Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure exam (70-293) covers the Windows Server 2003 networking topics represented by the conceptual groupings or units of the test objectives. The objectives reflect job skills in the following areas: -
Planning and Implementing Server Roles and Server Security -
Planning, Implementing, and Maintaining a Network Infrastructure -
Planning, Implementing, and Maintaining Routing and Remote Access -
Planning, Implementing, and Maintaining Server Availability -
Planning and Maintaining Network Security -
Planning, Implementing, and Maintaining Security Infrastructure Before taking the exam, you should be proficient in the job skills represented by the following objectives and subobjectives. Planning and Implementing Server Roles and Server Security The Planning and Implementing Server Roles and Server Security objective is designed to make sure that you understand and thus can plan and implement secure servers based on their roles in the network. You need to understand the default security configuration of new computers as well as how to incrementally tighten security to meet your needs. The objectives are as follows : -
Configure security for servers that are assigned specific roles. -
Plan a secure baseline installation. -
Plan a strategy to enforce system default security settings on new systems. -
Identify client operating system default security settings. -
Identify all server operating system default security settings. -
Plan security for servers that are assigned specific roles. Roles might include domain controllers, Web servers, database servers, and mail servers. -
Evaluate and select the operating system to install on computers in an enterprise. Planning, Implementing, and Maintaining a Network Infrastructure The Planning, Implementing, and Maintaining a Network Infrastructure objective is designed to make sure that you can adequately plan, implement, configure, and troubleshoot a complex network infrastructure consisting of multiple protocols, multiple name resolution services, and the physical and logical placement of objects and resources. The objectives are as follows: -
Plan a TCP/IP network infrastructure strategy. -
Analyze IP addressing requirements. -
Plan an IP routing solution. -
Create an IP subnet scheme. -
Plan and modify a network topology. -
Plan an Internet connectivity strategy. -
Plan network traffic monitoring. Tools might include Network Monitor and System Monitor. -
Troubleshoot connectivity to the Internet. -
Diagnose and resolve issues related to Network Address Translation (NAT). -
Diagnose and resolve issues related to name resolution cache information. -
Diagnose and resolve issues related to client configuration. -
Troubleshoot TCP/IP addressing. -
Plan a host name resolution strategy. -
Plan a DNS namespace design. -
Plan zone replication requirements. -
Plan a forwarding configuration. -
Plan for DNS security. -
Examine the interoperability of DNS with third-party DNS solutions. -
Plan a NetBIOS name resolution strategy. -
Troubleshoot host name resolution. Planning, Implementing, and Maintaining Routing and Remote Access The Planning, Implementing, and Maintaining Routing and Remote Access objective is designed to make sure that you can adequately plan, implement, configure, and troubleshoot a remote access and routing solution. The objectives are as follows: -
Plan a routing strategy. -
Plan security for remote access users. -
Plan remote access policies. -
Analyze protocol security requirements. -
Plan authentication methods for remote access clients . -
Implement secure access between private networks. -
Troubleshoot TCP/IP routing. Tools might include the route , tracert , ping , pathping , and netsh commands and Network Monitor. Planning, Implementing, and Maintaining Server Availability The Planning, Implementing, and Maintaining Server Availability objective is designed to make sure that you can adequately plan, implement, configure, and troubleshoot complex highly available solutions including clustering and network load balancing. You also are expected to understand and be able to plan and manage disaster recovery operations for your network in addition to monitoring your network for signs of trouble using available monitoring and logging tools. The objectives are as follows: -
Plan services for high availability. -
Identify system bottlenecks, including memory, processor, disk, and network-related bottlenecks. -
Implement a cluster server. -
Manage network load balancing. Tools might include the Network Load Balancing Monitor Microsoft Management Console (MMC) snap-in and the WLBS cluster control utility. -
Plan a backup and recovery strategy. -
Identify appropriate backup types. Methods include full, incremental, and differential. -
Plan a backup strategy that uses volume shadow copy. -
Plan system recovery that uses Automated System Recovery (ASR). Planning and Maintaining Network Security The Planning and Maintaining Network Security objective is designed to make sure that you can adequately plan, implement, configure, and troubleshoot complex network data security solutions that use the IP Security (IPSec) protocol. The objectives are as follows: -
Configure network protocol security. -
Configure security for data transmission. -
Plan for network protocol security. -
Plan secure network administration methods. -
Plan security for wireless networks. -
Plan security for data transmission. -
Troubleshoot security for data transmission. Tools might include the IP Security Monitor MMC snap-in and the Resultant Set of Policy (RSoP) MMC snap-in. Planning, Implementing, and Maintaining Security Infrastructure The Planning, Implementing, and Maintaining Security Infrastructure objective is designed to make sure that you can adequately plan, implement, configure, and troubleshoot a complex Certificate Services infrastructure for your network. You also are expected to understand change and configuration management basics. Lastly, you will be tested on basic security management tools such as Microsoft Baseline Security Analyzer (MBSA) and Microsoft Software Update Services (SUS). The objectives are as follows: -
Configure Active Directory directory service for certificate publication. -
Plan a public key infrastructure (PKI) that uses Certificate Services. -
Identify the appropriate type of certificate authority to support certificate issuance requirements. -
Plan the enrollment and distribution of certificates. -
Plan for the use of smart cards for authentication. -
Plan a framework for planning and implementing security. -
Plan a security update infrastructure. Tools might include Microsoft Baseline Security Analyzer and Microsoft Software Update Services. |