book

Windows Server 2016: Unleashed

by Rand Morimoto, Jeffrey Shapiro, Guy Yardeni, Omar Droubi, Michael Noel, Andrew Abbate, Chris Amaris

September 2017

Intermediate to advanced

1584 pages

48h 50m

English

Sams

Read now

Unlock full access

How This Book Is Organized
Windows Server 2016 DefinedWindows Server 2016 Under the HoodVisual Changes in Windows Server 2016Windows Server 2016 as an Application ServerWindows Server 2016 Active DirectoryWhen Is the Right Time to Migrate?Adding a Windows Server 2016 System to a Windows Server 2008 or Later EnvironmentMigrating from Windows Server 2008 and Windows Server 2012/R2 Active Directory to Windows Server 2016 Active DirectoryVersions of Windows Server 2016Windows Server 2016 Standard EditionWindows Server 2016 Datacenter EditionWindows Server 2016 Server CoreNano ServerImprovements for Continuous AvailabilityNo Single Point of Failure in ClusteringStretched Clusters64-Node ClustersHyper-V ReplicationCluster-Aware UpdatingDHCP FailoverImproved Support for SANsEnhancements for Flexible Identity and SecurityIncreased Support for StandardsEnhancing the Windows Server 2016 Security SubsystemServer Core and Minimized User InterfaceDynamic Access ControlDNSSEC—Zone SigningTransport Security Using IPSec and Certificate ServicesSecurity Policies, Policy Management, and Policy Enforcement ToolsBitLocker for Server SecurityWindows Rights Management ServicesActive Directory Unification for Various Directory ServicesEnabling Users to Work AnywhereWindows Server 2016 DirectAccessRODCs for the Branch OfficeBranchCache File AccessImprovements for Thin-Client Remote Desktop ServicesImprovements in Remote Desktop ClientRDS Web AccessRDS GatewayRDS RemoteAppsRemote Desktop Virtualization Host for VDIWindows to GoSimplifying the DatacenterServer Manager ToolImprovements in Distributed AdministrationPowerShell for Administrative TasksActive Directory Administrative CenterStorage SpacesImprovements in Group Policy ManagementIP Address ManagementManaging Windows 2016 with Performance and Reliability Monitoring ToolsLeveraging the Best Practice AnalyzerWindows Deployment Services IntegrationDistributed File SystemAddition of Migration ToolsOperating System Migration ToolsServer Role MigrationsIdentifying Which Windows Server 2016 Service to Install or Migrate to FirstWindows Server 2016 Core to an Active Directory EnvironmentWindows Server 2016 Running Built-In Application Server FunctionsUtilizing Windows Server 2016 to Run Business Critical Server ApplicationsSummaryBest Practices
Determining the Scope of Your ProjectIdentifying the Business Goals and Objectives to Implement Windows ServerHigh-Level Business GoalsBusiness Unit or Departmental GoalsIdentifying the Technical Goals and Objectives to Implement Windows ServerDefining the Scope of the WorkDetermining the Time Frame for Implementation or MigrationDefining the Participants of the Design and Deployment TeamsThe Discovery Phase: Understanding the Existing EnvironmentUnderstanding the Geographical Depth and BreadthManaging Information OverloadThe Design Phase: Documenting the Vision and the PlanCollaboration Sessions: Making the Design DecisionsOrganizing Information for a Structured Design DocumentWindows Server 2016 Design DecisionsAgreeing On the DesignThe Migration Planning Phase: Documenting the Process for MigrationTime for the Project PlanSpeed Versus RiskCreating the Migration DocumentThe Prototype Phase: Creating and Testing the PlanHow Do You Build the Lab?Results of the Lab Testing EnvironmentThe Pilot Phase: Validating the Plan to a Limited Number of UsersThe First Server in the PilotRolling Out the Pilot PhaseFixing Problems in the Pilot PhaseDocumenting the Results of the PilotThe Migration/Implementation Phase: Conducting the Migration or InstallationVerifying End-User SatisfactionSupporting the New Windows Server 2016 EnvironmentSummaryBest PracticesThe Discovery PhaseThe Design PhaseThe Migration Planning PhaseThe Prototype PhaseThe Pilot PhaseThe Migration/Implementation Phase
Planning for a Server InstallationMinimum Hardware RequirementsChoosing the Appropriate Windows EditionChoosing a New Installation or an UpgradeDetermining the Type of Server to InstallPreparing Configuration InformationBacking Up FilesInstalling a Clean Version of Windows Server 2016 Operating SystemCustomizing the Language, Time, Currency, and Keyboard PreferencesThe Install Now PageSelecting the Type of Operating System to InstallAccepting the Terms of the Windows Server 2016 LicenseSelecting the Type of Windows Server 2016 InstallationSelecting the Location for the InstallationFinalizing the Installation and Customizing the ConfigurationUpgrading to Windows Server 2016Backing Up the ServerVerifying System CompatibilityEnsuring the Drivers Are Digitally SignedPerforming Additional TasksPerforming the UpgradeUnderstanding Server Core InstallationInstalling Server CoreManaging and Configuring a Server Core InstallationLaunching the Command Prompt in a Server Core InstallationChanging the Server Core Administrator’s PasswordChanging the Server Core Machine NameAssigning a Static IPV4 IP Address and DNS SettingsAdding the Server Core System to a DomainActivating the Server Core SystemUsing SCONFIG to Configure a Server Core InstallationServer Core Roles and Feature InstallationsInstalling the Active Directory Domain Services RolePerforming an Unattended Windows Server 2016 InstallationNano ServerWhat Is Nano Server?Deploying a Nano ServerConfiguring Nano Server After DeploymentConnect to Nano Server Using PowerShell DirectSummaryBest Practices
The Evolution of Directory ServicesReviewing the Original Microsoft Directory SystemsOutlining the Key Features of Active Directory Domain ServicesUnderstanding the Development of AD DSDetailing Microsoft’s Adoption of Internet StandardsAD DS StructureUnderstanding the AD DS DomainDescribing AD DS Domain TreesDescribing Forests in AD DSUnderstanding the AD DS Authentication ModesOutlining Functional Levels in Windows Server 2016 AD DSOutlining AD DS ComponentsUnderstanding AD DS X.500 RootsConceptualizing the AD DS SchemaDefining the Lightweight Directory Access ProtocolDetailing Multimaster Replication with AD DS Domain ControllersGlobal Catalog and Global Catalog ServersDefining the Operations Master RolesUnderstanding Domain TrustsConceptualizing Transitive TrustsExplicit TrustsDefining Organizational UnitsDetermining Domain Usage Versus OU UsageOutlining the Role of Groups in an AD DS EnvironmentChoosing Between OUs and GroupsUnderstanding AD DS ReplicationSites, Site Links, and Site Link BridgeheadsUnderstanding Originating WritesUsing PowerShell Replication Commandlets in Windows Server 2016Outlining the Role of DNS in AD DSExamining DNS Namespace ConceptsDynamic DNSComparing Standard DNS Zones and AD-Integrated DNS ZonesHow AD DS DNS Works with Foreign DNSOutlining AD DS SecurityUnderstanding Kerberos AuthenticationTaking Additional Security PrecautionsGetting Familiar with AD DS Features in Windows Server 2016Restoring Deleted AD DS Objects Using the Active Directory Recycle BinRestarting AD DS on a Domain ControllerImplementing Multiple Password Policies per DomainAuditing Changes Made to AD ObjectsReviewing Additional Active Directory ServicesExamining Additional Windows Server 2016 AD DS FeaturesReviewing Legacy Windows Server Active Directory ImprovementsSummaryBest Practices
Understanding AD DS Domain DesignExamining Domain TrustsChoosing a Domain NamespaceChoosing an External (Published) NamespaceChoosing an Internal NamespaceExamining Domain Design FeaturesChoosing a Domain StructureUnderstanding the Single-Domain ModelChoosing the Single-Domain ModelExploring a Single-Domain Real-World Design ExampleUnderstanding the Multiple-Domain ModelDeciding When to Add Additional DomainsExploring a Multiple-Domain Real-World Design ExampleUnderstanding the Multiple Trees in a Single-Forest ModelDeploying a Multiple-Tree Domain ModelExploring a Multiple-Tree Domain Real-World Design ExampleReviewing the Federated-Forests ModelChoosing Federated ForestsFederated-Forests Real-World Design ExampleUnderstanding the Empty-Root Domain ModelDetermining When to Choose the Empty-Root ModelExploring a Real-World Empty-Root Domain Design ExampleUnderstanding the Placeholder Domain ModelExploring a Placeholder Domain Real-World Design ExampleUnderstanding the Special-Purpose Domain ModelExploring a Special-Purpose Domain Real-World Design ExampleRenaming an AD DS DomainDomain Rename LimitationsOutlining Domain Rename PrerequisitesRenaming a DomainSummaryBest Practices
Defining Organizational Units in AD DSDefining AD GroupsOutlining Group Types: Security or DistributionUnderstanding Group ScopeOU and Group DesignStarting an OU DesignOveruse of OUs in Domain DesignOU FlexibilityUsing OUs to Delegate AdministrationGroup Policies and OU DesignUnderstanding Group DesignDetailing Best Practice for GroupsEstablishing Group Naming StandardsGroup NestingDesigning Distribution GroupsExploring Sample Design ModelsA Business Function-Based DesignUnderstanding Geographically Based DesignSummaryBest Practices
Understanding AD DS Replication in DepthThe Role of Replication in AD DSOutlining Multimaster Topology ConceptsExplaining Update Sequence NumbersResolving Replication CollisionsApplying Property Version NumbersEstablishing Connection ObjectsUnderstanding Replication LatencyUnderstanding Active Directory SitesWindows Server 2016 Site FunctionalityAssociating Subnets with SitesCreating Site LinksTurning Off Site Link BridgingUnderstanding the Knowledge Consistency Checker and the Intersite Topology GeneratorDetermining Site CostUtilizing Preferred Site Link BridgeheadsDeploying AD DS DCs on Server CorePlanning Replication TopologyMapping Site Design into Network DesignEstablishing SitesChoosing Between One Site or Many SitesOptimizing Subnet Site AssociationsDetermining Site Links and Site Link CostsChoosing Replication SchedulingChoosing SMTP or IP ReplicationWindows Server 2016 ReplicationDC Promotion from MediaIdentifying Linked-Value Replication/Universal Group Membership CachingRemoving Lingering ObjectsDisabling Replication CompressionUnderstanding How AD Avoids Full Synchronization of Global Catalog with Schema ChangesThe Intersite Topology Generator AlgorithmWindows Server 2016 IPv6 SupportDefining the Structure of IPv6Understanding IPv6 AddressingMigrating to IPv6Making the Leap to IPv6Detailing Real-World Replication DesignsViewing a Hub-and-Spoke Replication DesignDecentralized Replication DesignDeploying Read-Only Domain ControllersUnderstanding the Need for RODCsFeatures of RODCsDeploying an RODCDeploying a Clone Virtualized DCPrerequisites for Virtualized DC CloningAdding the Source Virtual DC to the Cloneable DC GroupRunning the Excluded App List and New Clone Config File CommandletExporting and Importing the Source DC Virtual MachineRestarting the Source DC and Bringing the Clone DC OnlineSummaryBest Practices
Keeping a Distributed Environment in SyncActive Directory Lightweight Directory ServicesUnderstanding the Need for AD LDSFeatures of AD LDSInstalling AD LDSActive Directory Federation ServicesUnderstanding the Key Components of AD FSInstalling AD FS with Windows Server 2016Working with AD FSSynchronizing Directory Information with Microsoft Identity ManagerUnderstanding MIMUnderstanding MIM ConceptsExploring MIM Account ProvisioningUnderstanding the Role of Management Agents in MIMManaging Groups with MIMHarnessing the Power and Potential of MIMManaging Identities with MIMProvisioning and Deprovisioning Accounts with MIMSummaryBest Practices
The Need for DNSHistory of DNSEstablishing a Framework for DNSExplaining the DNS HierarchyThe DNS NamespaceGetting Started with DNS on Windows Server 2016Installing DNS Using the Add Roles WizardResource RecordsStart of Authority (SOA) RecordsHost (A) RecordsName Server (NS) RecordsService (SRV) RecordsMail Exchanger (MX) RecordsPointer (PTR) RecordsCanonical Name (CNAME) RecordsOther DNS Record TypesUnderstanding DNS ZonesForward Lookup ZonesReverse Lookup ZonesPrimary ZonesSecondary ZonesStub ZonesPerforming Zone TransfersPerforming Full Zone TransfersInitiating Incremental Zone TransfersUnderstanding DNS QueriesPerforming Recursive QueriesPerforming Iterative QueriesOther DNS ComponentsDynamic DNSThe Time-to-Live ValuePerforming Secure UpdatesExploring Aging and Scavenging for DNSExamining Root HintsUnderstanding the Role of ForwardersUsing WINS for LookupsUnderstanding the Evolution of Microsoft DNSActive Directory-Integrated ZonesDynamic UpdatesUnicode Character SupportDNS in Windows Server 2016Application PartitionAutomatic Creation of DNS ZonesFix to the “Island” ProblemForest Root Zone for _msdcsDNS in an Active Directory Domain Services EnvironmentThe Impact of DNS on AD DSAD DS in Non-Microsoft DNS ImplementationsUsing Secondary Zones in an AD DS EnvironmentSRV Records and Site ResolutionGlobalNames ZoneTroubleshooting DNSUsing the DNS Event Viewer to Diagnose ProblemsUsing Performance Monitor to Monitor DNSClient-Side Cache and HOST Resolution ProblemsUsing the Nslookup Command-Line UtilityUsing the Ipconfig Command-Line UtilityUsing the Tracert Command-Line UtilityUsing the DNSCmd Command-Line UtilityManaging DNS with PowerShellSecure DNS with DNSSECDNSSEC ComponentsImportant Performance Considerations for DNSSECConfiguring a DNSSEC ZoneReviewing the Windows Internet Naming ServiceUnderstanding the Need for Legacy Microsoft NetBIOS ResolutionInstalling and Configuring WINSInstalling WINSConfiguring Push/Pull PartnersExamining WINS ReplicationUnderstanding NetBIOS Client Resolution and the LMHOSTS FilePlanning, Migrating, and Maintaining WINSUpgrading a WINS EnvironmentExploring WINS and DNS IntegrationSummaryBest Practices
Understanding the Components of an Enterprise NetworkThe Importance of Network AddressingName ResolutionName Resolution and Directory IntegrationDHCP FailoverWindows Server 2016 IPAM OverviewExploring DHCPThe Need for DHCPOutlining DHCP Predecessors: RARP and BOOTPExploring the DHCP Server ServiceExamining the DHCP Client ServiceAutomatic Private IP AddressingDHCP Relay AgentsDHCP and Dynamic DNS IntegrationInstalling DHCP Server and Server ToolsCreating IPv4 DHCP ScopesExploring DHCP Changes in Windows Server 2016Migrating DHCP Servers Using Windows Server Migration ToolsMigrating DHCP Services from 2012 R2 to Windows Server 2016Understanding DHCP Client Alternate Network CapabilityEnhancing DHCP ReliabilityLink-Layer FilteringDHCP ReservationsDHCP Name ProtectionDHCP and Dynamic DNS ConfigurationAccess DHCP Activity and Event LogsImplementing Redundant DHCP ServicesWindows Server 2016 DHCP FailoverExploring Advanced DHCP ConceptsUnderstanding DHCP SuperscopesExamining DHCP Multicast ScopesDelegating Administration of DHCPDHCP Netsh and PowerShell AdministrationSecuring DHCPIPv6 IntroductionIPv6 AddressingComprehending IPv6 AddressingIPv6 Transition TechnologiesConfiguring IPv6 on Windows Server 2016Creating an IPv6 Subnet in Active DirectoryManually Setting the IPv6 Address on Windows Server 2016Creating IPv6 DNS Records and ZonesSetting Up Windows Server 2016 DHCP IPv6 ScopesIP Address ManagementIP Address Tracking TodayInstalling the IPAM Server and Client FeaturesConnecting to the IPAM ServerConfiguring IPAM Server ProvisioningConfiguring Servers for IPAM ManagementConfiguring Server DiscoveryDefining Discovered Servers as IPAM ManagedDefining IP Address BlocksCollecting Server DataExploring the IPAM ConsoleOverview NodeServer Inventory NodeIP Address Space NodeIP Address Block NodeIP Address Inventory NodeIP Address Ranges NodeMonitor and Manage NodeDNS and DHCP ServersDHCP Scopes NodeDNS Zone Monitoring NodeEvent Catalog NodeSummaryBest Practices
Understanding Internet Information Services 10IIS 10 Advanced FunctionalityUnderstanding the IIS Manager ToolsExploring the IIS Manager Administration PanesIIS Manager Administration Nodes in the Connections PanePlanning and Designing IIS 10Determining Server RequirementsDetermining Fault-Tolerance RequirementsInstalling and Upgrading IIS 10Understanding the Modular Approach to Installing IIS 10Installing the Web Server (IIS) RoleUpgrading from Other Versions of IISInstalling and Configuring WebsitesCreating a Website with IIS 10Creating a Virtual DirectoryConfiguring IIS 8 Website PropertiesInstalling and Configuring FTP ServicesIIS 10 FTP Server Service FeaturesInstalling the FTP ServerCreating a Secure FTP 10 Site Using SSLConfiguring FTP 10 Features and PropertiesSecuring IIS 10Windows Server 2016 SecurityIIS AuthenticationAuditing Web ServicesUsing SSL CertificatesAdministering IIS 10 Administrator and User SecurityCreating an IIS 10 User AccountAssigning Permissions to an IIS 10 User AccountConfiguring Feature DelegationUsing IIS LoggingSummaryBest Practices
Defining Windows Server 2016 SecurityCommon Language RuntimeUnderstanding the Layered Approach to Server SecurityDeploying Physical SecurityRestricting Physical AccessRestricting Logon AccessUsing Smart Cards for Logon AccessSecuring Wireless NetworksFirewall SecurityUsing the Integrated Windows Firewall with Advanced SecurityUnderstanding Windows Firewall Integration with Server ManagerCreating Inbound and Outbound Rules on the Windows FirewallHardening ServersDefining Server RolesSecuring a Server Using Server ManagerReducing Attack SurfaceAppLockerUsing Administration-Only Accounts with Run AsExamining File-Level SecurityUnderstanding File System SecurityDynamic Access ControlExamining Share-Level SecurityAuditing File AccessEncrypting Files with the Encrypting File SystemBitLocker for ServersMalware and Backup ProtectionAntivirus PrecautionsTrusted Boot Architecture with Secure Boot, AM Preloading, and Measured BootDeploying Backup SecurityWindows Server UpdateUnderstanding the Background of WSUS: Windows UpdateUnderstanding the Automatic Updates ClientUnderstanding the Development of Windows Server Update ServicesExamining WSUS PrerequisitesInstalling WSUS on a Windows Server 2016 ServerAutomatically Configuring Clients via Group PolicyDeploying Security Patches with WSUSSummaryBest Practices
Introduction to Securing Data in Transit in Windows Server 2016The Need for Another Layer of SecurityDeploying Security Through Multiple Layers of DefenseUnderstanding Encryption BasicsDeploying a Public Key Infrastructure with Windows Server 2016Defining Private Key Versus Public Key EncryptionExploring Digital CertificatesUnderstanding Active Directory Certificate Services in Windows Server 2016Reviewing the CA Roles in AD CSDetailing the Role Services in AD CSInstalling AD CSConfiguring Auto-EnrollmentUsing Smart Cards in a Public Key InfrastructureUsing the Encrypting File SystemIntegrating PKI with Non-Microsoft Kerberos RealmsActive Directory Rights Management ServicesUnderstanding the Need for AD RMSUnderstanding AD RMS PrerequisitesInstalling AD RMSUsing IPsec Encryption with Windows Server 2016Understanding the IPsec PrincipleDetailing Key IPsec FunctionalityExploring IPsec NAT TraversalSummaryBest Practices
Installing a Network Policy ServerUnderstanding RADIUS Support on a Network Policy ServerDeploying a Virtual Private Network Using RRASExploring VPN TunnelsTunneling ProtocolsPPTP and L2TP ProtocolsL2TP/IPSec Secure ProtocolEnabling VPN Functionality on a Remote-Access ServerModifying the Remote Access Network PolicyConfiguring DirectAccessSummaryBest Practices
Beginning the Migration ProcessIdentifying Migration ObjectivesEstablishing Migration Project PhasesComparing the In-Place Upgrade Versus New Hardware Migration MethodsIdentifying Migration Strategies: “Big Bang” Versus Phased CoexistenceExploring Migration OptionsBig Bang MigrationVerifying Hardware CompatibilityVerifying Application ReadinessBacking Up and Creating a Recovery ProcessVirtual DC Rollback OptionPerforming an Upgrade on a Single DC ServerPhased MigrationMigrating DCsPreparing the Forest and Domains Using AdprepUpgrading Existing Domain ControllersReplacing Existing Domain ControllersMoving Operation Master RolesRetiring Existing Windows Server DCsRetiring “Phantom” DCsUpgrading Domain and Forest Functional LevelsMoving AD-Integrated DNS Zones to Application PartitionsMultiple Domain Consolidation MigrationUnderstanding ADMT FunctionalityUsing ADMT in a Lab EnvironmentADMT v3.2 Installation ProcedureADMT Domain Migration PrerequisitesExporting Password Key InformationInstalling PES on the Source DomainSetting Proper Registry PermissionsConfiguring Domains for SID MigrationMigrating GroupsMigrating User AccountsMigrating Computer AccountsMigrating Other Domain FunctionalitySummaryBest Practices
The Importance of Compatibility TestingPreparing for Compatibility TestingDetermining the Scope for Application TestingDefining the Goals for Compatibility TestingDocumenting the Compatibility Testing PlanResearching Products and ApplicationsTaking Inventory of Network SystemsTaking Inventory of Applications on Existing ServersUnderstanding the Differences Between Applications and Windows ServicesCompleting an Inventory Sheet per ApplicationPrioritizing the Applications on the ListVerifying Compatibility with VendorsTracking Sheets for Application Compatibility ResearchSix States of CompatibilityCreating an Upgrade Decision MatrixAssessing the Effects of the Compatibility Results on the Compatibility Testing PlanMicrosoft Assessment and Planning ToolkitLab-Testing Existing ApplicationsAllocating and Configuring HardwareAllocating and Configuring Windows Server 2016Loading the Remaining ApplicationsCertified for Windows Server 2016Testing the Migration and Upgrade ProcessDocumenting the Results of the Compatibility TestingDetermining Whether a Prototype Phase Is RequiredSummaryBest Practices
Defining the Administrative ModelThe Centralized Administration ModelThe Distributed Administration ModelThe Mixed Administration ModelExamining Active Directory Site AdministrationSitesSubnetsSite LinksSite Group PoliciesConfiguring SitesCreating a SiteEstablishing Site LinksDelegating Control at the Site LevelWindows Server 2016 Active Directory GroupsGroup TypesGroup Scopes in Active DirectoryCreating GroupsUser Administration in a Single DomainUser Administration in a Multidomain ForestDomain Functional Level and GroupsCreating AD GroupsPopulating GroupsGroup ManagementManaging Users with Local Security and Group PoliciesViewing Policies with the Group Policy Management ConsoleCreating New Group PoliciesConfiguring and Optimizing Group PolicyTroubleshooting Group Policy ApplicationsManaging Printers with the Print Management ConsoleInstalling the Print Management ConsoleConfiguring the Print Management ConsoleAdding New Printers as Network Shared ResourcesAdding Print Servers to the Print Management ConsoleUsing the Print Management ConsoleSummaryBest Practices
Group Policy OverviewGroup Policy Processing: How Does It Work?Computer GPO ProcessingUser GPO ProcessingNetwork Location AwarenessGroup Policy Client-Side ExtensionsTuning Group Policy Processing with GPO SettingsLocal Group PoliciesLocal Computer PolicyLocal User Policies for Nonadministrators and AdministratorsDomain-Based Group PoliciesSecurity TemplatesUnderstanding Group PolicyGroup Policy ObjectsGPO Storage and ReplicationThe Group Policy Central StoreStarter GPOsPolicy SettingsPreference SettingsGPO LinksGroup Policy Link EnforcementGroup Policy InheritanceGroup Policy Block InheritanceGroup Policy Order of ProcessingGPO FilteringGroup Policy Loopback ProcessingGroup Policy Slow-Link Detection and Network-Location AwarenessGroup Policy Policies NodeGroup Policy Administrative TemplatesGroup Policy Preferences NodePolicy Management ToolsGroup Policy Management ConsoleGroup Policy Object EditorGroup Policy Management EditorGroup Policy Starter GPO EditorPrint Management ConsoleGpupdate.exeGroup Policy Update from GPMCGroup Policy Infrastructure StatusPowerShell Management of Group PoliciesEvent ViewerDFS ManagementDesigning a Group Policy InfrastructureActive Directory Design and Group PolicySeparation of GPO FunctionsSeparation of GPO by Targeting Operating SystemGPO Administrative TasksInstalling the Group Policy Management ToolsCreating a GPO Central StoreCreating and Using Starter GPOsCreating New Domain Group PoliciesCreating and Configuring GPO LinksManaging GPO StatusManaging GPO Security FilteringCreating and Linking WMI Filters to GPOsManaging GPO Link Order of ProcessingViewing GPO Settings and Creating ReportsBacking Up and Restoring Domain GPOsGroup Policy Modeling OperationsTroubleshooting Group PoliciesGPO Administrative DelegationSummaryBest Practices
Going Green with Windows Server 2016Server Manager DashboardManaging Windows Server 2016 Roles and FeaturesRoles in Windows Server 2016Features in Windows Server 2016Creating a Server GroupViewing EventsServer Manager Performance MonitorDevice ManagerTask SchedulerServices and ApplicationsWMI ControlWindows Firewall with Advanced SecurityServer Manager Storage PageWindows Server BackupDisk ManagementAuditing the EnvironmentAudit PoliciesAudit Policy SubcategoriesAuditing Resource AccessManaging Windows Server 2016 RemotelyServer Manager Remote ManagementRemote Server Administration ToolsWindows Remote ManagementPowerShellPrint Management ConsoleCommon Practices for Securing and Managing Windows Server 2016Identifying Security RisksUsing System Center Operations Manager 2012 R2 to Simplify ManagementLeveraging Windows Server 2016 Maintenance PracticesKeeping Up with Service Packs and UpdatesManual Update or DVD UpdateAutomatic UpdatesWindows Server Update ServicesMaintaining Windows Server 2016Daily MaintenanceWeekly MaintenanceMonthly MaintenanceQuarterly MaintenanceSummaryBest Practices
Understanding ShellsA Short History of ShellsIntroduction to PowerShellPowerShell UsesPowerShell FeaturesPowerShell FeaturesUnderstanding PowerShell FundamentalsAccessing PowerShellCommand-Line InterfaceNavigating the CLICommand Types.NET Framework IntegrationThe PipelineModules and Snap-InsRemotingPowerShell ISEVariablesAliasesScopesProviders and DrivesSecurityUsing Windows PowerShellExploring PowerShellManaging ServicesGathering Event Log InformationManaging the Files and DirectoriesManaging the RegistryManaging ProcessesUsing WMI and CIMUsing Snap-InsUsing ModulesUsing RemotingUsing the New-Object CommandletSummaryBest Practices
Benefits of DocumentationOrganizational BenefitsFinancial BenefitsTypes of DocumentsPlanning to Document the Windows Server 2016 EnvironmentKnowledge Sharing and Knowledge ManagementWindows Server 2016 Project DocumentsProject PlanDesign and Planning DocumentCommunication PlanMigration PlanChecklistsTraining PlanTest PlanPilot Test PlanSupport and Project Completion DocumentAdministration and Maintenance DocumentsStep-by-Step Procedure DocumentsPoliciesDocumented ChecklistsActive Directory InfrastructureServer Build ProceduresConfiguration (As-Built) DocumentationTopology DiagramsAdministration ManualUsing Documentation for Troubleshooting PurposesProcedural DocumentsNetwork InfrastructureDocumenting the WAN InfrastructureNetwork Device DocumentationDisaster Recovery DocumentationDisaster Recovery PlanningBackup and Recovery DevelopmentMonitoring and Performance DocumentationWindows System Failover DocumentationChange Management ProceduresPerformance DocumentationBaselining Records for Documentation ComparisonsRoutine ReportingManagement-Level ReportingTechnical ReportingSecurity DocumentationChange ControlReviewing ReportsManagement-Level Reporting for Security AssessmentsSummaryBest Practices
Remote Access in Windows Server 2016VPN in Windows Server 2016Components Needed to Create a Traditional VPN ConnectionThe VPN ClientThe RAS ServerThe NPS SystemCertificate ServerActive DirectoryRAS System Authentication OptionsAuthentication Protocols for PPTP ConnectionsEAP and PEAP Authentication ProtocolsAuthentication Protocols for L2TP/IPsec ConnectionsChoosing the Best Authentication ProtocolVPN ProtocolsTunneling Within a Windows Server 2016 Networking EnvironmentPoint-to-Point Tunneling ProtocolLayer 2 Tunneling ProtocolIP SecuritySecure Sockets Tunneling ProtocolDirectAccess in Windows Server 2016DirectAccess and IPv6A Tale of Two TunnelsEnd-to-Edge DirectAccess ModelEnd-to-End DirectAccess ModelManaged-Out Support ModelInternet Versus Intranet Traffic with DirectAccessDirectAccess ComponentsNetwork Location ServiceDirectAccess Connection ProcessChoosing Between Traditional VPN Technologies and DirectAccessAdvantages of L2TP/IPsecAdvantages of PPTPAdvantages of SSTPAdvantages of DirectAccessPorts Affecting the VPN ConnectivitySetting Up the Unified Remote Access RoleDirectAccess ScenarioConfiguring the InfrastructureConfiguring the DirectAccess FeatureTesting DirectAccessVPN ScenarioCertificate Auto-EnrollmentConfiguring the Network Policy ServerSetting Up the RAS ServerSetting Up the VPN ClientTesting the VPN ConnectionMonitoring the Remote Access ServerDashboardOperations StatusRemote Client StatusReportingSummaryBest Practices
Why Implement Remote Desktop Services?Remote Desktop for AdministrationRemote Desktop for UsersRemote Desktop for Remote User SupportRemote Desktop for Cloud Service ProvidersHow Remote Desktop WorksModes of OperationClient-Side RDSUnderstanding the Name ChangeRDS RolesRD Session HostRD Virtualization HostRD GatewayRD Web AccessRD Connection BrokerRD LicensingRemoteApp and Desktop ConnectionConfiguration Options and Fine-Tuning TerminologyGranular Session Configuration ControlSession 0 IsolationLocal Resource RedirectionSingle Sign-OnRemote Desktop Connection DisplayPlanning for RDSPlanning for Remote Desktop for AdministrationPlanning for RD Session Host RequirementsPlanning for RD Session Host Sizing and OptimizationPlanning for RD Session Host UpgradesPlanning the Physical Placement of RDSPlanning for Networking RequirementsPlanning for RD Session Host ToleranceDeploying RDSEnabling Remote Desktop for AdministrationDeploying the Remote Desktop Service Role ServiceMaking Applications Available for User AccessAdditional RD Session Host Server Configuration TasksDeploying Virtual DesktopsInstalling the RD Virtualization Host Role Service and Configuration SettingsCreating a Virtual Desktop TemplateCreating a Virtual Desktop CollectionAccessing the VDI Guest SessionsEnabling RemoteFXIntegrating and Supporting RemoteFX for VDI GuestsIntegrating and Supporting RemoteFX for RD Session Host GuestsSecuring and Supporting RDSSecurely Building Remote Session ServicesSegmenting ResourcesSecuring RDS with GPOsNetwork Level AuthenticationChanging the RDP PortRemotely Managing a Remote Desktop SessionManaging RDS with PowerShellGroup Policy for RD Session Host ServersApplying Service Packs and UpdatesPerforming Disaster RecoverySummaryBest Practices
Managing Desktops and ServersOperating System Deployment to Bare-Metal SystemsManaging Windows and Security UpdatesSupporting End Users and Remote AdministrationOperating System Deployment OptionsManual Installation Using Installation MediaUnattended InstallationManufacturer-Assisted InstallationCloning or Imaging SystemsWindows Server 2016 Windows Deployment ServicesWDS Image TypesBoot ImagesInstallation ImagesDiscover ImagesCapture ImagesInstalling Windows Deployment ServicesConfiguring the WDS ServerDHCP ConfigurationAdding a Boot Image to the WDS ServerAdding Install Images to the WDS ServerDeploying the First Install ImageCreating Multicast ImagesCustomizing Boot ImagesAdding Drivers to Boot and Discover ImagesWDS Boot and Install Image TroubleshootingCreating Discover ImagesPre-Creating Active Directory Computer Accounts for WDS (Prestaged Systems)Creating Custom Installations Using Capture ImagesAutomating Image Deployment Using Unattend FilesGeneral Desktop Administration TasksSummaryBest Practices
The Need for Group PoliciesWindows Group PoliciesLocal Computer PolicyLocal Security PolicyLocal Administrators and Non-Administrators User PoliciesDomain Group PoliciesSecurity Configuration WizardPolicy Processing OverviewGroup Policy Feature SetComputer Configuration Policy NodeUser Configuration Policy NodePlanning Workgroup and Standalone Local Group Policy ConfigurationCreating Local Administrators and Non-Administrators PoliciesPlanning Domain Group Policy ObjectsPolicies and PreferencesDomain GPOsDomain Controller GPOsActive Directory Site GPOsSmall BusinessDelegated AdministrationManaging Computers with Domain PoliciesCreating a New Domain Group Policy ObjectCreating and Configuring GPO LinksManaging User Account Control SettingsCreating Application Control Policies (AppLocker)Configuring Preference Item-Level TargetingConfiguring Remote Desktop and Remote Administration SupportConfiguring Basic Firewall Settings with Group PolicyConfiguring Windows Update SettingsConfiguring Power Options Using Domain PoliciesManaging Scheduled Tasks and Immediate Tasks with Domain PoliciesManaging Users with PoliciesConfiguring Folder RedirectionRemovable Storage AccessManaging Microsoft Management Console AccessManaging Active Directory with PoliciesFine-Grained Password PoliciesConfiguring Restricted Groups to manage Computer Local GroupsSynchronous Foreground RefreshGPO Modeling and GPO Results in the GPMCManaging Group Policy from Administrative or Remote WorkstationsSummaryBest Practices
Storage Spaces and Storage PoolsStorage Spaces DirectStorage ReplicasStorage Quality of Service (QoS)Windows Disk PropertiesVirtual Hard DisksManaging Windows Server 2016 DisksThe Disk Management MMC Snap-InDiskpart.exe Command-Line UtilityPowerShell Disk Management CmdletsServer Manager File and Storage ServicesAdding New Disks and Volumes to WindowsWorking with Virtual Hard Disk FilesConfiguring Storage Spaces DirectCreating Virtual DisksSummaryBest Practices
File System Access Services and TechnologiesWindows Folder SharingDFS Namespaces and ReplicationWWW Directory PublishingFile Transfer Protocol ServiceServer and Client for NFSVolume Shadow Copy ServiceBranchCache for Network FilesData Deduplication ServiceContinuously Available File SharesDistributed File SystemDistributed File System ReplicationiSCSI Target Server ServiceAdding the File and Storage Services RoleManaging Data Access Using Windows Server 2016 SharesShare PermissionsAccess-Based EnumerationShare Caching and Offline FilesBranchCacheFile Server Resource ManagerUses of File Server Resource ManagerLeveraging the FSRM FeaturesThe Distributed File SystemDFS NamespacesDFS ReplicationDFS TerminologyDFS Replication TerminologyPlanning a DFS DeploymentChoosing a DFS Namespace TypePlanning for DFS ReplicationDetermining the Replication TopologyInstalling and Configuring DFSCreating the DFS Namespace and RootAdding an Additional Namespace Server to a Domain-Based NamespaceCreating a DFS Folder and Replication GroupEnabling Access-Based Enumeration on a Domain-Based Namespace in Windows Server 2008 ModeDisabling Replication for Extended DowntimeUsing the Volume Shadow Copy ServiceUsing VSS and Windows Server BackupConfiguring Shadow CopiesRecovering Data Using Shadow CopiesConfiguring Data DeduplicationDynamic Access ControlCreating DAC Claim TypesConfiguring DAC Resource PropertiesAdding Configured Resource Properties to a Resource Property ListCreating a Central Access RuleCreating a Central Access PolicyCreating and Assigning a Central Access Policy GPO to File ServersEnabling Kerberos Armoring for Domain ControllersCreating and Updating a File Share to Leverage Dynamic Access ControlConfiguring User Accounts and Testing Data AccessSummaryBest Practices
Building Fault-Tolerant Windows Server 2016 SystemsPowering the Computer and Network InfrastructureDesigning Fault-Tolerant IP NetworksDesigning Fault-Tolerant Server DisksIncreasing Windows Server 2016 Role AvailabilityWindows Server 2016 Clustering TechnologiesWindows Server 2016 Cluster TerminologyDetermining the Correct Clustering TechnologyFailover ClustersNetwork Load BalancingNetwork TeamingOverview of Failover ClustersFailover Cluster Quorum ModelsChoosing Applications for Failover ClustersShared Storage for Failover ClustersFailover Cluster Node Operating System SelectionDeploying Failover ClustersInstalling the Failover Clustering Feature and ToolsConfiguring Disks for Cluster UsageRunning the Validate a Configuration WizardCreating a Failover ClusterConfiguring Cluster NetworksAdding Nodes to the ClusterAdding Storage to the ClusterCluster Quorum ConfigurationEnabling Cluster Shared VolumesDeploying Roles on Failover ClustersConfiguring Failover and FailbackTesting Failover ClustersFailover Cluster MaintenanceCluster-Aware UpdatingRemoving Nodes from a Failover ClusterCluster Migration and UpgradesBacking Up and Restoring Failover ClustersFailover Cluster Node: Backup Best PracticesRestoring an Entire Cluster to a Previous StateDeploying Network Load-Balancing ClustersNLB Applications and ServicesInstalling the Network Load-Balancing FeatureCreating Port RulesPort Rules Filtering Mode and AffinityUsing Cluster Operation ModeConfiguring Network Cards for NLBCreating an NLB ClusterAdding Additional Nodes to an Existing NLB ClusterManaging NLB ClustersBacking Up and Restoring NLB NodesPerforming Maintenance on an NLB Cluster NodeNetwork TeamingSummaryBest Practices
Understanding Your Backup and Recovery Needs and OptionsIdentifying the Different Services and TechnologiesIdentifying Single Points of FailureEvaluating Different Disaster ScenariosPrioritizing the RecoveryIdentifying Bare Minimum ServicesCreating the Disaster Recovery SolutionDisaster Recovery Solution Overview DocumentGetting Disaster Recovery Solutions ApprovedDocumenting the EnterpriseDeveloping a Backup StrategyAssigning Tasks and Designating Team MembersCreating Regular Backup ProceduresWindows Server Backup OverviewBackup Storage Support and Media ManagementBackup Media FilesBackup OptionsWindows Server Backup ConsoleWindows Backup Command-Line UtilityWindows Server Backup PowerShell CmdletsUsing Windows Server BackupInstalling Windows Server BackupScheduling a Backup Using Windows Server Backup and Allocating DisksRunning a Backup to a Shared Network FolderStoring a Backup on DVDManaging Backups Using the Command-Line Utility Wbadmin.exe and Windows PowerShell CmdletsViewing Backup HistoryRunning a Manual System-State Backup to Remote Storage Using Wbadmin.exe and PowerShellBacking Up the System State Using the GUIBacking Up Active DirectoryExporting Active Directory Object Data Using PowerShellAccidental-Deletion ProtectionUsing the Directory Services Restore Mode PasswordActive Directory Recycle BinBacking Up Windows Server 2016 RolesDistributed File System BackupInternet Information ServicesVolume Shadow Copy ServiceEnabling Shadow Copies for Shared VolumesExtending Server Backup to the Enterprise with Data Protection Manager 2016SummaryBest Practices
Ongoing Backup and Recovery PreparednessProject Management OfficeChange ControlDisaster Recovery Delegation of ResponsibilitiesWhen Disasters StrikeQualifying the Disaster or FailureValidating PrioritiesSynchronizing with Business OwnersCommunicating with Vendors and StaffAssigning Tasks and Scheduling ResourcesRecovering the InfrastructurePostmortem MeetingDisaster Scenario TroubleshootingNetwork OutagePhysical Site FailureServer or System FailureRecovering from a Server or System FailureAccess IssuesData Corruption and File and Folder RecoveryManaging and Accessing Windows Server Backup MediaWindows Server Backup Dedicated DisksNetwork Shared FoldersWindows Server Backup Volume RecoveryWindows Server 2016 Data Volume RecoveryWindows Server 2016 System Volume RecoveryWindows System Image RecoveryRecovering Role Services and FeaturesWindows Server 2016 System-State RecoveryActive Directory Recycle Bin RecoverySystem-State Recovery for Domain ControllersSummaryBest Practices
Key Branch Office Features in Windows Server 2016Understanding Read-Only Domain ControllersBranch Office Concerns and DilemmasUnderstanding When to Leverage RODCsInstalling a Read-Only Domain ControllerUsing BitLocker with Windows Server 2016Understanding BitLocker Drive Encryption in Windows Server 2016Comprehending BitLocker’s Drive Encryption Hardware RequirementsUnderstanding BitLocker Deployment ScenariosConfiguring BitLocker Drive Encryption on a Windows Server 2016 Branch Office Domain ControllerInstalling the BitLocker Drive Encryption FeatureConfiguring the System Partitions for BitLockerEnabling BitLocker Drive EncryptionUtilizing the BitLocker Recovery PasswordRemoving BitLocker Drive EncryptionBranchCache in Windows Server 2016Features in Windows Server 2016 BranchCachePlanning and Deploying BranchCachePrinting with Branch Office Direct PrintingConfiguring Windows Server 2016 for Branch Office Direct PrintingSummaryBest Practices
Using the Task Manager for Logging and DebuggingMonitoring ProcessesMonitoring PerformanceMonitoring User ActivityMonitoring DetailsMonitoring ServicesRelated PowerShell FunctionalityExamplesUsing Event Viewer for Logging and DebuggingExamining the Event Viewer User InterfaceConducting Additional Event Viewer Management TasksRelated PowerShell FunctionalityPerformance MonitoringPerformance Monitor OverviewPerformance MonitorData Collector SetsReportsResource MonitorRelated PowerShell FunctionalityServer ManagerSetting Baseline ValuesReducing Performance Monitoring OverheadImportant Objects to MonitorUsing the Debugging Tools Available in Windows Server 2016Best Practices Analyzer ToolsTCP/IP ToolsOther Useful Troubleshooting Command-Line ToolsSystem Startup and RecoveryWindows Memory Diagnostics ToolTask SchedulerUnderstanding Task SchedulerUnderstanding Trigger Options and SettingsUnderstanding the Advanced Settings Associated with TriggersActions Associated with a TaskUnderstanding Conditions Associated with a TaskUnderstanding Task SettingsViewing Task HistorySummaryBest Practices
Defining Capacity AnalysisThe Benefits of Capacity Analysis and Performance OptimizationEstablishing Policy and Metric BaselinesBenchmark BaselinesUsing Capacity-Analysis ToolsTask ManagerNetwork MonitorWindows Performance MonitorOther Microsoft Assessment and Planning ToolsThird-Party ToolsetMonitoring System PerformanceKey Elements to Monitor for BottlenecksMonitoring System Memory and Pagefile UsageAnalyzing Processor UsageEvaluating the Disk SubsystemMonitoring the Network SubsystemOptimizing Performance by Server RolesDomain ControllersRemote Desktop Services ServerHyper-V ServersSummaryBest Practices
History of SharePoint TechnologiesUnderstanding the Need for SharePoint 2016 ProductsIdentifying the Need for SharePoint 2016 ProductsCustomizing SharePoint 2016 Products to Organizational NeedsNew Features and Services in SharePoint 2016Choosing Your SharePoint 2016 ServiceDesigning a SharePoint 2016 FarmOutlining SharePoint 2016 RequirementsExploring a Basic SharePoint 2016 SiteLists and Libraries in SharePoint 2016Libraries in SharePoint 2016SharePoint 2016 Lists DemystifiedManaging the Site CollectionUsing the Site Settings Pages to Manage Sites and SubsitesReviewing Central Administration ToolsSummaryBest Practices
Understanding Microsoft’s Virtualization StrategyHistory of Windows VirtualizationIntegration of Hypervisor Technology in Windows ServerWindows Server Hyper-VMicrosoft Hyper-V Server as a Role in Windows Server 2016New and Improved Windows Server 2016 Hyper-VProduction checkpointsHost Resource ProtectionHot add and remove for network adapters and memoryDiscrete device assignment protectionNested virtualizationWindows PowerShell DirectLinux Secure BootShared virtual hard disksHyper-V Manager ImprovementsNew Storage Quality of Service (QoS)Integration services delivered through Windows UpdateWindows Containers and Hyper-V Containers in Windows Server 2016Planning Your Implementation of Hyper-VSizing Your Windows Server 2016 Server to Support VirtualizationRunning Other Services on the Hyper-V SystemPlanning for the Use of Snapshots on the Hyper-V SystemInstalling the Microsoft Hyper-V RoleInstalling Windows Server 2016 as the Host Operating SystemRunning Server Manager to Add the Hyper-V RoleInstalling the Hyper-V Role Using PowerShellBecoming Familiar with the Hyper-V Administrative ConsoleLaunching the Hyper-V Administrative ConsoleNavigating and Configuring Host Server SettingsInstalling a Guest Operating System SessionGathering the Components Needed for a Guest SessionBeginning the Installation of the Guest SessionCompleting the Installation of the Guest SessionModifying Guest Session Configuration SettingsAdding or Limiting the RAM of the Guest SessionChanging Network Settings for the Guest SessionMounting a Physical CD/DVD Image or Mounting a CD/DVD Image FileOther Settings to Modify for a Guest Session ConfigurationLaunching a Hyper-V Guest SessionAutomatically Launching a Guest SessionManually Launching a Guest SessionSave State of a Guest SessionUsing Snapshots of Guest Operating System SessionsSnapshots for Image RollbackSnapshots for Guest Session Server Fault ToleranceCreating a Snapshot of a Guest ImageRolling Back a Guest Image to a Previous Snapshot ImageReverting a Snapshot SessionQuick Migration and Live MigrationQuick MigrationLive MigrationConfiguring the Cluster Quorum Witness DiskInstalling the Failover Clustering FeatureRunning the Validate a Configuration WizardCreating a Node and Disk Majority ClusterAdding Additional Shared StorageConfiguring Hyper-V over SMBDeploying New Virtual Machines on a Hyper-V Failover ClusterDeploying Existing Virtual Machines on Failover ClustersPerforming a Live MigrationPerforming a Quick MigrationUtilizing Hyper-V Replica for Site-to-Site RedundancyInitial Hyper-V Replica ConfigurationInitiating a Guest Session to Replicate to Another Host ServerChecking Hyper-V Replication HealthPlanned Failover from Source to Destination Hyper-V ReplicaUnplanned Failover to Destination Hyper-V ReplicaOptions in Hyper-V Replication FailoverHyper-V Containers in Windows Server 2016Windows Docker ContainersBuild and run your first Windows DockerSummaryBest Practices
Windows Server 2016 MonitoringUnderstanding How OpsMgr WorksProcessing Operational DataGenerating Alerts and ResponsesReporting from OpsMgrOpsMgr Architecture ComponentsThe Agent ComponentThe Management Server ComponentThe OperationsManager Database ComponentThe Reporting Data Warehouse ComponentThe Reporting Server ComponentThe Operations Console ComponentThe Web Console ComponentThe Command Shell ComponentThe Gateway ComponentSecuring OpsMgrRole-Based Security ModelSecuring OpsMgr AgentsUnderstanding Firewall RequirementsAction and RunAs Account SecuritySecuring DMZ Servers with CertificatesFault Tolerance and Disaster RecoveryManagement Group RedundancyResource PoolsClustering and Operations ManagerDisaster RecoveryUnderstanding OpsMgr ComponentsExploring Hardware RequirementsDetermining Software RequirementsNetwork Bandwidth RequirementsSizing the OpsMgr DatabasesMonitoring Non-Domain Member ConsiderationsPutting it All Together in a DesignSmall Enterprise DesignMedium Enterprise DesignLarge Enterprise DesignSummaryBest Practices

Overview

Book + Content Update Program

This is the most comprehensive and realistic guide to Windows Server 2016 planning, design, prototyping, implementation, migration, administration, and support. Extensively updated, it contains unsurpassed independent and objective coverage of Windows Server 2016’s key innovations, from the cloud and containers to security and mobility.

Windows Server 2016 Unleashed reflects the authors’ extraordinary experience implementing Windows Server 2016 in large-scale environments since its earliest alpha releases. Microsoft MVP Rand Morimoto and colleagues fully address all aspects of deploying and operating Windows Server 2016, including Active Directory, networking, application services, security, administration, business continuity, virtualization, optimization, and troubleshooting. You’ll find up-to-the-minute coverage of new features ranging from Storage Spaces Direct to Cluster-Aware Updating, and Dynamic Access Control to Nano Server.

Valuable for Windows pros at all levels, this book will be indispensable especially for intermediate-to-advanced level professionals seeking expert, in-depth solutions. Every chapter contains tips, tricks, best practices, and lessons learned from actual deployments—practical help for solving real problems.

Detailed information on how to:

Take full advantage of key Windows Server 2016 innovations
Plan, prototype, install, migrate to, and deploy Windows Server 2016 and Server Core
Design a modern Windows Server Active Directory, from OUs and infrastructure to Federated Forests and Lightweight Directories
Deliver reliable networking services: DNS, WINS, DNSSEC, DHCP, IPv, IPAM, and IIS
Systematically harden server-level security
Protect data in transit with PKI, certificates, rights management, and IPsec encryption
Safely provide appropriate remote and mobile access for your users
Efficiently administer, automate, maintain, and document Windows Server production environments
Control Windows devices centrally with Group Policies and Policy Management
Implement advanced fault tolerance, clustering, and other business continuity features
Optimize, tune, and debug Windows Server, and plan for growth
Leverage integrated application services, including SharePoint and Hyper-V

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Publisher Resources

ISBN: 9780134583822

Windows Server 2016: Unleashed

by Rand Morimoto, Jeffrey Shapiro, Guy Yardeni, Omar Droubi, Michael Noel, Andrew Abbate, Chris Amaris

Overview

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

Mastering Windows Server 2016

Mastering Windows Server 2016

Windows Server 70-741: Networking with Windows Server 2016

Windows Server 2016 Inside Out, First Edition

Publisher Resources

Overview

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

Mastering Windows Server 2016

Mastering Windows Server 2016

Windows Server 70-741: Networking with Windows Server 2016

Windows Server 2016 Inside Out, First Edition

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.