FIT - Ôn tập MCSE

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 KHOA CNG NGH THNG TIN B MN K THUT H THNG

CNG MN HC/MUN: N TP MCSE1. Mc tiu (ASK) a. Kin thc (K) o Trinh bay c cp phc tap cua cu truc vt ly va lun lyca Active Directory. o Giai thich c phng thc ng b d liu gia cac Domain Controllers (DC) trong Domain/Tree/Forest. o Nhn bit c cac cng cu quan ly, backup, restore Active Directory. o Trinh bay c vai tro cua cac DCs trong Active Directory. o Sao lu va phuc hi Active Directory c. Thi (A) o Nm c tm quan trong cua Active Directory trong quan ly h thng mang doanh nghip. o Nm c vai tro quan trong cua vic quan ly Active Directory o Co thai nghim tuc trong vic thit k h thng DNS Name trong doanh nghip. o Co thai nghim tuc trong vic giam sat va bao tri Active Directory.

b. K nng (S) o Phn tich va thit k c kin truc mang cho doanh nghipnhiu Sites. Xy dng c Active Directory cho Domain Tree va Forest. Thit lp c uy quyn gia cac Domain trong Forest. Cu hinh ng b d liu gia cac DCs. Thit lp chuyn i chc nng cua cac DCs. Thit k va trin khai h thng DNS Names nhiu sites. o Quan ly h thng mang nhiu Domain, quan ly dich vu Active Directory va x ly s c trong Active Directory.

2. H tr dy v hc a. Ti liu dy v hc o Slides bi ging, gio trnh NXB. o Gio trnh thc hnh, hng dn n.b. Ti liu tham kho

o o o o o

o Training kit 70-/70-297/Training kit 70-293. 3. Thi lng: 10h (LT: 10h; TH: 0h).

Khoa CNTT MH/M: Hoch nh v pht trin mi trng mng

Trang 1/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304

4. Phn b thi gianTHI GIAN (H) STT TN BI HC TNG LT TH - Kin trc ca Active Directory/C ch hot ng ca Active Directory/ Kho st Active Directory/Qu trnh thit k, lp k hoch v trin khai Active Directory. - Xy dng Forest v domain/ S tch hp DNS trong AD/ Forest v Domain Functional Level/ To Trust Relationships. - Xy dng v qun l OU/ y quyn qun tr trn OU/ Cc chin lc xy dng OU. - Xy dng v qun l OU/ y quyn qun tr trn OU/ Cc chin lc xy dng OU. - To v cu hnh chnh sch nhm. Lp k hoch, cu hnh, trin khai phn mm t xa thng quan Group Policy. - Gii thiu v Active Directory Replication/ To v cu hnh Site/Qun l Site Topology/Khc phc s c trong qu trnh replication/Lp k hoch xy dng site. - Trin khai Global Catalog trong AD/ Xc nh phn b Domain Controller trong AD/ Lp k hoch phn b Domain Controller. - Gii thiu Operation Master Role/ Chuyn giao v chim ot Operation Master Role/ K hoch b tr Operation Master. - Duy tr hot ng AD/ Di chuyn v chng phn mnh database ca AD/ Backup Active Directory/ Restore Active Directory/ K hoch gim st Active Directory Xy dng, ln k hoch trin khai cu hnh tnh nng High Availability: Network LoabBalancing, Clustering trn Windows Server 2003. GHI CH

1

N TP MCSE PHN 1

8

8

0

2

N TP MCSE PHN 2 TNG CNG

2 10

2 10

0 0


Trang 2/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 Ni dung ging dy chi tit NI DUNG STT 1 N TP MCSE PHN 1 Mc tiu

BI HC

L THUYT

BI TP THO LUN

CCDC-TB/PM

THC HNH LAB

Kin trc ca Active Directory Chc nng ca Active Directory

o o Directory o Directory

Kin trc vt l v logic ca Active Directory Ging vin Demo kho st kin trc vt l v kin trc logic ca Active Directory

Kho st kin trc vt l v kin trc logic ca Active Directory

Gii thch kin trc ca Active Directory

Kin trc logic ca Active Forest Domain Tree Domain OU Object Kin trc vt l ca Active Sites Domain Controllers WAN links

PCs, Kt ni mng LAN Win dows Server 2003/Windows Server 2008 Win dows XP Pro/ Windows Vista

Trnh by c c ch hot ng ca Active Directory

C ch hot ng ca Active Directory

Gii thiu Directory Service Schema o Global Catalog o Distinguished and Relative Distiguished Name o C ch Single Sign-on o o

Kho st Active


Trang 3/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC L THUYT Directory o Directory o C ch qun l Active Tp trung Phn tn Cng c qun tr BI TP THO LUN THC HNH LAB CCDC-TB/PM

MMC Snap-ins: ADUC, ADDT,ADSS, ADS Command-line: Dsadd, Dsmod, Dsquery, Dsmove, DSrm, Dsget, csvde,ldifde Windows Script Host o Kho st cu trc Active Directory

Nm c qu trnh thit k, lp k hoch v Xy dng Active Directory

logic ca AD

Kho st cu trc Kho st cu trc vt

l ca AD

Qu trnh thit k, lp k hoch v trin khai Active Directory

Tng quan v qu trnh thit k, lp k hoch v trin khai AD o Tin trnh thit k AD o Tin trnh lp k hoch xy dng AD o Tin trnh trin khai AD o


Trang 4/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT 2 BI HC L THUYT

BI TP THO LUN

CCDC-TB/PM

THC HNH LAB

Xy dng c forest v domain

Xy dng Forest v domain Cc yu cu ci t AD Tin trnh ci t AD Qu trnh xy dng Forest v domain

o o o o

Ging vin demo cch nng cp functional level

Xy dng Forest, Domain, Child domain Kim tra qu trnh ci t AD i tn Domain Controller Ging cp/g b AD To mt Forest Trust

Gii thch c s tch hp ca DNS trong AD

Qu trnh xy dng replica domain controller (DC ng hnh) o i tn Domain Controller o Kim tra qu trnh ci t AD o Khc phc li trong qu trnh ci t


S tch hp DNS trong AD Khng gian tn DNS v AD Active Directory Integrated Zone

o o o o

Hiu c ngha ca Forest v Domain Functional Level

SRV Resource Record SRV Record c ng k bi Domain Controller o Cch Client s dng DNS xc nh Domain Controller v Service

Forest v Domain Functional Level Gii thiu Forest v Domain Functional Level

o


Trang 5/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC o L THUYT Cc yu cu s dng cc tnh nng mi trn Windows Server 2003 o Cch nng cp (raise) Functional Level

BI TP THO LUN THC HNH LAB

CCDC-TB/PM

Nm c Trust Relationship v to c Trust gia cc forest

To Trust Relationships

Cc loi Trust Trusted Domain Object Cch Trust lm vic trong mt Forest o Cch Trust lm vic gia cc Forest o Cch to Trust o Kim tra v g b mt Trust o o o 3

Lp c k hoch xy dng cu trc OU

Xy dng v qun l OU Gii thiu OU Cc phng php to v qun l OU S dng Directory Service Tools S dng ldifde S dng Windows Script Host y quyn qun tr trn OU

o o

Tho lun cc kch bn xy dng OU ca mt doanh nghip c th

To OU y quyn qun tr Kim tra quyn hn cp


Xy dng v qun l c OU


Trang 6/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC o cho user

L THUYT Giao c quyn qun tr OU Cc tc v qun tr OU Cch y quyn qun tr, chnh sa v kim tra quyn hn trn OU Cc chin lc xy dng OU o dng OU Cc yu t nh hng n cu trc ca OU o Hng dn lp k hoch xy dng cu trc OU o Hng dn y quyn qun tr OU o Tin trnh lp k hoch xy


CCDC-TB/PM

Hiu v thc hin c vic y quyn qun tr OU

o o

4

Lp c k hoch xy dng h thng ti khon user,group, computer

Gii thiu v ti khon Cc loi ti khon Cc loi nhm Domain Local Group Global Group Universal Group To v qun l nhiu ti khon

o o

Tho lun kch bn xy dng ti khon cho mt doanh nghip c th

Kch bn lp k hoch ti khon v ghi nhn s kin To ti khon s dng csvde, ldifde To UPN Suffix Di chuyn ti khon

Qun l c nhiu ti khon ngi dng bng cc tin ch


o

Cc tin ch to v qun l nhiu ti khon ng thi


Trang 7/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC

L THUYT Csvde Ldifde Windows Script Host


CCDC-TB/PM

command-line

Hiu v qun l c UPN Suffix

Trin khai User Principal Name Suffixes

User Principal Name Name Suffix Routing o Name Suffix Conflict o To v xa UPN Suffix o Bt v tt Name Suffix Name Routing trong Forest Trust o o

Di chuyn Object trong AD SID History Di chuyn Object Trong cng 1 domain Trong cng 1 forest Gia cc forest

Hiu v thc hin c vic di chuyn cc object trong AD

o o

Cc chin lc lp k hoch xy dng ti khon User, Group v Computer

Hng dn t tn ti khon Hng dn thit lp chch sch password o Hng dn v vn chng thc, quyn hn v qun tr ti khon o o


Trang 8/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC o

L THUYT Hng dn lp k hoch xy dng ti khon nhm Cc chin lc lp k hoch ghi nhn s kin (theo di) Active Directory


CCDC-TB/PM

Ti sao phi ghi nhn vic truy cp AD o Hng dn theo di s thay i trong AD o 5

Lp c k hoch xy dng chnh sch nhm

To v cu hnh chnh sch nhm

Cu hnh v khc phc c cc s c v chnh sch nhm Qun l v y quyn qun tr cc chnh sch nhm

Gii thiu chnh sch nhm Cc thnh phn ca GPO Ch nh Domain Controller qun l GPO o WMI Filter o Loopback Processing o o o

Xy dng k hoch trin khai chnh sch nhm cho mt t chc c th

To v cu hnh GPO Lin kt GPO vi OU Kim tra cc thit lp trong chnh sch nhm

Cu hnh Group Policy Refesh Rate v Group Policy Setting


Qu trnh p dng chnh sch nhm o Cu hnh GP Refresh Rate o

Qun l GPOs Copy GPO Backup GPO Restore GPO

o o o


Trang 9/19


L THUYT Import Setting vo GPO Kim tra v khc phc s c v chnh sch nhm


CCDC-TB/PM

Cc vn thng gp khi trin khai chnh sch nhm o Kim tra kt qu ca chnh sch nhm Group Policy Modeling Group Policy Results o

y quyn qun tr chnh sch nhm y quyn qun tr GPO Site Domain OU WMI Filter

o

Chin lc lp k hoch v chnh sch nhm

Hng dn lp k hoch xy dng GPO o Hng dn xc nh s k tha GPO o Hng dn xc nh chin lc xy dng GPO cho site o Hng dn xy dng k hoch qun l GPO o


Trang 10/19


L THUYT Hng dn trin khai GPO Trin khai phn mm Tin trnh trin khai phn mm So snh Asign software v Publish software o To mt Software Distribution Point o Cc option mc nh o


CCDC-TB/PM

o

Cu hnh trin khai phn mm Software Category Software Assocication Software Modification Duy tr cc phn mm c trin khai Cc loi upgrade Upgrade software Redeplogy Software Cc cch remore phn mm Khc phc s c khi trin khai phn mm

o o o

o o o o

Cc li thng gp khi s dng GP trin khai phn mm o Xc nh nguyn nhn o Gii quyt vn khi ci t o


Trang 11/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC L THUYT phn mm bng cch s dng GP


CCDC-TB/PM

Chin lc lp k hoch trin khai phn mm Hng dn lp k hoch Software Distribution Point S dng chnh sch nhm trin khai phn mm Duy tr phn mm

o

6

Trnh by c qu trnh ng b Active Directory

Gii thiu v Active Directory Replication ng b trong mt site ng b gia cc lin kt khc nhau (Ph thuc Functional Level) Directory Partition Replication Topology T ng pht sinh Replication Topology Global Catalog v S ng b Partition To v cu hnh Site Gii thiu Site v Subnet Object Site Links So snh s ng b trong 1 site vi ng b gia cc site

o o

To Replication Domain Controller To v cu hnh Site cho domain Khc phc s c trong qu trnh ng b

o o o


Lp c k hoch xy dng Site

o

o o o


Trang 12/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC o subnet

L THUYT To v cu hnh Site v To v cu hnh Site link Disable Bridge ca tt c cc link o bridge


CCDC-TB/PM

Trin khai c h thng Site, ti u v bo mt cho qu trnh ng b database ca Acitve Directory

o o

To v cu hnh site link Qun l Site Topology Bridgehead Server Intersite Topology Generator To Preferred Bridgehead Server Refesh Replication Topolgy Force Replication Khc phc s c trong qu trnh replication Cc vn hay gp trong qu trnh ng b Gim st qu trnh ng b Cu hnh gim st qu trnh ng b Repadmin Tool DCDiag Tool Cch xc nh nguyn nhn ca s c Gii quyt s c ng b

oo o o o

o o o o o o o


Trang 13/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC L THUYT database AD


CCDC-TB/PM

Lp k hoch xy dng site Qu trnh lp k hoch xy dng Site Hng dn xc nh Schedule, Interval v Protocol ca Site link Hng dn xc nh s cn thit ca Site link bridge Hng dn xc nh yu cu cho Bridgehead Server Hng dn bo mt cho qu trnh ng b Trin khai Global Catalog trong AD Global Catalog Server Customize Global Catalog Server

o o

o o o 7

Lp c k hoch phn b domain controller hp l

o o o Caching o

S dng Active Directory Sizer xc nh phn b Domain Controller Enable Universal Group Membership Caching

Universal Group Membership

Cu hnh c Global Catalog Server

Vi tr ca Universal Group trong tin trnh ng nhp o Enable Universal Group Membership Caching cho Site


Xc nh phn b Domain Controller trong AD


Trang 14/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC o o L THUYT Active Directory Sizer Cc tham s ca Active Directory Sizer o S dng Active Directory Sizer


CCDC-TB/PM

Lp k hoch phn b Domain Controller

Hng dn b tr Domain Controller o Hng dn b tr Global Catalog Server o Hng dn Enable Universal Group Membership Caching o Hng dn b tr DNS Server tch hp AD o 8

Trnh by c ngha v vai tr ca cc loi Master Role

Gii thiu Operation Master Role Schema Master Domain Naming Master PDC Emulator RID Master Infrastructure Master Chuyn giao v chim ot Operation Master Role Chuyn giao Master Role Chim ot Master Role

o o o o o

Chim ot Master Role c thc hin khi no

Chuyn giao Master Role Chim ot Master Role

Thc hin c vic chuyn giao v chim ot master role


o o


Trang 15/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC L THUYT


CCDC-TB/PM

Lp k hoch b tr Master Role hp l

K hoch b tr Operation Master dn b tr Operation Schema Master Domain Naming PDC Emulator Master RID Master Infrastructure Master dn chim ot

Hng Master Master o Hng Master Role o

9

Duy tr c hot ng ca AD

Duy tr hot ng AD Tin trnh chnh sa d liu AD AD Database v Log File Di chuyn v chng phn mnh database ca AD Backup Active Directory

o o

Vai tr ca vic backup v theo di hot ng ca AD

Backup Active Directory Restore Active Directory Gim st hot ng ca AD

Lp k hoch v thc thi vic gim st hot ng ca AD Thc thi c vic backup v restore h thng AD

Cc thnh phn ca System State Data o Sao lu Active Directory o


Restore Active Directory Cc phng php phc hi

o


Trang 16/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC AD

L THUYT


CCDC-TB/PM

Primary Normal Authoritative

K hoch gim st Active Directory

Tng quan v gim st hot ng ca AD o Gim st s kin o Gim st thng qua Performance Counter o Hng dn gim st hot ng AD o 2 N TP MCSE PHN 2 Mc tiu

Tm hiu cng ngh Network LoadBalancing Cc gii php cn bng ti

Lp k hoch, trin khai h thng cn bng ti cho cc dch v mng nh Web Server, FTP Server,

Round Robin DNS S dng phn mm (trn Windows Server 2003) o S dng thit b phn cng o o

Trin khai h thng cn bng ti trn Windows Server 2003


Trang 17/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC o L THUYT Trin khai h thng cn bng ti da trn phn mm cho h thng Web Server BI TP THO LUN THC HNH LAB CCDC-TB/PM

Lp k hoch, trin khai h thng kt chm Server (Cluster) cho cc dch v Mail Server, SQL Server,

Tng quan v cng ngh Clustering Tng quan Cu trc ca Cluster C ch hot ng ca Cluster

o o o

Trin khai h thng Cluster trn Windows Server 2003

Trin khai h thng Cluster trn h thng Mail Exchange Server o Trin khai h thng Cluster trn h thng MS SQL Server o

Tm hiu c s h tng kha cng khai. Trin khai dch v CA trn mi trng Windows Server

Tng quan v PKI Gii thiu Cc kiu m ha d liu Trin khai dch v CA trn mi trng Windows Server

o o


Trang 18/19

TRNG CAO NG NGH iSPACE 137C Nguyn Ch Thanh, Phng 9, Qun 5, TP. H Ch Minh T: 08 6261 0303 Fax: 08 6261 0304 NI DUNG STT BI HC L THUYT 2003 o o Gii thiu chng ch s Trin khai chng ch s chng thc m ha Web Service, Mail, IPSec, BI TP THO LUN THC HNH LAB CCDC-TB/PM

2003

Thnh ph H Ch Minh, Ngy ... thng ... nm 200... Trng Khoa (a ky) Trng B mn (a ky)

NGUYN VN TN

DNG TRNG KHANG


Trang 19/19

Documents

FIT - Ôn tập MCSE