About the Book
Microsoft's new version of the MCSA certification for Windows Server 2012 R2 requires passing three exams. This value-priced study guide includes more than 1,000 pages of quality exam-prep content, covering 100 percent of the objective domains of all three exams (as well as the Upgrade exam, 70-417). Also includes more than 500 practice questions.
You also have access to an interactive practice test environment, electronic flashcards, and videos showing how to perform the more difficult tasks. Both first-time MCSA candidates and those wishing to upgrade from Server 2008 certification will benefit from this complete test-prep guide.
• Completely updated to cover the Windows Server 2012 R2 Exams
• Provides a comprehensive study guide for all three MCSA Windows Server 2012 exams: 70-410, 70-411, and 70-412, as well as the Upgrade exam: 70-417
• Covers installing and configuring Windows Server 2012; deploying and configuring DNS service; administering Active Directory; creating and managing Group Policy Objects; and configuring server roles and features, Hyper-V, and core networking services
• Explains basic networking concepts, DHCP, deploying and maintaining servers, configuring a network policy server infrastructure and high availability in Windows Server 2012, and much more
• Features real-world scenarios, hands-on exercises, practice exams, electronic flashcards, and over an hour of video demonstrations
• Covers all exam objectives
MCSA Windows Server 2012 R2 Complete Study Guide arms you with all the information you must master to achieve MCSA certification on Windows Server 2012 R2.
About the Author
William Panek, MCT, MCSE is a Microsoft MVP and founder of Stellacon Corporation, a Microsoft Certified Gold Partner and a Certified Learning Solutions Provider, and leading training provider on the East Coast. Prior to founding Stellacon, William was an instructor for The Training Associates, instructing at such schools as Boston University, Clark University, New Horizons, just to name a few. William brings years of real world expertise to the classroom and strives to ensure that each and every student has an understanding of the course material. Will has authored numerous Microsoft certification books, including the previous edition of this book, MCTS: Windows 7 Configuration Study Guide, 2nd Edition, MCTS: Windows Server 2008 Active Directory Configuration Study Guide, MCTS: Windows Server Network Infrastructure Configuration Study Guide, and MCTS: Windows Server 2008 R2 Complete Study Guide, all by Sybex.
Table of Contents: Introduction
Assessment Test
Part I Exam 70-410: Installing and Configuring Windows Server 2012 R2
Chapter 1 Install Windows Server 2012 R2
Features and Advantages of Windows Server 2012 and Server 2012 R2
Planning the Windows Server 2012 R2 Installation
Server Roles in Windows Server 2012 R2
Migrating Roles and Features to Windows Server 2012 R2
Roles and Features That Have Been Reduced in Windows Server 2012 R2
Deciding Which Windows Server 2012 R2 Versions to Use
Deciding on the Type of Installation
NIC Teaming
Installing Windows Server 2012 R2
Using Windows Deployment Services
Understanding Features On Demand
Storage in Windows Server 2012 R2
Initializing Disks
Configuring Basic and Dynamic Disks
Managing Volumes
Storage Spaces in Windows Server 2012 R2
Redundant Array of Independent Disks
Mount Points
Microsoft MPIO
iSCSI
Internet Storage Name Service
Fibre Channel
Network Attached Storage
Virtual Disk Service
Summary
Exam Essentials
Review Questions
Chapter 2 Configure Network Services
Introducing DNS
The Form of an IP Address
Understanding Servers, Clients, and Resolvers
Understanding the DNS Process
Introducing DNS Database Zones
Understanding Primary Zones
Understanding Secondary Zones
Understanding Active Directory Integrated DNS
Understanding Stub Zones
Global Name Zones
Zone Transfers and Replication
Advantages of DNS in Windows Server 2012 R2
Background Zone Loading
Support for IPv6 Addresses
Support for Read-Only Domain Controllers
DNS Socket Pools
DNS Cache Locking
DNS Security Extensions
DNS Devolution
Zone Level Statistics
Record Weighting
Netmask Ordering
DnsUpdateProxy Group
Windows PowerShell Support
Introducing DNS Record Types
Start of Authority Records
Name Server Records
Host Record
Alias Record
Pointer Record
Mail Exchanger Record
Service (SRV) Record
Configuring DNS
Installing DNS
Load Balancing with Round Robin
Configuring a Caching-Only Server
Setting Zone Properties
Configuring Zones for Dynamic Updates
Delegating Zones for DNS
DNS Forwarding
Manually Creating DNS Records
DNS Aging and Scavenging
Monitoring and Troubleshooting DNS
Monitoring DNS with the DNS Snap-In
Troubleshooting DNS
Overview of DHCP
Introducing the DORA Process
Advantages and Disadvantages of DHCP
Ipconfig Lease Options
Understanding Scope Details
Installing and Authorizing DHCP
Installing DHCP
Introducing the DHCP Snap-In
Authorizing DHCP for Active Directory
Creating and Managing DHCP Scopes
Creating a New Scope in IPv4
Creating a New Scope in IPv6
Changing Scope Properties (IPv4 and IPv6)
Changing Server Properties
Managing Reservations and Exclusions
Setting Scope Options for IPv4
Activating and Deactivating Scopes
Creating a Superscope for IPv4
Creating IPv4 Multicast Scopes
Integrating Dynamic DNS and IPv4 DHCP
Using Multiple DHCP Servers
Working with the DHCP Database Files
Summary
Exam Essentials
Review Questions
Chapter 3 Plan and Install Active Directory
Verifying the File system
Resilient File System (ReFS)
NTFS
Verifying Network Connectivity
Basic Connectivity Tests
Tools and Techniques for Testing Network Configuration
Understanding Domain and Forest Functionality
About the Domain Functional Level
About Forest Functionality
Planning the Domain Structure
Installing Active Directory
Adprep
Active Directory Prerequisites
The Installation Process
Deploying Active Directory IaaS in Windows Azure
Verifying Active Directory Installation
Using Event Viewer
Using Active Directory Administrative Tools
Testing from Clients
Creating and Configuring Application Data Partitions
Creating Application Data Partitions
Managing Replicas
Removing Replicas
Using ntdsutil to Manage Application Data Partitions
Configuring DNS Integration with Active Directory
Summary
Exam Essentials
Review Questions
Chapter 4 Configure Windows Server 2012 R2
Understanding File Servers
Configuring File Servers
Sharing Folders
Making Active Directory Objects Available to Users
Access-Based Enumeration
Configuring Offline Files
Volume Shadow Copy Services
Configuring Permissions
Configuring Disk Quotas
Configuring Print Services
Creating and Publishing Printers
Configuring Printers
Migrating Print Servers
Printer Pooling
Easy Print Driver
Configuring Remote Management
Windows Remote Management
Windows PowerShell
Configuring Down-Level Servers
Configuring Server Core
Summary
Exam Essentials
Review Questions
Chapter 5 Administer Active Directory
An Overview of OUs
The Purpose of OUs
Benefits of OUs
Planning the OU Structure
Logical Grouping of Resources
Understanding OU Inheritance
Delegating Administrative Control
Applying Group Policies
Creating OUs
Managing OUs
Moving, Deleting, and Renaming OUs
Administering Properties of OUs
Delegating Control of OUs
Troubleshooting OUs
Creating and Managing Active Directory Objects
Overview of Active Directory Objects
Managing Object Properties
Understanding Groups
Filtering and Advanced Active Directory Features
Moving, Renaming, and Deleting Active Directory Objects
Resetting an Existing Computer Account
Publishing Active Directory Objects
Making Active Directory Objects Available to Users
Publishing Printers
Publishing Shared Folders
Querying Active Directory
Using the Active Directory Administrative Center
Using the Command Prompt for Active Directory Configuration
Summary
Exam Essentials
Review Questions
Chapter 6 Manage GPOs
Introducing Group Policy
Understanding Group Policy Settings
The Security Settings Section of the GPO
Group Policy Objects
Group Policy Inheritance
Planning a Group Policy Strategy
Implementing Group Policy
Creating GPOs
Linking Existing GPOs to Active Directory
Managing Group Policy
Managing GPOs
Security Filtering of a Group Policy
Delegating Administrative Control of GPOs
Controlling Inheritance and Filtering Group Policy
Assigning Script Policies
Understanding the Loopback Policy
Managing Network Configuration
Automatically Enrolling User and Computer Certificates in Group Policy
Redirecting Folders
Managing GPOs with Windows PowerShell Group Policy Cmdlets
Deploying Software Through a GPO
The Software Management Life Cycle
The Windows Installer
Deploying Applications
Implementing Software Deployment
Preparing for Software Deployment
Software Restriction Policies
Using AppLocker
Group Policy Slow Link Detection
Publishing and Assigning Applications
Applying Software Updates
Verifying Software Installation
Configuring Automatic Updates in Group Policy
Configuring Software Deployment Settings
The Software Installation Properties Dialog Box
Removing Programs
Microsoft Windows Installer Settings
Troubleshooting Group Policies
RSoP in Logging Mode
RSoP in Planning Mode
Using the gpresult.exe Command
Summary
Exam Essentials
Review Questions
Chapter 7 Manage Security
Managing Security
Understanding Security Principals
Managing Security and Permissions
Using ACLs and ACEs
Configuring User Account Control
Delegating Control of Users and Groups
Understanding Dynamic Access Control
Using Group Policy for Security
Implementing an Audit Policy
Overview of Auditing
Implementing Auditing
Using the Auditpol.exe Command
Features of Windows Server 2012 R2 Auditing
Configuring Windows Firewall Options
Summary
Exam Essentials
Review Questions
Chapter 8 Configure TCP/IP
Understanding TCP/IP
Details of the TCP/IP Model
How TCP/IP Layers Communicate
Understanding Port Numbers
Understanding IP Addressing
The Hierarchical IP Addressing Scheme
Understanding Network Classes
Subnetting a Network
Implementing Subnetting
An Easier Way to Apply Subnetting
Applying Subnetting the Traditional Way
Working with Classless Inter-Domain Routing
Supernetting
Understanding IPv6
IPv6 History and Need
New and Improved IPv6 Concepts
IPv6 Addressing Concepts
IPv6 Integration/Migration
Summary
Exam Essentials
Review Questions
Chapter 9 Use Virtualization in Windows Server 2012
Hyper-V Overview
What Is Virtualization?
Hyper-V Features
Hyper-V Architecture
Hyper-V Requirements
Hyper-V Installation and Configuration
Install the Hyper-V Role
Hyper-V in Server Manager
Using Hyper-V Manager
Configure Hyper-V Settings
Manage Virtual Switches
Managing Virtual Hard Disks
Configuring Virtual Machines
Creating and Managing Virtual Machines
Summary
Exam Essentials
Review Questions
Part II Exam 70-411: Administering Windows Server 2012 R2
Chapter 10 Manage and Maintain Servers
Using Windows Deployment Services
Configuring Windows Server Update Services
Windows Update
Windows Automatic Updates
Using Windows Server Update Services
Overview of Windows Server 2012 R2
Performance Monitoring
Using Windows Server 2012 R2 Performance Tools
Introducing Performance Monitor
Using Other Performance-Monitoring Tools
Summary
Exam Essentials
Review Questions
Chapter 11 Manage File Services
Configuring File Server Resource Manager
FSRM Features
Installing the FSRM Role Service
Configure File and Disk Encryption
Using BitLocker Drive Encryption
Features of BitLocker
Windows 7 and 2008 R2 vs. Windows 8 and 2012 R2
Using EFS Drive Encryption
Configuring Distributed File System
Advantages of DFS
Types of DFS
What's New in Windows Server 2012 R2
Remote Differential Compression
Implementing an Audit Policy
Overview of Auditing
Implementing Auditing
Viewing Auditing Information
Using the Auditpol.exe Command
Windows Server 2012 R2 Auditing Features
Making Active Directory Objects Available to Users
Configuring Offline Folders
Summary
Exam Essentials
Review Questions
Chapter 12 Configure DNS 555
Introducing DNS
The Form of an IP Address
Understanding Servers, Clients, and Resolvers
Understanding the DNS Process
Introducing DNS Database Zones
Understanding Primary Zones
Understanding Secondary Zones
Understanding Active Directory Integrated DNS
Understanding Stub Zones
GlobalName Zones
Zone Transfers and Replication
Advantages of DNS in Windows Server 2012 R2
Background Zone Loading
Support for IPv6 Addresses
Support for Read-Only Domain Controllers
DNS Socket Pools
DNS Cache Locking
DNS Security Extensions
DNS Devolution
Record Weighting
Netmask Ordering
DnsUpdateProxy Group
Introducing DNS Record Types
Start of Authority (SOA) Records
Name Server Records
Host Record
Alias Record
Pointer Record
Mail Exchanger Record
Service Record
Configuring DNS
Installing DNS
Load Balancing with Round Robin
Configuring a Caching-Only Server
Setting Zone Properties
Configuring Zones for Dynamic Updates
Delegating Zones for DNS
DNS Forwarding
Manually Creating DNS Records
DNS Aging and Scavenging
Monitoring and Troubleshooting DNS
Monitoring DNS with the DNS Snap-In
Troubleshooting DNS
Integrating Dynamic DNS and IPv4 DHCP
Summary
Exam Essentials
Review Questions
Chapter 13 Configure Routing and Remote Access
Overview of Dial-Up Networking
What DUN Does
How DUN Works
Overview of Virtual Private Networks
What VPNs Do
VPNs and Windows Server 2012 R2
How VPNs Work
Configuring Your Remote Access Server
Configuring PPP Options
Understanding a VPN
How VPN Works
Enabling RRAS as a VPN
Configuring a VPN
Configuring VPN Ports
Troubleshooting VPNs
Managing Your Remote Access Server
Managing Remote Users with a RADIUS Server
Monitoring Overall Activity
Controlling Remote Access Logging
Reviewing the Remote Access Event Log
Monitoring Ports and Port Activity
Network Address Translation
Configuring a VPN Client
The General Tab
The Options Tab
The Security Tab
The Networking Tab
The Sharing Tab
Configuring a Web Application Proxy
Publishing Applications
Configuring Pass-Through Authentication
Understanding DirectAccess
DirectAccess vs. VPNs
Understanding the DirectAccess Process
Knowing the DirectAccess Infrastructure Requirements
Summary
Exam Essentials
Review Questions
Chapter 14 Configure a Network Policy Server Infrastructure
Overview of Wireless Access
Configuring Wireless Access
Remote Access Security
User Authentication
Connection Security
Access Control
Configuring User Access
Setting Up User Profiles
Using Network Access Policies
NPS as a RADIUS Proxy Server
Importing and Exporting NPS Policies
Using Remote Access Profiles
Setting Up a VPN Network Access Policy
Configuring Security
Controlling Server Security
Configuring Network Access Protection
Summary
Exam Essentials
Review Questions
Chapter 15 Configure and Manage Active Directory
Active Directory Security Overview
Understanding Active Directory Features
Understanding Security Principals
Managing Security and Permissions
Using ACLs and ACEs
Implementing Active Directory Security 7
Using User Templates
Delegating Control of Users and Groups
Understanding Dynamic Access Control
Using Group Policy for Security
Fine-Grained Password Policies
Managing Multiple Domains
Managing Single-Master Operations
Forest Operations Masters
Domain Operations Masters
Assigning Single-Master Roles
Seizing Roles
Maintain Active Directory
Overview of the Windows Server 2012
R2 Backup Utility
Setting Up an Active Directory Backup
Restoring Active Directory
Active Directory Recycle Bin
Restartable Active Directory
Offline Maintenance
Monitoring Replication
Using the ADSI Editor
Wbadmin Command Line Utility
Summary
Exam Essentials
Review Questions
Chapter 16 Configure and Manage Group Policy
Introducing Group Policy Objects
Understanding Group Policy Settings
The Security Settings Section of the GPO
Group Policy Objects
Group Policy Inheritance
Planning a Group Policy Strategy
Implementing Group Policy
Creating GPOs
Linking Existing GPOs to Active Directory
Forcing a GPO to Update
Managing Group Policy
Managing GPOs
Security Filtering of a Group Policy
Delegating Administrative Control of GPOs
Controlling Inheritance and Filtering Group Policy
Assigning Script Policies
Understanding the Loopback Policy
Managing Network Configuration
Automatically Enrolling User and Computer Certificates in Group Policy
Redirecting Folders
Managing GPOs with Windows PowerShell Group Policy Cmdlets
Item-Level Targeting
Backup, Restore, Import, Copy, and Migration Tables
Deploying Software Through a GPO
The Software Management Life Cycle
The Windows Installer
Deploying Applications
Implementing Software Deployment
Preparing for Software Deployment
Software Restriction Policies
Using AppLocker
Group Policy Slow Link Detection
Publishing and Assigning Applications
Applying Software Updates
Verifying Software Installation
Configuring Automatic Updates in Group Policy
Configuring Software Deployment Settings
The Software Installation Properties Dialog Box
Removing Programs
Microsoft Windows Installer Settings
Troubleshooting Group Policies
RSoP in Logging Mode
RSoP in Planning Mode
Using the gpresult.exe Command
Summary
Exam Essentials
Review Questions
Part III Exam 70-412: Configuring Advanced Windows Server 2012 R2 Services
Chapter 17 Configure and Manage High Availability
Components of High Availability
Achieving High Availability
High Availability Foundation
Configure Network Load Balancing
Install NLB Nodes
Upgrading an NLB Cluster
Achieving High Availability with Failover Clustering
Failover Clustering Requirements
Cluster Quorum
Validating a Cluster Configuration
Creating a Cluster
Clustered Application Settings
Resource Properties
Windows Server 2012 R2 Clustering Features
Summary
Exam Essentials
Review Questions
Chapter 18 Configure File and Storage Solutions
Configure Advanced File Services
Configure the NFS Data Store
Configure BranchCache
Configure File Classification Infrastructure Using File Server Resource Manager
Configure File Access Auditing
Implement Dynamic Access Control
Configure User and Device Claim Types
Create and Configure Resource Properties and Lists
Create and Configure Central Access Rules and Policies
Configure File Classification
Implement Policy Changes and Staging
Perform Access-Denied Remediation
Configure and Optimize Storage
Configure iSCSI Target and Initiator
Configure Internet Storage Name Server
Implement Thin Provisioning and Trim
Manage Server Free Space Using Features on Demand
Configure Tiered Storage
Summary
Exam Essentials
Review Questions
Chapter 19 Implement Business Continuity and Disaster Recovery
Protecting the System
Backup and Recovery of Active Directory
Overview of the Windows Server 2012 R2 Backup Utility
Setting Up an Active Directory Backup
Restoring Active Directory
Active Directory Recycle Bin
Restartable Active Directory
Offline Maintenance
Monitoring Replication
Using the ADSI Editor
Wbadmin Command-Line Utility
Configure Windows Azure Backups
Understanding Shadow Copies
VssAdmin Command
Using Advanced Boot Options
Starting in Safe Mode
Enabling Boot Logging
Using Other Advanced Boot Options Menu Modes
Windows Recovery Environment
Configure Site-Level Fault Tolerance
Using the Startup Repair Tool
Summary
Exam Essentials
Review Questions
Chapter 20 Configure Advanced Network Services
Working with Advanced DHCP Configuration Options
Create and Configure Superscopes
Create and Configure Multicast Scopes
Implement DHCPv6
Configure High Availability for DHCP Including DHCP Failover and Split Scopes
Configure DHCP Name Protection
Configure DNS Registration
The Ins and Outs of DNS
DNS Security
Configure DNS Logging
Configure Delegated Administration
Configure Recursion
Configure Netmask Ordering
Configure a GlobalNames Zone
Analyze Zone-Level Statistics
IPAM Administration 101
Provision IPAM Manually or by Using Group Policy
Configure Server Discovery
Create and Manage IP Blocks and Ranges
Monitor Utilization of IP Address Space
Migrate to IPAM
Delegate IPAM Administration
Manage IPAM Collections
Configure IPAM Database Storage
Summary
Exam Essentials
Review Questions
Chapter 21 Configure the Active Directory Infrastructure
Overview of Network Planning
The Three Types of Networks
Exploring Network Constraints
Overview of Active Directory
Replication and Sites
Replicating Active Directory
Understanding Active Directory Site Concepts
Understanding Distributed File System Replication
Implementing Sites and Subnets
Creating Sites
Creating Subnets
Configuring Sites
Configuring Replication
Intrasite Replication
Intersite Replication
RODCs and Replication
Configuring Server Topology
Using Universal Group Membership Caching
Monitoring and Troubleshooting Active Directory Replication
About System Monitor
Troubleshooting Replication
Reasons for Creating Multiple Domains
Reasons for Using Multiple Domains
Drawbacks of Multiple Domains
Creating Domain Trees and Forests
Planning Trees and Forests
The Promotion Process
Creating a Domain Tree
Joining a New Domain Tree to a Forest
Adding Additional Domain Controllers
Demoting a Domain Controller
Managing Multiple Domains
Managing Single-Master Operations
Forest Operations Masters
Domain Operations Masters
Assigning Single-Master Roles
Managing Trusts
Managing UPN Suffixes
Name Suffix Routing
Managing Global Catalog Servers
Managing Universal Group Membership Caching
Upgrading Existing Domains and Forests
Summary
Exam Essentials
Review Questions
Chapter 22 Configure Access and Information Protection Solutions
What's New in Windows Server 2012 R2 with Active Directory Certificate Services?
Active Directory Certificate Services Roles
Planning the Certificate Authority Hierarchy
Installing AD CS
Configuring Active Directory Certificate Services
Implement Active Directory Federation Services
What Is a Claim?
What's New for AD FS in Windows Server 2012 R2?
Active Directory Federation Services Installation
Workplace Join
Device Registration Service
Workplace Join Your Device
Active Directory Rights Management Services
Considerations and Requirements for AD RMS
Installing AD RMS
Managing AD RMS: AD RMS Service Connection Point
Summary
Exam Essentials
Review Questions
Appendix A Answers to Review Questions
Chapter 1: Install Windows Server 2012 R2
Chapter 2: Configure Network Services
Chapter 3: Plan and Install Active Directory
Chapter 4: Configure Windows Server 2012 R2
Chapter 5: Administer Active Directory
Chapter 6: Manage GPOs
Chapter 7: Manage Security
Chapter 8: Configure TCP/IP
Chapter 9: Use Virtualization in Windows Server 2012
Chapter 10: Manage and Maintain Servers
Chapter 11: Manage File Services
Chapter 12: Configure DNS
Chapter 13: Configure Routing and Remote Access
Chapter 14: Configure a Network Policy Server Infrastructure
Chapter 15: Configure and Manage Active Directory
Chapter 16: Configure and Manage Group Policy
Chapter 17: Configure and Manage High Availability
Chapter 18: Configure File and Storage Solutions
Chapter 19: Implement Business Continuity and Disaster Recovery
Chapter 20: Configure Advanced Network Services
Chapter 21: Configure the Active Directory Infrastructure
Chapter 22: Configure Access and Information Protection Solutions
Appendix B About the Additional Study Tools
Additional Study Tools
Sybex Test Engine
Electronic Flashcards
PDF of Glossary of Terms
Adobe Reader
System Requirements
Using the Study Tools
Troubleshooting
Customer Care
Index