Course Code: 19303

55344 Identity with Windows Server

Class Dates:
2/10/2025
4/7/2025
Length:
5 Days
Cost:
$2975.00
Class Time:
Technology:
Server
Delivery:
Instructor-Led Training, Virtual Instructor-Led Training

Overview

  • Course Overview
  • This five-day instructor-led course teaches IT professionals how to deploy and configure Active Directory Domain Services (AD DS) in a distributed environment, how to implement Group Policy, how to perform backup and restore, and how to monitor and troubleshoot Active Directory - related issues with Windows Server. Additionally, this course teaches students how to deploy other Active Directory server roles, such as Active Directory Federation Services (AD FS) and Active Directory Certificate Services (AD CS).

    Although this course and the associated labs are written for Windows Server 2022, the skills taught will also be backwards compatible for Server 2016 and Server 2019.

    The course and labs also focus on how to administer Windows Server using not only the traditional tools such as PowerShell and Server manager, but also Windows Admin Center.
  • Audience
  • This course is primarily intended for existing IT professionals who have some AD DS knowledge and experience and who aim to develop knowledge about identity and access technologies in Windows Server. This would typically include:

    •AD DS administrators who are looking to train in identity and access technologies with Windows Server 2016, Windows Server 2019 or Windows Server 2022.

    •System or infrastructure administrators with general AD DS experience and knowledge who are looking to cross-train in core and advanced identity and access technologies in Windows Server 2016, Windows Server 2019 or Windows Server 2022.

Prerequisites

  • Some exposure to and experience with Active Directory concepts and technologies in Windows Server.
    Experience working with and configuring Windows Server.
    Experience and an understanding of core networking technologies such as IP addressing,
    name resolution, and Dynamic Host Configuration Protocol (DHCP) Experience working with and an understanding basic server virtualization concepts.
    An awareness of basic security best practices.
    Hands-on working experience with Windows client operating systems such as Windows 10 or Windows 11.
    Basic experience with the Windows PowerShell command-line interface.

Course Details

  • At Course Completion
  • Install and configure domain controllers.
  • Manage objects in AD DS by using graphical tools and Windows PowerShell.
  • Implement AD DS in complex environments.
  • Implement and administer Active Directory Rights Management Services (AD RMS).
  • Implement AD DS sites, and configure and manage replication.
  • Implement and manage Group Policy Objects (GPOs).
  • Manage user settings by using GPOs.
  • Secure AD DS and user accounts.
  • Implement and manage a certificate authority (CA) hierarchy with AD CS.
  • Deploy and manage certificates., Implement and administer AD FS.
  • Implement synchronization between AD DS and Azure AD.
  • Monitor, troubleshoot, and establish business continuity for AD DS services.
  • Module 1: Installing and configuring domain controllers
  • Overview of AD DS
  • Overview of AD DS domain controllers
  • Deploying a domain controller
  • Lab 1: Deploying and administering AD DS
  • Deploying AD DS
  • Deploying domain controllers by performing domain controller cloning
  • Administering AD DS
  • Module 2: Managing objects in AD DS
  • Managing user accounts
  • Managing groups in AD DS
  • Managing computer objects in AD DS
  • Using Windows PowerShell for AD DS administration
  • Implementing and managing OUs
  • Lab 1: Managing AD DS objects
  • Creating and managing groups in AD DS
  • Creating and configuring user accounts in AD DS
  • Managing computer objects in AD DS
  • Lab 2: Administering AD DS
  • Delegate administration for OUs
  • Creating and modifying AD DS objects with Windows PowerShell
  • Module 3: Advanced AD DS infrastructure management
  • Overview of advanced AD DS deployments
  • Deploying a distributed AD DS environment
  • Configuring AD DS trusts
  • Lab 1: Domain and trust management in AD DS
  • Implementing forest trusts
  • Implementing child domains in AD DS
  • Module 4: Implementing and administering AD DS sites and replication
  • Overview of AD DS replication
  • Configuring AD DS sites
  • Configuring and monitoring AD DS replication
  • Lab 1: Implementing AD DS sites and replication
  • Modifying the default site
  • Creating additional sites and subnets
  • Configuring AD DS replication
  • Monitoring and troubleshooting AD DS replication
  • Module 5: Implementing Group Policy
  • Introducing Group Policy
  • Implementing and administering GPOs
  • Group Policy scope and Group Policy processing
  • Troubleshooting the application of GPOs
  • Lab 1: Implementing a Group Policy infrastructure
  • Creating and configuring GPOs
  • Managing GPO scope
  • Lab 2: Troubleshooting Group Policy infrastructure
  • Verify GPO application
  • Troubleshooting GPOs
  • Module 6: Managing user settings with Group Policy
  • Implementing administrative templates
  • Configuring Folder Redirection, software installation, and scripts
  • Configuring Group Policy preferences
  • Lab 1: Managing user settings with GPOs
  • Using administrative templates to manage user settings
  • Implement settings by using Group Policy preferences
  • Configuring Folder Redirection
  • Planning Group Policy (optional)
  • Module 7: Securing Active Directory Domain Services
  • Securing domain controllers
  • Implementing account security
  • Implementing audit authentication
  • Configuring managed service accounts
  • Lab 1: Securing AD DS
  • Implementing security policies for accounts, passwords, and administrative groups
  • Deploying and configuring an RODC
  • Creating and associating a group MSA
  • Module 8: Deploying and managing AD CS
  • Deploying CAs
  • Administering CAs
  • Troubleshooting and maintaining CAs
  • Lab 1: Deploying and configuring a two-tier CA hierarchy
  • Deploying an offline root CA
  • Deploying an enterprise subordinate CA
  • Module 9: Deploying and managing certificates
  • Deploying and managing certificate templates
  • Managing certificate deployment, revocation, and recovery
  • Using certificates in a business environment
  • Implementing and managing smart cards
  • Lab 1: Deploying and using certificates
  • Configuring certificate templates
  • Enrolling and using certificates
  • Configuring and implementing key recovery
  • Module 10: Implementing and administering AD FS
  • Overview of AD FS
  • AD FS requirements and planning
  • Deploying and configuring AD FS
  • Web Application Proxy Overview
  • Lab 1: Implementing AD FS
  • Configuring AD FS prerequisites
  • Installing and configuring AD FS
  • Configuring an internal application for AD
  • Configuring AD FS for federated business partners
  • Module 11: Implementing and administering AD RMS
  • Overview of AD RMS
  • Deploying and managing an AD RMS infrastructure
  • Configuring AD RMS content protection
  • Lab 1: Implementing an AD RMS infrastructure
  • Installing and configuring AD RMS
  • Configuring AD RMS templates
  • Using AD RMS on clients
  • Module 12: Implementing AD DS synchronization with Microsoft Azure AD
  • Planning and preparing for directory synchronization
  • Implementing directory synchronization by using Azure AD Connect
  • Managing identities with directory synchronization
  • Lab 1: Configuring directory synchronization
  • Preparing for directory synchronization
  • Configuring directory synchronization
  • Managing Active Directory users and groups and monitoring directory synchronization
  • Module 13: Monitoring, managing, and recovering AD DS
  • Monitoring AD DS
  • Managing the Active Directory database
  • Active Directory backup and recovery options for AD DS and other identity and access solutions
  • Lab 1: Recovering objects in AD DS
  • Backing up and restoring AD DS
  • Recovering objects in AD DS