AD Reading: Windows Server 2012 Active Directory Features

The following are extremely useful resources for Windows Server 2012 Active Directory Features.

 

Windows 2012 Features

Group Managed Service Accounts (gMSA)

RID Protection

DC Cloning & SafeGuarding


Dynamic Access Control (DAC)

Kerberos FAST

Kerberos Constrained Delegation Enhancements

o   Part 1

o   Part 2

 

Kerberos Proxy

AD Reading: Active Directory Group Policy

The following are extremely useful resources for understanding the Active Directory Group Policy.

Group Policy

o   Core Group Policy Architecture

o   Core Group Policy Physical Structure

o   Core Group Policy Processes and Interactions

o   Network Ports Used by Group Policy

o   Related Information

o   Change and Configuration Management

o   Core Group Policy Infrastructure

o   Core Group Policy Scenarios

o   Core Group Policy Dependencies

o   Related Information

o   Group Policy Tools

o   Group Policy Settings

o   Group Policy WMI Classes

o   Related Information

o   Overview of Group Policy

o   Planning Your Group Policy Design

o   Designing Your Group Policy Model

o   Deploying Group Policy

o   Maintaining Group Policy

o   Additional Resources for Group Policy Infrastructure

o   What Is Group Policy Management Console?

o   How Group Policy Management Console Works

o   Group Policy Management Console Tools and Settings

o   What Is Group Policy Object Editor?

o   How Group Policy Object Editor Works

o   Group Policy Object Editor Tools and Settings

  • Group Policy Loopback processing

o   Part 1: Circle Back to Loopback

o   Part 2: Back to the Loopback: Troubleshooting Group Policy loopback processing

AD Reading: Active Directory Read Only Domain Controller

The following are extremely useful resources for the Active Directory Read Only Domain Controller (RODC).

Read Only Domain Controller

o   Understanding Planning and Deployment for Read-Only Domain Controllers

o   RODC Branch Office Guide

o   Appendix A: RODC Technical Reference Topics

o   Appendix B: RODC-Related Events

o   Appendix C: Acronyms Used in This Guide

o   Installing Remote Server Administration Tools

o   Administering the Password Replication Policy

o   Who Should Use This Guide?

o   What Is an RODC?

o   RODC Placement Considerations for Windows Server 2003 Domains

o   Prerequisites for Deploying an RODC

o   Known Issues for Deploying an RODC

o   Steps for Deploying an RODC

o   Steps for Administering an RODC

o   RODC Frequently Asked Questions

o   Appendix A: Client Operations

o   Appendix B: How the Authentication Process Works with RODCs

o   Appendix C: Application Compatibility with RODCs

o   Appendix D: Steps to Add an Attribute to the RODC Filtered Attribute Set

AD Reading: Windows Server 2008 Active Directory Features

The following are extremely useful resources for Windows Server 2008 Active Directory Features.

Server 2008 AD Features

AD Reading: Active Directory Replication

The following are extremely useful resources for understanding the Active Directory Replication.

Replication

o   Active Directory KCC Architecture and Processes

o   Replication Topology Physical Structure

o   Performance Limits for Replication Topology Generation

o   Goals of Replication Topology

o   Topology-Related Objects in Active Directory

o   Replication Transports

o   Replication Between Sites

o   KCC and Topology Generation

o   Network Ports Used by Replication Topology

o   Related Information

o   What Is the Active Directory Replication Model?

o   How the Active Directory Replication Model Works

o   Active Directory Replication Tools and Settings

o   What Is Active Directory Replication Topology?

o   How Active Directory Replication Topology Works

o   Active Directory Replication Tools and Settings

AD Reading: Active Directory DNS & Name Resolution

The following are extremely useful resources for understanding the Active Directory DNS & Name Resolution.

DNS & Name Resolution

o   DNS Architecture

o   DNS Protocol

o   DNS Physical Structure

o   DNS Processes and Interactions

o   Network Ports Used By DNS

o   Related Information

o   What Is DNS?

o   How DNS Works

o   DNS Tools and Settings

o   DNS Support for Active Directory Architecture

o   DNS Physical Structure in Support of Active Directory

o   DNS Support for Active Directory Processes and Interactions

o   Network Ports Used by DNS in Support of Active Directory

o   Related Information

o   Introduction

o   DNS Fundamentals

o   New Features of the Windows 2000 DNS

o   Designing a DNS Namespace for the Active Directory

o   Summary

o   Glossary

o   What Is DNS Support for Active Directory?

o   How DNS Support for Active Directory Works

o   DNS Support for Active Directory Tools and Settings

AD Reading: Active Directory DFS & FRS

The following are extremely useful resources for understanding the AActive Directory DFS & FRS.

DFS Namespaces (DFSN) & DFS Replication (DFSR)

o   What Is DFS?

o   How DFS Works

o   DFS Tools and Settings

o   DFS Terminology

o   DFS Client and Server Compatibility

o   Characteristics of Namespace Types

o   DFS Architecture

o   DFS Physical Structures and Caches

o   DFS Processes and Interactions

o   DFS Protocols

o   DFS Interfaces

o   Network Ports Used by DFS

o   Related Information

o   Enable Access-Based Enumeration on a Namespace

o   Enable or Disable Referrals and Client Failback

o   Change the Amount of Time That Clients Cache Referrals

o   Set the Ordering Method for Targets in Referrals

o   Set Target Priority to Override Referral Ordering

o   Optimize Namespace Polling

o   Using Inherited Permissions with Access-Based Enumeration

o   SYSVOL Migration Conceptual Information

o   SYSVOL Migration Procedure

o   Troubleshooting SYSVOL Migration

o   SYSVOL Migration Reference Information

o   1: SYSVOL Migration Series: Part 1 – Introduction to the SYSVOL migration process

o   2: SYSVOL Migration Series: Part 2 – Dfsrmig.exe: The SYSVOL migration tool

o   3: SYSVOL Migration Series: Part 3 – Migrating to the Prepared State

o   4: SYSVOL Migration Series: Part 4 – Migrating to the ‘REDIRECTED’ state

o   5: SYSVOL Migration Series: Part 5 – Migrating to the ‘ELIMINATED’ state

File Replication Service (FRS)

o   FRS Terminology

o   FRS Architecture

o   FRS Protocols

o   FRS Interfaces

o   FRS Physical Structures

o   FRS Processes and Interactions

o   Network Ports Used by FRS

o   Related Information

o   FRS Tools

o   FRS Registry Entries

o   Network Ports Used by FRS

o   What Is FRS?

o   How FRS Works

o   FRS Tools and Settings

AD Reading: Active Directory Client Interaction

The following are extremely useful resources for understanding the Active Directory Client Interaction.

Client Interaction

o   Domain Controller Name Registration

o   SRV Resource Records

o   Domain Controller Location Process

o   Finding a Domain Controller in the Closest Site

o   Types of Locators

AD Reading: Active Directory Backup and Disaster Recovery

The following are extremely useful resources for understanding the Active Directory Backup and Disaster Recovery.

Backup and Disaster Recovery

o   What’s New in AD DS Backup and Recovery?

o   Known Issues for AD DS Backup and Recovery

o   Best Practices for AD DS Backup and Recovery

o   General Requirements for Backing Up and Recovering AD DS

o   Scenario Overviews for Backing Up and Recovering AD DS

o   Steps for Backing Up and Recovering AD DS

o   New Features, Assumptions, and Prerequisites for Using This Guide for Planning Active Directory Forest Recovery

o   Devising a Custom Forest Recovery Plan

o   Recovering Your Active Directory Forest

o   Appendix A: Forest Recovery Procedures

o   Appendix B: Frequently Asked Questions

o   Appendix C: Recovering a Single Domain within a Multidomain Forest

o   Appendix D: Forest Recovery with Windows Server 2003 Domain Controllers

o   Additional Resources

o   Restore Active Directory from backup

o   Mark the object or objects authoritative

o   Synchronize replication with all partners

o   Run an LDIF file to recover back-links

o   Restart the domain controller in Directory Services Restore Mode locally

o   Create an LDIF file for recovering back-links for authoritatively restored objects

o   Turn off inbound replication

o   Turn on inbound replication

AD Reading: Active Directory Authentication & Logon

The following are extremely useful resources for understanding the Active Directory Authentication & Logon.

Authentication & Logon

o   Digest Authentication Technical Reference

o   Interactive Logon Technical Reference

o   Kerberos Authentication Technical Reference

o   TLS/SSL Technical Reference

o   Introduction

o   Overview of the Kerberos Protocol

o   Kerberos Components in Windows 2000

o   Authorization Data

o   Interactive Logon

o   Remote Logon

o   Interoperability

o   Introduction (Kerberos Protocol Transition and Constrained Delegation)

o   Authenticating Web Application Users

o   Windows Server 2003 Kerberos Extensions

o   Sample Scenario Source Files

o   Summary (Kerberos Protocol Transition and Constrained Delegation)

o   Conclusion (Kerberos Protocol Transition and Constrained Delegation)

o   Security Descriptors and Access Control Lists Technical Reference

o   Access Tokens Technical Reference

o   Permissions Technical Reference

o   Security Principals Technical Reference

o   Security Identifiers Technical Reference

o   What is Interactive Logon?

o   How Interactive Logon Works

o   Interactive Logon Tools and Settings

o   User Profiles Overview in User Data and Settings Management

o   User Profile Structure

o   Enhancements to User Profiles in Windows Server 2003 and Windows XP

o   How to Configure a Roaming User Profile

o   Security Considerations when Configuring Roaming User Profiles

o   Best Practices for User Profiles

o   Folder Redirection Overview

o   How to Configure Folder Redirection

o   Security Considerations when Configuring Folder Redirection

o   Best Practices for Folder Redirection in User Data and Settings Management

o   Related Technologies: Offline Files and Synchronization Manager

o   Common Scenarios for IntelliMirror User Data and Settings Features

o   Appendix: Group Policy Settings for Roaming User Profiles

o   Related Links for User Data and Settings Management