Microsoft 70-742: Identity in Windows Server 2016
3,605 students enrolled
Microsoft 70-742: Identity in Windows Server 2016
Identity with Windows Server 2016 Online Training Series
3,605 students enrolled
Current price: $139.99
Original price: $199.99
Discount:
30% off
5 hours left at this price!
30-Day Money-Back Guarantee
This course includes
- 18.5 hours on-demand video
- 11 downloadable resources
- Full lifetime access
- Access on mobile and TV
- Certificate of Completion
Training 5 or more people?
Get your team access to 4,000+ top Udemy courses anytime, anywhere.
Try Udemy for Business
What you'll learn
- Deploy and configure Active Directory Domain Services (AD DS)
- Operate and maintain AD DS
- Create, manage and troubleshoot Group Policy
- Implement Active Directory Certificate Services (AD CS)
- Design and implement identity federation and access solutions
Requirements
- Students who are willing to enroll in this course should be familiar with the concepts of Active Directory, DNS, and other identity services offered by Microsoft.
- Job or other hands-on experience in a Microsoft environment is a must to fully grasp the concepts taught in this course.
Description
This 70-742: Identity in Windows Server 2016 course teaches IT professionals on the deployment, configuration and troubleshooting of identity services such as Active Directory Domain Services (AD DS) and Group Policy in Windows Server 2016. Additionally, this course also covers the deployment and installation of other Active Directory server roles, such as Active Directory Federation Services (AD FS) and Active Directory Certificate Services (AD CS).
The course 70-742: Identity in Windows Server 2016 is part of a three course series required to pass the MCSA: Windows Server 2016 certification. The course curriculum is designed keeping in view the exam topics covered in the Microsoft exam 70-742. In this way, this course is equally helpful for IT professionals looking to gain their knowledge as well as the candidates willing to appear in the said exam.
Who this course is for:
- The typical audience for this course includes:
- System administrators who are looking to gain knowledge about identity and access technologies with Windows Server 2016
- Infrastructure administrators with general AD DS experience and knowledge who are looking to cross-train in core and advanced identity and access technologies in Windows Server 2016
Course content
Expand all
419 lectures
18:44:18
+
–
Chapter 01 - Installing and Configuring Domain Controllers
43 lectures
02:30:42
Topic A: Overview of Active Directory Domain Services
01:23
Information Protection Concepts
03:28
Identity and Access (IDA)
01:38
Authentication and Authorization
05:20
Preview
02:51
Access Tokens
02:10
Access Control Lists
02:07
The Kerberos Logon Process
06:05
Workgroup vs. Domain
02:29
Understanding AD DS Domains
02:11
AD DS Components and Concepts
01:03
Active Directory Database
02:21
Physical Data Store
01:33
Logical Partitions
04:23
Active Directory Schema
04:18
Domains
03:09
Trees and Forests
03:00
Organizational Units
02:28
Preview
02:27
Controlling Replication
00:51
Trust Relationships
03:40
Topic B: Overview of Domain Controllers
00:18
Introducing Domain Controllers
01:59
Global Catalog Servers
04:01
Read-Only Domain Controllers
01:40
FSMO Roles
07:06
Demo - Working with FSMO Roles
06:48
Demo - Viewing SRV Records
04:25
Topic C: Deploying Domain Controllers
00:12
Reasons for Multiple Domain Controllers
02:46
Installing from Server Manager
02:53
Considerations for Installing Domain Controllers
03:09
Demo - Installing a Domain Controller
09:13
Installing on Server Core
02:30
Demo - Promoting a Server Core DC
14:41
Upgrading Domain Controllers
02:00
Additional Installation Options
01:34
Demo - Cloning Domain Controllers
17:31
Chapter 01 Summary
01:39
Chapter 01 Review
00:10
Chapter 01 - Quiz
19 questions
+
–
Chapter 02 - Managing Active Directory Objects
53 lectures
03:40:03
Understanding AD DS Objects
02:00
Names for AD DS Objects
02:51
Management Tools
04:06
Demo - Overview of AD DS Management Tools
13:34
Topic B: Managing User Accounts
00:18
The Importance of the User Account
01:49
Naming Considerations
03:04
Creating User Accounts
02:06
Demo - Creating AD DS Users
32:38
Managing User Attributes
01:55
User Account Management
01:47
Demo - Managing Users
20:28
Topic C: Managing Groups
00:16
Group Types and Scopes
03:13
Types of Groups
02:00
Group Scopes
01:45
Domain Local and Global Groups
01:41
Universal Groups
00:36
Group Nesting
00:58
Group Naming Considerations
01:25
Creating and Configuring Groups
01:14
Demo - Creating and Configuring Groups
14:39
Introduction to Default Groups
01:39
Identifying Default Groups
02:33
Administrative Groups
00:47
Demo - Configuring Default Groups
03:56
Using Special Identities
02:27
Strategies for Using Groups
04:42
Group Nesting Strategies
06:18
Demo - Group Nesting
16:00
Topic D: Managing Computer Accounts
00:20
Creating Computer Accounts
02:02
Working with Secure Channel Passwords
03:20
Offline Domain Joins
02:04
Demo - Working with Computer Accounts
09:57
Topic E: Managing Organizational Units
00:42
Planning Organizational Units
05:04
OU Hierarchy Considerations
00:52
Creating OUs
01:46
Demo - Creating an OU Hierarchy
10:37
Object Security in AD DS
01:21
AD DS Object Permissions
01:34
Demo - Viewing Object Permissions in Active Directory
05:40
Modifying Delegated Rights
01:32
Best Practices for Administrative Delegation
01:25
Demo - Delegating Administrative Control
08:34
Chapter 02 Summary
01:29
Chapter 02 Review
00:10
Chapter 02 - Quiz
11 questions
+
–
Chapter 03 - Securing Active Directory Domain Services
45 lectures
02:05:53
Topic A: Securing Domain Controllers
00:13
Understanding Security Risks
04:13
Using Group Policy
01:46
Group Policy Security Settings
02:14
Securing the Authentication Process
03:48
Physical Access Security
03:05
Branch Office Domain Controllers
02:07
RODC Features
03:29
RODC Limitations and Considerations
01:56
Deploying RODCs
02:17
Demo - Installing an RODC
08:13
Password Replication Policies
02:03
Topic B: Implementing Account Security
00:16
Account Security in Windows Server 2016
02:04
Complexity Options
01:35
Password Policies
02:39
Account Lockout Policies
03:17
Configuring Domain Password and Lockout Policies
01:23
Demo - Configuring Account Policies in Group Policy
05:45
Configuring Fine-Grained Password Policies 1
02:31
Configuring Fine-Grained Password Policies 2
01:35
Configuring Fine-Grained Password Policies 3
01:31
Demo - Configuring Fine-Grained Password Policies
12:01
Restricted Groups
02:03
Protected Users Security Groups
02:03
Authentication Policies
02:58
Authentication Silos
01:12
Enhancing Password Authentication
04:13
Topic C: Auditing AD DS
00:12
Utilizing Auditing
01:41
The Purpose of Auditing
01:36
Types of Events
04:04
Auditing Goals
01:05
Auditing File and Object Access
02:27
Advanced Auditing
02:07
Demo - Configuring Auditing
12:59
Topic D: Configuring Managed Service Accounts
00:14
Overview of Service Accounts
02:36
Challenges to Managing Service Accounts
01:40
Managed Service Accounts
01:08
Group MSAs
01:01
Demo - Configuring Group MSAs
07:09
Chapter 03 Summary
01:49
Chapter 03 Review
00:10
Chapter 03 - Quiz
10 questions
+
–
Chapter 04 - Working with Complex AD DS Infrastructures
43 lectures
01:57:41
Topic A: Overview of Advanced AD DS Deployments
00:13
Domain Boundaries
03:28
Forest Boundaries
01:32
Reasons for Implementing Multiple Domains
03:22
Reasons for Implementing Multiple Forests
02:39
Deploying Domain Controllers in Azure
06:26
Managing Objects
02:47
Topic B: Deploying a Distributed AD DS Environment
00:13
Domain Functional Levels
02:35
Forest Functional Levels
01:08
Deploying AD DS Domains
01:40
DNS Considerations
04:52
UPN Considerations
01:59
Demo - Deploying a Child Domain
05:55
Understanding Trust Relationships
03:05
Types of Trusts
03:23
How Trusts Work
02:43
Forest Trusts
01:52
Advanced Trust Settings
03:49
Demo - Configuring a Forest Trust
11:20
Topic C: Overview of AD DS Replication
00:20
AD DS Partitions
01:34
AD DS Replication
03:31
Types of Replication
02:46
Resolving Replication Conflicts
03:34
Topic D: Configuring AD DS Sites
00:23
Reasons for Sites
02:46
Planning for Sites
02:01
Overview of Sites and Subnets
01:49
Moving Domain Controller Accounts
00:49
Domain Controller Placement
03:43
Demo - Creating Sites
07:59
Controlling Inter-Site Replication
01:46
Defining Site Links
01:15
Site Links
01:29
Site Link Properties
02:13
Demo - Creating Site Links
06:46
Bridgehead Servers
01:25
Bridging Site Links
01:47
Monitor and Manage Replication
01:34
Chapter 04 Summary
01:08
Chapter 04 Review
00:10
Chapter 04 - Quiz
16 questions
+
–
Chapter 05 - Implementing Group Policy
69 lectures
03:13:19
Topic A: Overview of Group Policy
00:11
What is Group Policy?
02:22
Group Policy Settings
01:39
Preview
01:47
Policies vs. Preferences
02:16
Demo - Examining Policy Settings
06:23
Domain Policies
02:43
GPO Storage
01:37
Linking GPOs
01:29
GPO Processing Order
02:04
Controlling Inheritance
01:38
Determining Inheritance
00:45
GPO Link Options
02:18
Security Filtering
03:50
WMI Filtering
02:21
Refreshing Policies
02:12
Other Processing Options
03:28
Topic B: Creating and Configuring GPOs
00:12
Creating GPOs
01:17
Starter GPOs
01:58
Administrative Templates
03:37
Group Policy Preferences
01:12
Demo - Creating and Configuring Policies
37:40
Group Policy Management
00:42
Delegation of Control
02:05
Demo - Managing GPOs
07:54
Topic C: Monitoring and Troubleshooting Group Policy
00:24
Troubleshooting Group Policy Application 1
03:05
Troubleshooting Group Policy Application 2
02:48
Demo - Troubleshooting Group Policy Application
11:40
Topic D: Security Management Using Group Policy
01:03
Configuring User Rights
01:25
Managing Security Options
01:52
User Account Control
02:09
Demo - Managing Security Options
05:43
Controlling Applications
01:09
Software Restriction Policies
03:23
Security Levels
01:09
AppLocker
01:41
Support for AppLocker
00:58
AppLocker Rules
01:55
Creating Default Rules
03:00
Demo - Controlling Applications Using Group Policy
11:35
Configuring the Windows Firewall
01:58
Windows Firewall with Advanced Security
01:31
Firewall Profiles
01:03
Creating Firewall Rules
00:24
Configuring the Windows Firewall
00:52
Types of Rules
01:31
Connection Security Rules
01:43
Demo - Configuring Firewalls using Group Policy
07:30
Topic E: Managing User Environments
00:24
Using Scripts in Group Policy
01:18
What is Folder Redirection?
01:53
Common Folders for Redirection
01:06
Redirection Options
01:38
Demo - Configuring Folder Redirection
05:39
Deploying Software Using Group Policy
02:09
How Software Distribution Works
00:44
Using Windows Installer
01:35
Software Life Cycle
00:58
Deploying Software
01:05
Deployment Options
02:04
Maintaining Software through Group Policy
00:57
Removing Software Deployments
00:44
Chapter 05 Summary
01:42
Chapter 05 Review
00:10
Chapter 05 - Quiz
15 questions
+
–
Chapter 06 - Understanding Microsoft Azure AD and Directory Synchronization
24 lectures
52:59
Topic A: Planning Directory Synchronization
00:19
Overview of Azure AD
05:38
Limitations of AD DS
02:37
Extending AD DS Authentication
03:35
Comparing AD DS and Azure AD
01:58
Authentication Options
04:54
Planning Directory Synchronization
02:57
Enabling AD DS Synchronization
02:04
Topic B: Implementing Azure AD Connect
00:10
What is Azure AD Connect?
01:50
Azure AD Connect Requirements
04:02
Azure AD Connect Express Settings
01:06
Azure AD Connect Custom Installation
02:06
Monitoring Azure AD
01:06
Privileged Identity Management
01:23
Topic C: Managing Identities with Directory Synchronization
00:06
Managing Users
08:01
Managing Groups
00:56
Filtering Azure AD Connect
02:03
Monitoring Directory Synchronization
01:46
Troubleshooting Directory Synchronization
01:24
Chapter 06 Summary
01:29
Chapter 06 Review
00:10
Chapter 06 - Quiz
10 questions
+
–
Chapter 07 - Monitoring and Recovering AD DS
28 lectures
59:34
Topic A: Monitoring AD DS
00:15
Performance Monitoring Benefits
02:05
Establishing Performance Baselines
02:13
Introduction to Monitoring Tools
00:51
Event Viewer
02:34
Demo - Using Event Viewer
05:12
Reliability Monitor
01:52
Real-Time Monitoring
02:42
Data Collector Sets
01:26
Data Collection Points
00:49
Common AD DS Counters
04:35
Best Practices
02:48
Topic B: Database Management
00:07
Physical Data Store
02:59
Using NTDSUtil
02:36
AD DS Maintenance
01:27
Topic C: Backup and Recovery in AD DS
00:11
Disaster Recovery for Active Directory
01:27
Backing Up Active Directory
04:17
Using Backup Tools
00:40
Backup Requirements
01:44
Restoring Data
04:28
Additional Restore Options
03:53
Demo - Enabling the AD Recycle Bin
03:23
Best Practices for Backup and Recovery
01:27
Chapter 07 Summary
01:58
Chapter 07 Review
00:10
Chapter 07 - Quiz
10 questions
+
–
Chapter 08 - Implementing Active Directory Certificate Services
57 lectures
01:33:34
Topic A: Overview of Public Key Infrastructure and AD CS
00:08
What is a PKI?
01:38
Encryption Types
02:05
PKI Components
01:56
PKI Enabled Applications
01:49
Certificate Authorities
01:45
CA Types
00:49
Internal vs. External CAs
03:24
AD CS in Windows Server 2016
03:15
Topic B: Deploying Certificate Authority Hierarchy
00:13
Decision Factors for CA Hierarchy
00:39
CA Hierarchy Roles
01:40
Best Practices for CA Hierarchies
01:22
Installing Root CAs Part 1
01:18
Installing Root CAs Part 2
01:17
Demo - Installing a Root CA
08:02
Installing Subordinate CAs
00:50
Benefits of Using Subordinates
01:36
Automating Installations
01:58
Topic C: Administering Certificate Authorities
00:25
Administration Tools
03:09
Configuring CA Security
01:22
Security Roles for CA Administration
01:58
Policy and Exit Modules
01:29
Certificate Revocation Lists (CRL)
02:37
Publishing the CRL
00:57
Publishing AIAs and CDPs
01:14
Topic D: Deploying and Managing Certificates
00:08
Digital Certificates
01:55
Certificate Templates
01:08
Template Versions in Windows Server 2016
02:11
Certificate Template Permissions
01:13
Updating Templates
01:21
Demo - Modifying and Enabling a Certificate Template
05:44
Enrollment Types
02:02
Manual Enrollment
00:58
Automating Enrollment
00:36
Autoenrollment Components
00:56
Demo - Configuring Autoenrollment
07:22
Credential Roaming
00:48
Topic E: Managing Revocation and Distribution
00:22
Certificate Revocation
01:24
Online Responder
01:41
Online Responder Process
00:50
Comparing CRL and OCSP
01:32
Configuring an Online Responder
01:01
Topic F: Configuring Certificate Recovery
00:16
Importance of Key Archival and Recovery
01:03
Key Archival
01:27
Data Recovery vs. Key Recovery
01:24
Archival Methods
00:45
Export Methods
00:46
Automating Archival
01:01
Recovering Lost Keys
01:12
Chapter 08 Summary
01:57
Chapter 08 Review
00:10
Chapter 08 - Quiz
10 questions
+
–
Chapter 09 - Implementing Active Directory Federation Services (AD FS)
30 lectures
01:03:57
Topic A: Overview of AD FS
00:10
What is Identity Federation?
03:09
Federation Benefits
01:35
AD FS Components
02:13
Additional AD FS Terms
04:03
Identity Federation Scenarios
01:49
Business to Business Scenario
01:54
Business to Employee Scenario
00:46
Business to Consumer Scenario
00:32
New Features in Windows Server 2016
01:31
Topic B: Planning and Deploying AD FS
00:06
AD FS Requirements
02:10
Server Roles
02:04
Planning High Availability
03:04
AD FS Claims
02:34
AD FS Claim Rules
03:38
Trust Relationships
02:32
Installing AD FS
02:59
Demo - Installing AD FS
08:39
Configuring Partners
03:35
Home Realm Discovery
02:07
Managing AD FS
01:53
Topic C: Overview of Web Application Proxy
00:17
Introducing the Web Application Proxy
02:49
Web Application Proxy and AD FS Proxy
01:47
Authentication Methods
02:02
Publishing Software
01:27
Chapter 09 Summary
01:05
Chapter 09 Review
00:10
Chapter 09 - Question
10 questions