local user and group accounts.
o Configure, manage, and troubleshoot auditing.
o Configure, manage, and troubleshoot account settings.
o Configure, manage, and troubleshoot account policy.
o Configure, manage, and troubleshoot user and group rights.
o Troubleshoot cache credentials.
*
Configure, manage, and troubleshoot Internet Explorer security settings.


Designing a Microsoft Windows Server 2003 Active Directory and Network Infrastructure(70-297)

Creating the Conceptual Design by Gathering and Analyzing Business and Technical Requirements

*
Analyze the impact of Active Directory on the existing technical environment.
o Analyze hardware and software requirements.
o Analyze interoperability requirements.
o Analyze current level of service within an existing technical environment.
o Analyze current network administration model.
o Analyze network requirements.
*
Analyze DNS for Active Directory directory service implementation.
o Analyze the current DNS infrastructure.
o Analyze the current namespace.
*
Analyze existing network operating system implementation.
o Identify the existing domain model.
o Identify the number and location of domain controllers on the network.
o Identify the configuration details of all servers on the network. Server types might include primary domain controllers, backup domain controllers, file servers, print servers, and Web servers.
*
Analyze security requirements for the Active Directory directory service.
o Analyze current security policies, standards, and procedures.
o Identify the impact of Active Directory on the current security infrastructure.
o Identify the existing trust relationships.
*
Design the Active Directory infrastructure to meet business and technical requirements.
o Design the envisioned administration model.
o Create the conceptual design of the Active Directory forest structure.
o Create the conceptual design of the Active Directory domain structure.
o Design the Active Directory replication strategy.
o Create the conceptual design of the organizational unit (OU) structure.
*
Design the network services infrastructure to meet business and technical requirements.
o Create the conceptual design of the DNS infrastructure.
o Create the conceptual design of the WINS infrastructure.
o Create the conceptual design of the DHCP infrastructure.
o Create the conceptual design of the remote access infrastructure.
*
Identify network topology and performance levels.
o Identify constraints in the current network infrastructure.
o Interpret current baseline performance requirements for each major subsystem.
*
Analyze the impact of the infrastructure design on the existing technical environment.
o Analyze hardware and software requirements.
o Analyze interoperability requirements.
o Analyze current level of service within the existing technical environment.
o Analyze network requirements.

Creating the Logical Design for an Active Directory Infrastructure

*
Design an OU structure.
o Identify the Group Policy requirements for the OU structure.
o Design an OU structure for the purpose of delegating authority.
*
Design a security group strategy.
o Define the scope of a security group to meet requirements.
o Define resource access requirements.
o Define administrative access requirements.
o Define user roles.
*
Design a user and computer authentication strategy.
o Identify common authentication requirements.
o Select authentication mechanisms.
o Optimize authentication by using shortcut trust relationships.
*
Design a user and computer account strategy.
o Specify account policy requirements.
o Specify account requirements for users, computers, administrators, and services.
*
Design an Active Directory naming strategy.
o Identify Internet domain name registration requirements.
o Specify the use of hierarchical namespace within Active Directory.
o Identify NetBIOS naming requirements.
*
Design migration paths to Active Directory.
o Define whether the migration will include an in-place upgrade, domain restructuring, or migration to a new Active Directory environment.
*
Design a strategy for Group Policy implementation.
o Design the administration of Group Policy objects (GPOs).
o Design the deployment strategy of GPOs.
o Create a strategy for configuring the user environment with Group Policy.
o Create a strategy for configuring the computer environment with Group Policy.
*
Design an Active Directory directory service site topology.
o Design sites.
o Identify site links.

Creating the Logical Design for a Network Services Infrastructure

*
Design a DNS name resolution strategy.
o Create the namespace design.
o Identify DNS interoperability with Active Directory, WINS, and DHCP.
o Specify zone requirements.
o Specify DNS security.
o Design a DNS strategy for interoperability with UNIX Berkeley Internet Name Domain (BIND) to support Active Directory.
*
Design a NetBIOS name resolution strategy.
o Design a WINS replication strategy.
*
Design security for remote access users.
o Identify security host requirements.
o Identify the authentication and accounting provider.
o Design remote access policies.
o Specify logging and auditing settings.
*
Design a DNS service implementation.
o Design a strategy for DNS zone storage.
o Specify the use of DNS server options.
o Identify the registration requirements of specific DNS records.
*
Design a remote access strategy.
o Specify the remote access method.
o Specify the authentication method for remote access.
*
Design an IP address assignment strategy.
o Specify DHCP integration with DNS infrastructure.
o Specify DHCP interoperability with client types.

Creating the Physical Design for an Active Directory and Network Infrastructure

*
Design DNS service placement.
*
Design an Active Directory implementation plan.
o Design the placement of domain controllers and global catalog servers.
o Plan the placement of flexible operations master roles.
o Select the domain controller creation process.
*
Specify the server specifications to meet system requirements.
*
Design Internet connectivity for a company.
*
Design a network and routing topology for a company.
o Design a TCP/IP addressing scheme through the use of IP subnets.
o Specify the placement of routers.
o Design IP address assignment by using DHCP.
o Design a perimeter network.
*
Design the remote access infrastructure.
o Plan capacity.
o Ascertain network settings required to access resources.
o Design for availability, redundancy, and survivability.

(OR)

Designing Security for a Microsoft Windows Server 2003 Network (70-298)

Creating the Conceptual Design for Network Infrastructure Security by Gathering and Analyzing Business and Technical Requirements

*
Analyze business requirements for designing security. Considerations include existing policies and procedures, sensitivity of data, cost, legal requirements, end-user impact, interoperability, maintainability, scalability, and risk.
o Analyze existing security policies and procedures.
o Analyze the organizational requirements for securing data.
o Analyze the security requirements of different types of data.
o Analyze risks to security within the current IT administration structure and security practices.
*
Design a framework for designing and implementing security. The framework should include prevention, detection, isolation, and recovery.
o Predict threats to your network from internal and external sources.
o Design a process for responding to incidents.
o Design segmented networks.
o Design a process for recovering services.
*
Analyze technical constraints when designing security.
o Identify capabilities of the existing infrastructure.
o Identify technology limitations.
o Analyze interoperability constraints.

Creating the Logical Design for Network Infrastructure Security

*
Design a public key infrastructure (PKI) that uses Certificate Services.
o Design a certification authority (CA) hierarchy implementation. Types include geographical, organizational, and trusted.
o Design enrollment and distribution processes.
o Establish renewal, revocation and auditing processes.
o Design security for CA servers.
*
Design a logical authentication strategy.
o Design certificate distribution.
o Design forest and domain trust models.
o Design security that meets interoperability requirements.
o Establish account and password requirements for security.
*
Design security for network management.
o Manage the risk of managing networks.
o Design the administration of servers by using common administration tools. Tools include Microsoft Management Console (MMC), Terminal Server, Remote Desktop for Administration, Remote Assistance, and Telnet.
o Design security for Emergency Management Services.
*
Design a security update infrastructure.
o Design a Software Update Services (SUS) infrastructure.
o Design Group Policy to deploy software updates.
o Design a strategy for identifying computers that are not at the current patch level.

Creating the Physical Design for Network Infrastructure Security

*
Design network infrastructure security.
o Specify the required protocols for a firewall configuration.
o Design IP filtering.
o Design an IPSec policy.
o Secure a DNS implementation.
o Design security for data transmission.
*
Design security for wireless networks.
o Design public and private wireless LANs.
o Design 802.1x authentication for wireless networks.
*
Design user authentication for Internet Information Services (IIS).
o Design user authentication for a Web site by using certificates.
o Design user authentication for a Web site by using IIS authentication.
o Design user authentication for a Web site by using RADIUS for IIS authentication.
*
Design security for Internet Information Services (IIS).
o Design security for Web sites that have different technical requirements by enabling only the minimum required services.
o Design a monitoring strategy for IIS.
o Design an IIS baseline that is based on business requirements.
o Design a content management strategy for updating an IIS server.
*
Design security for communication between networks.
o Select protocols for VPN access.
o Design VPN connectivity.
o Design demand-dial routing between internal networks.
*
Design security for communication with external organizations.
o Design an extranet infrastructure.
o Design a strategy for cross-certification of Certificate Services.
*
Design security for servers that have specific roles. Roles include domain controller, network infrastructure server, file server, IIS server, terminal server, and POP3 mail server.
o Define a baseline security template for all systems.
o Create a plan to modify baseline security templates according to role.

Designing an Access Control Strategy for Data

*
Design an access control strategy for directory services.
o Create a delegation strategy.
o Analyze auditing requirements.
o Design the appropriate group strategy for accessing resources.
o Design a permission structure for directory service objects.
*
Design an access control strategy for files and folders.
o Design a strategy for the encryption and decryption of files and folders.
o Design a permission structure for files and folders.
o Design security for a backup and recovery strategy.
o Analyze auditing requirements.
*
Design an access control strategy for the registry.
o Design a permission structure for registry objects.
o Analyze auditing requirements.

Creating the Physical Design for Client Infrastructure Security

*
Design a client authentication strategy.
o Analyze authentication requirements.
o Establish account and password security requirements.
*
Design a security strategy for client remote access.
o Design remote access policies.
o Design access to internal resources.
o Design an authentication provider and accounting strategy for remote network access by using Internet Authentication Service (IAS).
*
Design a strategy for securing client computers. Considerations include desktop and portable computers.
o Design a strategy for hardening client operating systems.
o Design a strategy for restricting user access to operating system features.


Exchange Server 2007, Configuring (70-236)

Installing and Configuring Microsoft Exchange Servers

*
Prepare the infrastructure for Exchange installation.
*
Prepare the servers for Exchange installation.
*
Install Exchange.
*
Configure Exchange server roles.

Configuring Recipients and Public Folders

*
Configure recipients.
*
Configure mail-enabled groups.
*
Configure resource mailboxes.
*
Configure public folders.
*
Move mailboxes.
*
Implement bulk management of mail-enabled objects.

Configuring the Exchange Infrastructure

*
Configure connectors.
*
Configure the antivirus and anti-spam system.
*
Configure transport rules and message compliance.
*
Configure policies.
*
Configure public folders.
*
Configure client connectivity.

Monitoring and Reporting

*
Monitor mail queues.
*
Monitor system performance.
*
Perform message tracking.
*
Monitor client connectivity.
*
Create server reports.
*
Create usage reports.

Configuring Disaster Recovery

*
Configure backups.
*
Recover messaging data.
*
Recover server roles.
*
Configure high availability.

(OR)

Implementing and Managing Microsoft Exchange Server 2003 (70-284)

Installing, Configuring, and Troubleshooting Exchange Server 2003

*
Prepare the environment for deployment of Exchange Server 2003
*
Install, configure, and troubleshoot Exchange Server 2003
*
Install, configure, and troubleshoot Exchange Server 2003 in a clustered environment
*
Upgrade from Exchange Server 5.5 to Exchange Server 2003
*
Migrate from other messaging systems to Exchange Server 2003
o Use the Migration Wizard to migrate from other messaging systems
o Migrate from other Exchange organizations
*
Configure and troubleshoot Exchange Server 2003 for coexistence with other Exchange organizations
*
Configure and troubleshoot Exchange Server 2003 for coexistence with other messaging systems
*
Configure and troubleshoot Exchange Server 2003 for interoperability with other SMTP messaging systems

Managing, Monitoring, and Troubleshooting Exchange Server Computers

*
Manage, monitor, and troubleshoot server health
*
Manage, monitor, and troubleshoot data storage
*
Manage, monitor, and troubleshoot Exchange Server clusters
*
Perform and troubleshoot backups and recovery
*
Remove an Exchange Server computer from the organization

Managing, Monitoring, and Troubleshooting the Exchange Organization

*
Manage and troubleshoot public folders
*
Manage and troubleshoot virtual servers
*
Manage and troubleshoot front-end and back-end servers
*
Manage and troubleshoot connectivity
*
Monitor, manage, and troubleshoot infrastructure performance

Managing Security in the Exchange Environment

*
Manage and troubleshoot connectivity across firewalls
*
Manage audit settings and audit logs
*
Manage and troubleshoot permissions
*
Manage and troubleshoot encryption and digital signatures
*
Detect and respond to security threats

Managing Recipient Objects and Address Lists

*
Manage recipient policies
*
Manage user objects
*
Manage distribution and security groups
*
Manage contacts
*
Manage address lists

Managing and Monitoring Technologies that Support Exchange Server 2003

*
Diagnose problems arising from host resolution protocols
*
Diagnose problems arising from Active Directory issues
*
Diagnose network connectivity problems