| |
| |
| Introduction | |
| |
| |
| Who This Book Is For | |
| |
| |
| Conventions Used in This Book | |
| |
| |
| |
| An Introduction to Windows 2000 and Active Directory | |
| |
| |
| Windows 2000 Overview | |
| |
| |
| Windows 2000 Professional | |
| |
| |
| Windows 2000 Server | |
| |
| |
| Windows 2000 Advanced Server | |
| |
| |
| Windows 2000 Datacenter Server | |
| |
| |
| What Is Windows 2000 Active Directory? | |
| |
| |
| Definition of an Active Directory | |
| |
| |
| Complementary Components of Active Directory | |
| |
| |
| Benefits of Active Directory | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Novell NDS and Windows NT 4.0 Directory Services | |
| |
| |
| Novell NetWare and NDS | |
| |
| |
| Historical Overview of NetWare | |
| |
| |
| NetWare 3.x | |
| |
| |
| NetWare 4.x | |
| |
| |
| NetWare 5.x | |
| |
| |
| Understanding NDS | |
| |
| |
| NDS Structure and Replication Topology | |
| |
| |
| NDS Objects: [Root] | |
| |
| |
| NDS Replication Topology | |
| |
| |
| NDS Versus Active Directory | |
| |
| |
| Security Principles | |
| |
| |
| Replication Partitioning | |
| |
| |
| Windows NT 4.0 Directory Services | |
| |
| |
| Domains | |
| |
| |
| Windows NT Server Roles | |
| |
| |
| Trust Relationships | |
| |
| |
| Directory Database Size | |
| |
| |
| Domain Models | |
| |
| |
| Single Domain Model | |
| |
| |
| Single Master Domain Model | |
| |
| |
| Multiple Master Domain Model | |
| |
| |
| Complete Trust Domain Model | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Describing Active Directory Components | |
| |
| |
| Domain Namespace | |
| |
| |
| Possible DNS Names | |
| |
| |
| Internal Versus External Namespace | |
| |
| |
| Domains | |
| |
| |
| Administrative Boundaries | |
| |
| |
| Domain Security Policies | |
| |
| |
| Creating Domains | |
| |
| |
| Creating Multiple Domains | |
| |
| |
| Trees | |
| |
| |
| Creating Trees | |
| |
| |
| Forests | |
| |
| |
| Creating Forests | |
| |
| |
| Active Directory Sites | |
| |
| |
| Creating Sites | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Planning Active Directory | |
| |
| |
| Migration Considerations | |
| |
| |
| Upgrading the Domain to Windows 2000 | |
| |
| |
| Parallel Migration | |
| |
| |
| Mixed Mode or Native Mode Domains | |
| |
| |
| Server Migration | |
| |
| |
| Client Migration | |
| |
| |
| User and Group Migration | |
| |
| |
| Administration Considerations | |
| |
| |
| Understanding the Administrative Differences Between NT and 2000 | |
| |
| |
| How OUs Play a Role | |
| |
| |
| Delegate Control | |
| |
| |
| Security | |
| |
| |
| Group Policies | |
| |
| |
| Security Considerations | |
| |
| |
| Access to AD | |
| |
| |
| Administration of AD | |
| |
| |
| Shares and Printers in AD | |
| |
| |
| Searching AD | |
| |
| |
| Installation Considerations | |
| |
| |
| Using the Remote Installation Service | |
| |
| |
| Software Installation through Group Policy | |
| |
| |
| Political Considerations | |
| |
| |
| Administrative Concerns | |
| |
| |
| Domain Namespace Concerns | |
| |
| |
| Access to AD Content Concerns | |
| |
| |
| Schema Concerns | |
| |
| |
| World Trade and Access Concerns | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Interaction with Other Network Services | |
| |
| |
| Domain Name System (DNS) | |
| |
| |
| DNS Zones | |
| |
| |
| Using Non-Windows 2000 DNS Servers | |
| |
| |
| Installing the DNS Server | |
| |
| |
| Dynamic Host Configuration Protocol (DHCP) | |
| |
| |
| The DHCP Conversation | |
| |
| |
| Defining DHCP Scopes | |
| |
| |
| Defining DHCP Options | |
| |
| |
| Installing the DHCP Server | |
| |
| |
| Authorizing the DHCP Server in Active Directory | |
| |
| |
| Creating Scopes | |
| |
| |
| Dynamic DNS: The Interaction of DNS and DHCP | |
| |
| |
| Remote Installation Services (RIS) | |
| |
| |
| RIS Requirements | |
| |
| |
| Installing and Configuring RIS | |
| |
| |
| Authorizing the RIS Server in Active Directory | |
| |
| |
| Prestaging Computers | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Creating the Components Within the Active Directory | |
| |
| |
| Managing the Active Directory Users and Computers | |
| |
| |
| Default Active Directory Configuration | |
| |
| |
| Active Directory Objects | |
| |
| |
| Organizational Units: Understanding the Concept | |
| |
| |
| Creating Organizational Units | |
| |
| |
| Placement in Active Directory | |
| |
| |
| Planning Organizational Units | |
| |
| |
| Managing User Accounts | |
| |
| |
| Types of Logon Names | |
| |
| |
| Manipulating Users Accounts | |
| |
| |
| Creating User Templates | |
| |
| |
| User Account Basics | |
| |
| |
| Profile Details | |
| |
| |
| Home Directory Details | |
| |
| |
| Remote Access Services Details | |
| |
| |
| Terminal Server Details | |
| |
| |
| Placement in Active Directory | |
| |
| |
| Understanding Groups | |
| |
| |
| Group Types | |
| |
| |
| Group Scope | |
| |
| |
| Creating Groups | |
| |
| |
| Group Basics | |
| |
| |
| Group Nesting Capabilities | |
| |
| |
| Group Placement in Active Directory | |
| |
| |
| Planning Groups | |
| |
| |
| Understanding Computers in Active Directory | |
| |
| |
| Creating Computers | |
| |
| |
| Computer Basics | |
| |
| |
| Placement in Active Directory | |
| |
| |
| Managed Computers | |
| |
| |
| Using Printers in Active Directory | |
| |
| |
| Publishing a Printer | |
| |
| |
| Security of Printers in Active Directory | |
| |
| |
| Planning Printers | |
| |
| |
| Using Shared Folders | |
| |
| |
| Creating a Share | |
| |
| |
| Security of Shares in Active Directory | |
| |
| |
| Planning Shares | |
| |
| |
| Using Contacts in Active Directory | |
| |
| |
| Creating a Contact | |
| |
| |
| Contact Basics | |
| |
| |
| Planning Contacts | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Supporting Active Directory Environments | |
| |
| |
| Using Flexible Single Master Operations (FSMOs) | |
| |
| |
| What Are FSMOs? | |
| |
| |
| Where Should You Locate FSMOs? | |
| |
| |
| Planning for Your FSMOs | |
| |
| |
| Delegating Control | |
| |
| |
| Using the Wizard | |
| |
| |
| Viewing the Delegation Results | |
| |
| |
| Deleting Delegate Control | |
| |
| |
| Using Group Policy Objects (GPO) | |
| |
| |
| Understanding GPOs | |
| |
| |
| Creating a Group Policy | |
| |
| |
| User and Computer Application | |
| |
| |
| Parts of the Group Policy | |
| |
| |
| Editing a Group Policy | |
| |
| |
| Security of a Group Policy | |
| |
| |
| Application of the Group Policy in AD | |
| |
| |
| Custom Group Policies | |
| |
| |
| Setting User Rights | |
| |
| |
| Scripting | |
| |
| |
| Windows Scripting Host | |
| |
| |
| ADSI | |
| |
| |
| Interoperability with Other Systems | |
| |
| |
| Downlevel Clients (Windows 9X and Windows NT Workstation) | |
| |
| |
| Windows NT 4 Servers and Domains | |
| |
| |
| NetWare and NDS | |
| |
| |
| Services for Unix | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| |
| Migration Planning and Migration Tools | |
| |
| |
| Migration Preparation | |
| |
| |
| Server Hardware Upgrades and Server Replacements | |
| |
| |
| Analyzing Your Active Directory Design | |
| |
| |
| In-Place Upgrade or Domain Restructure | |
| |
| |
| Mixed Mode Versus Native Mode | |
| |
| |
| Post Migration Cleanup | |
| |
| |
| In-Place Upgrade | |
| |
| |
| Domain Restructure | |
| |
| |
| Upgrade and Restructure | |
| |
| |
| Parallel Restructure Model | |
| |
| |
| Using Active Directory Migration Tool | |
| |
| |
| Reporting Wizard | |
| |
| |
| User Account Migration Wizard | |
| |
| |
| Group Migration Wizard | |
| |
| |
| Active Directory Migration Tool Version 2 | |
| |
| |
| ClonePrincipal | |
| |
| |
| Benefits of ClonePrincipal | |
| |
| |
| Disadvantages of ClonePrincipal | |
| |
| |
| MoveTree | |
| |
| |
| Benefits of MoveTree | |
| |
| |
| Prerequisites of MoveTree | |
| |
| |
| Netdom | |
| |
| |
| Computer Account Management | |
| |
| |
| Trust Management | |
| |
| |
| ADSI MMC Snap-in | |
| |
| |
| NetIQ Suite of Migration Tools | |
| |
| |
| NetIQ NetWare Migrator | |
| |
| |
| Server Consolidator | |
| |
| |
| Migration Assessor | |
| |
| |
| Exchange Migrator | |
| |
| |
| Additional Migration Utilities | |
| |
| |
| Aelita Controlled Migration Suite | |
| |
| |
| EastLane Migrator and Server Consolidator | |
| |
| |
| Desktop Migration | |
| |
| |
| NetWare Migration | |
| |
| |
| Summary | |
| |
| |
| Case Study | |
| |
| |
| Existing Windows NT 4.0 Domain Environment | |
| |
| |
| Migration Plan | |
| |
| |
| Migration Tools | |
| |
| |
| |
| Trips and Traps: Troubleshooting AD | |
| |
| |
| Using Domain Modes | |
| |
| |
| In Mixed Mode | |
| |
| |
| In Native Mode | |
| |
| |
| What Doesn't Change | |
| |
| |
| Directory and File Replication | |
| |
| |
| Active Directory Replication | |
| |
| |
| The File Replication Service (FRS) | |
| |
| |
| Group Policy | |
| |
| |
| How to Tell That Things Are Going Wrong | |
| |
| |
| Dos and Don'ts of Group Policy | |
| |
| |
| Group Policy Mergers and Acquisitions | |
| |
| |
| Tools That Help | |
| |
| |
| Hacking Group Policies | |
| |
| |
| Software Installation | |
| |
| |
| Where to Specify the Install | |
| |
| |
| Who Has Installation Rights | |
| |
| |
| How to Tell What Went Wrong | |
| |
| |
| Summary | |
| |
| |
| |
| Introducing .NET and the Next Generation of Windows | |
| |
| |
| The .NET Initiative | |
| |
| |
| .NET Experiences | |
| |
| |
| Clients | |
| |
| |
| Services | |
| |
| |
| Servers | |
| |
| |
| Tools | |
| |
| |
| Windows: The Next Generation | |
| |
| |
| Windows XP | |
| |
| |
| Windows .NET Server | |
| |
| |
| Summary | |