Glossary

The process of confirming the identity of a user , typically by a username and password. Windows Server 2003 supports several authentication methods , including Kerberos v5, NTLM authentication, passport authentication, and digest authentication.

The process of granting or denying a user, group , or computer access to network resources through permissions and user rights.

Enables operating system updates to be downloaded and installed automatically. This ensures that systems stay up-to-date with the latest updates.

A form of a DNS server that is not responsible for maintaining or updating any zone information. It simply resolves name requests to IP addresses on behalf of DNS clients and caches the results.

Filter configured within Network Monitor to specify the type of traffic that should be captured for analysis.

An authentication protocol that uses the Message Digest 5 (MD5) hashing scheme to encrypt responses. With CHAP, the server sends a challenge to the client. The client then generates an MD5 hash result and returns it to the server.

In Windows Server 2003, this is the ability of an administrator to distribute certain administrative tasks to other individuals or groups. In terms of DNS, a portion of a domain namespace can be delegated to another server that will then be responsible for resolving name-resolution requests.

A tool included with Windows Server 2003 that can be used to manage hardware as well as troubleshoot hardware problems.

Clients configured to automatically obtain an IP address from a DHCP server. By default, Windows 2000, Windows XP, and Windows Server 2003 clients are configured as DHCP clients.

Database that stores information about client leases.

Filter configured within Network Monitor after data has been captured to specify the type of traffic to display.

An Active Directory hierarchy component. Domains define the administrative and security boundaries within an Active Directory hierarchy. A domain can be created by installing Active Directory.

Computers that are used for storing directory data, user authentication, and directory searches. A computer can be configured as a domain controller by installing Active Directory.

System used to translate host names into IP addresses. DNS is included as a service with Windows Server 2003.

A protocol used to dynamically assign IP addresses to devices on a network. It can also be used to provide DHCP clients with optional parameters such as the IP address of the default gateway. DHCP in Windows Server 2003 can be integrated with DNS.

Feature that enables a DNS client to automatically register and update its own host record with a DNS server. It can be used in conjunction with DHCP so that clients can update their resource records when IP addresses change.

The tool used to view the contents of the Windows Server 2003 log files.

A forward lookup zone maps hostnames to IP addresses. When a client needs the IP address of a hostname, the information is retrieved from the forward lookup zone.

An administrative tool that can be used to administer various aspects of the client computing environment, from installing software to applying a standardized desktop.

Microsoft's version of a RADIUS server. To ease the administrative overhead of managing multiple RAS servers, you can implement a RADIUS server to centralize the authentication of remote access clients and the storage of accounting information.

Routing is the process of sending a packet from the source address to the destination address. Because all IP packets have a source and destination IP address, it is possible to deliver them to the proper location.

Tool that can be used to validate that communications between hosts are indeed secure. It provides information such as which IPSec policy is active and whether a secure communication channel is being established between computers.

A set of protocols used to support the secure exchange of data at the IP layer using encryption. In Transport mode, only the data portion or payload is encrypted. In Tunnel mode, both the header and the payload are encrypted.

With an iterative query, the DNS server uses zone information and its cache to return the best possible answer to the client. If the DNS server does not have the requested information, it can refer the client to another DNS server.

DHCP clients can be assigned an IP address from a DHCP server. The lease duration determines the amount of time a client can use an IP address assigned from a DHCP server before it must be renewed. The default lease time in Windows Server 2003 is eight days.

A support utility that can be used to identify and isolate connectivity and network problems.

A tool included with Windows Server 2003 used to monitor and capture network traffic. It is useful for troubleshooting network problems.

A routing protocol that uses the shortest path first or link-state routing algorithm. OSPF routers calculate the shortest path to each host and share that portion of the routing table.

A communication protocol used by dial-up remote access clients. PPP has become an industry-standard communications protocol because of its popularity; it provides support for multiple network protocols, including TCP/IP, IPX/SPX, and NetBEUI.

Type of zone that maintains the master writable copy of the zone in a text file. An update to the zone must be performed from the primary zone.

With a recursive query, the DNS client requires the DNS server to respond with either the IP address of the request or an error message that the requested name does not exist.

Service that enables remote clients to dial into a Windows Server 2003 server and access network resources as though they were physically attached to the network.

The data within a DNS zone file. Windows Server 2003 supports a number of different types of resource records.

This type of zone allows for reverse queries, or the mapping of an IP address back to a hostname. Reverse queries are often used when troubleshooting with the NSLookup command.

A protocol that allows routers to exchange routing information. It is designed for use with small- to medium-size networks. RIP routers periodically exchange entire routing tables.

Determines the pool of IP addresses from which a DHCP server can assign IP addresses. Every DHCP server must be configured with at least one scope.

Zone type that stores a copy of an existing zone in a read-only text file. To create a secondary zone, the primary zone must already exist, and you must specify a master name server. This is the server from which the zone information is copied .

Establishes a set of rules or recommendations that outline the minimum acceptable security configuration for new installations.

Windows Server 2003 includes a tool known as the Security Configuration and Analysis tool. Using this tool, you can analyze the current security state of a server or workstation by comparing the existing settings against an existing template.

Holds a number of security settings that Microsoft considers to be appropriate for a server, domain controller, or workstation. Windows Server 2003 includes several default templates with preconfigured security settings based on various computer roles. Custom templates can also be defined.

This tool enables an administrator to monitor why users shut down or restart their computers. When Shutdown Event Tracker is enabled, users are prompted to provide a reason as to why they are shutting down or restarting a computer. The information is then recorded in the system log.

One of the options now available for distributing updates. SUS consists of two components : the server and the client. The server (which can be running Windows 2000 or Windows Server 2003) downloads updates from Microsoft and stores them locally for clients to download without having to retrieve updates themselves from Windows Update servers on the Internet.

This type of zone is new in Windows Server 2003. A stub zone maintains only a list of authoritative name servers for a particular zone. The purpose of a stub zone is to ensure that DNS servers hosting a parent zone are aware of authoritative DNS servers for its child zones.

This tool provides configuration information about the local computer or a remote computer.

A tool included with Windows Server 2003 that can be used to monitor the real-time performance of system components as well as services and applications. System Monitor can be used to collect and view real-time performance data, view data saved in a counter log, and present captured data using various views.

This tool can be used to view a variety of information about the local computer. Task Manager displays the applications and processes currently running, provides performance and network statistics, and shows any users currently connected to the computer.

An industry-standard suite of protocols that enables two hosts to establish a connection and exchange data.

A database file that contains the resource records for a single domain or a set of domains. There are three types of zones in DNS: a forward lookup zone for mapping names to IP addresses, a reverse lookup zone for mapping IP addresses to domain names, and a stub zone for determining which DNS servers are authoritative for a zone.