| PART I: DEPLOYMENT | 1 |
| CHAPTER 1: Planning Deployments | 3 |
| Overview of the Deployment Process | 4 |
| Defining Project Scope and Objectives | 4 |
| Assessing Your Current Environment | 5 |
| Testing and Piloting the Deployment Plan | 5 |
| Rolling Out Your Deployment | 6 |
| Mapping Windows XP Professional to Your Business Needs | 7 |
| Assessing Your Current Configuration | 11 |
| Hardware Requirements and Compatibility | 12 |
| Application Compatibility | 15 |
| Using Check Upgrade Only Mode | 19 |
| Network Infrastructure | 20 |
| Planning Your Preferred Client Configuration | 22 |
| Determining Desktop Management Strategies | 22 |
| Determining a Client Connectivity Strategy | 25 |
| Determining Security Strategies | 28 |
| Determining Client Administration and Configuration Strategies | 31 |
| Planning Installations | 38 |
| Upgrading vs. Clean Installation | 38 |
| Choosing an Installation Method | 40 |
| Determining How Many Operating Systems to Install | 41 |
| Planning for Dynamic Update | 45 |
| Planning for Windows Product Activation | 46 |
| Additional Resources | 47 |
| CHAPTER 2: Automating and Customizing Installations | 49 |
| Overview of Automated and Customized Installations | 50 |
| Design an Automated and Customized Installation | 51 |
| Windows Product Activation | 52 |
| Dynamic Update | 53 |
| Choosing an Automated Installation and Customization Tool | 54 |
| Unattended Installation | 57 |
| System Preparation Tool | 58 |
| Remote Installation Services | 60 |
| Systems Management Server | 61 |
| Where to Find the Tools and Related Information | 62 |
| Preparing for the Installations | 63 |
| Verify Hardware and Software Requirements | 63 |
| Create a Distribution Folder | 64 |
| Customizing the Installations | 68 |
| Using Windows XP Professional Customization Tools | 71 |
| Creating an Answer File Manually | 87 |
| Customizing Components and Features | 88 |
| Installing the Operating System | 108 |
| Unattended Installations | 108 |
| Sysprep | 113 |
| RIS | 126 |
| Additional Resources | 135 |
| CHAPTER 3: Multilingual Solutions for Global Business | 137 |
| Overview of Multilingual Solutions for Global Business | 138 |
| New Multilingual Features in Windows XP Professional | 140 |
| Multilingual Features in Windows XP Professional | 141 |
| Built-In Language Support | 142 |
| Locales | 143 |
| Standards and Formats (User Locales) | 143 |
| Input Method Editors, Input Languages, and Keyboard Layouts | 143 |
| Unicode and Code Pages | 145 |
| Language for Non-Unicode Programs (System Locale) | 146 |
| User Interface Language Options (MUI Pack Only) | 146 |
| Windows XP Professional Language Versions | 146 |
| Planning a Multilingual Deployment | 149 |
| Determining Language and Regional Requirements | 149 |
| Assessing Hardware Requirements for Multilingual Support | 150 |
| Determining Roaming User Needs | 152 |
| Upgrading from Earlier Versions of Windows | 152 |
| Deploying a Single Global Image | 153 |
| Creating Regional Builds | 154 |
| Configuring Desktops | 155 |
| Configuring Regional and Language Options | 155 |
| Configuring Localized Content | 157 |
| Simplifying Multiple Language Access on Desktops | 158 |
| Entering Special Characters or Code Points | 159 |
| Controlling Desktops by Using Group Policy Settings | 159 |
| Using Unattended Installations and Silent Configurations | 159 |
| Creating Unattended Installations | 160 |
| Using Silent Configurations | 170 |
| Using Windows Installer Packages for On–Demand Installations (MUI Pack Only) | 171 |
| Supporting Multilingual Applications | 172 |
| Supporting World-Ready Applications | 172 |
| Supporting Non-Unicode Applications | 172 |
| Determining the Compatibility of Your Current Applications | 173 |
| Developing Multilingual Applications | 174 |
| Developing Multilingual Web Sites | 174 |
| Ensuring Multilingual Compatibility | 175 |
| Multilingual Compatibility with Active Directory Objects, Clients, and Domain Controllers | 175 |
| Using Office XP and Windows XP Professional Together | 176 |
| Troubleshooting Multilingual Issues | 177 |
| Tools for Troubleshooting Multilingual Issues | 177 |
| Problems Inputting or Displaying Multiple Languages | 177 |
| Verifying Application Compatibility | 179 |
| Additional Resources | 180 |
| CHAPTER 4: Supporting Installations | 181 |
| The Setup Process | 182 |
| New Setup Features | 182 |
| Running Setup | 183 |
| Support Tools | 185 |
| Installing Service Packs and Hotfixes | 186 |
| Service Pack and Hotfix Setup Programs | 186 |
| Update Installation | 191 |
| Integrated Installation | 196 |
| Combination Installation | 198 |
| Uninstalling a Service Pack or Hotfix | 201 |
| Uninstalling a Service Pack | 201 |
| Uninstalling a Hotfix | 202 |
| Troubleshooting Windows XP Professional Setup | 202 |
| Additional Resources | 204 |
| PART II: DESKTOP MANAGEMENT | 205 |
| CHAPTER 5: Managing Desktops | 207 |
| Managing Desktops in Various Network Environments | 208 |
| Managing Desktops in an Active Directory Environment | 209 |
| Implementing IntelliMirror | 210 |
| Using IntelliMirror to Manage Desktops | 212 |
| Using Group Policy to Manage Desktops | 217 |
| Managing Desktops Without Active Directory | 227 |
| Roaming User Profiles and Logon Scripts | 228 |
| My Documents Redirection | 228 |
| Internet Explorer Maintenance | 228 |
| System Policy | 228 |
| Local Group Policy Object | 234 |
| Managing Desktops in UNIX and Novell Environments | 235 |
| Creating and Managing Standard Desktop Configurations | 237 |
| Additional Resources | 245 |
| CHAPTER 6: Managing Files and Folders | 247 |
| Overview of Managing Files and Folders | 248 |
| Managing Documents with Folder Redirection | 249 |
| Selecting Folders for Redirection | 250 |
| Tools for Configuring Folder Redirection | 251 |
| Using Offline Files | 252 |
| Implementing Offline Files | 253 |
| Reconnecting to the Network Resource | 255 |
| Synchronizing Files | 256 |
| Deleting Files and Folders | 258 |
| Group Policy Settings That Affect Offline Files | 259 |
| Sharing Files and Folders | 262 |
| Configuring Shared Folder Permissions | 263 |
| Simple Sharing and ForceGuest | 265 |
| Searching for Files, Folders, and Network Resources | 267 |
| Connecting to Network Shares | 268 |
| Using Indexing Service | 268 |
| Searching for Network Resources in an Active Directory Environment | 269 |
| Troubleshooting Files and Folders Management | 270 |
| Additional Resources | 277 |
| CHAPTER 7: Supporting Mobile Users | 279 |
| Overview of Windows XP Professional Support for Mobile Users | 280 |
| Setting Up a Portable Computer | 283 |
| Managing Hardware on Portable Computers | 285 |
| Hardware Profile Creation | 286 |
| Dynamic Device Configuration | 286 |
| Docking and Undocking | 287 |
| Configuring Power Management | 288 |
| ACPI Power Management | 288 |
| APM Power Management | 290 |
| Power Management Schemes and Options | 292 |
| Configuring Roaming User Profiles and Folder Redirection | 298 |
| Roaming User Profiles in Windows XP Professional | 299 |
| Combining Folder Redirection with Roaming User Profiles | 301 |
| Configuring Offline Files for Portable Computers | 304 |
| Configuring Files on a Network Share for Offline Use | 305 |
| Configuring Synchronization for Offline Files | 306 |
| Securing Offline Files | 309 |
| Managing the Offline Files Folder | 311 |
| Securing Portable Computers | 311 |
| Securely Undocking Portable Computers | 311 |
| Windows XP Professional BIOS Security | 313 |
| Using Infrared Hardware and Video Devices with Portable Computers | 313 |
| Wireless Networking | 315 |
| WPAN | 315 |
| WLAN | 317 |
| 802.11 Architecture | 318 |
| 802.11 Security | 320 |
| Windows XP Professional Wireless Support | 325 |
| Additional Resources | 330 |
| CHAPTER 8: Configuring Remote Desktop | 331 |
| Remote Desktop Overview | 332 |
| Remote Desktop Components | 332 |
| Remote Desktop Features | 334 |
| Deploying Remote Desktop | 336 |
| Installing Client Software | 338 |
| Establishing a Remote Desktop Session | 341 |
| Keyboard Shortcuts in a Remote Desktop Session | 344 |
| Security and Encryption in Remote Desktop | 345 |
| Using Group Policy with Remote Desktop | 347 |
| Troubleshooting Remote Desktop | 349 |
| Additional Resources | 350 |
| CHAPTER 9: Managing Devices | 351 |
| Plug and Play Overview | 352 |
| Device Manager | 354 |
| Plug and Play Device Detection | 358 |
| Allocating System Resources | 359 |
| Safe Removal of Plug and Play Devices | 361 |
| Device Drivers | 362 |
| Driver Signing | 363 |
| Windows Update | 364 |
| Enterprise-Wide Driver Update Using Windows Update | 365 |
| Driver Ranking | 366 |
| Windows Driver Protection | 366 |
| Driver Search Policy | 367 |
| Device Drivers in the Driver.cab File | 368 |
| Supported Hardware | 369 |
| Universal Serial Bus | 369 |
| IEEE 1394 | 374 |
| Other Bus Support | 376 |
| Other Hardware Support | 377 |
| Device Installation | 388 |
| Installing a Device in Windows XP Professional | 388 |
| Installing Drivers | 389 |
| Setting Plug and Play BIOS Settings | 390 |
| Configuring Device Settings | 391 |
| Using Hardware Profiles for Alternate Configurations | 393 |
| Changing Hardware Acceleration Settings for Digital Audio | 393 |
| Configuring the Display | 394 |
| Using Multiple Monitors | 398 |
| Configuring Communications Resources | 400 |
| Configuring Scanners and Cameras | 402 |
| Power Management | 403 |
| Power Management Features | 403 |
| Power Policy Overview | 404 |
| Using the Power Management Interface | 405 |
| Hardware Troubleshooting | 405 |
| Troubleshooting Hardware by Using Device Manager | 406 |
| Troubleshooting Network and Other Internal Adapters | 406 |
| Troubleshooting Modems | 408 |
| Troubleshooting Video Adapters | 409 |
| Troubleshooting a Universal Serial Bus Device | 411 |
| Troubleshooting IEEE 1394 Bus Devices | 414 |
| Additional Resources | 415 |
| CHAPTER 10: Managing Digital Media | 417 |
| Digital Media Components Overview | 418 |
| DirectX 8.1 | 418 |
| DVD Formats and Devices | 420 |
| Windows Media Technologies | 427 |
| Accelerated Graphics Port | 431 |
| Optimizing Workstations for Digital Media | 432 |
| Configuring Sounds and Video | 432 |
| Configuring Animations, Sounds, and Videos in Internet Explorer | 434 |
| Configuring Digital Media Devices | 435 |
| Using Digital Media | 436 |
| Playing Digital Media | 436 |
| Creating Digital Media | 438 |
| Troubleshooting Digital Media | 444 |
| Common Problems with Playing Digital Media | 445 |
| Troubleshooting Playback of WAV Files | 447 |
| Troubleshooting MIDI Files | 447 |
| Troubleshooting DVD | 448 |
| Troubleshooting an Audio CD | 448 |
| Troubleshooting CD Recording | 450 |
| Additional Resources | 451 |
| CHAPTER 11: Enabling Printing and Faxing | 453 |
| New to Enabling Printing and Faxing | 454 |
| Using Active Directory to Find Printers | 454 |
| Searching Active Directory Fields | 455 |
| Searching Active Directory Locations | 456 |
| Installing Printers | 457 |
| Installing Network and Internet Printers | 458 |
| Installing Local Printers | 459 |
| Printer Installation Considerations | 461 |
| Printing from Other Operating Systems | 462 |
| Printing Preferences | 464 |
| Print Queue Security Options | 465 |
| Scheduling Printing | 466 |
| Spooler Settings | 469 |
| Creating and Sending Print Jobs | 469 |
| Modifications to the Print Dialog Box | 470 |
| Printer Drivers | 470 |
| Image Color Management 2.0 | 471 |
| Methods of Sending Print Jobs | 471 |
| Monitoring and Managing Internet Print Jobs | 475 |
| Printing Concepts | 476 |
| Printer Pooling | 476 |
| Printing Processes | 476 |
| Printer Components | 478 |
| Printing Over the Internet | 482 |
| Print Job Formats | 483 |
| Troubleshooting Printing Problems | 484 |
| Common Printing Problems | 484 |
| Troubleshooting the Printing Process | 487 |
| Troubleshooting Printing from an Operating System Other Than Windows | 488 |
| Troubleshooting Font-Related Printing Problems | 488 |
| Faxing in Windows XP Professional | 489 |
| Configuring Fax Service | 489 |
| Additional Resources | 492 |
| CHAPTER 12: Disk Management | 493 |
| New in Disk Management | 494 |
| Disk Management Overview | 495 |
| Basic and Dynamic Disks and Volumes | 498 |
| Basic Disks | 498 |
| Basic Volumes | 498 |
| Dynamic Disks | 499 |
| Dynamic Volumes | 500 |
| Converting Basic Disks to Dynamic Disks | 502 |
| Managing Volumes During Windows XP Professional Setup | 509 |
| Preparing Multidisk Volumes for Windows XP Professional | 510 |
| Creating Volumes During Windows XP Professional Setup | 511 |
| Installing Windows XP Professional on Dynamic Disks | 513 |
| Adding, Moving, and Importing Disks | 514 |
| Adding New Disks to a Computer | 514 |
| Moving Disks | 514 |
| Importing Foreign Disks | 518 |
| Managing GPT Disks in Itanium-based Computers | 520 |
| Required Partitions on GPT Disks | 522 |
| Creating Partitions During Setup of Windows XP 64-Bit Edition | 525 |
| Remote Disk and Command-Line Disk Management | 526 |
| Managing Disks on Remote Computers | 527 |
| Managing Disks from the Command Line by Using DiskPart | 528 |
| Managing Disks from the Command Line by Using Fsutil | 532 |
| Guidelines for Maintaining Disks and Volumes | 533 |
| Additional Resources | 534 |
| CHAPTER 13: File Systems | 535 |
| New in File Systems | 536 |
| File Systems Overview | 537 |
| Advantages of Using NTFS | 538 |
| When to Use FAT | 540 |
| Cluster Size | 541 |
| Size Limitations in NTFS and FAT File Systems | 543 |
| Formatting a Volume | 545 |
| NTFS File System | 547 |
| Features Available on NTFS Volumes | 547 |
| Converting Volumes to NTFS | 576 |
| Defragmenting NTFS Volumes | 582 |
| Optimizing NTFS Performance | 583 |
| NTFS Compatibility with Windows NT 4.0 | 587 |
| Cleanup Operations on Windows NT Volumes | 588 |
| NTFS Recoverability | 589 |
| NTFS Data Structures | 591 |
| MS-DOS-Readable File Names on NTFS Volumes | 596 |
| FAT File System | 596 |
| Comparing FAT File Systems | 597 |
| FAT16 File System | 598 |
| FAT32 File System | 601 |
| File Names on FAT Volumes | 602 |
| Compact Disc File System | 603 |
| Universal Disk Format | 604 |
| File System Tools | 605 |
| File Names in Windows XP Professional | 606 |
| Additional Resources | 609 |
| CHAPTER 14: Backup and Restore | 611 |
| Technology Features | 612 |
| Backup Overview | 612 |
| Backup Types | 612 |
| Storage and Media | 613 |
| Security Considerations | 614 |
| Establishing a Backup Plan | 617 |
| Stand-Alone Computer | 619 |
| LAN Workgroups | 620 |
| Documenting Backup-and-Restore Procedures | 621 |
| Verify Operations | 622 |
| Backing Up System State Data | 622 |
| Boot and System Files | 623 |
| Using the Backup Tool | 624 |
| Files Skipped During Backup | 626 |
| Volume Shadow Copy Technology | 626 |
| Automated System Recovery | 627 |
| Removable Storage | 629 |
| Available Backup Media | 633 |
| Encrypted Files | 634 |
| Backing Up Files on Your Local Computer | 634 |
| Backing Up Files on Remote Computers | 634 |
| Restoring Data | 635 |
| Restoring System State Data | 635 |
| Files from Third-Party Backup Programs | 636 |
| File Security Settings | 636 |
| Additional Resources | 636 |
| PART III: SECURITY | 637 |
| CHAPTER 15: Logon and Authentication | 639 |
| Authentication Overview | 640 |
| New in Windows XP Professional | 640 |
| Credentials and Validation | 642 |
| Security Principals | 643 |
| Security Groups | 645 |
| Types of Logon | 645 |
| Using RunAs to Start a Program | 647 |
| Authentication Protocols | 649 |
| Protocol Selection | 650 |
| NTLM | 651 |
| Kerberos V5 Authentication Protocol | 653 |
| Managing Credentials | 658 |
| Password Management | 660 |
| Smart Cards | 665 |
| Automating Logon | 667 |
| Authentication Policy Options | 669 |
| Account Policies | 670 |
| Local Policies | 672 |
| Auditing and Troubleshooting | 677 |
| Security Options | 677 |
| Audit Policy | 677 |
| Security Event Messages | 679 |
| Additional Resources | 680 |
| CHAPTER 16: Authorization and Access Control | 681 |
| Overview of Access Control | 682 |
| Important Terms | 682 |
| Key Concepts | 684 |
| Planning for Effective Access Control | 687 |
| User Accounts and Security Groups | 689 |
| User Account Creation | 689 |
| Types of Security Groups | 690 |
| Managing Permissions by Nesting Groups | 701 |
| Working with Access Control Lists | 702 |
| Access Control Entries | 706 |
| How Access Control Is Applied to New Objects | 707 |
| Default Permissions | 709 |
| Using CACLs | 714 |
| Managing User Rights by Using Security Groups | 714 |
| Security Group Upgrade from Windows NT 4.0 | 715 |
| Security Group Creation in a Clean Installation | 715 |
| Managing Anonymous Logons | 718 |
| Managing Network Authentication | 718 |
| Using Security Policy | 721 |
| Software Restriction Policies | 722 |
| Security Templates | 724 |
| Working with Local Security Policy | 728 |
| Auditing and Analyzing Access Control | 735 |
| Enabling Auditing Policies | 736 |
| Using the Event Viewer | 739 |
| Using the Security Configuration and Analysis Snap-in | 740 |
| Configuring and Analyzing Operations by Using Secedit.exe | 745 |
| Additional Resources | 746 |
| CHAPTER 17: Encrypting File System | 747 |
| Overview of EFS | 748 |
| Components of EFS | 750 |
| Encrypting And Decrypting By Using EFS | 752 |
| What Can Be Encrypted | 753 |
| How Files Are Encrypted | 753 |
| Working with Encryption and Decryption | 758 |
| Remote EFS Operations on File Shares and Web Folders | 763 |
| Remote EFS Operations in a File Share Environment | 764 |
| Remote EFS Operations in a Web Folder Environment | 769 |
| Delivering EFS Certificates to Users | 771 |
| How EFS Uses Certificates | 771 |
| Determining Whether an EFS Certificate Exists | 772 |
| Obtaining an EFS Certificate in a Stand-Alone Environment | 772 |
| Using Enterprise Certification Authorities to Issue Certificates | 773 |
| Renewing Certificates and Keys | 774 |
| Replacing Self-Signed Certificates with CA-issued Certificates | 775 |
| Authorizing Multi-User Access to Encrypted Files | 776 |
| How Users Are Authorized for Access to Encrypted Files | 776 |
| Considerations for Sharing Encrypted Files | 778 |
| Sharing Encrypted Files | 779 |
| Taking Recovery Precautions | 780 |
| Data Recovery and Data Recovery Agents | 780 |
| Configuring Data Recovery Policy in a Stand-Alone Environment | 785 |
| Exporting and Importing EFS and DRA Certificates and Private Keys | 786 |
| Backing Up and Restoring Encrypted Files or Folders | 788 |
| Recovering Encrypted Files | 789 |
| Strengthening Key and File Security | 789 |
| Certificate and Public Key Storage | 790 |
| Private Key Storage | 790 |
| Master Key Storage and Security | 791 |
| Enabling the Startup Key | 792 |
| Enabling 3DES | 794 |
| Increasing Security for Open Encrypted Files | 795 |
| Disabling EFS | 797 |
| Tips for Implementing EFS | 798 |
| Troubleshooting EFS | 800 |
| Unable to Encrypt Files | 800 |
| Unable to Decrypt Remote Files | 801 |
| Unable to Open Encrypted Files | 801 |
| Encrypted File Is Unencrypted When Copied or Moved | 803 |
| Virus Check Program Cannot Check All Files | 804 |
| Common Error Messages | 804 |
| Additional Resources | 805 |
