Microsoft 70-412: Configuring Advanced Windows Server 201...

Explore a lab layout that isolates servers behind firewalls, demonstrates DMZ architecture, and connects domain controllers and clients across Florida, Georgia, and Alabama.

Explore Active Directory and Directory Domain Services in Windows Server 2012, compare single and multiple domains, and cover functional levels, upgrade options, and a domain controller installation demo.

Explore how a forest contains multiple trees and domains in Active Directory, and how this structure impacts resource sharing, management, and security; including single versus multiple domains.

Explore why a single domain simplifies management, reduces cross-domain trusts, and leverages a global catalog, while recognizing when multiple domains or forests may be needed; see a domain controller demo.

Learn upgrade versus migrate for Windows Server 2012, upgrading domain controllers from 2008 or 2008 R2 to 2012, demoting old servers, and migrating with SID history and a guided wizard.

Explore configuring a domain controller using server manager, adding a server, and provisioning roles and features to centralize administration across grouped machines.

Install and configure a domain controller using the roles and features wizard, explore remote server administration tools, and automate setup with PowerShell scripts and XML configuration exports.

Explore Active Directory domains and forests, mastering trust relationships, authentication filtering, and name suffix routing, with a hands-on demo of creating a child domain and trust.

Explore how domain trusts enable resource sharing across Windows Server forests and domains, including one-way, two-way, transitive, child and tree root trusts, automatic and manual configurations.

Understand external trusts that connect your domain to an external partner, typically one-way, sometimes two-way, to grant access to resources during mergers or migrations.

Explain forest trusts as transitive or non-transitive relationships between forests, not domains. Cover one-way and two-way configurations with complete or selective options; trusts don't automatically extend to a third forest.

Explore shortcut trusts as faster authentication within an enterprise, comparing two-way transitive and intransitive trusts, and applying them within a forest.

Explore selective authentication, restricting access to specific objects like a file server, and domain-wide authentication, granting access to authorized and authenticated users based on permissions.

Configure and troubleshoot name suffix routing in Active Directory forests, explaining default unique naming across domains and how to turn off routing to control trust traffic.

Create a child domain between Tallahassee and North Florida domain controllers. Set up a forest trust and DNS delegation with A and IPv6 records, then install active directory domain services.

Promote a server to a domain controller to create a child domain named NFL in North Florida within an existing forest, with DNS delegation and an outgoing trust configured.

Create a child domain and build a trust while configuring dns on the master dns server, adding a forward lookup zone and a stub zone.

Learn to configure selective authentication for an outgoing trust, validate trusts, and apply domain security settings using Active Directory Users and Computers to test access across trusted domains.

Set up advanced sharing and full-control permissions for a folder, verify access through a trust test, and ensure firewall authentication when logging in as Alice.

Demonstrates configuring a trust between child domains and forests, and setting up users and folders with access permissions across the trusted environments.

Explore domain trusts and authentication in Active Directory, from child and parent domains to transitive, one-way, and two-way trusts, plus external and forest trusts.

Explore how Active Directory uses sites to represent physical locations, manage intra-site and site-to-site replication, and optimize bandwidth with compression and scheduled automatic replication.

Explore SRV records in DNS, also known as locator records, mapping services like Kerberos and Global Catalog to domain controllers, with _tcp and _sites structures and protocol details for TCP/UDP.

Learn how the knowledge consistency checker selects bridgehead servers to coordinate site-to-site replication of the Active Directory database, and see a demo of adding an alternate domain controller and site.

Understand active directory sites, designate a site with a domain controller, and control replication while local domain controllers serve local machines.

Learn site topology and site links in a multi-location Active Directory, managing intra-site replication between domain controllers, configuring site link costs, and applying bridging in hub-and-spoke networks.

Explore site topology and site links in Active Directory, analyzing costs and bridging for cross-site replication, with redundancy and multiple domain controllers for high availability.

Learn how to use group membership caching and branch cache to reduce replication traffic, speed logins, and provide instant access at sites with slow links.

Use DC diag and repadmin to report, test, and diagnose replication; view KCC events and replica status, then configure site links and monitor replication.

Explore troubleshooting of Active Directory replication in site links and bridgeheads, using dcdiag to verify Tallahassee to DC1 replication and monitor delays.

Explore how Active Directory Domain Services stores data and replicates it across domain controllers. Learn about site topology, site links, multi-master replication, and conflict resolution with automated algorithms.

Explore dns management in Windows Server 2012 advanced services, including dhcp and dns, name zone and dns security, with demonstrations you can implement.

Explore DNS administration techniques, including creating and managing records, using forwarders, and implementing aging and scavenging to keep DNS clean and reliable for IPv6.

Explain how dns queries flow from clients to authoritative dns servers, including forwarders, recursive lookups, conditional forwarders, stub zones, and subnet-based ordering to resolve ip addresses.

Configure DNSSEC in Windows Server by signing the zone with a zone signing key and a key signing key, enabling trust anchors, and distributing DNSSEC records to all DNS servers.

Delve into DHCP in Windows Server 2012 advanced services, uncover new gotchas, learn about name protection, DNS interaction, and how to set up scopes and DHCP components.

Set up a dhcp server to assign addresses based on the network, use a dhcp relay agent for subnets, and manage lease renewal.

Learn how DNS and DHCP collaborate to register and update host records using dynamic updates and resource records, with option 81 controlling permissions and automatic deletion at lease expiry.

Learn how scopes define address ranges, including super scopes and multi-netting, to manage multiple subnets, DHCP allocation, and multicast scopes for Windows deployment.

Explore IPv6 DHCP concepts, including stateless and stateful address provisioning, prefixes, lifetimes, and how DHCP interacts with IPv6 options, exclusions, and name scope.

Configure IPv4 DHCP scopes for site one and site two on the domain controller, including gateway, DNS, and 24-bit subnet, then manage scope activation and build a super scope.

Master DHP configuration with scopes, DNS interoperability, and the request flow, then explore IPv6, DHP failover, and name pre-text in Windows Server 2012 as the DHP and networking chapter concludes.

Explore the four IPAM modules—EPM discovery, address space management, multi-server management, and operational auditing—and how they centralize DNS, DHCP, and domain controller data for monitoring and reporting.

Set up a single-role member server on Windows Server 2012 with 80 GB disk and 4 GB RAM (8 GB recommended). Poll DNS, DHCP, and domain controllers and enable logging.

Map your current network to an IP address management (IPAM) setup with security groups from view-only to full IPAM admin, enabling address space management and tracking.

Install the ipam feature, provision ipam with group policy provisioning, and create security groups and folders; then run server discovery to manage dhcp, ip, dns, and domain controller.

Configure IPAM installation by selecting AD, domain controllers, and DNS servers, run data collection, then provision and link GPOs via PowerShell to enable domain controller manageability.

Refresh the domain controller to apply updates, verify the status shifts from red to green, and gather information to configure dhcp and dns scopes and MSM tasks.

Learn IPAM installation and configuration on Windows Server 2012, including basic IP setup, DHCP reservations, DNS records, and managing servers in the inventory and IP address space.

Use file server resource manager to classify data, apply policies, and enforce quotas and file screening management on a corporate file server, then monitor disk usage with reports.

Explore new options in Windows Server 2012: features on demand to save space, improved file access ordering for auditing, and data deduplication to remove duplicates, plus the NFL data store.

Configure a file classification system on Florida server 1, create a local property called supersecret doc, and set up a folder classifier rule to auto classify and report.

Learn to create and manage file classification properties and rules, configure expiration handling, set up file management tasks for expired documents, and generate reports with email or event log notifications.

Configure file classification to move older documents to an expired directory. Review see and story reports in event viewer and understand the latest version remains accessible for daily changes.

Configure and enable data deduplication on Windows Server by installing the data deduplication feature, selecting the E drive, and setting schedules, exclusions, and daily optimization.

Explore file classification and the basics of file and storage. Learn how FSRM supports screening and filtering through classification, and preview the next chapter on data and DAQ.