Complete Guide to Windows Server 2008
Search in google:
“This book is an invaluable one-stop reference for deploying, configuring, and managing Windows Server 2008. It’s filled with John’s unique and hard-earned nuggets of advice, helpful scripts, and shortcuts that will save you time and money.”—Mark RussinovichThe Start-to-Finish, Comprehensive Windows Server 2008 Book for Every Working Administrator and ArchitectTo make the most of Windows Server 2008 in production environments, you need a deep understanding of its technical details. However, accurate and reliable information is scarce, and even most skilled Windows professionals don’t know Windows Server 2008 as well as they should. The Complete Guide to Windows Server 2008brings together more than 1,500 pages of practical Windows Server 2008 insight and in-depth knowledge that you can't find anywhere else, all based on final code. John Savill—one of the world’s most visible and trusted experts on Windows Server technology—specializes in helping real companies use Windows Server 2008 to run their businesses. His access to Microsoft’s product team as a Microsoft MVP and one of 50 elite “Windows Server 2008 Delta Force Rangers” benefited this book’s accuracy and value.Coverage includes Deployment planning, implementing, and managing new features, including Windows Server Core and Hyper-V virtualization Choosing the right installation and upgrade options for your environment Securing Windows Server 2008: authentication, authorization, BitLocker, certification services, and more Implementing TCP/IP, advanced network services, remote access, and thin-client Terminal Services Active Directory in depth, including Federated Services, Lightweight Directory Services, and Rights Management Providing high availability through Network Load Balancing and failover clustering Using Windows Deployment Services to quickly deploy multiple servers Supporting complex distributed environments with the Distributed File System Automating server management with PowerShell and the command prompt Integrating Windows Server 2008 with UNIX, Linux, and legacy NetWare servers Troubleshooting Windows Server 2008 and Vista environments, including an intuitive “how to” index to quickly locate answers to commonly asked questionswww.savilltech.com/completeguidetowindows2008
Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xviiAbout the Author . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xviiiPreface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xixChapter 1: Windows 101: Its Origins, Present, and the Services It Provides . . .1Origin of the Windows Operating System . . . . . . . . . . . . . . . . . . . . . .1Features of the Windows Server 2008 Product Line . . . . . . . . . . . . . . .21Licensing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .35Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .41Chapter 2: Windows Server 2008 Fundamentals: Navigating and Getting Started . . .43Windows Vista at 30,000 Feet . . . . . . . . . . . . . . . . . . . . . . . . . . . . .44The Logon Experience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .46User Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .50Windows Elements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .56The Desktop Windows Manager (DWM) . . . . . . . . . . . . . . . . . . . . . .64Windows Aero Effects . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .67Task Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .71Fast User Switching . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .77Windows Explorer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .78The Microsoft Management Console . . . . . . . . . . . . . . . . . . . . . . . . .86The Control Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .93Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .96Chapter 3: Installing and Upgrading Windows Server 2008 . . .99Installing Windows Server 2008 . . . . . . . . . . . . . . . . . . . . . . . . . . . .99Upgrading to Windows Server 2008 . . . . . . . . . . . . . . . . . . . . . . .126Advanced Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .130Viewing Installation Log Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . .131Automating Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .133Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .139Chapter 4: Securing Your Windows Server 2008 Deployment . . .141Authentication and Authorization . . . . . . . . . . . . . . . . . . . . . . . . . . .142The Physical Environment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .143BitLocker . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .145Active Directory Certificate Services (ADCS) . . . . . . . . . . . . . . . . . . .156Authentication Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .171Securing Windows Server 2008 . . . . . . . . . . . . . . . . . . . . . . . . . . .179Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .224Chapter 5: File System and Print Management Features . . .225File System Types and Management . . . . . . . . . . . . . . . . . . . . . . . .225File Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .240File Server Resource Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . .257Print Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .290Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .333Chapter 6: TCP/IP . . .335Internet Protocol (IP) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .335Transmission Control Protocol (TCP) . . . . . . . . . . . . . . . . . . . . . . . . .355User Datagram Protocol (UDP) . . . . . . . . . . . . . . . . . . . . . . . . . . . .356Network Monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .357IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .362Communication Testing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .368Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .376Chapter 7: Advanced Networking Services . . .377DHCP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .377Domain Name System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .406WINS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .447Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .450Chapter 8: Remote Access and Securing and Optimizing the Network . . .451Virtual Private Networks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .452RADIUS and Policy Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .478Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .486Network Access Protection (NAP) . . . . . . . . . . . . . . . . . . . . . . . . . .488Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .519Chapter 9: Terminal Services . . .521Enabling Remote Desktop . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .526Initiating a Remote Desktop Connection . . . . . . . . . . . . . . . . . . . . . .529Terminal Server Licensing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .544Installing Terminal Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .558TS Easy Print . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .559TS Gateway . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .566Remote Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .583TS Web Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .594TS Session Broker . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .604Management and Maintenance . . . . . . . . . . . . . . . . . . . . . . . . . . . .612Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .621Chapter 10: Active Directory Domain Services Introduction . . .623Workgroups Versus Domains . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .623Exclusive Membership . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .627Trusts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .630Active Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .632Domain and Forest Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .671Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .677Chapter 11: Designing and Installing Active Directory . . .679Adding a Replica Domain Controller . . . . . . . . . . . . . . . . . . . . . . . .679Creating a New Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .698Verifying Domain Controller Operation . . . . . . . . . . . . . . . . . . . . . .705Creating a Domain Controller from Media . . . . . . . . . . . . . . . . . . . .715Removing Domain Controllers and Domains . . . . . . . . . . . . . . . . . . .719Read-Only Domain Controllers (RODCs) . . . . . . . . . . . . . . . . . . . . . .722Trust Relationships . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .740Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .751Chapter 12: Managing Active Directory and Advanced Concepts . . .753Customizing Site Connectivity . . . . . . . . . . . . . . . . . . . . . . . . . . . . .753Forcing a Demotion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .767Managing AD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .777Backing Up and Restoring AD . . . . . . . . . . . . . . . . . . . . . . . . . . . . .811Auditing AD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .829Advanced Password Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .834Prune and Graft . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .836Upgrading AD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .836Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .849Chapter 13: Active Directory Federated Services, Lightweight Directory Services, and Rights Management . . .851Active Directory Lightweight Directory Services . . . . . . . . . . . . . . . . .852Active Directory Rights Management Services . . . . . . . . . . . . . . . . . .865Active Directory Federated Services . . . . . . . . . . . . . . . . . . . . . . . . .891Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .909Chapter 14: Server Core . . .911Overview of Windows Server Core . . . . . . . . . . . . . . . . . . . . . . . . .911Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .915Server Core Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .918Performing Common Actions Using Server Core . . . . . . . . . . . . . . . .940Remotely Managing Server Core . . . . . . . . . . . . . . . . . . . . . . . . . . .942Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .952Chapter 15: Distributed File System . . .953Distribution of Other Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . .954Distributed File System Namespace . . . . . . . . . . . . . . . . . . . . . . . . .957Distributed File System Replication . . . . . . . . . . . . . . . . . . . . . . . . . .964Installing and Configuring DFS . . . . . . . . . . . . . . . . . . . . . . . . . . . .969Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1008Chapter 16: Deploying Windows . . .1011Image Deployment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1011Installing Windows Deployment Services . . . . . . . . . . . . . . . . . . . .1017Customizing the Windows Vista Deployment Process . . . . . . . . . . . .1041Automating the Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1049Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1083Chapter 17: Managing and Maintaining Windows Server 2008 . .1085Server Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1085Computer Management Console . . . . . . . . . . . . . . . . . . . . . . . . . .1151Windows Server Backup (WSB) . . . . . . . . . . . . . . . . . . . . . . . . . .1152Patch Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1178Registry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1185Performance and Paging File Tuning . . . . . . . . . . . . . . . . . . . . . . .1192Managing from a Client . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1202Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1203Chapter 18: Highly Available Windows Server 2008 . . .1205High-Level Overview of NLB and Failover Clustering . . . . . . . . . . . .1205Network Load Balancing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1210Failover Clustering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1229Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1269Chapter 19: Virtualization and Resource Management . . .1271Virtualization 360 Picture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1271Virtual Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1272Virtual Machines and Hyper-V . . . . . . . . . . . . . . . . . . . . . . . . . . . .1283Windows System Resource Manager (WSRM) . . . . . . . . . . . . . . . .1319Advantages of Virtualization and Consolidation . . . . . . . . . . . . . . .1330Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1330Chapter 20: Troubleshooting Windows Server 2008 and Vista Environments . . .1333Boot Mode Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1334Windows Recovery Environment . . . . . . . . . . . . . . . . . . . . . . . . . .1338Reliability and Performance Monitoring . . . . . . . . . . . . . . . . . . . . .1355Event Viewer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1381MSConfig . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1400Windows Error Reporting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1401System Center . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1402Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1407Chapter 21: Group Policy . . .1409Group Policy Structure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1410Group Policy Management Console (GPMC) . . . . . . . . . . . . . . . . .1427Group Policy Preferences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1491Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1501Microsoft Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1503Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1505Chapter 22: The Command Prompt and PowerShell . . .1507Command.com . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1508CMD.EXE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1510Windows Scripting Host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1528PowerShell . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1536Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1563Chapter 23: Connecting Windows Server 2008 to Other Environments . . .1565UNIX Integration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1566NetWare Integration and Migration . . . . . . . . . . . . . . . . . . . . . . . .1593Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1608Chapter 24: Internet Information Services . . .1611IIS 7.0 Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1611Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1625IIS Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1628Certificates and Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1645Server Core Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1648IIS and Windows Vista . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1648Windows Web Server 2008 . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1649Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1650How To Quick Reference . . . 1651Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1657
