Download the Index

31_0789736179_index.qxd 2/15/07 2:52 PM Page 627

Index

Symbols ? command, 459 ? parameter (gpresult command), 243 A access Safe Mode, 448 shadow copies, 437-438 shared files/folders, 154-155 access control entries (ACEs), 143 access control lists (ACLs), 143 access this computer from the network right, 251 account lockout duration setting, 257 Account Lockout policy, 257 account lockout threshold setting, 257 Account Logon event, 262 Account Management event, 262 account operator permissions, 272 Account Operators group, 253 accounts prestaged, 570 template, 89-90 ACEs (access control entries), 143 ACLs (access control lists), 143 ACPI (Advanced Configuration and Power Interface), 350 Action pane (MMC), 63 Active Directory, 60-61 Active Directory Installation Wizard, 61 BDCs, 61 31_0789736179_index.qxd 2/15/07 2:52 PM Page 628

628 Active Directory

computer accounts effective, 208-209 administering, 71-73 explicit, 204 creating, 66 inherited, 204, 207 joining to domains, 67 objects, moving, 211 NETBIOS names, 71 OU control, 210 prestaging, 67-71 ownership, 209-210 troubleshooting, 71-73 standard, 204 Windows 9x/NT 4.0 client, 65-66 viewing, 205 DCs, 479-482 queries, 101 domains, 61 creating, 101 functional levels, 121-123 exporting, 103 groups, 112 importing, 103 A→G→DL←P strategy, 115 schema, 120 A→G→U→DL←P strategy, 116 updates, 227 creating, 118-119 users distribution, 112 authentication, 98 membership, 113-115 bulk-importing, 571 names, 115, 119 cached credential settings, 98-100 scopes, 112-115 creating, 86-91 security, 112, 117 customizing, 93-94 SI, 116-117 deleting, 95 MMC, 62 domain account names, 87-88 MMC 3.0, 63-64 importing, 91 multimaster replication, 62 locked-out, 96-97 naming conventions, 119-120 passwords, 91-92 objects troubleshooting, 96 command-line utilities, 74-75, 95 Windows 98 user access, 539 deleting, 537 Active Directory Installation Wizard, 61 moving, 211 active screen questions (exams), 47 referencing, 88 adaptive testing, 51 organizational units, 62 Add Counters dialog box, 316 passwords, 538 Add Hardware Wizard PDCs, 61 devices, installing, 351 permissions, 204 hardware, troubleshooting, 352 adding/changing, 205 Add Mirror dialog box, 403-404 allowing/denying, 206 Add New Connection dialog box, 293 assigning, 207 Add New Hardware Wizard, 532 copying, 207 Add or Remove Snap-in dialog box, 63 deleting, 207 31_0789736179_index.qxd 2/15/07 2:52 PM Page 629

629 assigning

Add Printer Wizard Advanced Configuration and Power local printers, 168, 171 Interface (ACPI), 350 network printers, 171-172 Advanced Power Management (APM), 351 Add Standalone Snap-In dialog box, 134, Advanced RISC Computing (ARC), 447 221, 276 Advanced Security Settings dialog add workstations to domain right, 251 box, 149 Add/Remove Snap-In dialog box, Advanced Settings dialog box, 366 134, 276 A→G→DL←P group strategy, 115 adding A→G→U→DL←P group strategy, 116 counters, 315-316 alerts instances, 315-316 creating, 322 objects, 315-316 triggering, 547 printers, 167-168 allow logon locally right, 251 local, 168, 171 allowing permissions, 206 network, 171-172 anonymous logon SI group, 117 Additional Drivers dialog box, 177 APM (Advanced Power Management), 351 ADMIN$ shares, 138 application layer, 502 administration applications. See also software; utilities computer accounts, 71-73 assigning with GPOs, 238 permissions, 272-273 Automatic Updates, 583 remote server management. See iisapp.vbs, 578 remote server management iisext.vbs, 578 remote server management tools iisweb.vbs, 578 Computer Management console, 275-276 logs, 264, 305 Apply Group Policy and Read snap-ins, 276-278 Permission, 227 Run as command, 75-77, 273-274 approving updates, 492 shares, 137-139 ARC (Advanced RISC Computing), 447 templates, 239 archiving event logs, 307 WSUS, 491 ASR (Automated System Recovery), Administrators group, 253-254 452, 579 ADUC console (Active Directory Users and backups, 452-454, 542 Computers), 86 files, 455 groups, creating, 118 restore sets, 454-455 user accounts wizard, 453 creating, 88-89 assigning customizing, 93-94 applications, GPOs, 238 advance network settings, 363 permissions Advanced Attributes dialog box, 429 Active Directory, 207 NTFS, 147-148 31_0789736179_index.qxd 2/15/07 2:52 PM Page 630

630 auditing

auditing data files events, 262-263 Backup Utility, 462-466 policies, 261-264 restoring, 476-477 printers, 194-195, 307 rotating system, 461 authenticated users SI group, 117 differential, 462, 544 authentication of user accounts, 98-100 GPOs, 228-229 Automated System Recovery. See ASR incremental, 462 Automatic Update Client website, 587 normal, 462, 544 Automatic Updates, 583 operator permissions, 272 average metric, 334 restoring, 545 RSM, 473 B scheduling, 471-472 security, 474-475 back up files and directories right, 252 startup disks, 447 backup domain controllers (BDCs), 61 system state, 545 Backup Operators group, 253-254 Backup Utility, 467-468 Backup Utility restoring, 478-482 backups basic disks, 386-387 jobs, 471-472 configuration, 386 logs, 467 dynamic disk conversions, 390-394 types, 462 logical drives, 396-397 command line, 468 managing, 388-390 data files, 462-466 moving to another computer, 394 defaults, 469-470 partitions, 395-397 graphical interface, 469-470 upgrades, troubleshooting, 409-410 restoring Basic Input/Output System (BIOS), 350 data files, 476-477 Basic security template, 258 system state, 478-482 batch SI group, 117 system state, 467-468 BDCs (backup domain controllers), 61 Backup Wizard, 471 BIOS (Basic Input/Output System), 350 backups. See also Backup Utility Boot parameter (gpupdate ASR, 452, 542, 579 command), 242 backup sets, creating, 452-454 boot partitions, 400 files, 455 boot volumes, 400 restore sets, 454-455 boot.ini file, 447 copy, 462 bootcfg.exe command, 457 daily, 463 31_0789736179_index.qxd 2/15/07 2:52 PM Page 631

631 CNs (canonical names)

booting CD-burning service, 533 Last Known Good CD contents Configuration, 449 MeasureUp practice tests, 591 Recovery Console, 450 answers, 593 commands (list of), 451 Certification Mode, 591 installing, 450 Custom Mode, 592 logging on, 451 Missed Question Mode, 592 starting from Windows Server Non-Duplicate Mode, 592 2003 CD, 450 objectives, 593 Safe Mode, 448 options, 589-590 VGA Mode, 534 question types, 592-593 bottlenecks, troubleshooting, 334-335 Study Mode, 591 disks, 337 technical support, 593 memory, 336 CD devices, 422-423 networks, 338 CDFS (Compact Disc File System), 423 processors, 336 CD-R (CD recordable), 423-424 breaking mirrored volumes, 405 CD-ROM (CD read-only memory), 33, 422 bridge connections, 363 CD-RW (CD rewritable), 422-424 build-list-and-reorder questions (exams), 40-41 CD Writing Wizard, 424 Built-in container, 253-255 CD Writing Wizard dialog box, 424 built-in local groups, 113 ch command, 459 burning CD-Rs/CD-RWs, 423-424 change permission, 142 change permissions special NTFS permission, 151 C change the system time right, 252 C$ shares, 138 chkdsk command-line utility, 415 cached credential settings (user chkntfs command-line utility, 415 accounts), 98-100 cipher.exe tool, 430 candidates (MCSA/MCSE) Client Settings tab (RDP-Tcp Properties educational background, 28-29 window), 287 hands-on experience, 29-31 clients ideal, 26-27 Active Directory, 65-66 readiness testing, 32-33 printer, 175 canonical names (CNs), 88, 120 RDC, 289-291 card services, 373-374 Remote Assistance, 281 CardBus, 373 WSUS configuration, 493-494 case-study exam strategy, 52-53 Cmd command, 459 cat files, 359 CNs (canonical names), 88, 120 31_0789736179_index.qxd 2/15/07 2:52 PM Page 632

632 colors (VGA Mode)

colors (VGA Mode), 534 computer accounts command-line administering, 71-73 counter logs, creating, 322 creating, 66 groups, creating, 118-119 joining to domains, 67 prestaging computer accounts, 70-71 NETBIOS names, 71 Run as command, 77, 274 prestaging shared folders, 134 command-line, 70-71 users, creating, 90-91 GUI, 67-70 customizing, 94 troubleshooting, 71-73 deleting, 95 Windows 9x/NT 4.0 Active utilities, Active Directory objects, Directory client, 65-66 74-75, 95 computer configuration settings commands (GPOs), 226 bootcfg.exe, 457 configuring CSVDE.exe, 75 Active Directory diskpart, 392 groups, 114-115 dsadd, 74, 90 permissions, 205 dsadd user, 90 alerts, 322 DSGET.exe, 74 auditing policies, 261-264 DSMOD.exe, 74 basic disks, 386 dsmod user, 74, 94 CD-Rs/CD-RWs, 424 DSMOVE.exe, 74, 95 consoles, 276-278 DSQUERY.exe, 74, 95 counter logs, 318-321 dsrm, 75, 95, 537 driver signing fsutil, 392 policy settings, 361-362 gpresult, 243 system properties, 359-360 gpupdate, 241-242 event logs, 308 LDIFDE.exe, 75 hardware profiles, 371 net share, 134 NICs, 363-367 Recovery Console, 451 programs, blocking/unblocking, 364 Run as, 75-77, 273-274 security logging, 367 SAC, 459 services, excluding, 366 Compact Disc File System (CDFS), 423 Windows Firewall, 366 compact.exe tool, 429 printers, 172-173 Compatible security template, 259 RDC complexity requirements setting, 256 client, 289-291 compressing connections, 294 files, 427-429 snap-ins, 293-294 volumes, 573 31_0789736179_index.qxd 2/15/07 2:52 PM Page 633

633 DACLs (discretionary access control lists)

RDP, 286-287 logging on, 451 Remote Assistance, 281 starting from Windows Server security templates, 260 2003 CD, 450 share permissions, 142-143 SAC, 458-459 Terminal Services, 285-286 Shared Folders, 574 GPOs, 288 copy backup, 462 RDC client, 289-292 copying permissions (Active Directory), 207 RDC snap-ins, 293-294 counters RDP settings, 286-287 sessions, 287 logs, performance, 317-322 user accounts, 93-94 performance, 310 Windows Firewall, 364 System Monitor, adding, 315-316 WSUS clients, 493-494 CPUs conflicts (hardware), 356-357 bottlenecks, 336 connections HAL updates, 370-371 bridge, 363 multiple, 533 network, 364 performance monitoring, 339 RDC, 293 server performance, 332 Connectix website, 31 upgrading, 369-370 Crashdump command, 459 consoles crashdumps, 580 ADUC, 86 create a page file right, 252 customizing user accounts, 93-94 groups, creating, 118 create all child objects permission, 204 users, creating, 88-89 create files/write data special NTFS permission, 150 Computer Management, 275-276 create folders/append data special NTFS customizing, 276-278 permission, 150 GPMC, 140, 223, 587 create-a-tree questions (exams), 41-43 Microsoft Saved, 276-278 creator owner SI group, 117 MMC, 62 CSPs (Cryptographic Service Action pane, 63 Providers), 374 Add or Remove Snap-in dialog CSVDE.exe command, 75, 571 box, 63 customizing. See configuring error handling, 63 Removable Storage snap-in, 413 version 3.0, 63-64 D Recovery, 450 D command, 459 commands (list of), 451 D$ shares, 138 enabling/disabling services, 543 DACLs (discretionary access control installing, 450 lists), 144 31_0789736179_index.qxd 2/15/07 2:52 PM Page 634

634 daily backups

daily backups, 463 denying permissions, 206 data design exams, 49-50 backing up detecting disk errors, 412 Backup Utility, 462-466 Device Manager restoring, 476-477 remote server management, 275 rotating system, 461 troubleshooting compressing, 427 device conflicts, 357 data layer, 502 hardware, 352-354 Data Recovery Agents (DRAs), 431 devices DCs (domain controllers), 60, 532 CD backup, 61 burning, 423-424 communication, 571 settings, 424 primary, 61 support, 422-423 system state, 479-482 conflicts, 356-357 Windows Server 2003 as, 532 drivers defaults digitally signed, 166, 355 Backup Utility, 469-470 installing, 354 domain policies, 220 print, 164, 176 user rights, 251-253 resource settings, 357 defense-in-depth security model, 501-502 rolling back, 356 defragmenting disks, 413-415 signing, 358-362, 532 Delegation of Control Wizard, 210 uninstalling/reinstalling, 358 delete all child objects permission, 204 updating manually, 355 delete special NTFS permission, 151 video, 584 delete subfolders and files special NTFS DVD, 422-423 permission, 151 installing, 351-352 deleting PnP, 350 counters, 316 installing, 350-352 instances, 316 PCI devices, 363-367 mirrored volumes, 405-406 smart cards, 374 objects troubleshooting, 352-354 Active Directory, 537 print. See printers monitored items, 316 troubleshooting partitions, 397 Add Hardware Wizard, 352 permissions, 207 Device, 352-354 print jobs, 192 USB RDC connections, 294 controllers/hubs, 425 shared folders, 131 power allocations, 426 special permissions, 149 support, 424 user accounts, 95 troubleshooting, 426-427 31_0789736179_index.qxd 2/15/07 2:52 PM Page 635

635 diskpart command

dial-up SI group, 117 differential backups, 462, 544 dialog boxes digital signed drivers, 166, 355 Add Counter, 316 Directory Service Add Mirror, 403-404 Access event, 262 Add New Connection, 293 event logs, 305 Add or Remove Snap-In, 63 service logs, 265 Add Standalone Snap-In, 134, disabling 221, 276 GPOs, 234 Add/Remove Snap-In, 134, 276 services, 504 Additional Drivers, 177 disaster recovery, 446 Advanced Attributes, 429 ASR, 452 Advanced Security Settings, 149 backup sets, creating, 452-454 Advanced Settings, 366 files, 455 CD Writing Wizard, 424 restore sets, 454-455 Driver Signing Options, 360 backup disks, 447 Edit Alias, 133 backups Effective Permissions, 575 ASR, 542, 579 Encryption Details, 430 differential, 544 Find, 101 normal, 544 Hardware Profiles, 371 system-state, 545 Location and Comment, 171 EMS, 456 Name Your Printer, 170 existing installations, 457-458 New Object—Group, 118 new installations, 457 New Query, 101 out-of-band management, 456 Offline Settings, 139 SAC, 458-459 Open, 103 Last Known Good Permission Entry, 149 Configuration, 449 Printer Sharing, 171 options, 459-461 Remove Mirror, 406 Recovery Console, 450 Save As, 103 commands (list of), 451 Scheduled Job Options, 471 installing, 450 Select Computer, 276 logging on, 451 Select Disks, 403 starting from Windows Server Set Account Information, 471 2003 CD, 450 Set password, 92 Safe Mode, 448 Share Permissions, 143 discretionary access control lists Specify a Printer, 172 (DACLs), 144 Specify Permissions for the Disk Defragmenter, 275, 413-415 Share, 135 Disk Management tool, 275 Windows Firewall, 367 diskpart command, 386, 392 31_0789736179_index.qxd 2/15/07 2:52 PM Page 636

636 disks

disks primary, 61 basic, 386-387 system state, 479-482 configuration, 386 Windows Server 2003 as, 532 dynamic disk conversions, forest functional levels, 121-122, 538 390-394 Group Policy Object Editor, 222 logical drives, 396-397 local groups, 112 managing, 388-390 trees, 61 moving to another computer, 394 user account names, 87-88 partitions, 395-397 downloading updates, 490 upgrades, troubleshooting, drag-and-connect questions (exams), 409-410 43-44 bottlenecks, 337 drag-and-drop questions (exams), 47 defragmenting, 413-415 DRAs (Data Recovery Agents), 431 duplexing, 402 Driver Signing Options dialog box, 360 dynamic, 386-388 Driver Verifier utility, 355 basic disk conversions, 390-394 driver.cab file, 355 managing, 388-390 drivers, 350 moving between computers, 394, 536 digitally signed, 166, 355 reactivating, 394-395 installing, 354 support, 388 print, 164, 176 troubleshooting, 409 resource settings, 357 volumes. See volumes Roll Back Driver function, 533 errors, troubleshooting, 412 signing, 358-359, 532 GPT, 384-385 policy settings, 361-362 MBR, 384 system properties, 359-360 NTFS quotas, 432-433 uninstalling/reinstalling, 358 partitioning, 384, 536 updating quotas, 333 manually, 355 server performance, 333 rolling back, 356 startup, 447 video, 584 storage, 340-341 dsadd command, 70, 74, 90 dismounting volumes, 392 dsadd user command, 90 DNs (distinguished names), 119 DSGET.exe command, 74 DNS server event logs, 305 dsmod user command, 94 Domain Admins group, 255 DSMOD.exe command, 74 domains, 61 DSMOVE.exe command, 74, 95 computer accounts, joining, 67 DSQUERY.exe command, 74, 95 controllers, 60, 532 dsrm command, 75, 95, 537 backup, 61 duration metric, 335 communication, 571 31_0789736179_index.qxd 2/15/07 2:52 PM Page 637

637 Event Viewer

DVD devices, support, 422-423 EMF (enhanced metafile), 166 DVD-R (DVD recordable), 422 EMS (Emergency Management Services), DVD-ROM (DVD read-only memory), 422 446, 456 DVD-RW (DVD rewritable), 422 existing installations, 457-458 dynamic disks, 386-388 new installations, 457 basic disk conversions, 390-394 out-of-band management, 456 managing, 388-390 SAC, 458-459 moving between computers, 394, 536 enabling GPOs, 234 reactivating, 394-395 Encrypting File System (EFS), 427-429 support, 388 encryption troubleshooting EFS, 427 basic disk upgrades, 409-410 NTFS, 429-432 installation, 409 Encryption Details dialog box, 430 volume extensions, 409 enforce password history setting, 256 volumes, 397-398 enhanced metafile (EMF), 166 extending, 399-400 Enterprise Admins group, 255 mirrored, 401-408 Environment tab (RDP-Tcp Properties RAID-5, 401, 406-408 window), 287 simple, 398 Error-Checking tool, 412 spanned, 398-399 errors striped, 400-401 disk, troubleshooting, 412 events, 306 E Explorer Enhanced Security Configuration, 577 E$ shares, 138 handling, 63 EAP (Extensible Authentication Event Viewer, 264-265 Protocol), 364 disk quotas, monitoring, 333 EAP-TLS (Extensible Authentication event logs, 304-305 Protocol-Transport Level Security), 374 application, 305 EB (exabytes), 385 archiving, 307 Edit Alias dialog box, 133 directory service, 305 educational background (candidates), DNS server, 305 28-29 file replication service, 305 effective permissions opening, 308 Active Directory, 208-209 options, 308 viewing, 151-152 security, 305 Effective Permissions dialog box, 575 system, 305 EFI (Extensible Firmware Interface), 384 viewing, 306-308 EFS (Encrypting File System), 427-429 remote server management, 275 31_0789736179_index.qxd 2/15/07 2:52 PM Page 638

638 events

events strategies, 52 audit, 262-263 case-study, 52-53 error, 306 fixed-length/short-form, 53-54 failure audit, 306 question-handling, 55-56 information, 306 testing centers, 37-38 logs, 304-305 explicit Active Directory permissions, 204 application, 305 Explorer archiving, 307 Enhanced Security Configuration DNS server, 305 error messages, 577 file replication service, 305 shared folders, 130-131 opening, 308 exporting Active Directory queries, 103 options, 308 Extend Volume Wizard, 399 security, 305 Extensible Authentication Protocol (EAP), system, 305 364 viewing, 306-308 Extensible Authentication Protocol- Transport Level Security (EAP-TLS), 374 recording, 547 Extensible Firmware Interface (EFI), 384 success audit, 307 system. See system events warning, 306 F everyone SI group, 117 failure audit events, 306 .evt filename extensions, 305 FAT (File Allocation Table), 143 exabytes (EB), 385 FAT32 (File Allocation Table 32-bit), 143 Exam Cram website, 34 faults, hard page, 546 exams FAX$ shares, 138 confidence, 56 file systems, 143 design, 49-50 CDFS, 423 format, 50-52 EFS, 427-429 adaptive testing, 51 NTFS fixed-length, 50 disk quotas, 432-433 short-form, 51 encryption, 429-432 question format, 38 file compression, 428-429 build-list-and-reorder, 40-41 files create-a-tree, 41-43 ASR, creating, 455 drag-and-connect, 43-44 auditing, 263 multiple-choice, 39-40 boot.ini, 447 new question formats, 46-47 .cat, 359 select-and-place, 41, 44-45 compressing, 428-429 single answer, 39-40 data readiness, 36-37 backing up, 461-466 resources, 56-58 restoring backups, 476-477 31_0789736179_index.qxd 2/15/07 2:52 PM Page 639

639 GPOs (group policy objects)

driver.cab, 355 Force parameter (gpupdate encrypting command), 242 EFS, 427 force shutdown from a remote system right, 252 NTFS, 429-432 forest functional levels, 122-123, 538 .evt extension, 305 log. See logs format of exams, 50-52 Microsoft Saved Console, 276-278 adaptive testing, 51 ntds.dit, 61 design, 49-50 NTFS permissions, 144 exam questions, 38 offline, restricting, 140-141 build-list-and-reorder, 40-41 ownership, 153-154 create-a-tree, 41-43 replication service logs, 265 drag-and-connect, 43-44 special NTFS permissions, 150-151 multiple-choice, 39-40 unattend.txt, 457 new questions, 46-47 winnt.sif, 457 select-and-place, 41, 44-45 filtering GPOs, 227 single-answer, 39-40 Find dialog box, 101 fixed length, 50 fixed-length exam strategy, 50-54 short-form, 51 FQDN (fully qualified domain name), 67 folders fsutil command, 392 auditing, 263 full control permission, 142 NTFS permissions, 145 ownership, 153-154 Active Directory, 204 print spooler, 187 files, 144 redirecting, 218, 238-239 folders, 145 shadow copies, 543 full control special NTFS permission, 150 shared, 130 fully qualified domain name (FQDN), 67 access, troubleshooting, 154-155 functional levels administrative shares, 137-139 Active Directory, 121-123 creating, 130-131, 134-136 forest, 122-123, 538 deleting, 131 hidden shares, 137-139 G offline settings, 139-141 GDI (graphical device interface), 166 permissions, 136 global groups, 113 publishing, 136-137, 574 GPMC (Group Policy Management shadow copies. See shadow copies Console), 140, 223, 587 share permissions, 141-143 GPOs (group policy objects), 218, 279 Shared Folders MMC snap-in, Active Directory updates, 227 134, 137 administrative templates, 239 Web, 132-133 special NTFS permissions, 150-151 31_0789736179_index.qxd 2/15/07 2:52 PM Page 640

640 GPOs (group policy objects)

applications, assigning, 238 Security Configuration and auditing, 261-264 Analysis Tool, 260-261 backing up, 228-229 templates, 258-260 creating, 218 settings executing, 219 computer configuration, 226 filtering, 227 enabling/disabling, 234 folder redirection, 238-239 importing, 229 group membership restrictions, 235 listing of, 218 Group Policy Management Console, managing, 220-223 140, 223, 587 refreshing, 241-242 Group Policy Object Editor user configuration, 226 domains, 222 software local computers, 220-221 installations, 238 OUs, 222 restrictions, 236-237 sites, 221 startup/shutdown scripts, inheritance, 225-226 loading, 234 levels, 218 Terminal Server, 288 linking, 218 user cached credential settings, 99-100 links, 227 user rights, 250 local, 219 Built-in container assignments, logon/logoff scripts, loading, 234 253-255 nonlocal, 220 default, 251-253 Object Editor local group assignments, 253 domains, 222 WSUS, 493 local computers, 220-221 gpresult command, 243 OUs, 222 GPT disks (GUID partition table), 384-385 sites, 221 gpupdate command, 241-242 offline files, 140-141 graphical Backup Utility interface, overview, 218-220 469-470 permissions, 227, 250 graphical device interface (GDI), 166 Remote Assistance, 279-280 graphical user interfaces. See GUIs restoring, 228-229 Group Policy Management Console rights, 250 (GPMC), 140, 223, 587 RSoP, 242-243 Group Policy Object Editor security, 255-256 domains, 222 Account Lockout policy, 257 local computers, 220-221 options, 257-258 OUs, 222 password policy, 256 sites, 221 31_0789736179_index.qxd 2/15/07 2:52 PM Page 641

641 hardware

Group Policy Objects. See GPOs managing, 388-390 groups moving to another computer, 394 Active Directory, 112 troubleshooting, 409-410 A→G→DL←P strategy, 115 dynamic, 386-388 A→G→U→DL←P strategy, 116 basic disk conversions, 390-394 creating, 118-119 managing, 388-390 distribution, 112 moving to another computer, 394 membership, 113-115 reactivating, 394-395 names, 115, 119 support, 388 scopes, 112-115 troubleshooting, 409 security, 112, 117 logical drives, 396-397 SI, 116-117 partitions, 395-396 built-in, 113 boot, 400 domain, 112 creating, 396-397 global, 113 deleting, 397 local, 253 dual-boot configurations, 396 membership restrictions, 235 extending, 396 NTFS permissions, 147-148 system, 400 performance log users, 317, 547 troubleshooting, 410-412 performance monitor users, 317 volumes, 397-398 SI, 116-117 boot, 400 universal, 113 extending, 399-400 GUID partition table (GPT) disks, 384-385 mirrored, 401-408 GUIs (graphical user interfaces) RAID-5, 401, 406-408 prestaging computer accounts, 67-70 simple, 398 users, creating, 88-89 spanned, 398-399 striped, 400-401 H hard page faults, 546 hardware HALs (Hardware Abstraction Layers), 369 card services, 373-374 installing, 369 CD devices updates, 370-371 burning, 423-424 handling errors, 63 settings, 424 hands-on experience (candidates), 29-31 support, 422-423 hard disks conflicts, 356-357 basic, 386-387 drivers, 350 configuration, 386 digitally signed, 355 dynamic disk conversions, installing, 354 390-394 31_0789736179_index.qxd 2/15/07 2:52 PM Page 642

642 hardware

resource settings, 357 Hardware Compatibility List (HCL), 350 rolling back, 356 Hardware Profile/Configuration Recovery signing, 358-362 menu, 372 uninstalling/reinstalling, 358 Hardware Profiles dialog box, 371 updating manually, 355 Hardware Update Wizard, 369 DVD devices, 422-423 HCL (Hardware Compatibility List), 350 installing, 351-352 help multiple processors, 533 Remote Assistance, 278, 281 NICs, 363 client configuration, 281 configuring, 363-367 configuration settings, 541 programs, blocking/ GPOs, 279-280 unblocking, 364 Maximum Ticket Time, 279 protocols, 364 receiving, 281-283 security logging, 367 requesting, 281-283 services, excluding, 366 SMAPI, 279 Windows Firewall, 366 Solicited Remote Assistance PnP devices, 350 setting, 279 installing, 350-352 user-assistance features, 585 PCI devices, 363-367 help command, 459 smart cards, 374 hidden shares, 137-139 troubleshooting, 352-354 Highly Secure security template, 259 processors hives (registry), 226 bottlenecks, 336 HKEY_CURRENT_USER hive, 226 HAL updates, 370-371 HKEY_LOCAL_MACHINE hive, 226 multiple, 533 host layer, 502 performance monitoring, 339 hot area questions (exams), 46 server performance, 332 hubs (USB), 425-426 upgrading, 369-370 profiles, 371-373, 534 I troubleshooting Add Hardware Wizard, 352 ICF (Internet Connection Firewall), 364 Device Manager, 352-354 ICMP (Internet Control Message Protocol), 366 USB devices ICS (Internet Connection Sharing), 364 controllers/hubs, 425 power allocations, 426 Id command, 459 support, 424 identification (network), 363 troubleshooting, 426-427 IIS (Internet Information Services), 179-180 Hardware Abstraction Layers (HALs), 369 IIS 6.0, 577 31_0789736179_index.qxd 2/15/07 2:52 PM Page 643

643 local printers

iisapp.vbs program, 578 Internet Connection Sharing (ICS), 364 iisext.vbs program, 578 Internet Control Message Protocol iisweb.vbs program, 578 (ICMP), 366 importing Internet Information Services (IIS), 179-180 Active Directory queries, 103 Internet Printer Protocol (IPP), 175 GPO settings, 229 Internet printing, 179-180 security template, 259 Introduction to Shadow Copies of Shared users, 91 Folders website, 588 incremental backup, 462 invitations (RA), 539 Indexing Service, 275 IPC$ shares, 138 information events, 306 IPP (Internet Printer Protocol), 175 inheritance Itanium-based computers, 384 Active Directory permissions, 204 GPOs, 225-226 permissions J – K – L NTFS, 146 Last Known Good Configuration turning off, 207 (booting), 449 installing last metric, 334 drivers, 354 LDAP (Lightweight Directory Access Protocol), 88, 119 HALs, 369 LDIFDE.exe command, 75 hardware, 351-352 IIS, 179-180 LDR (Logical Disk Manager), 387 PnP devices, 350-352 License Logging service, 582 printers, 167-168 licensing drivers, 176 Terminal Server 2003 Transition Plan, 284 local, 168, 171 TS, 540 network, 171-172 line printer daemon (LPD), 167 Recovery Console, 450 line printer remote (LPR), 167 software, 238 linking GPOs, 218, 227 Terminal Services, 284 updates, 490 list folder contents permission, 145 WSUS, 490 list folder/read data special NTFS permission, 150 instances load and unload device drivers right, 252 performance objects, 310 local GPOs, 219 System Monitor, 315-316 local groups, 253 interactive SI group, 117 local printers internal network layer, 501 installing, 168, 171 Internet Connection Firewall (ICF), 364 network printers, compared, 165-166 31_0789736179_index.qxd 2/15/07 2:52 PM Page 644

644 Local Users and Groups tool

Local Users and Groups tool, 275 M Location and Comment dialog box, 171 manage auditing and security log locked-out user accounts, 96-97 right, 252 logging on, Recovery Console, 451 Manage Documents permission, 178 Logical Disk Manager (LDR), 387 Manage Printers permission, 178 logical drives, 396-397 managing Logoff parameter (gpupdate Active Directory groups, 112 command), 242 A→G→DL←P strategy, 115 Logon event, 262 A→G→U→DL←P strategy, 116 Logon Settings tab (RDP-Tcp Properties window), 287 creating, 118-119 distribution, 112 logon/logoff scripts, 234 membership, 113-115 logs names, 115, 119 application, 264 scopes, 112-115 counter, 317-322 security, 112, 117 directory service, 265 SI, 116-117 event, 304-305 basic/dynamic disks, 388-390 application, 305 GPOs, 220-223 archiving, 307 logs, 264-265 directory service, 305 printers DNS server, 305 queues, 196 file replication service, 305 spooler, 186-187 opening, 308 users options, 308 authentication, 98 security, 305 cached credential settings, 98-100 system, 305 creating, 86-91 viewing, 306-308 customizations, 93-94 file replication service, 265 deleting, 95 managing, 264-265 domain account names, 87-88 printer, 193 importing, 91 saving, 546 locked-out, 96-97 security, 264 passwords, 91-92 system, 265 troubleshooting, 96 viewing, 264-265 manual driver updates, 355 LPD (line printer daemon), 167 Master Boot Record disks (MBR LPR (line printer remote), 167 disks), 384 31_0789736179_index.qxd 2/15/07 2:52 PM Page 645

645 MMC (Microsoft Management Console)

Master File Table (MFT), 415 memory:pages:sec, 310 maximum metric, 335 metrics, performance, 310 maximum password age setting, 256 MFT (Master File Table), 415 Maximum Ticket Time (Remote Microsoft Assistance), 279 Baseline Security Analyzer MBR disks (Master Boot Record), 384 (MBSA), 505 MBSA (Microsoft Baseline Security Learning, Reference, and Analyzer), 505 Certification Web pages, 51 MCP Magazine website, 587 learning website, 57 MCSA candidates Management Console (MMC), 62 educational background, 28-29 Action pane, 63 hands-on experience, 29-31 Add or Remove Snap-in dialog box, 63 ideal, 26-27 error handling, 63 readiness testing, 32-33 Removable Storage snap-in, 413 MCSE candidates version 3.0, 63-64 educational background, 28-29 online knowledge base, 57 hands-on experience, 29-31 Preparation Guide for Exam 70-290 ideal, 26-27 website, 588 readiness testing, 32-33 Saved Console files, 276-278 MeasureUp TechNet website, 488 practice test options, 589-591 Training and Certification website, answers, 593 33, 57, 587 Certification Mode, 591 UAM volume shares, 138 Custom Mode, 592 Windows Server 2003 website, 586 Missed Question Mode, 592 minimum metric, 335 Non-Duplicate Mode, 592 minimum password age setting, 256 objectives, 593 minimum password length setting, 256 question types, 592-593 mirrored volumes, 386-387, 401-404 Study Mode, 591 availability, 408 technical support, 593 breaking, 405 media pools, 473 creating memberships (Active Directory groups) boot/system volumes, 403 limitations, 113 unallocated space, 402-403 maintenance, 115 deleting, 405-406 memory MMC (Microsoft Management bottlenecks, 332, 336 Console), 62 leaks, 332 Action pane, 63 performance monitoring, 339-340 Add or Remove Snap-in dialog server performance, 332 box, 63 31_0789736179_index.qxd 2/15/07 2:52 PM Page 646

646 MMC (Microsoft Management Console)

error handling, 63 N Removable Storage snap-in, 413 Name Your Printer dialog box, 170 version 3.0, 63-64 names modify permission Active Directory files, 144 conventions, 119-120 folders, 145 groups, 115, 119 monitoring performance, 311 canonical, 88, 120 server performance, 332-333 distinguished, 119 bottlenecks, 334-338 domain user accounts, 87-88 disks, 333, 340-341 FQDN, 67 memory, 332, 339-340 NETBIOS, 71 networks, 333, 341-342 Pre-Windows 2000 logon, 87 processors, 332, 339 relative distinguished, 119 workload, 333 user logon, 87 System Monitor, 314-315 net share command, 134 alerts, 322 NETBIOS names, 71 counter logs, 318-322 counters, adding, 315-316 NETLOGON shares, 138 instances, adding, 315-316 Network Adapter tab (RDP-Tcp Properties window), 287 objects, adding, 315-316 Network Interface Cards. See NICs Performance Logs and Alerts tool, 316-317 network SI group, 117 Task Manager, 312 networks mounting volumes, 392 advance settings, 363 moving bottlenecks, 338 Active Directory objects, 211 bridge connections, 363 basic disks between computers, 394 connections, 364 dynamic disks between identification, 363 computers, 536 operator-assisted dialing, 363 MSDN website, 587 optional components, 363 MSDN Windows Script website, 587 performance monitoring, 341-342 multimaster replication, 62 printers multiple computers, simulating, 31 installing, 171-172 multiple processors, enabling, 533 local printers, compared, 165-166 multiple-choice questions (exams), 39-40 remote access preferences, 363 multiprocessors, 369-370 server performance, 333 wireless support, 367-368 WPS, 368-369 31_0789736179_index.qxd 2/15/07 2:52 PM Page 647

647 parameters

new features of MMC 3.0, 63-64 moving, 211 New Object—Group dialog box, 118 referencing, 88 New Partition Wizard, 396 instances, 310 New Query dialog box, 101 performance, 310, 324 new question formats (exams), 46-47 System Monitor, adding, 315-316 New Technology File System. See NTFS types, 250 NICs (Network Interface Cards), 363 offline files, restricting, 140-141 configuring, 363-367 Offline Settings dialog box, 139 programs, blocking/ Open dialog box, 103 unblocking, 364 opening security logging, 367 event logs, 308 services, excluding, 366 Group Policy Object Editor Windows Firewall, 366 domains, 222 protocols, 364 local computers, 220-221 nonlocal GPOs, 220 OUs, 222 normal backups, 462, 544 sites, 221 NTBackup utilities, 468 Security Configuration and Analysis ntds.dit file, 61 Tool, 260 NTFS (New Technology File System) operating systems, locking/ unlocking, 572 disk quotas, 432-433 operator-assisted dialing, 363 encryption, 429-432 OUs (organizational units), 62, 210 file compression, 428-429 permissions, 144-145, 576 control, delegating, 210 assigning, 147-148 Group Policy Object Editor, 222 out-of-band management, 456 default, 145 effective, viewing, 151-152 ownership files, 144, 153-154 Active Directory permissions, 209-210 folders, 145, 153-154 files/folders, 153-154 inherited, 146 security, 147 special, 149-151 P troubleshooting, 155 p password parameter (gpresult command), 243 O Packet Internet Groper (PING), 366 paper trays, 177 Object Access event, 263 parameters objects gpresult command, 243 Active Directory gpupdate command, 242 command-line utilities, 74-75, 95 deleting, 537 31_0789736179_index.qxd 2/15/07 2:52 PM Page 648

648 partitions

partitions, 536 processors, 332, 339 basic disks, 395-396 workload, 333 creating, 396-397 specifiers, 310 deleting, 397 System Monitor, 314-315 dual-boot configurations, 396 alerts, 322 extending, 396 counter logs, 318-322 boot, 400 counters, 315-316 disks, 384 instances, 315-316 system, 400 objects, 315-316 passwords Performance Logs and Alerts Active Directory, 538 tool, 316-317 policy, 256 Task Manager, 311-312 users, 91-92 performance log users group, 317, 547 pausing print jobs, 192 Performance Logs and Alerts tool, 316-317 PC Cards, 373 printer management, 583 PCI (Peripheral Component Interconnect), 373 remote server management, 275 PCI (Peripheral Connection performance monitor users group, 317 Interface), 357 perimeter layer, 501 PDCs (primary domain controllers), 61 Peripheral Component Interconnect PEAP (Protected EAP), 364 (PCI), 373 Pearson VUE website, 34 Peripheral Connection Interface (PCI), 357 performance Permission Entry dialog box, 149 alerts, 322 permissions, 250 counter logs, 317-322 account operators, 272 counters, 310 Active Directory, 204 disk storage, 340-341 adding/changing, 205 memory, 339-340 allowing/denying, 206 metrics, 310 assigning, 207 monitoring tool, 546 copying, 207 networks, 341-342 deleting, 207 objects, 310, 324 effective, 208-209 Performance Logs and Alerts tool, 316-317 explicit, 204 processors, 339 inherited, 204, 207 servers, 332-333 objects, moving, 211 bottlenecks, 334-338 OU control, 210 disks, 333, 340-341 ownership, 209-210 memory, 332, 339-340 standard, 204 networks, 333, 341-342 viewing, 205 31_0789736179_index.qxd 2/15/07 2:52 PM Page 649

649 policies

administrators, 272-273 read extended attributes, 150 backup operators, 272 server operator, 272 change, 142, 151 shared folders, 136 create all child objects, 204 shares, 141-142 create files/write data, 150 customizing, 142-143 create folders/append data, 150 troubleshooting, 155 delete, 151 support technicians, 272-273 delete all child objects, 204 take ownership, 151 delete subfolders and files, 151 traverse folder/execute file, 150 full control, 142, 150 write Active Directory, 204 Active Directory, 204 files, 144 files, 144 folders, 145 folders, 145 GPOs, 227 write attributes, 150 list folder contents, 145 write extended attributes, 151 list folder/read data, 150 Permissions tab (RDP-Tcp Properties modify window), 287 files, 144 physical security, 501-502 folders, 145 physicaldisk:avg. disk queue NTFS, 144-145, 576 length:_total, 310 assigning, 147-148 PING (Packet Internet Groper), 366 effective, viewing, 151-152 PnP (Plug and Play), 350 default, 145 installing, 350-352 files, 144, 153-154 PCI devices, 363-367 folders, 145, 153-154 smart cards, 374 inherited, 146 troubleshooting, 352-354 security, 147 policies special, 149-151 audit, 307 troubleshooting, 155 driver signing options, 361-362 print operator, 272 group, 99-100 printers, 178-179 security, 255-256 read, 142, 151 Account Lockout, 257 Active Directory, 204 options, 257-258 files, 144 password, 256 folders, 145 Security Configuration and Analysis Tool, 260-261 read attributes, 150 templates, 258-260 read & execute viewing, 539 files, 144 folders, 145 31_0789736179_index.qxd 2/15/07 2:52 PM Page 650

650 policies, procedures, and awareness layer

policies, procedures, and awareness logs, 193 layer, 501 managing, 583 Policy Change event, 263 network pools (printer), 190-191 installing, 171-172 power allocations (USB hubs), 426 local printers, compared, 165-166 Power Users group, 253 paper trays, 177 Pre-Windows 2000 Compatible Access permissions, 178-179 group, 254 pools, 190-191 Pre-Windows 2000 logon names, 87 print jobs predefined security templates, 258-259 canceling, 192 PrepLogic CD-ROM, 33 pausing, 192 prestaging accounts, 570 priorities, 192 command-line, 70-71 redirecting, 193 GUI, 67-70 viewing, 192 Previous Versions Client software, 438 printing process, 166-167 primary domain controllers (PDCs), 61 priorities, 188-189 print jobs properties, 172-173 canceling, 192 queues, managing, 196 pausing, 192 scheduling, 189 priorities, 192 sharing, 175-177 redirecting, 193 spoolers, 186-187 viewing, 192 troubleshooting, 196-198 print operator permissions, 272 priorities (printers), 188-189, 192 Print Operators group, 255 Privilege Use event, 263 Print permission, 178 Process Tracking event, 263 PRINT$ shares, 138 processor:% processor time:_total, 310 Printer Sharing dialog box, 171 processors printers, 164 bottlenecks, 336 adding, 167-168 HAL updates, 370-371 local, 168, 171 multiple, 533 network, 171-172 performance monitoring, 339 auditing, 194-195 server performance, 332 clients, 175 upgrading, 369-370 drivers, 164, 176 profiles Internet printing, 179-180 hardware, 371-373, 534 local users, 570 installing, 168, 171 programs. See applications network printers, compared, Prometric website, 34 165-166 31_0789736179_index.qxd 2/15/07 2:52 PM Page 651

651 referencing Active Directory objects

properties RDC (Remote Desktop Connection), 289 printers, 172-173 client, 289-291 window connections, 293 network connections, 364 sessions, 292 TCP/IP, 367 snap-ins, 293-294 wireless networking, 368 Web Connection Windows Protected EAP (PEAP), 364 component, 294 protocols RDNs (relative distinguished names), 119 EAP, 364 RDP (Remote Desktop Protocol), 286-287 EAP-TLS, 374 RDP-Tcp Properties window, 287 NICs, 364 reactivating missing/offline dynamic disks, 394-395 TCP/IP, 367 read & execute permission RDP, 286-287 publishing shares, 136-137, 574 files, 144 folders, 145 read attributes special NTFS Q permission, 150 Q command, 459 read extended attributes special NTFS queries (Active Directory), 101 permission, 150 creating, 101 read permission, 142 exporting, 103 Active Directory, 204 importing, 103 files, 144 question-handling exam strategies, 55-56 folders, 145 queues (print), 196 read permissions special NTFS permission, 151 R readiness testing (candidates), 32-33 receiving Remote Assistance, 281-283 RA (Remote Assistance), 539-541 recording events, 547 client configuration, 281 Recovery Console, 450 configuration settings, 541 commands (list of), 451 GPOs, 279-280 enabling/disabling services, 543 invitations, 539 installing, 450 Maximum Ticket Time, 279 logging on, 451 receiving, 281-283 starting from Windows Server 2003 requesting, 281-283 CD, 450 SMAPI, 279 redirecting Solicited Remote Assistance folders, 238-239 setting, 279 print jobs, 193 RAID-5 volumes, 387, 401, 406-408 referencing Active Directory objects, 88 31_0789736179_index.qxd 2/15/07 2:52 PM Page 652

652 refreshing GPOs

refreshing GPOs, 241-242 receiving, 281-283 Registry requesting, 281-283 HKEY_CURRENT_USER hive, SMAPI, 279 226 Solicited Remote Assistance HKEY_LOCAL_MACHINE hive, setting, 279 226 snap-ins, 276-278 user cached credential settings, 98-99 Terminal Services, 283-285 reinstalling drivers, 358 configuring, 285-288 relative distinguished names (RDNs), 119 installing, 284 remote access preferences, 363 RDC client, 289-292 remote administration (IIS 6.0), 577 RDC connections, 293 Remote Assistance (RA), 278, 539 RDC snap-ins, 293-294 client configuration, 281 RDC Web Connection Windows configuration settings, 541 component, 294 GPOs, 279-280 Terminal Server 2003 Licensing Transition Plan, 284 invitations, 539 tools Maximum Ticket Time, 279 Computer Management console, receiving, 281-283 275-276 requesting, 281-283 snap-ins, 276-278 SMAPI, 279 removable storage, 413 Solicited Remote Assistance snap-in, 413 setting, 279 tool, 275 Remote Control add-in download website, 587 Removable Storage Manager (RSM), 473 Remote Control tab (RDP-Tcp Properties Remove Mirror dialog box, 406 window), 287 repairing disk errors, 412 Remote Desktop Connection. See RDC requesting Remote Assistance, 281-283 Remote Desktop Protocol (RDP), 286-287 reset account lockout counter after Remote Desktop Users group, 253 setting, 257 Remote Desktop Web Connection Resource Kits, 31 Windows component, 294 resources remote server management books, 586 Computer Management console, exams, 56-58 275-276 settings, changing, 357 Remote Assistance, 278 user-assistance features, 585 client configuration, 281 websites, 588 configuration settings, 541 restart command, 459 GPOs, 279-280 restore files and directories right, 252 invitations, 539 Restore Group Policy Object Wizard, 229 Maximum Ticket Time, 279 restore sets (ASR), 454-455 31_0789736179_index.qxd 2/15/07 2:52 PM Page 653

653 security

restoring scope parameter (gpresult backups, 545 command), 243 data backups, 476-477 scopes (Active Directory groups), 112-113 GPOs, 228-229 scripts system state data, 478-482 loading with GPOs, 234 Restricted Groups policy, 235 settings, 218 restricting SCW (Security Configuration Wizard), 504 group memberships, 235 Secure security template, 259 software access, 236-237 security Resultant Set of Policy (RSoP), 242-243 Active Directory groups, 112 rights, 250 backups, 474-475 Built-in container assignments, costs, 500 253-255 defense-in-depth model, 501-502 default, 251-253 event logs, 305 local group assignments, 253 fixes, 503-504 roaming user profiles, 570 guides download website, 509 Roll Back Driver function, 533 identifiers (SIDs), 118 rolling back drivers, 356, 584 logs, 264 RSM (Removable Storage Manager), 473 Microsoft Baseline Security Analyzer RSoP (Resultant Set of Policy), 242-243 (MBSA), 505 Run as command, 75-77, 273-274 NTFS permissions, 147 physical, 502 S policies, 255-256 Account Lockout, 257 S command, 459 options, 257-258 s computer parameter (gpresult com- password, 256 mand), 243 Security Configuration and SAC (Special Administration Console), Analysis Tool, 260-261 458-459 templates, 258-260 SACLs (system access control lists), 144 principals, 117 Safe Mode, 448 rule of least privilege, 500 SAM (Security Accounts Manager), 118 service packs, 503-504 Save As dialog box, 103 settings, 218 saving log files, 546 templates, 258-260 Scheduled Job Options dialog box, 471 customizing, 260 scheduling importing, 259 backup jobs, 471-472 predefined, 258-259 printers, 189 threats, 500-501 schemas (Active Directory), 120 31_0789736179_index.qxd 2/15/07 2:52 PM Page 654

654 security

Threats and Countermeasures service SI group, 117 Guide, 502 services unneeded services, disabling, 504 card, 373-374 Windows CD-burning, 533 Firewall, 505 disabling, 504 Server 2003 Security Guide, 502 License Logging, 582 Security Accounts Manager (SAM), 118 tool, 275 Security Configuration and Analysis Tool, Wireless Configuration, 367 260-261 sessions Security Configuration Wizard (SCW), 504 RDC, 292 Select Computer dialog box, 276 Terminal Server, 287 Select Disks dialog box, 403 Sessions tab (RDP-Tcp Properties win- select-and-place questions (exams), dow), 287 41, 44-45 Set Account Information dialog box, 471 selecting Set Password dialog box, 92 test dates, 34 settings (GPOs) updates, 491 computer configuration, 226 Serial Port Console Redirection (SPCR), enabling/disabling, 234 456, 542 importing, 229 server message block (SMB), 167 listing of, 218 server operator permissions, 272 managing, 220-223 Server Operators group, 255 refreshing, 241-242 servers user configuration, 226 domain controllers, 60 shadow copies, 434 performance, 332-333 accessing, 437-438 bottlenecks, 334-338 creating, 434-436, 543 disks, 333, 340-341 storing, 391 memory, 332, 339-340 Shadow Copies of Shared Folders client networks, 333, 341-342 website, 588 processors, 332, 339 Share Permissions dialog box, 143 workload, 333 shared folders, 130 remote management. See remote administrative, 137-139 server management creating, 135 WSUS, 490 command-line, 134 administration, 491 Explorer, 130-131 configuring, 491 Shared Folders MMC installing, 490 snap-in, 136 website, 490, 498 deleting, 131 service packs (security), 503-504 hidden, 137-139 service set identifiers (SSIDs), 368 offline settings, 139-141 31_0789736179_index.qxd 2/15/07 2:52 PM Page 655

655 storage

permissions, 136, 141-143 SMP (symmetric multiprocessing), 369 publishing, 136-137, 574 snap-ins shadow copies, 434 RDC, 293-294 accessing, 437-438 remote server management, 276-278 creating, 434-436 Removable Storage, 413 Shared Folders MMC snap-in, Shared Folders MMC, 134-137 134, 137 software. See also applications tool, 275 installation troubleshooting access, 154-155 with GPOs, 238 web, 132-133 settings, 218 Shared Folders console, 574 restriction policies, 236-237 Shared Folders MMC snap-in, 134-137 Virtual PC, 31 shares VMware, 31 administrative, 137-139 Software Update Service (SUS), 490, creating, 135 583, 587 hidden, 137-139 Solicited Remote Assistance setting, 279 offline settings, 139-141 spanned volumes, 386, 398-399 permissions, 141-142 SPCR (Serial Port Console Redirection), customizing, 142-143 456, 542 troubleshooting, 155 Special Administration Console (SAC), publishing, 136-137 458-459 sharing printers, 175-177 special identity (SI) groups, 116-117 short-form exam strategy, 53-54 special permissions, 149-151 short-form testing, 51 Specify a Printer dialog box, 172 shut down the system right, 253 Specify Permissions for the Share dialog box, 135 shutdown command, 459 spoolers (print), 164, 186-187 SI (special identity) groups, 116-117 SSIDs (service set identifiers), 368 SIDs (security identifiers), 118 standard Active Directory Signature Verification tool, 358-359 permissions, 204 signing drivers, 358-359 startup disks, 447 configuring with startup/shutdown scripts, 234 policy settings, 361-362 state (system) system properties, 359-360 backing up, 467-468 options, 532 restoring backups, 478-482 simple volumes, 398 storage simulation questions, 47 disks, 340-341 single-answer questions (exams), 39-40 RA configuration settings, 541 SMAPI (Simple MAPI), 279 removable, 413 smart cards, 373-374 volume shadow copies, 391 SMB (server message block), 167 31_0789736179_index.qxd 2/15/07 2:52 PM Page 656

656 strategies for exams

strategies for exams, 52 system events, 263 case-study, 52-53 logs, 265, 304-305 fixed-length/short-form, 53-54 application, 305 question-handling, 55-56 archiving, 307 striped volumes, 387, 400-401 directory service, 305 success audit events, 307 DNS server, 305 Sunbelt Software website, 34 file replication service, 305 support opening, 308 CD/DVD devices, 422-423 options, 308 HAL updates, 370-371 security, 305 technicians, 272-273 system, 305 USB devices, 424 viewing, 306-308 controllers/hubs, 425 System Monitor, 309-311 power allocations, 426 System Monitor, 309-311 user-assistance features, 585 bottlenecks wireless networking, 367-368 disks, 337 SUS (Software Update Service), 490 memory, 336 IIS installation requirements, 583 networks, 338 website, 587 processors, 336 symmetric multiprocessing (SMP), 369 troubleshooting, 334-335 Sync parameter (gpupdate performance monitoring, 314-315 command), 242 alerts, 322 system counter logs, 318-322 events. See system events counters, adding, 315-316 partitions, 400 instances, adding, 315-316 performance objects, adding, 315-316 alerts, 322 Performance Logs and Alerts counter logs, 317-322 tool, 316-317 monitoring, 311-312 views, 314 Performance Logs and Alerts system SI group, 117 tool, 316-317 SYSVOL shares, 138 System Monitor. See System Monitor T properties, 359-360 T command, 459 settings (GPOs), 218 state take ownership of files or other objects right, 253 backing up, 467-468, 545 take ownership special NTFS restoring backups, 478-482 permission, 151 system access control lists (SACLs), 144 31_0789736179_index.qxd 2/15/07 2:52 PM Page 657

657 troubleshooting

Target parameter (gpupdate remote administration, 285 command), 242 sessions, 287 Task Manager Technology website, 587 performance monitoring, 312 Terminal Server 2003 Licensing server workload, monitoring, 333 Transition Plan, 284 TB (terabytes), 384 test dates, 34 TCP/IP, 367 test-taking confidence, 56 TechNet website, 184 testing centers, 37-38 TechNet Windows Server 2003 Resources thrashing, 332 website, 587 threats (security), 500-501 Technical Overview of Windows Server Threats and Countermeasures Guide, 502 2003 website, 588 tools. See utilities technical support (CD), 593 traverse folder/execute file special NTFS Telnet, 574 permission, 150 templates triggering alerts, 547 administrative, 239 troubleshooting security, 258-260 basic disks upgrades, 409-410 customizing, 260 bottlenecks, 334-335 importing, 259 disks, 337 predefined, 258-259 memory, 336 users, creating, 89-90 networks, 338 terabytes (TB), 384 processors, 336 Terminal Server 2003 Licensing computer accounts, 71-73 Transition Plan, 284 computer accounts domain terminal server user SI group, 117 connectivity, 67 Terminal Services (TS), 283, 540 device conflicts, 356-357 configuring, 285-286 disaster recovery, 446 GPOs, 288 ASR, 452-455, 542, 579 RDP settings, 286-287 backup disks, 447 sessions, 287 differential backups, 544 GPOs, 288 EMS, 456-459 installing, 284 Last Known Good licensing, 540 Configuration, 449 RDC normal backups, 544 client, 289-291 options, 459-461 connections, 293 Recovery Console, 450-451 disconnected sessions, 292 Safe Mode, 448 snap-ins, 293-294 system-state backups, 545 Web Connection Windows driver signing, 358-359 component, 294 dynamic disks, 409 31_0789736179_index.qxd 2/15/07 2:52 PM Page 658

658 troubleshooting

hard disks, 410-412 universal groups, 113 hardware, 352-354 Universal Serial Bus. See USB PnP devices, 352-354 updates printing, 196-198 Active Directory, 227 shared files/folders, 154-155 approving, 492 USB devices, 426-427 downloading/installing, 490 user accounts, 96 drivers authentication, 98 manual, 355 cached credential settings, 98-100 rolling back, 356 locked-out, 96-97 HAL, 370-371 TS (Terminal Services), 540 processors, 369-370 configuring, 285-286 selecting, 491 GPOs, 288 WSUS, 490 RDP settings, 286-287 administration, 491 sessions, 287 client configurations, 493-494 GPOs, 288 configuring, 491 installing, 284 GPOs, 493 licensing, 540 installing, 490 RDC updates, 491-492 client, 289-291 websites, 490, 498 connections, 293 USB (Universal Serial Bus) disconnected sessions, 292 controllers, 425 snap-ins, 293-294 devices Web Connection Windows controllers/hubs, 425 component, 294 power allocations, 426 remote administration, 285 support, 424 sessions, 287 troubleshooting, 426-427 Technology website, 587 hubs, 425-426 Terminal Server 2003 Licensing user targetusername parameter (gpresult Transition Plan, 284 command), 243 turning off inherited permissions, 207 users, 253 Active Directory U authentication, 98 u domain/user parameter (gpresult cached credential settings, 98-100 command), 243 creating, 86-91 UDF (Universal Disk Format), 423 customizing, 93-94 unattend.txt file, 457 deleting, 95 uninstalling drivers, 358 domain account names, 87-88 uniprocessors, 369-370 importing, 91 31_0789736179_index.qxd 2/15/07 2:52 PM Page 659

659 Virtual PC

locked-out, 96-97 Performance Logs and Alerts, passwords, 91-92 316-317 troubleshooting, 96 performance monitoring, 546 bulk-importing into Active Previous Versions Client, 438 Directory, 571 remote server management configuration settings (GPOs), 226 Computer Management console, logon names, 87 275-276 NTFS permission, 147-148 Remote Assistance. See Remote Assistance rights, 250 snap-ins, 276-278 Built-in container assignments, 253-255 Terminal Services. See Terminal Services default, 251-253 Security Configuration and Analysis, local group assignments, 253 260-261 roaming profile, 570 Signature Verification, 358-359 utilities. See also applications; software System Monitor, 309-311 Backup Task Manager backup jobs, 471-472 performance monitoring, 312 backup logs, 467 server workload, monitoring, 333 backup types, 462 Windows Firewall, 505 command line, 468 data files, 462-466 V defaults, 469-470 graphical interface, 469-470 v parameter (gpresult command), 243 restoring data files, 476-477 VGA Mode, 534 system state, 467-468, 478-482 video drivers, rolling back, 584 chkdsk, 415 viewing chkntfs, 415 Active Directory permissions, cipher.exe, 430 205, 208 command-line, 74-75, 95 counter logs, 321 compact.exe, 429 effective permissions, 151-152 csvde.exe command-line, 571 event logs, 306-308 Disk Defragmenter, 413-415 logs, 264-265 diskpart.exe, 386 policy settings, 539 Driver Verifier, 355 printer dsadd.exe, 70 jobs, 192 Error-Checking, 412 logs, 193 Event Viewer, 264-265 special permissions, 149 NTBackup, 468 System Monitor, 314 Virtual PC, 31 31_0789736179_index.qxd 2/15/07 2:52 PM Page 660

660 VMware

VMware, 31 online knowledge base, 57 volumes Preparation Guide for Exam boot, 400 70-290, 588 compressing, 573 TechNet, 184, 488 dismounting, 392 Training and Certification, 33, 57, 587 dynamic, 397-400 Windows Server 2003, 586 mirrored, 386-387, 401-404 MSDN, 587 availability, 408 Pearson VUE, 34 breaking, 405 PrepLogic, 33 creating, 402-403 Prometric, 34 deleting, 405-406 Remote Control add-in mounting/dismounting, 392 download, 587 RAID-5, 387, 401, 406-408 Resource Kits, 31 sets, 386, 398-399 security guide downloads, 509 simple, 398 Shadow Copies of Shared Folders shadow copies, 391 client, 588 spanned, 386, 398-399 Software Update Service, 587 striped, 387, 400-401 Sunbelt Software, 34 TechNet Windows Server 2003 W Resources, 587 Technical Overview of Windows Wait parameter (gpupdate Server 2003, 588 command), 242 Terminal Services Technology, 587 warning events, 306 VMware, 31 WebDAV (Web Distributed Authoring and What’s New in Internet Information Versioning), 132 Services, 587 websites White paper: Windows Server 2003 Automatic Update Client, 587 security guide, 588 Connectix, 31 Windows Exam Cram, 34 9x/NT 4.0 Active Directory GPMC download, 587 client, 66 HCL, 350 Server 2003, 588 Introduction to Shadow Copies of Server 2003 security, 509 Shared Folders, 588 Update, 587 MBSA, 506 WSUS, 490, 498 MCP Magazine, 587 WEP (Wired Equivalent Privacy) Network MeasureUp, 593 Key, 368 Microsoft What’s New in Internet Information Services website, 587 learning, 57 White paper: Windows Server 2003 Learning, Reference, and Certification Web pages, 51 security guide website, 588 31_0789736179_index.qxd 2/15/07 2:52 PM Page 661

661 write permission

windows Wired Equivalent Privacy (WEP) Network properties Key, 368 network connections, 364 Wireless configuration service, 367 TCP/IP, 367 wireless networking wireless networking, 368 support, 367-368 RDP-Tcp Properties, 287 WPS, 368-369 Windows wireless provisioning services (WPS), 368-369 9x/NT 4.0 Active Directory client, 65-66 WISPs (Wireless Internet Service 98, Active Directory access, 539 Providers), 368 2000 wizards forest functional level, 123 Active Directory Installation, 61 mixed domain functional Add Hardware level, 121 device installations, 351 native domain functional hardware, troubleshooting, 352 level, 122 Add New Hardware, 532 Explorer Add Printer Enhanced Security Configuration local printers, 168, 171 error messages, 577 network printers, 171-172 shared folders, 130-131 ASR, 453 Firewall, 364, 505 Backup, 471 Firewall dialog box, 367 CD Writing, 424 Server 2003 Delegation of Control, 210 domain functional level, 122 Extend Volume, 399 forest functional level, 123 Hardware Update, 369 interim domain functional level, 122 New Partition, 396 interim forest functional Restore Group Policy Object, 229 level, 123 WMI Control tool, 275 Security Guide, 502 workload, monitoring, 333 Server Update Services (WSUS), 490 WPS (wireless provisioning services), administration, 491 368-369 configuring, 491 write attributes special NTFS permission, 150 GPOs, 493 installing, 490 write extended attributes special NTFS permission, 151 updates, 491-494 write permission website, 490, 498 Active Directory, 204 Update website, 587 files, 144 winnt.sif file, 457 folders, 145 31_0789736179_index.qxd 2/15/07 2:52 PM Page 662

662 WSUS (Windows Server Update Services)

WSUS (Windows Server Update Services), 490 administration, 491 configuring, 491 GPOs, 493 installing, 490 updates approving, 492 client configurations, 493-494 selections, 491 website, 490, 498 X – Y – Z z parameter (gpresult command), 243 zip files, creating, 428