Index
A
Access Control Entries (ACLs), 26
access concentrator, 593–594
accessing
Add/Remove Hardware Wizard, 702
ATM, 461
backups, 722
Device Manager snap–in, 703
files/folders, 687–688
GPOs, 377
group accounts, 358
hardware profiles, 707
IIS, 828
metabases, 844
printers, 428–429, 688
Recovery Console, 745
RRAS server, 574, 584–586
security, 674
Terminal Services, 884
User mode, 313
VPNs, 600
Web sites, 854–856
WebDAV, 869
accounts. See group accounts; user accounts
ACLs (Access Control Entries), 26
Action menu (MMC), 308
activating license servers, 890–891
Active Desktop, enabling, 892
Active Directory, 3, 4. See also directory services
administration, 300–301
auditing, 683, 686, 688
APIs, 248
Active Directory, continued
data model, 247
database layer, 254
Delegation of Control wizard, 299–300
directory database, 272
distinguished names (DN), 244
DNS, 24
domains, 23, 26–27, 31, 294–295, 681
DSA, 252–254
Extensible Storage Engine (EXE), 254–255
Find drop-down menu, 292
forests, 28–29
global catalogs, 28, 242
globally unique identifier (GUID), 245
GPOs, 677
IIS, 844
In drop-down menu, 292
inheritance, 298
Installation Wizard, 269–271
Kerberos protocol, 663
LDAP, 24, 239, 250, 252
logon traffic, 268
Manager, 276
multimaster replication, 253
name formats, 24–25
namespaces
contiguous/disjointed, 243
external/internal, 257–260
first layer, 261–262
root domain, 261
second layer, 261–262
Active Directory, continued
objects, 25–26, 287–288, 688
administration, 247, 298–299
creating, 288–290
deleting, 293
identification, 253
locating, 290–292
moving, 294–296
organizational units (OU), 26, 265, 285–286
orphan pruners, 445
permissions, 296–298
printing, 442–443
protocols, 248
publishing applications, 379
referrals, 254
relative distinguished name, 245
replication, 253, 268
results, 293
scalability, 23
schemas, 28, 241, 247
security model, 247
services, 240
sites, 32
stand-alone servers, 274
transaction processing, 253
trees, 27–28
trust relationships, 29–31
user principal name (UPN), 246
Users and Computers snap–in, 325
virtual containers, 250
Active Server Pages (ASP), 843–844, 850, 870
adding. See also installation
aliases, 611
applications, 893–894
components, 69
disks, 159
domain controllers, 270
FTP sites, 866
GPOs, 386
hardware, 701–702
memberships, 355, 362, 365, 371–373
objects, 285–287
resource records, 527
Server02, 277–278
sites, 387
snap-ins, 385–386
Web sites, 866
addresses
allocation, 573
editing, 333–334
network address translation (NAT), 556
private, 472–473
remote access, 573
static, 469–471, 576
VPNs, 599
administration, 247
Administrator account, 320–321
built-in accounts, 366, 368
certificates, 636–638
delegation, 829
Dfs, 215
domains, 23
group accounts, 360–361
IIS, 827
integrated tools, 5
objects, 298–299
passwords, 68
remote, 884
Web sites, 864–865
Administration tools
installation, 279–280
Telnet Service, 882–883
Terminal Services, 886, 892, 900–901
ADSL (Asymmetric Digital Subscriber Line), 568
advanced certificate configuration, 636
agents, 787
alerts, 802–803
algorithms, 622
alias files, 609, 611
allocation, addresses,573
Alpha-based operating systems, 12
analog connections
domains, 22
analysis, security, 674–676
anonymous authentication, 871
answer files, 99–105, 112, 139–140
anti-replay datagrams, 622
API (application programming interface), 248, 570, 863
AppleTalk, 463, 552, 558
Application layer (TCP/IP), 469
Application Server mode (Terminal Services), 884–885, 901–904
applications
adding, 893–894
answer files, 139–140
deployment, 894–895
distribution, 378
installation, 141
log files, 689
publishing, 379, 393–394
Readme.doc files, 41
remote sessions, 895
RRAS, 560
Task Manager, 815
architecture
authentication, 645
Certificate Services, 629–632
drivers, 14–18
environment subsystems, 9
Executive, 10, 11
GDI, 12
GPOs, 382
HAL, 12, 13
I/O Manager, 11
integral subsystems, 10
Interprocess Communication Manager, 11
kernal mode, 7, 8
Object Manager, 12
Plug and Play Manager, 12
Power Manager, 12
Process Manager, 12
Security reference monitor, 11
VMM, 11
user mode, 7, 8
archives, log files, 691
arp utility, 468, 473
ASP (Active Server Pages), 870
assigning
computer names, 76
folders, 350–352
profiles, 337, 341–342, 348–350
static IP addresses, 576
Asymmetric Digital Subscriber Line (ADSL), 568
Asychronous NetBEUI, 569
Asynchronous Transfer Mode (ATM) protocol, 458–459, 568
accessing, 461
ATM over xDSL, 460–461
attributes
certificates, 627
NTFS, 186
objects, 25
auditing, 685
Active Directory, 683, 686, 688
configuration, 684–686
domain controllers, 685
files, 683, 687–688
folders, 683, 687–688
group accounts, 683
log files, 690
logon events, 686
policies, 682–683, 687
printers, 688
security, 839
servers, 685
shutdown, 683
tracking, 684
user accounts, 683, 685–686
authentication
anonymous, 838
architecture, 645
basic, 837
clients, 635, 666, 871
computers, 621
digest, 837, 870–871
GPOs, 389
IAS, 573
IIS, 838
integrated, 837
installation, 57
Kerberos protocol, 663, 665, 667–668
mutual, 570, 666
NTLM, 881
PPTP, 595
private keys, 625
public keys, 625
RADIUS, 552–553, 559, 581
RRAS, 552–553, 612
servers (AS), 635, 666
Telnet Service, 876
user accounts, 319, 569
VPNs, 600–601
Windows, 580–581
Authenticode, 647, 648
Author mode (MMC), 313
authorization, RRAS, 491, 552–553
auto-enrollment, 398
Automatic Private IP Addressing (APIPA), 472–473, 478–479
automating
backups, 711
installation, 138–139
tasks, 379
tunnels, 594
availability
operating systems, 693
B
backup domain controllers. See BDCs; domains controllers
backups. See also Windows Backup
access rights, 722
automating, 711
built-in accounts, 369
catalogs, 750
combining, 717, 718
compression, 721
configuration, 717
copy, 716, 718
creating, 724
daily, 712, 716
data, 710
default settings, 714, 715
differential, 716, 718
DHCP, 499
domain controllers, 368
encryption, 649
files/folders, 712
closing, 718
before installation, 41
selecting, 719, 720
full/normal, 715, 718
IIS, 831–832
incremental, 716, 718
Iomega Zip drives, 712
local, 713
log files, 714, 721, 726
media, 722
monthly, 712
multiple, 717
naming, 722
backups, continued
networks, 713
permissions, 711
planning, 712
removable media devices, 719
scheduling, 722–723, 727–730
sets, 750
starting, 720–721
storing, 720–721, 725
tape, 712
user notification, 718
verification, 725
viewing, 729–730
weekly, 712
bandwidth, throttling, 825–826, 862
basic authentication, 871
basic input/output system (BIOS), 46
basic storage 150
batch files, 141–142, 396
BDCs (backup domain controllers), 22, 85
blocking inheritance, 391
BIOS (basic input/output system), 46
boot sectors, 48
NTFS, 185
repairing, 748
viruses, 42
bootable CD-ROM, 74, 120, 136–137
browsers, printers, 435–437, 449–450
built-in user accounts
Administrator, 320–321
domains, 367–368
global, 366
system, 370
business function-based organizational units, 265
C
cache
I/O Manager, 11
name servers, 522
callback feature, 571, 576
caller ID, 571, 576
CALs (Client Access Licenses), 50–51
canceling print jobs, 434
capture filters, 808
displaying, 810–812
protocols, 809
.cat files, 705
catalogs, 242, 750
CD-ROM
booting, 74, 120
CDFS, 147
drives, 92
installation, 53, 55–56
centralized administration of domains, 23
Certificate Services
architecture, 629–632
backups, 723
Component Object Model (COM), 632
databases, 631
exit modules, 631
extension handlers, 631
installation, 58, 635–636, 638–640
intermediary, 630, 631
log files, 631
policies, 628, 629, 63
Certificate Services, continued
private keys, 629
queues, 631
server engines, 630
standards, 629
certificates
administration, 636, 637, 638
attributes, 627
Certificate Authority (CA), 626–627, 634, 636
configuration, 636, 638–640
CTLs, 842
distribution, 635
drivers, 703–705
enrolling, 633
hierarchy, 628
IIS, 838
installation, 635
license servers, 890
requests, 632, 633
revocation lists (CRLs), 628, 631
running, 641, 642, 643
trusted, 398
user accounts, 334
Web sites, 638
X.507 standard, 627
Certutil.exe utility, 637
Challenge Handshake Authentication Protocol (CHAP), 569
Change Journal, NTFS, 181–182
Check Disk tool, 763–764
checking upgrades, 66
child objects
permissions, 388
policy containers, 391
windows, 308
cipher command-line utility, 653, 654
CISC (Complex Instruction Set Computing), 7
classes
drivers, 17
objects, 26
stores, 381
Client Creator (Terminal Services), 886
clients
authentication, 666, 871
certificates, 635
Client Access Licenses (CALs), 50–51
DHCP, 486
dial-in, 584–586
DNS, 533–534
installation, 69
licensing, 885, 888
memory, 891
monitoring, 337
printers, 448
remote access, 563
reservations, 490–491
scopes, 489
Terminal Services, 884
tunnels, 591, 593
user accounts, 336
WebDAV, 869
WINS, 505
closing files before backups, 718
clusters, 170, 172, 739
Cmdlines.inc file, 138–140
COM (Component Object Model), 632
combining backups, 717, 718
commands
prompts, 653
Net Shell utility, 610–611
communication
IPSec, 660
networks, 5
communities, SNMP, 785
Compact.exe utility, 767
Compaq drive array, 55
comparing
file systems, 49
mirrored volumes and striped volumes with parity, 738–739
compatibility
hardware installation, 43
IPSec, 658
NTFS, 189
Complex Instruction Set Computing (CISC), 7
Component Object Model (COM), 632
components
adding, 69
COM+, 843
deleting, 69
compression
backups, 721
files/folders, 767–769
HTTP, 833–834
NTFS, 47, 769–770
compulsory tunnels, 593–594
computers
authentication, 621
disasters, 731
GPOs, 385
names, 68, 76
physical address, 493
portable, 706
confidentiality of data, 622
configuration
audit policies, 683–687, 690
backups, 717
certificates, 636, 638–640
display settings, 79
domains, 654–656
GPOs, 384
installation, 68
printers, 415–418
restore settings, 751–752
roaming user profiles (RUP), 340–341
RRAS, 544–545
security, 674, 680–681
Security Template snap-in, 678–679
service packs, 708–709
software, 68
UPS, 732
Web sites, 852–854
Windows 2000 Server, 77
conflicts
child/parent policy containers, 391
GPOs, 378
connections
accepted, 578–579, 604
hardware, 695, 697
Internet, 590
Intranet, 590–591
licensing, 875
printers, 447
rejected, 602–604
TCP/IP, 474–477
Telnet Client, 880–882
Terminal Services, 901–904
consoles
Author mode, 313
customizing, 310, 314–318
folders, 316
MMC, 386
saving, 307
snap-ins, 311–312
User mode, 313
windows, 308
consolidation, domains, 89, 90
containers
GPOs, 380–381, 392
objects, 26
parents, 390
virtual, 250
contiguous namespaces, 243
conversion, FAT to NTFS, 187–188
copy backups, 716, 718
copying files/folders, 63, 66, 208, 769
counter log files, 797, 802–803
creating
answer files, 99–105
backups, 724
batch files, 141–142
consoles, 314–318, 386
Dfs, 281–282
directories, 870
domain controllers, 270–271
Emergency Repair Disk, 747
floppy disks, 886
folders, 344–345
FTP sites, 859–860
GPOs, 400–401
creating, continued
group accounts, 361, 364
local accounts, 332
organizational units, 263–265, 288–290
roaming user profiles, 347
scripts, 611
scopes, 487–491
security databases, 677–679
Setup disks, 54, 70, 71, 72
tunnels, 592
user accounts, 320, 324–325
virtual directories, 837–848
volumes, 738–739
Web sites, 845–846, 859–860
CRLs (certificate revocation lists), 631
cryptography, see decryption; encryption, 622
CSPs (cryptographic service providers), 647
customizing MMC consoles, 309–310, 314–318
D
DACLs (directory access control lists), 869, 872
daily backups, 712, 716
data
backups, 710
captured, 810–813
confidentiality, 622
data, continued
configuration, 751–752
deleting, 752–755
encryption, 570, 623, 651
integrity, 621
mirrored volumes (RAID 1), 755–756
models, 247
protection, 649
recording, 40
recovering, 649, 651
restoring, 749–750
striped volumes with parity (RAID 5), 757
tunnels, 591–592
databases
directory, 272
layers, 254
security, 679
servers, 631
datagrams, anti-replay, 622
date and time
GUI mode, 76
installation, 69
DDF (Data Decryption Field), 651
DDNS (Dynamic DNS), 528–529, 531–532
debugging log files, 65, 535
decryption
command prompts, 653
EFS, 648, 651–652
folders, 653
dedicated lines, VPNs, 590
Default Domain Policy, 392
default gateway, 471
default settings
backups, 714–715
hardware profiles, 705
Mixed mode, 370
RRAS, 547–551
Safe mode, 742
defragmenting, disks, 764–766
delegation
administration, 829
Kerberos protocol, 667, 669–670
deleting
aliases, 611
components, 69
data, 752–755
Default Domain Policy, 392
Dfs root, 280
GPOs, 386
group accounts, 363–364
mirrored volumes (RAID 1), 735
objects, 293–294
spanned volumes, 158
user accounts, 343
Delegation of Control wizard, 299
delimiters, 851
demand-dial routing, 543, 558
department-based organizational units, 265
deployment, applications, 894–895
details pane (MMC), 309
detection, Plug and Play hardware, 78
device drivers
I/O Manager, 11
installation, 695
Plug and Play, 698
Device Manager snap-in (MMC), 702
access rights, 703
read-only mode, 703
devices. See also non-Plug and Play devices
enabling/disabling, 700, 706
installation, 699, 700
removable media, 719
uninstallation, 700
Dfs (domain file system), 233–234, 280–283
administration, 215
directories/shares, 222–223
limitation, 216
links, 220–221, 225
replication, 226–227
root, 218, 220–221
stand-alone, 217, 219, 224–225
DHCP (Dynamic Host Configuration Protocol), 59
authorization, 491
backups, 499
installation, 57, 485–486, 492
leases, 481–485
Relay Agent, 556
reservations, 490–491, 496
restoring, 499–500
scopes, 487–491, 494–495
servers, 508–509
snap-in, 486–487
starting, 480
testing, 498
WINS, 511
dial-in connections
allowing/denying, 582–583
client configuration, 584–586
permissions, 575
remote access, 558, 562
servers, 335, 577
TCP/IP configuration, 481
VPNs, 590
differential backups, 716, 718
Diffie-Hellman algorithm, 622
digest authentication, 837, 870–871
digital certificates/signing. See certificates
digital signals, 565
Digital Subscriber Lines (DSLs), 22
Directory System Agent (DSA), 252–254
directories, 19
access control lists (DACLs), 869, 872
databases, 272
directories, continued
Dfs, 222–223
domains, 22
home, 846–847
partitions, 20, 23
paths, 338
publishing, 870, 874
replication, 20, 268
virtual, 847–848
WebDAV, 868
directory services, 4, 19. See also Active Directory
domains, 20
security, 20
workgroups, 20–21
disabling, see enabling/disabling
disaster recovery, 731
disconnecting
BDC, 85
hardware, 697
PDCs, 85
UPS, 41
disjointed namespaces, 243
diskperf utility, 800
disks
adding, 159
defragmenting, 764–766
duplication, 126–127
duplexing, 736
mirroring, 41
partitions, 44–46, 165–167
permissions, 155–156
properties, 161–162
quotas, 771–773, 873
remote management, 164
space, 92
status, 774
storage, 156, 159–160
display settings
aliases, 611
captured data, 810–812
configuration, 79
filters, 811–812
refresh rates, 164
distinguished names (DN), 244–245
distribution
applications, 378
certificates, 635
DNS, 514
distribution, continued
file system (Dfs), 280–283, 833
folders, 105–108, 115
group accounts, 354, 357
DLC protocol, 464–465
DNS (Domain Name System), 24. See also domains
Active Directory, 24–25, 28
cache, 522
clients, 533–534
debugging, 535
distribution, 514
domain names, 85
dynamic, 528–529, 531–532
foward lookup, 520–522, 525–526, 529–530
host, 517
installation, 40, 57, 59, 523–524
monitoring, 534
namespaces, 515–516
Nslookup, 535
resource records, 527
reverse look, 522–523, 526–527, 529–530
servers, 519–520
snap-in, 524–525
testing, 532–533
zones, 518–519
docking stations, 697
domain controllers
Active Directory, 31
adding, 270
application deployment, 894–895
auditing, 685
backups, 368
BDCs, 22
creating, 270–271
PDCs, 22
stand-alone servers, 274–275
troubleshooting, 93
upgrades, 86
domains, 22. See also DNS
Active Directory, 23, 26–27
administration, 23
analog connections, 22
built-in accounts, 367–368
consolidation, 89, 90
data recovery policy, 654–656
Digital Subscriber Lines (DSLs), 22
directories, 22
editing, 328–329
domains, continued
first layer, 261–262
GPOs, 387
group accounts, 357, 364, 373
inheritance, 391
ISDNs, 22
joining, 52
Kerberos, 671–673
LANs, 22
local group accounts, 355–356
logon, 23, 330–331
Mixed mode, 273, 362, 370–371
Native mode, 273, 370–371
nesting, 359
objects, 26
organizational units (OU), 320
passwords, 326–327
permission, 358
root, 516
scalability, 23
second layer, 261–262, 516
servers, 83, 277–278, 889
services, 20
top-level, 516
trust relationships, 29, 30, 31
user accounts, 89, 319, 324–325
viewing, 276
Windows 2000, 84
Windows NT, 83–84
downloading
files, 835
printer drivers, 450–451
DRF (Data Recovery Field), 651
drivers
.cat files, 705
installation, 703–705
IPSec, 660
kernal mode, 14–15, 17–18
printers, 450–451
signing, 703–705
testing, 705
Windows Driver Model (WDM), 13, 15–16
drives, uncompression before installation, 41
DSA (Directory Service Agent), 252–254
DSLs (Digital Subscriber Lines), 22
dual-booting, 46, 152
duplication, disks, 126–127
DVD (digital video disc), 182–184
dynamic compulsory tunnels, 594–595
dynamic disks, 151, 154
Dynamic Host Configuration Protocol. See DHCP
E
eavesdroppers, 627
editing
domains, 329
GPOs, 389
group accounts, 363
organizational units (OU), 403
profiles, 339
Recovery Console, 745
registry settings, 614
security, 401–402
shared folders, 200–201
software policies, 403–404
Telnet Service, 878–879
user accounts, 327–328, 333–334
editions of Windows 2000. See specific editions
EDRP (Encrypted Data Recovery Policy), 649
EFS (Encrypting File System), 648
data protection, 649
decryption, 651–652
EFS (Encrypting File System), continued
fault tolerance, 649
folders, 657
recovery, 652
EMA (Enterprise Memory Architecture), 9
Emergency Repair Disk
creating, 747
installation, 746–748
starting, 748
enabling/disabling
Active Desktop, 892
auditing, 685
Automatic Private IP Addressing (APIPA), 472–473
devices, 700, 706
dial-in connections, 335
disk mirroring, 41
event logging, 613
FRS, 282
GPOs, 383, 392
Guest account, 321
license servers, 889
NetBIOS, 324
enabling/disabling, continued
Recovery Console edits, 745
log files, 583
Process Accounting, 829–830
RRAS, 545–547, 552
smart cards, 647
smooth scrolling, 892
Telnet Service, 881–882
user accounts, 343
encapsulation. See ESP; tunnels
encryption. See also EDRP; EFS; security
algorithms, 622
backups, 649
command prompts, 653
data, 570
digital signing, 624
files, 649
folders, 649, 653, 657
NTFS, 47, 191, 4648
PPP, 597
public keys, 623
secret keys, 627
engines, servers, 630
enrolling certificates, 633
Enterprise license servers, 889
Enterporse Subordinate CA, 636
Enterprise Memory Architecture (EMA), 9
Enterprise Root CA, 636
environment subsystems (user mode), 9
error messages, 831–832
ESP (Encapsulating Security Payload), 597–598
Event Log service
error logging, 613
hardware, 707
Event Viewer, 688
application log files, 689
archives, 691
audit log files, 690
editing, 690
filters, 690
searches, 690
security log files, 689–690
SNMP, 789
system log files, 689
Everyone group accounts, 369
excluding file from backups, 714
Executive, the (kernal mode), 10–12
exit modules, 631
expiration, user accounts, 324
extended partitions, 153
Extensible Authentication Protocol (EAP), 569
Extensible Storage Engine (EXE), 254–255
extensions
handlers, 631
schemas, 241
snap-ins, 312
spanned volumes, 158
external namespaces, 258–260
F
FAT16/FAT32
compatibility, 154, 172
conversion, 187–188
NTFS, 49
partitions, 173–174
sectors, 170
storage, 169
structure, 171
fault tolerance (RAID), 649, 733
hardware, 733, 734
mirrored volumes (RAID 1), 733–737
software, 733
striped volumes with parity (RAID 5), 733–738
Favorites menu (MMC), 308
FEK (file encryption key), 649
file systems. See also FAT 16; FAT32; NTFS
comparing, 49
I/O Manager, 11
installation, 55
Text mode, 67
upgrades, 81
Windows NT, 84
files
access rights, 687, 688
alias, 609
attributes, 186
auditing, 683, 687–688
backups, 712
closing before, 718
excluding, 714
before installation, 41
selecting, 719, 720
compression, 767–769
copying, 66, 208
defragmenting, 764–766
files, continued
downloading, 835
encryptions, 649
location, 62, 64
moving, 208
profiles, 339
replication, 229–230
Sysprep, 128–129
temporary, 62, 64
tracing, 614–615
uploading, 865
filters
capture, 808–810
display, 811–812
events, 690
IPSec, 659
ISAPI, 863
finding, see searches
finger utility, 474
floppy disks
creating, 886
driver installation, 55
folders
access rights, 687, 688
assigning, 350–352
auditing, 683, 687, 688
backups, 712, 719–720
compression, 767–759
copying, 63, 208
creating, 344–345
defragmenting, 764–766
distribution, 105–108, 115
encryption, 649, 653, 657
installation, 63
moving, 208
naming, 316, 346
optional, 63
permissions, 193–196
profiles, 339
redirection, 399
sharing, 197–200
forests, Active Directory, 28–29
formats
Active Directory, 24–25
boot partitions, 48
system partitions, 48
Fortezza security, 836
forward lookup queries, 520–522, 525–526
forwarding, 556–557
FQDN (Fully Qualified Domain Name), 336
frame types, 462–463
FrontPage, 832
FRS replication, 229–230
FTP sites
adding, 866
creating, 859–860
downloading, 835
home directories, 846–847
Restart, 865
ftp utility, 474
Full Access user mode, 313
full backups, 715, 718
G
GDI (graphical device interface), 12
geography-based organizational units, 265
global settings
built-in accounts, 366
catalogs, 28, 242
group accounts, 356–358
memberships, 371–373
globally unique identifier (GUID), 245
Gpedit.msc file, 387
GPOs (group policy objects). See also group accounts; policies
architecture, 382
adding, 386
conflicts, 378
consoles, 386
containers, 380–381
creating, 400–401
deleting, 386
editing, 389
enabling/disabling, 383, 392
inheritance, 390–391
local, 381
monitoring, 377
organizational units (OU), 387, 391
overrides, 391, 405
permissions, 388–390
printers, 446
Registry.pol file, 383
RIS, 380
scripts, 379
GPOs (group policy object), continued
security, 378–379, 681
shortcuts, 379
site configuration, 384
snap-in, 384–386
templates, 380–381, 398–399
user accounts, 385
versions, 383
Gpt.ini file, 383
granting tickets, 665–666
graphical device interface (GDI), 12
Graphical Indentification and Authentication DLL, 671
graphs, monitoring, 796
group accounts. See also GPOs; user accounts
administration, 361
auditing, 683
built-in, 368
deleting, 363–364
distribution, 354
domains, 367, 373
global, 356, 366, 371–373
local, 355–356, 364–365
membership, 357, 360, 362
naming, 361
nesting, 357–358
NTFS, 374–375
publishing, 393–394
scopes, 355–356, 363
security, 354
system, 370
universal, 356, 360
VPNs, 600
Guest accounts, 321, 366, 369
GUI mode (installation), 67, 74
clients, 69
computer names, 68, 76
configuration, 68
date and time, 69, 76
licensing, 68, 75
network adapters, 69
Optional Component Manager, 69
passwords, 68, 76
protocols, 69
regional settings, 68
services, 69
GUID (globally unique identifier), 245
H
HAL (Hardware Abstraction Layer), 12–13, 55
hard disk, 696
BIOS, 46
configuration, 149
error-checking, 763–764
partitions, 44–46
storage, 149–151
hardware
Add/Remove Hardware Wizard, 701–702
compression, 721
connections, 697
devices
drivers, 695
enabling/disabling, 706
installation, 698–700
disconnection, 697
docking stations, 697
Driver Signing, 703–705
Event Log service, 707
hard disks, 696
installation, 42–44
management, 703
modems, 696
parallel ports, 697
PC Cards, 697
Plug and Play devices, 78, 697–698
profiles, 705–707
RAID, 733–734
resource settings, 703
serial ports, 697
sound cards, 696
support, 5
types, 696
USB, 697
video display cards, 696
Hardware Abstraction Layer. See HAL
Hardware Compatibility Tests (HCTs), 43
hash/hashing, 623, 837
Help files
IIS, 864
Net Shell utility, 610
Recovery Console, 746
Telnet Client, 881
hierarchy, certificates, 628
highest-level drivers, 15
HMAC-Message Digest function 5 (MD5), 623
HMAC-Secure Hash Algorithm (SHA), 623
home directories/folders, 344–345, 350–352, 846–847
hosting Web sites, 825
hostname utility, 473
hot key sequences (Terminal Services), 892
HTTP (Hypertext Transfer Protocol), 629, 833–834
Human Interface Devices (HID), 18
Hypertext Transfer Protocol (HTTP), 629
I
IANA (Internet Assigned Numbers Authority), 472
IAS (Internet Authentication Service), 559, 573
ICMP router discovery, 468, 556
identifers
security (SIDs), 363
Setup.exe file, 65
identifiers, 63
idle time, sessions, 337
IEEE 1394 devices, 700
IGMP versions, 468, 556
IIS (Internet Information Service)
Active Directory Services, 844
administration, 827–828
auditing, 839
authentication, 838, 871
backups, 831–832, 868
bandwidth, 825–826
certificates, 842
Component Services (COM+), 843
distributed file system (Dfs), 833
error messages, 831–832
FTP sites, 835
Indexing Service, 865
installation, 58, 844–845
Kerberos protocol, 870
performance, 823
permissions, 840–841
Process Accounting, 829–830
protection, 824
scripts, 830, 850
security, 836–837
server extensions, 832
SSI, 849–850
starting, 867
Terminal Services, 864
virtual directories, 848
incremental backups, 716, 718
Indexing Service (IIS), 865
inheritance
Active Directory, 298
GPOs, 390–391
permissions, 202
Web sites, 861–863
input/output (I/O), 7
installation, 58. See also adding; unattended installation
Administration tools, 279–280, 900–901
authentication services, 57
automating, 138–139
batch files, 141
boot partitions, 48
CD-ROM, 53, 55, 56
Certificate Services, 57–58, 635–640
Compaq drive array, 55
devices, 695–700
DHCP, 57, 485–486, 492
disk partitions, 44–46
display settings, 79
DNS, 40, 57, 59, 523–524
domains, 52
drivers, 55, 703–705
drives, 41
dual-booting, 46
Emergency Repair Disk, 746–748
files, 41, 66
folders, 63
HAL, 55
hardware, 42–44
IEEE 1394 devices, 700
IIS, 58, 844–845
licensing, 50, 51, 891, 898–899
log files, 65
Management and Monitoring Tools, 58
management tools, 57
Message Queuing Services, 58
Microsoft Indexing Service, 58
Microsoft Script Debugger, 59
mirrored volumes, 46
monitoring tools, 57, 807
Networking Services, 59
networks, 53, 56
partitions, 48
Plug and Play devices, 78, 698
preparation, 37, 39
Readme.doc files, 41
rebooting, 699
recording data, 40
Remote Installation Services, 60
repairing, 741
Recovery Console, 743–746
RRAS, 544–545
Safe mode, 742–743
SCSI devices, 698
service packs, 708
Setup boot disk, 53–55, 61
Smartdrv.exe file, 57
SNMP, 786
software, 68
System Policy Editor, 392
Terminal Services, 58, 60, 895–897
troubleshooting, 92–93
upgrades, 66
UPS, 41
USB, 700
Windows 2000 Server, 61
existing, 67
file systems, 67
GUI mode, 67–69, 74–76
licensing, 67
networking, 77
partitions, 67, 74
Pre-Copy Phase, 66, 72–74
Setup.exe file, 61
Text mode, 67, 72–74
Windows 95/98, 56
Windows Media Services, 60
Winnt.exe file, 61–63
Winnt32.exe file, 61–66
WINS, 57, 59, 506, 510
workgroups, 51
Installation Wizard (Active Directory), 269–271
integral subsystems (user mode), 10
Integrated Services Digital Networks (ISDNs), 22, 566
integration, administration tools, 5
integrity of data, 621
Integrity Value Check, 598
Intel-based operating systems, 12
interface, MMC, 307
intermediary Certificate Services, 630–631
intermediate drivers, 15
internal namespaces, 258–260
Internet. See also IGMP; IIS
Assigned Numbers Authority (IANA), 472
authentication (IAS), 559, 573
connections, 590
TCP/IP interface layer, 467–468
Internet Explorer, certificate validation, 634
Internet Services Manager (HTML)
certificates, 840
permissions, 841
running, 827
virtual directories, 848
Web sites, 854
Interprocess Communication Manager (kernal mode), 11
interrupt request levels. See IRQLs, 10
inter-site replication, 234
Intranet
connections, 590–591
Web sites, 860
I/O Manager (kernal mode), 11
Iomega Zip drives, 712
IP addresses
multicast support, 556–557
packet filtering, 556
static, 469–471, 555, 576
IP protocol, 468
IP-IP (IP in IP) protocol, 599
IP over ATM protocol, 460
ipconfig utility, 473–476, 484–496
IPSec (IP Security), 658
communication, 660
compatibility, 658
drivers, 660
filters, 659
negotiation, 658
packets, 661
policies, 658
Policy Agent Service, 660
tunnels, 597–598
IPX routing, 542, 557, 779, 789–790
IrDA protocol, 465
IRQLs (interrupt request levels), 11
ISAKMP/Oakley (IKE) protocols, 660
ISAM (Indexed Sequential Access Method), 254
ISAPI (Internet Server API), 863
ISDN (Integrated Services Digital Network), 22, 566
J
joining
domains, 52
workgroups, 51
JScript, 396
