This certification is intended for IT Professional who need to validate their skills and knowledge necessary for planning, designing and deploying a Windows Server 2012 highly virtualized infrastructure including the Active Directory, storage, security and networking services necessary. Candidate’s should have experience with previous Windows Server Operating systems and have their Windows 2012 Server certification (MCSA) or equivalent skills.

Course Objectives

• Plan and Deploy a Server Infrastructure
• Design and Implement Network Infrastructure Services
• Design and Implement Network Access Services
• Design and Implement an Active Directory Infrastructure (Logical)
• Design and Implement an Active Directory Infrastructure (Physical)

Prerequisites

CompTia A+ Certification
MCSA Windows Server 2008 or
Knowledge and understanding of Networks and Systems

Course Benefits

This exam is part one, of a series of two exams, which validate the skills and knowledge necessary to design, implement and maintain a Windows Server 2012 Infrastructure in an enterprise scaled, highly virtualized environment. This exam will validate the planning, configuration, and implementation of the Windows Server 2012 services, such as server deployment, server virtualization, and network access and infrastructure. This exam along with exam 70-414 will collectively validate the skills and knowledge necessary for designing, deploying, and maintaining infrastructure services in a Windows Server 2012 environment.

Course Duration

6 weeks or 40 Hours Lecture and Lab with 32 Hours of Practicum for additional practice.

Course Guide

Plan and Deploy a Server Infrastructure (20%)

• Design an automated server installation strategy.

  • This objective may include but is not limited to: Design considerations including images and bare metal/virtual deployment; design a server implementation using Windows Assessment and Deployment Kit (ADK); design a virtual server deployment

• Plan and implement a server deployment infrastructure.

  • This objective may include but is not limited to: Configure multicast deployment; configure multi-site topology and distribution points; configure a multi-server topology; configure autonomous and replica Windows Deployment Services (WDS) servers

• Plan and implement server upgrade and migration.

  • This objective may include but is not limited to: Plan for role migration; migrate server roles; migrate servers across domains and forests; design a server consolidation strategy; plan for capacity and resource optimization

• Plan and deploy Virtual Machine Manager services.

  • This objective may include but is not limited to: Design Virtual Machine Manager service templates; define operating system profiles; configure hardware and capability profiles; manage services; configure image and template libraries; manage logical networks

• Plan and implement file and storage services.

  • This objective may include but is not limited to: Planning considerations include iSCSI SANs, Fibre Channel SANs, Virtual Fibre Channel, storage spaces, storage pools, and data de-duplication; configure the iSCSI Target server; configure the Internet Storage Name server (iSNS); configure Network File System (NFS); install Device Specific Modules (DSMs)

Design and Implement Network Infrastructure Services (20%)

• Design and maintain a Dynamic Host Configuration Protocol (DHCP) solution.

  • This objective may include but is not limited to: Design considerations including a highly available DHCP solution including split scope, DHCP failover, and DHCP failover clustering, DHCP interoperability, and DHCPv6; implement DHCP filtering; implement and configure a DHCP management pack; maintain a DHCP database

• Design a name resolution solution strategy.

  • This objective may include but is not limited to: Design considerations including secure name resolution, DNSSEC, DNS Socket Pool, cache locking, disjoint namespaces, DNS interoperability, migration to application partitions, IPv6, Single-Label DNS Name Resolution, zone hierarchy, and zone delegation

• Design and manage an IP address management solution.

  • This objective may include but is not limited to: Design considerations including IP address management technologies including IPAM, Group Policy based, and manual provisioning, and distributed vs. centralized placement; configure role-based access control; configure IPAM auditing; migrate IPs; manage and monitor multiple DHCP and DNS servers; configure data collection for IPAM

Design and Implement Network Access Services (17%)

• Design a VPN solution.

  • This objective may include but is not limited to: Design considerations including certificate deployment, firewall configuration, client/site to site, bandwidth, protocol implications, and VPN deployment configurations using Connection Manager Administration Kit (CMAK)

• Design a DirectAccess solution.

  • This objective may include but is not limited to: Design considerations including topology, migration from Forefront UAG, DirectAccess deployment, and enterprise certificates

• Implement a scalable remote access solution.

  • This objective may include but is not limited to: Configure site-to-site VPN; configure packet filters; implement packet tracing; implement multi-site Remote Access; configure Remote Access clustered with Network Load Balancing (NLB); configure DirectAccess

• Design a network protection solution.

  • This objective may include but is not limited to: Design considerations including Network Access Protection (NAP) enforcement methods for DHCP, IPSec, VPN, and 802.1x, capacity, placement of servers, firewall, Network Policy Server (NPS), and remediation network

• Implement a network protection solution.

  • This objective may include but is not limited to: Implement multi-RADIUS deployment; configure NAP enforcement for IPSec and 802.1x; deploy and configure the Endpoint Protection client; create anti-malware and firewall policies; monitor for compliance

Design and Implement an Active Directory Infrastructure (Logical) (22%)

• Design a forest and domain infrastructure.

  • This objective may include but is not limited to: Design considerations including multi-forest architecture, trusts, functional levels, domain upgrade, domain migration, forest restructure, and Hybrid Cloud services

• Implement a forest and domain infrastructure.

  • This objective may include but is not limited to: Configure domain rename; configure Kerberos realm trusts; implement a domain upgrade; implement a domain migration; implement a forest restructure; deploy and manage a test forest including synchronization with production forests

• Design a Group Policy strategy.

  • This objective may include but is not limited to: Design considerations including inheritance blocking, enforced policies, loopback processing, security, and WMI filtering, site-linked Group Policy Objects (GPOs), slow-link processing, group strategies, organizational unit (OU) hierarchy, and Advanced Group Policy Management (AGPM)

• Design an Active Directory permission model.

  • This objective may include but is not limited to: Design considerations including Active Directory object security and Active Directory quotas; customize tasks to delegate in Delegate of control wizard; deploy administrative tools on the client computer; delegate permissions on administrative users (AdminSDHolder); configure Kerberos delegation

Design and Implement an Active Directory Infrastructure (Physical) (21%)

• Design an Active Directory sites topology.

  • This objective may include but is not limited to: Design considerations including proximity of domain controllers, replication optimization, and site link; monitor and resolve Active Directory replication conflicts

• Design a domain controller strategy.

  • This objective may include but is not limited to: Design considerations including global catalog, operations master roles, Read-Only Domain Controllers (RODCs), partial attribute set, and domain controller cloning

• Design and implement a branch office infrastructure.

  • This objective may include but is not limited to: Design considerations including RODC, Universal Group Membership Caching (UGMC), global catalog, DNS, DHCP, and BranchCache; implement confidential attributes; delegate administration; modify filtered attributes set; configure password replication policy; configure hash publication