|
|
 |
|
|
|
Introducing Microsoft® Windows Server™ 2003
|
|
|
Author
|
|
Jerry Honeycutt
|
|
|
Pages
|
464
|
|
Disk
|
1 Evaluation CD(s)
|
|
Level
|
All Levels
|
|
Published
|
01/29/2003
|
|
ISBN
|
9780735615700
|
|
Price
|
$29.99
To see this book's discounted price, select a reseller below.
|
|
|
|
|
|
|
|
|
Index
Numbers
6to4 tunneling, 140
64-bit support
Group Policy, 50
IIS (Internet Information Services), 208
overview, 9
software deployment, 81
Windows Clustering, 250
Windows Installer, 91-92
128-bit encryption, 179
802.1X support, 33, 124
A
access control, 99-102
ACL management, 61
ACPI (Advanced Configuration and Power Interface), 316-317
ACT. See Application Compatibility Toolkit
Active Directory
Active Directory Migration Tool (ADMT), 52-53
administration management, 50-55
Adprep tool (Active Directory Preparation tool), 54
application directory partitions, 52-53
basics, 37-38
best practices, 373-375
branch office performance, 48-49
clients, 45-46
configuration management, 50-55
Configure Your Server Wizard, 50-51
Credential Manager, 58, 62
directory data store, 38-39
DirSync control, 53
Distributed File System (DFS), 45
DNS (Domain Name System), 51-54
domain controller overload prevention, 49
domain managing, 56
domain rename, 54
domain upgrades, 54
finding directory information, 43
forest upgrades, 54
functionality levels, 53-54
global catalog, 42-43, 50
group membership replication, 50
Group Policy management, 55-59
Group Policy Management Console. See Group Policy Management Console
Group Policy Modeling, 57
Group Policy Results, 56
integration, 46-48
Inter-Site Topology Generator (ISTG), 51
Knowledge Consistency Checker (KCC), 45
LDAP (Lightweight Directory Access Protocol), 47, 50
managing, 46-47
Microsoft Message Queuing (MSMQ), 48
migration tool enhancements, 52-53
NTLM version 2 authentication, 46
overview, 23, 37-38
Passport, 47-48
performance, 48-50
productivity, 46-48
replication, 43-45, 55
scalability, 48-50
schema, 39-41
security, 39, 59-62, 105-106
Terminal Server, 48, 59
total cost of ownership (TCO), 37
trust monitoring, 55
upgrading from Windows 2000 Server, 30, 383-384
upgrading from Windows NT Server, 26, 344, 352-356, 363-364, 373-375
Windows Address Book (WAB), 46
Windows Clustering, 254
Windows Management Instrumentation. See Windows Management Instrumentation
Windows NT 4.0 compatibility, 355-356
Active Directory Installation Wizard, 356-357
Active Directory Migration Tool (ADMT), 52-53
Active Directory Preparation tool (Adprep tool), 54, 83, 367, 378-379
Active Directory Schema snap-in, 39-41
Active Directory Services Interface (ADSI), 43, 45, 178
Active Server Pages (ASP) template cache, 202
Add/Remove Components application, 182
ADMT (Active Directory Migration Tool), 52-53
Adprep tool (Active Directory Preparation tool), 54, 83, 367, 378-379
ADSI (Active Directory Services Interface), 43, 45, 178
Advanced Configuration and Power Interface (ACPI), 316-317
advertisements, 223
AF_NETBIOS, 166
all-user remote access credential feature, 136
Analyzer tool, 387, 389
Application Compatibility Toolkit (ACT). See also testing for application compatibility
Analyzer tool, 387, 389
Application Verifier (AppVerifier) tool, 6, 387, 400-404
collecting information, 389-390
Collector tool, 388
Compatibility Administrator tool, 388, 394-395
Compatibility Analyzer tool, 388-390
Compatibility Database Installer (Sdbinst.exe), 399-400
Merger tool, 389
overview, 387-388
reporting information, 390-391
upgrading from Windows NT Server, 375-376
application directory partitions, 52-53, 386
application pools, 185-186, 202
application services, 213-218, 344-345
Application Verifier (AppVerifier) tool, 6, 387, 400-404
architecture
IIS (Internet Information Services), 182-184
Network Load Balancing (NLB), 280-290
server clusters, 266
ASP (Active Server Pages) template cache, 202
ASP.NET, 204, 215-216
ASR (Automated System Recovery), 229, 237-238, 259
assigning applications, 79
attributes, 40
auditing, 102-105
authentication. See also security
cross-forest, 60-62, 156
IEEE 802.1x, 154-155
IIS (Internet Information Services) security, 97-98, 195-196
interactive logon, 98
Internet Authentication Service (IAS), 110-111, 154-162
list of types, 97
network, 98
NTLM, 46
overview, 96-97
password-based, 125
Services for Macintosh (SFM), 169-170
single sign-on, 98
two-factor, 98-99
authorization
cross-forest, 61
IAS proxy, 161-162
URL, 194-195
Auto Update, 5, 68, 210
autoenrollment, 114-115
Automated System Recovery (ASR), 229, 237-238, 259
Automatic Proxy Configuration, 131
Automatic Updates client, 69
availability, 21
B
Backup (NTBackup.exe), 259
backup domain controllers (BDCs), 360-361
basic input/output system (BIOS), 313-314, 316-317
BDCs (backup domain controllers), 360-361
Best Economics, 20, 26
bidirectional affinity, 264-265
binary logging, 209
BIOS (basic input/output system), 313-314, 316-317
C
CAPICOM, 109
CardBus Wake on LAN, 146
Certificate Services, 114
certificate templates, 114-115
certificates, 112-115
CHKDSK tool, 230, 238-239, 262
classes, 40
clean installations
compared with upgrades, 309-311, 349-350
considerations, 318-319
client-side caching (CSC), 258
Clusdiag tool, 262
cluster installation wizard, 251
clustering services
bidirectional affinity, 264-265
Internet Group Management Protocol (IGMP), 265-266
multi-NIC support, 264
Network Load Balancing (NLB), 248
overview, 9, 247-250
server clusters. See server clusters
switch flooding, 265-266
upgrading from Windows 2000 Server, 33
upgrading from Windows NT Server, 28, 345
virtual clusters, 263-264
Windows Clustering. See Windows Clustering
CMAK (Connection Manager Administration Kit), 131-133
Collector tool, 388
COM+ services in ASP, 207-208
command shell, 83
command-line tools, 82-88, 123, 168-169
common language runtime, 22
communications
authentication, 169-170
command-line tools, 168-169
Connection Manager enhancements, 131-133
DHCP (Dynamic Host Configuration Protocol), 150-151
DNS (Domain Name System), 151-154
IAS (Internet Authentication Service), 154-162
Internet connectivity improvements, 133-135
IPSec (Internet Protocol Security), 162-165
legacy networking protocols, 167
legacy RPC protocols, 167-168
network access options, 135-137
network device support improvements, 144-147
network diagnostics features, 122-123
network location awareness, 123-124
network services support, 147
overview, 121-122
protocols, 137-144
Real Time Communication (RTC) Client APIs, 149-150
Routing and Remote Access enhancements, 126-130
Services for Macintosh (SFM), 169-170
storage area networks (SANs), 167
TAPI (Telephony API), 148
TAPI Service Providers (TSP), 148
upgrading from Windows NT Server, 345
Windows Sockets Direct (WSD), 167
WINS (Windows Internet Name Service), 154
Winsock API, 166
wireless LAN enhancements, 124-126
compatibility
drivers, 313-314
hardware, 313-318, 347-348
testing for application. See testing for application compatibility
Compatibility Administrator tool, 388, 394-395
Compatibility Analyzer tool, 388-390
Compatibility Database Installer (Sdbinst.exe), 399-400
configuration data, 38
configuration management, 50-55, 63-65
Configure Your Server (CYS) application, 182
Configure Your Server Wizard, 6, 50-51
Connection Manager, 131-133, 174
Connection Manager Administration Kit (CMAK), 131-133
Connection Manager Administration Kit (CMAK) Wizard, 132
Connection Manager Favorites, 131
connectivity, 20, 24-25
controlling access, 99-102
convergence, 289-290
Credential Manager, 58, 62
Credential Manager Key Ring feature, 136
Critical Update Notification, 68
cross-certifications, 62
cross-forest authentication, 60-62, 156
cross-forest authorization, 61
CSC (client-side caching), 258
CYS (Configure Your Server) application, 182
D
data protection, 106-111
Datacenter Edition, 4, 10-18
Datacenter Joint Support Queue, 12
Defragmenter tool, 229, 239
delegated authentication, 195-196
dependability, 19-22
deploying Windows Server 2003
clean installation considerations, 318-319
clean installations compared with upgrades, 309-311
configuring networking, 337-340
DHCP (Dynamic Host Configuration Protocol), 338
disk partitions, 332-335
DNS (Domain Name System), 339-340
dynamic disks, 335-337
file systems, 328-337
files to review, 317-318
hardware compatibility, 313-318
installing multiple operating systems, 321-328
IP addresses, 338-339
licensing modes, 319-321
mirror sets, 336-337
name resolution, 339-340
new installation considerations, 318-319
new installations compared with upgrades, 309-311
overview, 309
Remote Installation Services (RIS), 334
server planning, 340-341
static IP addresses, 339
stripe sets, 336-337
system requirements, 311-313
TCP/IP, 337-338
tools, 88-92
upgrades compared with new installations, 309-311
volume sets, 336-337
WINS (Windows Internet Name Service), 339-340
Deployment Kit, 368
deployment tools, 88-92
Designed for Windows logo program, 403-404
DFS. See Distributed File System
DHCP (Dynamic Host Configuration Protocol), 150-151, 270, 338
digital signatures, 108
directory data store, 38-39
DirSync control, 53
Disk Defragmenter tool, 229, 239
disk partitions, 332-335
Distributed File System (DFS)
Active Directory, 45
file services, 229-230, 233-234
upgrading from Windows NT Server, 30
Windows Clustering, 258
DNS (Domain Name System)
Active Directory, 51-54
deploying Windows Server 2003, 339-340
improvements in Windows Server 2003, 151-154
IPv6 (Internet Protocol version 6), 141
upgrading from Windows 2000 Server, 386
upgrading from Windows NT Server, 357-358
domain controllers
directory data store, 38
global catalog, 42
overload prevention, 49
upgrading from Windows 2000 Server, 384
upgrading from Windows NT Server, 351, 366-368
domain data, 38
Domain Name System. See DNS
domain rename, 54
domains
managing, 56
trusts, 369-371
upgrades, 54
upgrading from Windows 2000 Server, 384-386
upgrading from Windows NT Server, 364-365
driver compatibility checking, 313-314
dynamic disks, 335-337
Dynamic Host Configuration Protocol (DHCP), 150-151, 270, 338
Dynamic Update, 68, 317-318
E
EAP (Extensible Authentication Protocol), 158, 161
EAP-TLS (Extensible Authentication Protocol with Transport Level Security), 157
effective permissions, 101
EFS. See Encrypting File System
Emergency Management Services, 33
Encapsulating Security Payload (ESP), 129
Encrypting File System (EFS)
file services, 230
multiple operating systems, 327-328
overview, 106-108
upgrading from Windows NT Server, 30
Windows Clustering, 258
Enterprise Edition
features, 9-10, 14-17
hardware requirements, 17-18
overview, 4, 8
upgrading from Windows NT Server, 344
Enterprise UDDI services, 25
ESP (Encapsulating Security Payload), 129
Exchange, 362
ExecuteURL, 204-205
extending schema, 41
Extensible Authentication Protocol (EAP), 158, 161
Extensible Authentication Protocol with Transport Level Security (EAP-TLS), 157
external trusts, 370
F
failover, 273-279
Fast Cache, 220-221
Fast Reconnect, 221-222
Fast Recovery, 221
Fast Start, 220
Fast Streaming, 220
FAT and FAT32 file systems, 328-331
features
Datacenter Edition, 12-13
Enterprise Edition, 9-10
operating systems compared, 14-17
Standard Edition, 5-7
File Replication service (FRS), 30, 230
file services
ASR (Automated System Recovery), 229, 237-238
benefits, 228-230
CHKDSK tool, 230, 238-239
Disk Defragmenter tool, 229, 239
Distributed File System (DFS), 229-230, 233-234
Encrypting File System (EFS), 230
File Replication service (FRS), 230
GUID partition table (GPT), 229
infrastructure improvements, 230-235
new features, 228-230
Offline Files, 235-236
overview, 227-228
remote document sharing, 228
Shadow Copy Restore, 235
total cost of ownership (TCO), 22, 227-228, 230, 236-238
upgrading from Windows NT Server, 345
Virtual Disk Service (VDS), 231
Volume Shadow Copy service, 232-233
WebDAV Redirector, 228, 236
file systems, 328-337
File Transfer Protocol (FTP), 209-210
firewalls, 129
forest trusts, 59, 118
forests
cross-forest authentication, 60-62
cross-forest authorization, 61
trusts, 59, 118
upgrades, 54
upgrading from Windows 2000 Server, 385-386
upgrading from Windows NT Server, 359, 365-366
FRS (File Replication service), 30, 230
FTP (File Transfer Protocol), 209-210
Fusion, 207
G
global catalog, 42-43, 50
global enterprises, 294-295
global interceptors, 205
GPMC. See Group Policy Management Console
GPT (GUID partition table), 229
granular compression, 208
Group Policy
64-bit support, 50
IntelliMirror. See IntelliMirror
managing, 55-59
network connection enhancements, 134
Terminal Services, 177
Group Policy Management Console (GPMC)
IntelliMirror, 72
overview, 23, 55-56
upgrading from Windows 2000 Server, 31
upgrading from Windows NT Server, 26-27
Group Policy Modeling, 57
Group Policy Results, 56
GUID partition table (GPT), 229
H
hardware abstraction layer (HAL), 316
hardware compatibility
deploying Windows Server 2003, 313-318
upgrading from Windows NT Server, 347-348
hardware requirements
Enterprise Edition, 17-18
MUI (Multilingual User Interface), 301
Standard Edition, 17-18
upgrading from Windows 2000 Server, 381
upgrading from Windows NT Server, 346-348
Web Edition, 17-18
Windows Server 2003, 17-18
headless server support, 33
Hot-Add Memory feature, 9
HSE_REQ_EXEC_URL, 204
HSE_REQ_REPORT_UNHEALTHY, 206
HSE_REQ_SEND_CUSTOM_ERROR, 206
HTTP.sys, 183-184, 200-201
Hyper-Threading technology, 12
I
IAS (Internet Authentication Service), 110-111, 154-162
ICF (Internet Connection Firewall), 5, 133-134
IEEE 802.1x authentication, 154-155
IEEE 1394, 136-137
IGMP (Internet Group Management Protocol), 138-139, 265-266
IIS (Internet Information Services)
64-bit support, 208
application pools, 185-186, 202
ASP template cache, 202
ASP.NET, 204
Auto Update, 210
binary logging, 209
caching of dynamic content, 205-206
caching policy, 202
COM+ services in ASP, 207-208
command-line administration, 200
custom errors, 206
delegated authentication, 195-196
ExecuteURL, 204-205
FTP (File Transfer Protocol), 209-210
Fusion, 207
global interceptors, 205
granular compression, 208
HSE_REQ_EXEC_URL, 204
HSE_REQ_REPORT_UNHEALTHY, 206
HSE_REQ_SEND_CUSTOM_ERROR, 206
HTTP.sys, 183-184, 200-201
IIS 5.0 isolation mode, 190-191
IIS WMI provider, 199
IPv6 (Internet Protocol version 6), 208
isolation improvements, 186
large-memory support, 203
locked-down servers, 191-193
logging improvements, 209
manageability features, 196-200
memory support, 203
metabase, 196-199
NetworkService, 193
overview, 5, 22, 181
Passport, 194
patch management, 210-211
performance, 200-204
platform improvements, 208-210
programmatic features, 204-208
quality of service (QoS), 208-209
rapid-fail protection, 189
Remote Administration (HTML) Tool, 200
ReportUnhealthy, 206
request processing architecture, 182-184
security, 97-98, 191-196
site scalability, 203-204
SSL (Secure Sockets Layer), 193-194
Unicode ISAPI, 207
upgrading from Windows 2000 Server, 31-32
upgrading from Windows NT Server, 27-28, 345
URL authorization, 194-195
UTF-8 logging support, 209
VectorSend, 205-206
Web application server role, 181-182
Web farms, 196
Web gardens, 187-188, 202
Web-based administration, 200
Windows Update, 210
worker process identity, 193
worker process isolation mode, 185-191
worker process restarts, 190
WWW Service Administration, 184
XML metabase, 196-199
IIS 5.0 isolation mode, 190-191
IIS WMI provider, 199
IKE (Internet Key Exchange), 129
indexing attributes, 40-41
Infrared Data Association (IrDA), 147
IntelliMirror
computer setup process, 81-82
Group Policy Management Console (GPMC), 72
overview, 70-72
policy management, 72-74
Pre-Boot eXecution Environment (PXE), 82
Remote Installation, 82
Resultant Set of Policy (RSoP), 72-73
software management, 78-81
user data management, 74-76
user settings management, 76-77
Windows Management Instrumentation (WMI), 72-73
interactive logon, 98
international enterprises, 294-295
Internet Authentication Service (IAS), 110-111, 154-162
Internet Connection Firewall (ICF), 5, 133-134
Internet connectivity, 133-134
Internet Group Management Protocol (IGMP), 138-139, 265-266
Internet Information Services. See IIS
Internet Key Exchange (IKE), 129
Internet Protocol Helper (IP Helper), 142
Internet Protocol over IEEE 1394 (IP/1394), 136-137
Internet Protocol Security (IPSec), 109-110, 141-142, 162-165
Internet Protocol version 6 (IPv6), 140-143, 208
Inter-Site Topology Generator (ISTG), 51
Intrasite Automatic Tunnel Addressing Protocol (ISATAP), 140
IP addresses, 338-339
IP Helper (Internet Protocol Helper), 142
IP/1394 (Internet Protocol over IEEE 1394), 136-137
IPSec (Internet Protocol Security), 109-110, 141-142, 162-165
IPv6 (Internet Protocol version 6), 140-143, 208
IrCOMM modem driver for IrDA, 147
IrDA (Infrared Data Association), 147
ISATAP (Intrasite Automatic Tunnel Addressing Protocol), 140
ISTG (Inter-Site Topology Generator), 51
J-K
Joint Support Queue, 12
KCC (Knowledge Consistency Checker), 45
Kerberos, 29, 254-255
kernel-mode processing of Web traffic, 143
Knowledge Consistency Checker (KCC), 45
L
L2TP/IPSec, 129-130
languages, support for multiple, 293-305
LDAP (Lightweight Directory Access Protocol), 47, 50
licensing modes, 319-321
Lightweight Directory Access Protocol (LDAP), 47, 50
load balancing. See Network Load Balancing
logs
IIS (Internet Information Services) logging improvements, 209
upgrading from Windows 2000 Server, 382-383
M
Manage Your Server Wizard, 6
management services
Emergency Management Services, 33
overview, 23, 63
total cost of ownership (TCO), 63-64, 91
upgrading from Windows NT Server, 345
managing
Active Directory, 46-47
configurations, 63-65
domains, 56
Group Policy, 55-59
security, 65-70
mass storage drivers, 316
member servers
upgrading from Windows 2000 Server, 383-384
upgrading from Windows NT Server, 350
Merger tool, 389
Message Queuing (MSMQ), 48, 256
metabase, 196-199
metadirectory services support, 9
Microsoft Active Directory. See Active Directory
Microsoft cluster technologies, 248-249
Microsoft clustering services. See clustering services
Microsoft DHCP (Dynamic Host Configuration Protocol), 150-151, 270, 338
Microsoft Distributed Transaction Coordinator (MSDTC), 255-256
Microsoft Dynamic Host Configuration Protocol (DHCP), 150-151, 270, 338
Microsoft Exchange, 362
Microsoft Group Policy Management Console. See Group Policy Management Console
Microsoft Message Queuing (MSMQ), 48, 256
Microsoft Metadirectory Services (MMS), 9
Microsoft .NET Framework, 27-28, 32, 214-215
Microsoft Software Update Services (SUS), 23, 68-70
Microsoft user authentication module (MSUAM), 169-170
Microsoft Windows Media Services, 7, 25, 219-226, 346
Microsoft Windows Server 2003. See Windows Server 2003
Microsoft Windows Server 2003 Datacenter Edition, 4, 10-18
Microsoft Windows Server 2003 Enterprise Edition. See Enterprise Edition
Microsoft Windows Server 2003 Standard Edition. See Standard Edition
Microsoft Windows Server 2003 Web Edition. See Web Edition
Microsoft Windows Update, 67-68, 210
mirror sets, 336-337
MMS (Microsoft Metadirectory Services), 9
MSDTC (Microsoft Distributed Transaction Coordinator), 255-256
MSMQ (Microsoft Message Queuing), 48, 256
MSUAM (Microsoft user authentication module), 169-170
MUI (Multilingual User Interface), 293, 296-304
multibooting, 327
multicast heartbeats, 257
multilingual support, 293-305
Multilingual User Interface (MUI), 293, 296-304
multinational enterprises, 296-298
multi-NIC support, 264
multiple operating systems, 321-328
N
name resolution, 339-340
namespaces, 357-358
NAT (Network Address Translator), 128, 129
NDIS (Network Driver Interface Specification), 145, 283
.NET Framework, 27-28, 32, 214-215
.NET Server 2003. See Windows Server 2003
.NET Server 2003 Datacenter Edition, 4, 10-18
.NET Server 2003 Enterprise Edition. See Enterprise Edition
.NET Server 2003 Standard Edition. See Standard Edition
.NET Server 2003 Web Edition. See Web Edition
Netdiag.exe, 123
Netsh command, 138
Netsh Diag commands, 122
Netstat tool, 138
Network Address Translator (NAT), 128, 129
network authentication, 98
Network Bridge, 135-136
Network Diagnostics Web page, 122
Network Driver Interface Specification (NDIS), 145, 283
Network Load Balancing (NLB)
algorithm, 286-289
application state, 281-282
architecture, 280-290
bidirectional affinity, 264-265
convergence, 289-290
distribution of cluster traffic, 284-286
features, 262-266
Internet Group Management Protocol (IGMP), 265-266
L2TP/IPSec traffic support, 130
load balancing algorithm, 286-289
multi-NIC support, 264
NDIS (Network Driver Interface Specification), 283
Network Load Balancing Manager, 263
overview, 248, 280-281
remote control, 290
switch flooding, 265-266
virtual clusters, 263-264
Network Load Balancing Manager, 263
networks
access options, 135-137
all-user remote access credential feature, 136
authentication, 98
connection enhancements, 134-135
Credential Manager Key Ring feature, 136
data protection, 109-111
deploying Windows Server 2003, 337-340
device driver enhancements, 146
device support improvements, 144-147
diagnostics features, 122-123
IEEE 1394, 136-137
Internet Protocol over IEEE 1394 (IP/1394), 136-137
legacy networking protocols, 167
location awareness, 123-124
media support, 146
services support, 147
upgrading from Windows NT Server, 345
Windows Clustering, 256-257
NetworkService, 193
New Trust Wizard, 370
NLB. See Network Load Balancing
nontransitive trusts, 369-370
Non-Uniform Memory Access (NUMA), 10
NT file system (NTFS), 328-334
NTBackup.exe (Backup), 259
NTFS (NT file system), 328-334
NTLM version 2 authentication, 46
NUMA (Non-Uniform Memory Access), 10
O
object auditing, 102
object classes, 40
object identifiers (OIDs), 158
object-based access control, 99-102
Offline Files, 235-236
OIDs (object identifiers), 158
one-way trusts, 117
P
PAE (Physical Address Extension), 12
Passport, 47-48, 194
password-based authentication, 125
PDCs (primary domain controllers), 359-360
PEAP (Protected Extensible Authentication Protocol), 125
Per Device or Per User licensing mode, 319-321
Per Server licensing mode, 319-321
performance
Active Directory, 48-50
IIS (Internet Information Services), 200-204
permanent virtual circuit (PVC), 144
permissions, 99-101
Physical Address Extension (PAE), 12
PKI (public key infrastructure), 29, 111-115
Point-to-Point Protocol over Ethernet (PPPoE), 128, 134-135
PortProxy, 140-141
PPPoE (Point-to-Point Protocol over Ethernet), 128, 134-135
Pre-Boot eXecution Environment (PXE), 82
primary domain controllers (PDCs), 359-360
print services, 22, 241-246, 345
productivity, 20, 22-24, 46-48
Protected Extensible Authentication Protocol (PEAP), 125
protocols
IPv6 (Internet Protocol version 6), 140-143, 208
legacy networking, 167
legacy RPC, 167-168
quality of service (QoS), 143-144
TCP/IP, 137-140, 337-338
trusts, 369
public key infrastructure (PKI), 29, 111-115
public key policies, 115
publishing applications, 80
PVC (permanent virtual circuit), 144
PXE (Pre-Boot eXecution Environment), 82
Q-R
quality of service (QoS), 143-144, 208-209
RADIUS (Remote Authentication Dial-In User Service), 110-111, 156-159
rapid-fail protection, 189
RDC (Remote Desktop Connection), 172-176, 400
RDU (Remote Desktop Users) group, 178-179
Real Time Communication (RTC) Client APIs, 149-150
realm trusts, 370
remote administration, 92-94
Remote Administration mode. See Remote Desktop for Administration
Remote Administration (HTML) Tool, 200
Remote Assistance, 6-7
Remote Authentication Dial-In User Service (RADIUS), 110-111, 156-159
Remote Desktop Connection (RDC), 172-176, 400
Remote Desktop for Administration, 6, 92-94, 176-177
Remote Desktop Users (RDU) group, 178-179
remote document sharing, 228
Remote Installation, 82
Remote Installation Services (RIS), 89, 334, 367
remote management tools, 93
Remote NDIS, 145
Remote Procedure Call (RPC), 142, 167-168
replication
Active Directory, 43-45, 55
global catalog, 50
group membership, 50
ReportUnhealthy, 206
restore, 259
Resultant Set of Policy (RSoP), 31, 72-73
RIS (Remote Installation Services), 89, 334, 367
roaming users, 302
Routing and Remote Access, 110, 126-130
Routing and Remote Access Server Setup Wizard, 126-127
Routing And Remote Access snap-in, 126
RPC (Remote Procedure Call), 142, 167-168
RSoP (Resultant Set of Policy), 31, 72-73
RTC (Real Time Communication) Client APIs, 149-150
S
SANs (storage area networks), 12-13, 167, 257, 259
SAs (security associations), 129
scalability
Active Directory, 48-50
overview, 21
schema
Active Directory Schema, 39-41
attributes, 40
classes, 40
data, 39
deactivation of attributes and classes, 54
extending, 41
indexing attributes, 40-41
object classes, 40
Sdbinst.exe (Compatibility Database Installer), 399-400
Secure Sockets Layer (SSL), 193-194
security
access control, 99-102
Active Directory, 39, 59-62, 105-106
analysis, 103
auditing, 102-105
authentication. See authentication
Auto Update, 68
autoenrollment, 114-115
Automatic Updates client, 69
benefits, 96
CAPICOM, 109
Certificate Services, 114
certificates, 112-115
Critical Update Notification, 68
data protection, 106-111
descriptors, 99-100
digital signatures, 108
Dynamic Update, 68
EFS. See Encrypting File System
IIS (Internet Information Services), 97-98, 191-196
IntelliMirror. See IntelliMirror
Internet Authentication Service (IAS), 110-111, 154-162
IPSec (Internet Protocol Security), 109-110, 141-142, 162-165
Kerberos, 29, 254-255
managing, 65-70
object auditing, 102
object-based access control, 99-102
overview, 21-22, 95-96, 218
permissions, 99-101
PKI (public key infrastructure), 29, 111-115
policies, 102-103
public key policies, 115
smart card support, 115
software restriction policies, 66-67
Software Update Services (SUS), 23, 68-70
templates, 65-66
Terminal Services, 178-179
upgrading from Windows NT Server, 345
user rights, 102
Web enrollment pages, 115
Windows Update, 67-68
security associations (SAs), 129
Security Configuration and Analysis snap-in, 103
Security Configuration Manager tool, 102-103
security descriptors, 99-100
security identifiers (SIDs), 61
Security Policy Editor, 179
server clusters
architecture, 266
dependencies, 271-273
Dynamic Host Configuration Protocol (DHCP), 270
failover, 273-279
installation process, 252-255
local storage devices, 266-268
media connections, 266-268
overview, 248-249
preferred node lists, 279
resources, 255-256, 270-273
shared-nothing clusters, 266
virtual servers, 268-270
Windows Management Instrumentation (WMI), 261
server-side playlists, 222-223
Services for Macintosh (SFM), 169-170
Session Directory, 10, 179
SFM (Services for Macintosh), 169-170
Shadow Copy Restore, 235
shared-nothing clusters, 266
SIDs (security identifiers), 61
single sign-on, 98
smart card support, 115, 175
snap-ins. See also tools
Active Directory Schema snap-in, 39-41
certificates snap-in, 112
Routing And Remote Access snap-in, 126
Security Configuration and Analysis snap-in, 103
Wireless Monitor snap-in, 125
software restriction policies, 66-67, 92
Software Update Services (SUS), 23, 68-70
SSL (Secure Sockets Layer), 193-194
stand-alone servers, 351
Standard Edition
features, 5-7, 14-17
hardware requirements, 17-18
overview, 3
static IP addresses, 339
static routers, 142-143
storage area networks (SANs), 12-13, 167, 257, 259
storage management
upgrading from Windows NT Server, 346
Windows Server 2003, 23
stripe sets, 336-337
SUS (Software Update Services), 23, 68-70
switch flooding, 265-266
system requirements
deploying Windows Server 2003, 311-313
upgrading from Windows NT Server, 346-348
T
TAPI (Telephony Application Programming Interface), 148
TAPI Service Providers (TSP), 148
TCO. See total cost of ownership
TCP/IP (Transmission Control Protocol/Internet Protocol), 137-140, 337-338
TDOs (Trusted domain objects), 369
Telephony Application Programming Interface (TAPI), 148
templates
certificate, 114-115
security, 65-66
Terminal Server, 7, 48, 59, 346
Terminal Server License Manager, 178
Terminal Services
128-bit encryption, 179
ADSI (Active Directory Services Interface), 178
benefits, 171-172
client features, 172-176
Group Policy, 177
MUI (Multilingual User Interface), 298-299, 301
overview, 23, 171
Remote Administration mode. See Remote Desktop for Administration
Remote Desktop Users (RDU) group, 178-179
security, 178-179
server features, 176-179
Session Directory, 10, 179
upgrading from Windows NT Server, 28
Windows Management Instrumentation (WMI), 178
Terminal Services Connection Configuration (TSCC), 178-179
Terminal Services Manager, 178
testing for application compatibility. See also Application Compatibility Toolkit
application compatibility checklist, 404-407
collecting application inventories, 388-391
compatibility testing during development, 400-404
creating compatibility fixes, 395-399
Designed for Windows logo program, 403-404
distributing compatibility fixes, 399-400
overview, 387-388
remote installations, 400
testing for compatibility, 391-395
testing for logo compliance, 403-404
upgrading from Windows NT Server, 375-376
third-party administration tools, 93
tools. See also snap-ins
Adprep tool (Active Directory Preparation tool), 54, 83, 367, 378-379
Analyzer tool, 387, 389
Application Compatibility Toolkit. See Application Compatibility Toolkit
Application Verifier (AppVerifier) tool, 6, 387, 400-404
CHKDSK tool, 230, 238-239, 262
Clusdiag tool, 262
Collector tool, 388
command-line tools, 82-88, 123, 168-169
Compatibility Administrator tool, 388, 394-395
Compatibility Analyzer tool, 388-390
Compatibility Database Installer (Sdbinst.exe), 399-400
deployment tools, 88-92
Disk Defragmenter tool, 229, 239
Merger tool, 389
Netstat tool, 138
Remote Administration (HTML) Tool, 200
Remote Installation Services (RIS), 89
remote management tools, 93
Security Configuration Manager tool, 102-103
third-party administration tools, 93
upgrading from Windows 2000 Server, 382-383
User State Migration Tool (USMT), 89-91
Windows Installer, 91-92
Winnt32 tool, 367
total cost of ownership (TCO), 295
Active Directory, 37
application services, 213, 216
File Replication service (FRS), 230
file services, 22, 227-228, 230, 236-238
management services, 63-64, 91
print services, 22
Windows Installer, 91
Transmission Control Protocol/Internet Protocol (TCP/IP), 137-140, 337-338
triggers, 256
troubleshooting Windows Clustering, 261-262
Trusted domain objects (TDOs), 369
trusts
direction, 116
domains, 369-371
external, 370
forests, 118
monitoring, 48, 55
nontransitive, 369-370
protocols, 369
realm, 370
relationships, 117
types, 116-117
TSCC (Terminal Services Connection Configuration), 178-179
TSP (TAPI Service Providers), 148
two-factor authentication, 98-99
two-way trusts, 117
U
UDDI (Universal Description, Discovery, and Integration), 25
UDP (User Datagram Protocol), 129
Unicode ISAPI, 207
Universal Description, Discovery, and Integration (UDDI), 25
upgrading from Windows 2000 Server
Active Directory, 30, 383-384
Adprep tool (Active Directory Preparation tool), 378-379
application directory partitions, 379-380, 386
compared with new installations, 309-311
DNS (Domain Name System), 386
domain controllers, 384
domains, 384-386
features of Windows Server 2003, 30-33
forests, 385-386
Group Policy Management Console (GPMC), 31
hardware requirements, 381
IIS (Internet Information Services), 31-32
logs, 382-383
member servers, 383-384
overview, 377
performing, 383-385
post-upgrade tasks, 385-386
preparing, 378-383
supported upgrade paths, 380-381
test tools, 382-383
upgrading from Windows NT Server
Active Directory, 26, 344, 352-356, 363-364, 373-375
Active Directory Installation Wizard, 356-357
Adprep tool (Active Directory Preparation tool), 367
Application Compatibility Toolkit (ACT), 375-376
application services, 344-345
BDCs (backup domain controllers), 360-361
best practices for Active Directory, 373-375
clustering services, 345
communications, 345
compared with new installations, 309-311, 348-350
Distributed File System (DFS), 30
DNS (Domain Name System), 357-358
domain controllers, 351, 366-368
domain trust, 369-371
domains, 364-365
Encrypting File System (EFS), 30
Exchange, 362
existing application support, 372-373
external trusts, 370
features of Windows Server 2003, 26-30, 344-346
File Replication service (FRS), 30
file services, 345
forests, 359, 365-366
group conversions, 361-363
hardware compatibility, 347-348
hardware requirements, 346-348
IIS (Internet Information Services), 27-28, 345
management services, 345
member servers, 350
namespaces, 357-358
networks, 345
New Trust Wizard, 370
overview, 343
PDCs (primary domain controllers), 359-360
print services, 345
realm trusts, 370
Remote Installation Services (RIS), 367
security, 345
server roles, 350-351
stand-alone servers, 351
storage management, 346
system requirements, 346-348
Terminal Server, 346
Trusted domain objects (TDOs), 369
Windows Media Services, 346
Windows Server 2003 compared to Windows NT, 371-372
Windows NT domains, 356-364
Winnt32 tool, 367
URL authorization, 194-195
User Datagram Protocol (UDP), 129
user rights, 102
User State Migration Tool (USMT), 89-91
UTF-8 logging support, 209
utilities. See tools
V
VDS (Virtual Disk Service), 231
VectorSend, 205-206
Virtual Channels, 175
virtual clusters, 263-264
Virtual Disk Service (VDS), 231
Virtual Private Network (VPN) connections, 129
virtual servers, 268-270
volume mount points, 257-258
volume sets, 336-337
Volume Shadow Copy service, 27, 31, 232-233
VPN (Virtual Private Network) connections, 129
W
WAB (Windows Address Book), 46
Wake on LAN (WOL), 146-147
Web application server role, 181-182
Web Edition
features, 14-17
hardware requirements, 17-18
overview, 4, 13-14
VPN (Virtual Private Network) connections, 129
Web enrollment pages, 115
Web farms, 196
Web gardens, 187-188, 202
WebDAV Redirector, 228, 236
WHQL (Windows Hardware Quality Labs), 11
Windows 2000 Server. See upgrading from Windows 2000 Server
Windows Add/Remove Components application, 182
Windows Address Book (WAB), 46
Windows Clustering. See also clustering services
64-bit support, 250
Active Directory, 254
Automated System Recovery (ASR), 259
Backup (NTBackup.exe), 259
bidirectional affinity, 264-265
CHKDSK tool, 262
client-side caching (CSC), 258
Distributed File System (DFS), 258
Encrypting File System (EFS), 258
installations, 252-255
Internet Group Management Protocol (IGMP), 265-266
Kerberos, 254-255
Microsoft Distributed Transaction Coordinator (MSDTC), 255-256
MSMQ (Microsoft Message Queuing) triggers, 256
multicast heartbeats, 257
multi-NIC support, 264
network enhancements, 256-257
Network Load Balancing (NLB), 262-266
NTBackup.exe (Backup), 259
operations, 259-261
overview, 250-252
preferred node lists, 279
resources, 255-256
restore, 259
server clusters. See server clusters
storage, 257-259
storage area networks (SANs), 257, 259
switch flooding, 265-266
triggers, 256
troubleshooting, 261-262
virtual clusters, 263-264
volume mount points, 257-258
Windows Management Instrumentation (WMI), 261
Windows Datacenter Program, 10-12
Windows Hardware Quality Labs (WHQL), 11
Windows Installer, 91-92
Windows Internet Name Service (WINS), 154, 340
Windows Management Instrumentation (WMI)
command-line management, 29, 32
filtering, 58-59
IIS WMI provider, 199
IntelliMirror, 72-73
Resultant Set of Policy (RSoP), 72-73
Terminal Services, 178
trust monitoring, 48
Windows Clustering, 261
Windows Media Services, 7, 25, 219-226, 346
Windows Server 2003
Active Directory. See Active Directory
application services, 213-218
availability, 21
benefits, 19-20
clustering services. See clustering services
command-line tools, 82-88
common language runtime, 22
communications. See communications
connectivity, 24-25
Datacenter Edition, 4, 10-18
dependability, 20-22
deploying. See deploying Windows Server 2003
Deployment Kit, 368
deployment tools, 88-92
Enterprise Edition. See Enterprise Edition
Enterprise UDDI services, 25
file services. See file services
Group Policy Management Console (GPMC), 23
hardware requirements, 17-18
IIS. See IIS
management services, 23. See management services
multilingual support, 293-305
multi-NIC support, 264
networking, 24
overview, 3-4
print services, 22, 241-246, 345
productivity, 22-24
scalability, 21
security. See security
Software Update Services (SUS), 23
Standard Edition. See Standard Edition
storage management, 23
Terminal Services. See Terminal Services
Web Edition. See Web Edition
Windows Media Services, 219-226
Windows Server 2003 compared to Windows NT, 371-372
XML Web services, 24, 213-214
Windows Server 2003 Deployment Kit, 368
Windows NT Server
domains, 356-364
external trusts, 370-371
multibooting, 327
nontransitive trusts, 369-370
upgrading from. See upgrading from Windows NT Server
Windows Server 2003 compared to Windows NT, 371-372
Windows Sockets, 12-13, 140
Windows Sockets Direct (WSD), 167
Windows Update, 67-68, 210
Winnt32 tool, 367
WINS (Windows Internet Name Service), 154, 340
Winsock API, 166
wireless LAN enhancements, 124-126
Wireless Monitor snap-in, 125
wizards
Active Directory Installation Wizard, 356-357
cluster installation wizard, 251
Configure Your Server Wizard, 6, 50-51
Connection Manager Administration Kit (CMAK) Wizard, 132
Manage Your Server Wizard, 6
New Trust Wizard, 370
Routing and Remote Access Server Setup Wizard, 126-127
WMI. See Windows Management Instrumentation
WMI command-line (WMIC), 29, 32, 87-88
WOL (Wake on LAN), 146-147
worldwide enterprises, 294-295
WSD (Windows Sockets Direct), 167
WWW Service Administration, 184
X
X.509 certificates, 112
XML metabase, 196-199
XML Web services, 24, 213-214
Last Updated: January 9, 2003
|
