Book description
Rather than being a traditional planning, design, and implementation guide, this book is a serious resource for Windows experts to find tips, tricks, and best practices for implementing and supporting key Windows Server 2003 technologies. The authors started working with Windows Server 2003 (then codename Whistler) just days after the code for Windows 2000 was locked, when most organizations were getting a first chance to see the Windows 2000 server product. With more than three years of experience working with Whistler in early beta and production implementations, the authors of this book have provided a resource to help you make Windows 2003 technologies work properly.
When given a choice of different ways of implementing the technologies, you can turn to this book for the best practices of successful field implementations. This book is organized into eight parts focusing around a core technological solution area, with several chapters making up each part. Sections include security, management, design, migration, business continuity, performance, and business productivity.
Table of contents
- Copyright
- About the Authors
- Acknowledgments
- We Want to Hear from You!
- Introduction
-
I. Security Solutions
-
1. Securing Windows Server 2003
- Improved Default Security in Windows 2003
- Securing the Hatches
- Know Who is Connected Using Two-factor Authentication
- Using Templates to Improve Usage and Management
- Patrolling the Configuration
- Securing the File System
- Securing Web Services
- Keeping Files Confidential with EFS
- Bulletproof Scenario
- Summary
-
2. Implementing Secured Wireless Technologies
- Working Through Walls
- Managing Spectrums to Avoid Denial of Service
- Implementing Support for Secure 802.1x Technologies
- Taking Advantage of Windows Server 2003 Security Features
- Configuring the Wireless Client
- Maximizing Wireless Security Through Tunneling
- Maintaining Knowledge of Your Wireless Networks
- Summary
-
3. Integrating Smartcard and Secured Access Technologies
- Maximizing Certificate Services Implementations
- Securing Certificate Services
- Getting the Most Out of Smartcards
- Tips and Tricks for Securing Access to the Network
- Creating a Single Sign-on Environment
- Securing Access to Web Servers and Services
- Protecting Certificate-based Services from Disaster
- Integrating Smartcards with Personal Devices
- Summary
-
1. Securing Windows Server 2003
-
II. Management and Administration Solutions
-
4. Distributing Administration
- Choosing the Best Administrative Model for Your Organization
- Using Role-based Administration for Optimal Delegation
- Leveraging the Delegation of Control Wizard
- Enhancing Administration with Functional Levels
- Managing Domain and Enterprise Administration
- Developing Group Policies that Affect Administration
- Testing Level of Administrative Access
- Auditing Administrative Activities
- Summary
-
5. Managing User Rights and Permissions
- Leveraging Domain Local, Global, and Universal Groups
- Using NTFS and AD Integrated File Shares
- Using Group Policy to Administer Rights and Permissions
- Maximizing Security, Functionality, and Lowering Total Cost of Ownership (TCO) with User Profiles
- Managing Rights and Permissions for Specific User Types
- Summary
-
6. Implementing Group Policies
- Leveraging Group Policies
- Group Policy Deployment
- Understanding GP Inheritance and Application Order
- Understanding the Effects of Slow Links on Group Policy
- Using Tools to Make Things go Faster
- Automating Software Installations
- Enhancing Manageability with Group Policy Management Console
- Using Resultant Set of Policies in GPMC
- Maximizing Security with Group Policy
- Increasing Fault Tolerance with Intellimirror
- Leveraging Other Useful Tools for Managing Group Policies
- Using Administrative Templates
- Finding Additional Resources About Group Policy
- Summary
- 7. Managing Desktops
-
8. Administering Windows Server 2003 Remotely
- Using Remote Desktop for Administration
- Taking Advantage of Windows Server 2003 Administration Tools
- Using Out-Of-Band Remote Administration Tools for Emergency Administration
- Using and Configuring Remote Assistance
- Securing and Monitoring Remote Administration
- Delegating Remote Administration
- Administering IIS in Windows Server 2003 Remotely
- Summary
-
9. Maintenance Practices and Procedures
- Maintenance is not as Interesting as Implementing New Technology
- What to Do Every Day
- What to Do Every Week
- What to Do Every Month
- Consolidating Servers as a Maintenance Task
- Backup Tips and Tricks
- Making Automated System Recovery Work for You
- Leveraging Scripting for Maintenance Practices
- Why Five-9s Might Be a Bad Idea
- Automating Updates
- Summary
-
4. Distributing Administration
-
III. Design and Implementation Solutions
-
10. Advanced Active Directory Design
- Implementations Small and Large
- Configuring and Reconfiguring Domains and Organizational Units
- Sites and the New Knowledge Consistency Checker
- Using Cross-Forest Trusts Effectively
- Interforest Synchronization
- Active Directory Migration Tool Best Practices
- Using Microsoft Metadirectory Services Effectively
- Domain Controller Placement
- Global Catalog Placement
- Taking Advantage of Replication Improvements
- Active Directory Functional Levels
- Summary
-
11. Implementing Microsoft Windows Server 2003
- Best Practices for Successful Server Deployments
- Licensing and Activating Windows Server 2003
- Automating Deployment with Remote Installation Service
- Using Sysprep for Servers to Maximize Consistency
- Customizing Setup Using Unattend and Setup Manager
- Creating Custom Bootable CDs for Rapid Deployment
- Optimizing Standard Server Configurations
- Customizing Servers with Setup Wizards
- Controlling the Back-end with the Windows Registry
- Summary
-
12. Implementing Microsoft Active Directory
- Taking Advantage of Functional Levels
- Improving Domain Controller Installation
- Getting the Most Out of Global Catalog Servers
- Maximizing Flexible Single Master Operation (FSMO) Roles
- Expanding the Enterprise by Interconnecting Forests and Domains
- Enhancing Flexibility with Renaming Domains
- Managing the Active Directory Schema
- Improving Replication with Application Partitions
- Summary
-
13. Establishing a Solid Infrastructure Foundation
- Focusing on the Windows Server 2003 Infrastructure Components
- DNS in an Active Directory Environment
- The Domain Name System (DNS) In Depth
- Installing DNS Using the Configure Your Server Wizard
- Configuring DNS to Point to Itself
-
Using Resource Records in a Windows 2003 Environment
- Start of Authority (SOA) Records in DNS
- DNS Host (A) Records
- Name Server (NS) Records
- Service (SRV) Records for Added DNS Information
- Mail Exchanger (MX) Records Defining E-mail Routing
- Pointer (PTR) Records for Reverse DNS Queries
- Canonical Name (CNAME) Records for Alias Information
- Other DNS Records that Store Information
- Establishing and Implementing DNS Zones
- Creating Zone Transfers in DNS
- Understanding the Importance of DNS Queries
- Other DNS Components
- DNS Maintenance, Updates, and Scavenging
- Troubleshooting DNS
- The Dynamic Host Configuration Protocol (DHCP) In Depth
- DHCP Changes in Windows Server 2003
- Installing DHCP and Creating New Scopes
- Creating DHCP Redundancy
- Advanced DHCP Concepts
- Optimizing DHCP Through Proper Maintenance
- Securing a DHCP Implementation
- Continuing Usage of Windows Internet Naming Service (WINS)
- Installing and Configuring WINS
- WINS Planning, Migrating, and Maintenance
- Global Catalog Domain Controllers (GC/DCs) Placement
- The Need to Strategically Place GCs and DCs
- Summary
-
10. Advanced Active Directory Design
-
IV. Migration and Integration Solutions
-
14. Migrating from Windows NT 4.0
- Migrating to a Scalable Windows 2003 Server Environment
- Fallback Plans and Failover Procedures
- Tips to Minimize Network Downtime
- Planning and Implementing Name Resolution When Migrating
- Planning and Upgrading File Systems and Disk Partitions
- Avoiding Failures and Disruptions During Server Upgrades
- Keeping Windows Servers Current with Windows Updates
- Finalizing Server Upgrades with Windows Update
- Supporting Windows Clients During Coexistence
- Implementing and Securing Password Migrations
- Addressing Permissions Issues When Migrating Desktops
- Best Practices for Maintaining and Managing Coexistence
- Common Mistakes When Decommissioning Domains and Servers
- Summary
-
15. Migrating from Windows 2000
- Preparing the Migration
- Windows Server 2003 Applications Compatibility
- Using the Application Compatibility Tool Kit
- Upgrading and Installing Windows Server 2003
- Migrating Network Services
- Migrating Active Directory Objects
- FailOver Best Practices
- Supporting Clients with Windows Server 2003
- Decommissioning Windows 2000
- Raising Windows 2003 Functional Levels
- Summary
-
16. Integration with Unix/LDAP-Based Systems
- Designing and Planning Platform Integration
- Creating an Integrated Infrastructure
- Integrating Directories Across Environments
- Using Password Synchronization
- Centralizing the Management of Cross-Platform Resources
- Accessing Unix from a Windows Perspective
- Accessing Windows from a Unix Perspective
- Migrating Resources from One Platform to the Other
- Summary
- 17. Integrating Windows 2003 with Novell Networks
-
14. Migrating from Windows NT 4.0
-
V. Remote and Mobile User Solutions
-
18. VPN and Dial-up Solutions
- Choosing the Right VPN Solution
- Best Practices for Securing L2TP
- Best Practices for Securing PPTP
- Taking Advantage of Internet Authentication Service
- Using VPN for Wireless
-
Deploying VPN and Dial-up Services
-
Leveraging the Microsoft Connection Manager
- Desktop and Tray Icons
- Animated Dialer Logon Screen
- Phone Book
- Interface Support for Multiple Service Types
- Connect Actions
- Automated Phone Book Updates
- Auto-applications
- License Agreement
- Connection Status
- Support Phone Number
- Custom Help File
- Language Support
- Automatic Password
- Realm Name Prefix and Suffix
- Assign Encrypted Connections
- Append an Application
- Edit Existing Service Profiles
- Leveraging Softmodems
- Consolidating Lines with Larger Circuits
- Leveraging RADIUS
- Managing Remote Users with GPOs
-
Leveraging the Microsoft Connection Manager
- Using Site-to-Site VPNs
- Using Load Balancing to Add Scalability and Resiliency
- Summary
-
19. Web Access to Windows Server 2003 Resources
- Best Practices for Publishing Web Shares to the Internet
- Securing Access to Resources with SSL
- Enabling SSL on a Web Server Directory
- Enabling and Securing Internet Printing
-
Best Practices for Securing FTP Services
-
Enabling FTP Services
- Configuring Secure Anonymous FTP Access
- Configuring FTP Logging
- Hardening Folder Permissions
- Configuring FTP Blind-Put Access
- Enforcing Disk Quotas
- Using Logon Time Restrictions
- Restricting Access by IP Address or Range
- Auditing FTP Events
- Enforcing Strong Passwords
- Enabling Account Lockout and Account Lockout Threshold
- FTP User Isolation
-
Enabling FTP Services
- Accessing Resources with Terminal Services and Remote Desktops
- Monitoring IIS Access Through Auditing and Logging
- Using Windows Tools and Scripts to Manage IIS
- Summary
- 20. Leveraging Thin Client Terminal Services
-
18. VPN and Dial-up Solutions
-
VI. Business Continuity Solutions
- 21. Proactive Monitoring and Alerting
-
22. Creating a Fault-Tolerant Environment
- Optimizing Disk Management for Fault Tolerance
- Maximizing Redundancy and Flexibility with Distributed File System
- Simplifying Fault Tolerance with Volume Shadow Copy
- Optimizing Disk Utilization with Remote Storage
- Optimizing Clusters to Simplify Administrative Overhead
- Leveraging Network Load Balancing for Improved Availability
- Realizing Rapid Recovery Using Automated System Recovery (ASR)
- Summary
-
VII. Performance Optimization Solutions
-
23. Tuning and Optimization Techniques
- Understanding of Capacity Analysis
- Best Practice for Establishing Policy and Metric Baselines
- Leveraging Capacity-Analysis Tools
- Identifying and Analyzing Core Analysis and Monitoring Elements
- Optimizing Performance by Server Roles
- Summary
- 24. Scaling Up and Scaling Out Strategies
-
25. Utilizing Storage Area Networks
- Defining the Technologies
- When is the Right Time to Implement NAS and SAN Devices?
- Designing the Right Data Storage Structure
- Adding in Fault Tolerance for External Storage Systems
- Combining Hardware Fault Tolerance with Windows Server 2003 Technologies
- Best Practices for SAN and NAS
- Recovering from a System Failure
- Leveraging NAS and SAN Solutions for Server Consolidation
- Summary
-
23. Tuning and Optimization Techniques
-
VIII. Business Productivity Solutions
-
26. User File Management and Information Look-up
- Enabling Collaboration with Windows SharePoint Services
- Expanding on the File and Data Management Capabilities of Windows 2003
- Simplifying File Sharing with Office 2003
- Improving Data Lookup with Indexing
- Taking Advantage of Revision Control Management
- Hierarchical Storage Management
- Implementing Information, Communication, and Collaboration Security
- Summary
-
26. User File Management and Information Look-up
Product information
- Title: Microsoft® Windows® Server 2003 Insider Solutions
- Author(s):
- Release date: November 2003
- Publisher(s): Sams
- ISBN: None
You might also like
book
Inside Windows® Server 2003
Inside Windows .NET Server contains comprehensive information on deploying, managing, and troubleshooting systems using both Windows …
book
MCSA Windows Server 2012 Complete Study Guide: Exams 70-410, 70-411, 70-412, and 70-417
Prepare for the MCSA Windows Server 2012 exams with this Sybex study guide Microsoft's new version …
book
Exam Ref 70-341 Core Solutions of Microsoft Exchange Server 2013 (MCSE)
Prepare for Microsoft Exam 70-341--and help demonstrate your real-world mastery of the skills needed to deliver …
book
Microsoft® Windows Server™ 2003 Inside Out
Designed for system administrators, this definitive, supremely organized reference delivers in-depth solutions, tips, and tools for …