Course OD10969B: Active Directory® Services with Windows Server®
- Choose how you want to learn: online or in a classroom
Compare learning environments
Find a Microsoft Learning Partner Find an on-demand training partner Find a classroom training partner Anytime access Yes No Anywhere access to recorded instructor Yes No Microsoft official training content Yes Yes In-depth training Yes Yes Hands-on labs Yes Yes SATV redemption Yes Yes Ask instructor questions in person No Yes Attend live class in person No Yes Attend live class remotely No Yes Time commitment Self-paced
(3 month access)
- About this course
Audience(s): IT Professionals Technology: Windows Server Level: 300 This Revision: BDelivery method: Online Length: 2 days Language(s): English
28 April 2016
About this course
Get Hands on instruction and practice administering Active Directory technologies in Windows Server 2012 and Windows Server 2012 R2 in this course. You will learn the skills you need to better manage and protect data access and information, simplify deployment and management of your identity infrastructure, and provide more secure access to data. You will learn how to configure some of the key features in Active Directory such as Active Directory Domain Services (AD DS), Group Policy, Dynamic Access Control (DAC), Work Folders, Work Place Join, Certificate Services, Rights Management Services (RMS), Federation Services, as well as integrating your on premise environment with cloud based technologies such as Windows Azure Active Directory. As part of the learning experience, you will perform hands-on exercises in a virtual lab environment.This course is intended for Information Technology (IT) Professionals who have Active Directory Domain Services (AD DS) experience and are looking to for a single course that will further develop knowledge and skills using Access and Information Protection technologies in Windows Server 2012 and Windows Server 2012 R2. This would typically include:
After completing this course, students will be able to:
- AD DS Administrators who are looking to further develop skills in the latest Access and Information Protection technologies with Windows Server 2012 and Windows Server 2012 R2.
- System or Infrastructure administrators with general AD DS experience and knowledge who are lookig to build upon that core knowledge and cross-train into advanced Active Directory technologies in Windows Server 2012 and Windows Server 2012 R2.
- IT Professionals who have taken the 10967A: Fundamentals of a Windows Server Infrastructure course and are looking to build upon that Active directory knowledge.
- Understand available solutions for identity management and be able to address scenarios with appropriate solutions.
- Deploy and administer AD DS in Windows Server 2012.
- Secure AD DS deployment.
- Implement AD DS sites, configure and manage replication
- Implement and manage Group Policy
- Manage user settings with Group Policy
- Implement certification authority (CA) hierarchy with AD CS and how to manage CAs.
- Implement, deploy and manage certificates.
- Implement and manage AD RMS.
- Implement and administer AD FS.
- Secure and provision data access using technologies such as Dynamic Access Control, Work Folders and Workplace Join
- Monitor, troubleshoot and establish business continuity for AD DS services.
- Implement Windows Azure Active Directory.
- Implement and administer Active Directory Lightweight Directory Services (AD LDS).
- Course details
Course OutlineModule 1: Overview of Access and Information ProtectionThis module provides an overview of multiple Access and Information Protection (AIP) technologies and services what are available with Windows Server 2012 and Windows Server 2012 R2 from a business perspective and maps business problems to technical solutions. It also includes coverage of Forefront Identify Manager (FIM).Lessons
Module 2: Advanced Deployment and Administration of AD DSThis module explains how to deploy AD DS remotely and describes the virtualization safeguards, cloning abilities and extending AD DS to the cloud.LessonsAfter completing this module students will be able to:
- Introduction to Access and Information Protection Solutions in Business
- Overview of AIP Solutions in Windows Server 2012
- Overview of FIM 2010 R2
- Describe Access and Information Protection solutions in business.
- Describe Access and Information Protection solutions in Windows Server 2012 and Windows Server 2012 R2.
- Describe Microsoft Forefront Identity Manager (FIM) 2010 R2.
Module 3: Securing AD DSThis module describes the threats to domain controllers and what methods can be used to secure the AD DS and its domain controllers.LessonsAfter completing this module, students will be able to:
- Deploying AD DS
- Deploying and Cloning Virtual Domain Controllers
- Deploying Domain Controllers in Windows Azure
- Administering AD DS
- Describe and perform various deployment techniques for AD DS.
- Describe virtual domain controller deployment considerations.
- Explain how new technologies in Windows Server 2012 and Windows Server 2012 R2 support virtual domain controllers.
- Describe Domain Controller cloning.
- Implement AD DS using the tools provided in Windows Server 2012 and Windows Server 2012 R2.
Module 4: Implementing and Administering AD DS Sites and ReplicationThis module explains how AD DS replicates information between domain controllers within a single site and throughout multiple sites. This module also explains how to create multiple sites and how to monitor replication to help optimize AD DS replication and authentication traffic.LessonsAfter completing this module, students will be able to:
- Securing Domain Controllers
- Implementing Account Security
- Implementing Audit Authentication
- Understand the importance of securing domain controllers.
- Describe the benefit of read-only domain controllers (RODCs).
- Explain and implement password and account lockout policies.
- Implement audit authentication.
Module 5: Implementing Group PolicyThis module describes Group Policy, how it works, and how best to implement it within your organization.LessonsAfter completing this module, students will be able to:
- Overview of AD DS Replication
- Configuring AD DS Sites
- Configuring and Monitoring AD DS Replication
- Describe AD DS replication.
- Configure AD DS sites.
- Configure and monitor AD DS replication.
Module 6: Managing User Settings with Group PolicyThis module describes how to how to use GPO Administrative Templates, Folder Redirection, and Group Policy features to configure users’ computer settings.LessonsAfter completing this module, students will be able to:
- Introducing Group Policy
- Implementing and Administering GPOs
- Group Policy Scope and Group Policy Processing
- Troubleshooting the Application of GPOs
- Describe Group Policy.
- Implement and administer GPOs.
- Describe Group Policy scope and Group Policy processing.
- Troubleshoot the application of GPOs.
Module 7: Deploying and Managing AD CSThis module explain how to deploy and manage Certificate Authorities (CAs) with Active Directory Certificate Services (AD CS)LessonsAfter completing this module, students will be able to:
- Implementing Administrative Templates
- Configuring Folder Redirection and Scripts
- Configuring Group Policy Preferences
- Implement Administrative Templates.
- Configure Folder Redirection and scripts.
- Configure Group Policy preferences.
Module 8: Deploying and Managing CertificatesThis module describes certificate usage in business environments and explains how to deploy and manage certificates, configure certificate templates and manage enrolment process. This module also covers the deployment and management of smart cards.LessonsAfter completing this module, students will be able to:
- Deploying CAs
- Administering CAs
- Troubleshooting, Maintaining, and Monitoring CAs
- Deploy Certificate Authorities.
- Administer Certificate Authorities.
- Troubleshoot, maintain, and monitor Certificate Authorities.
Module 9: Implementing and Administering AD RMSThis module introduces Active Directory Rights Management Services (AD RMS). It also describes how to deploy AD RMS, how to configure content protection, and how to make AD RMS–protected documents available to external users.LessonsAfter completing this module, students will be able to:
- Using Certificates in a Business Environment
- Deploying and Managing Certificate Templates
- Managing Certificates Deployment, Revocation, and Recovery
- Implementing and Managing Smart Cards
- Use certificates in business environments.
- Deploy and manage certificate templates.
- Manage certificates deployment, revocation and recovery.
- Implement and manage smart cards.
Module 10: Implementing and Administering AD FSThis module explains AD FS, and then provides details on how to configure AD FS in both a single organization scenario and in a partner organization scenario. This module also describes the Web Application Proxy feature in Windows Server 2012 R2 that functions as an AD FS proxy and reverse proxy for web-based applications.LessonsAfter completing this module, students will be able to:
- Overview of AD RMS
- Deploying and Managing an AD RMS Infrastructure
- Configuring AD RMS Content Protection
- Configuring External Access to AD RMS
- Describe AD RMS.
- Explain how to deploy and manage an AD RMS infrastructure.
- Explain how to configure AD RMS content protection.
- Explain how to configure external access to AD RMS.
Module 11: Implementing Secure Shared File AccessThis module explains how to use Dynamic Access Control (DAC), Work Folders, Work place Join and how to plan and implement these technologies.LessonsAfter completing this module, students will be able to:
- Overview of AD FS
- Deploying AD FS
- Implementing AD FS for a Single Organization
- Deploying AD FS in a Business-to-Business Federation Scenario
- Extending AD FS to External Clients
- Describe AD FS.
- Explain how to configure the AD FS prerequisites, and deploy AD FS services.
- Describe how to implement AD FS for a single organization.
- Deploy AD FS in a business-to-business federation scenario.
- Deploy the Web Application Proxy.
Module 12: Monitoring, Managing, and Recovering AD DSThis module explains how to use tools that help monitor performance in real time, and how to record performance over time to spot potential problems by observing performance trends. This module also explains how to optimize and protect your directory service and related identity and access solutions so that if a service does fail, you can restart it as quickly as possible.LessonsAfter completing this module, students will be able to:
- Overview of Dynamic Access Control
- Implementing DAC Components
- Implementing DAC for Access Control
- Implementing Access Denied Assistance
- Implementing and Managing Work Folders
- Implementing Workplace Join
- Describe DAC.
- Implement DAC components.
- Implement DAC for access control.
- Implement access-denied assistance.
- Implement and manage Work Folders.
- Implement Workplace Join.
Module 13: Implementing Windows Azure Active DirectoryThis module explains the concepts and technologies in Windows Azure Active Directory and how to implement and integrate it within your organizationLessonsAfter completing this module, students will be able to:
- Monitoring AD DS
- Managing the AD DS Database
- AD DS Backup and Recovery Options for AD DS and Other Identity and Access Solutions
- Monitor AD DS.
- Manage the AD DS database.
- Recover objects from the AD DS database.
Module 14: Implementing and Administering AD LDSThis module explains how to deploy and configure Active Directory Lightweight Directory Services (AD LDS)LessonsAfter completing this module, students will be able to:
- Overview of Windows Azure AD
- Managing Windows Azure AD Accounts
- Describe Windows Azure AD.
- Administer Azure AD.
After completing this module, students will be able to:
- Overview of AD LDS
- Deploying AD LDS
- Configuring AD LDS Instances and Partitions
- Configuring AD LDS Replication
- Integrating AD LDS with AD DS
- Describe AD LDS.
- Explain how to deploy AD LDS.
- Explain how to configure AD LDS instances and partitions.
- Explain how to configure AD LDS replication.
Before attending this course, students must have:
- Experience working with Active Directory Domain Services (AD DS)
- Experience working in a Windows Server Infrastructure enterprise environment
- Experience working with and troubleshooting core networking infrastructure technologies such as name resolution, IP Addressing, Domain Name System (DNS) and Dynamic Host Configuration Protocol (DHCP)
- Experience working with Hyper-V and Server Virtualization concepts
- An awareness and understanding of general security best practices
- Experience working hands on with Windows client operating systems such as Windows Vista, Windows 7 or Windows 8
Looking for training resources, events and advice from peers? Join the Microsoft Training and Certification Community.
Preparing for an exam now? Find your Microsoft Certification Study Group.
Talk to us on these social networks: