Microsoft Windows 2000 Directory Services

Active Directory Service

Advantage
AD Authentication

Installation

Installing AD
Reassigning DCs 1
Reassigning DCs 2
Reassigning DCs 3

AD Design

DNS Naming
GUID
Domains
OU
Trees
Forests
Global Catalog
Roles

AD Tools

MMC
Customizing MMC
AD Users
AD Sites
AD Domains & Trusts
Support Tools
ACLDIAG
DSACLS
DSASTAT
LDP
NLTEST
REPADMIN
REPLMON
SDCHECK

Sites

Overview
Site setup
Subnets
Linking
Site Licensing
Site Objects
Renaming Sites

User Administration

Built In Users
New Local Users
New Domain Users
Renaming Users
Deleting & Disabling
Unlocking Accounts
Password Guidelines
Resetting Passwords
Account Expiration
Logon Hours
Computer Restrictions
User Properties
Account Options
Dial-In
Home Directories
Moving Users

Group Administration

Introduction
Group Types
Scopes
Built-In Groups
New Groups
Adding Members
Deleting Groups
Moving Groups
Nesting

Group Policies

Policies
Processing
GPO Console
Computer Settings
User Settings
Enabling settings
Linking GPOs
Removing GPO Links
Deleting GPOs
Filtering Scopes
Delegation
Layered VS Monolithic
Inheritance
No Override
Loopback
Software Packages
Software Removal
Folder Redirection

Profiles

Purpose
Local Profiles
Profile Template
Roaming Profiles
Mandatory Profiles

AD objects

Objects
Publishing Printers
Moving Objects
MOVETREE
NETDOM

Security Templates

Template Types
Console
New Templates
Customizing Templates
Importing Templates
Exporting Templates
Security Analysis

Administering Shares

Sharing
Share Permissions
Hidden Shares
Modifying Shares
Share Connection
Publishing Shares
Copying Shares
Monitoring Shares
Disconnecting Users
Sending Messages

Dfs

Advantages
Dfs Root
Local Dfs Link
Remote Dfs Link
Replicas
Root Replica
Connecting to Dfs

NTFS Permissions

Folder Permissions
File Permissions
Determine Permissions
Assigning Permissions
Special Permissions
Inheritance
Creator Owner Assignment
Ownership
Copying & Moving Files
Shares and NTFS

Rights

User Right
Assigning User Rights

Replication

Inter VS Intra
Site Link Bridge
Bridgehead Server
Costs
Frequency
Availability
Intra-Site Replication
Forcing Replication
Replication Topology

RIS

Adding RIS
Installing RIS
RIS Configuration
Authorizing RIS
Client Boot Disks
RIS & GPOs
RIPrep Permissions
Answer Files
RIPrep Image
RIS Delegation

DNS Integration

Resolution
Forward Zone
Reverse Zones
Resource Types
Delegating Zones
DDNS
Secondary DNS
Transfer Security
DNS Notification
Testing DNS
Debugging DNS

AD Maintenance

Delegating Control
W2K Modes
Using Find
Schema tools

AD Security

Importance
Account Policies
Restricted Groups
Services
Audit Policy
Auditing Files
Auditing AD Objects
Auditing Printer Access
Security Logs
Configuring Logs
Log Filtering

Monitoring AD Performance

Event Viewer
System Monitor
Counter Logs
Trace Logs
Alerts

Troubleshooting

Backup Preparation
AD Backup
Scheduling Backup
AD Restoration
Run As

Design Example

Forest Design
Accounts
File System