EnglishUnlimited Access
For Registered Users
To contact us, you can contact us via the following mobile numbers by calling and WhatsApp
For Registered Users
100% Secure Payment
10 Days Returns
Call Us Anytime
edition: 2
Authors: Sander Berkouwer
serie:
ISBN : 1803242507, 9781803242507
publisher: Packt Publishing
publish year: 2022
pages: 697
language: English
ebook format : PDF (It will be converted to PDF, EPUB OR AZW3 if requested by the user)
file size: 9 MB
Cover Title Page Copyright and Credits Contributors Table of Contents Preface Chapter 1: Optimizing Forests, Domains, and Trusts Choosing between a new domain or forest Why would you have a new domain? What are the downsides of a new domain? Why would you create a new forest? What are the downsides of a new forest? Listing the domains in your forest Getting ready How to do it... How it works... Using adprep.exe to prepare for new Active Directory functionality Getting ready How to do it... How it works... There\'s more... Raising the domain functional level to Windows Server 2016 Getting ready How to do it... How it works... Raising the forest functional level to Windows Server 2016 Getting ready How to do it... How it works... Creating the right trust Trust direction Trust transitivity One-way or two-way trust Getting ready How to do it... See also Removing a trust Getting ready How to do it... How it works... Verifying and resetting a trust Getting ready How to do it... How it works... Securing a trust Getting ready How to do it... How it works... There\'s more... Extending the schema Getting ready How to do it... There\'s more... Enabling the Active Directory Recycle Bin Getting ready How to do it... How it works... Managing UPN suffixes Getting ready How to do it... How it works... There\'s more... Chapter 2: Managing Domain Controllers Preparing a Windows server to become a domain controller Intending to do the right thing Dimensioning the servers properly Preparing the Windows Server installations Preconfiguring the Windows servers Documenting the passwords See also Promoting a server to a domain controller Getting ready How to do it... See also Promoting a server to a read-only domain controller Getting ready How to do it... Checking proper promotion How it works... See also Using Install From Media Getting ready How to do it... How it works... Using domain controller cloning Getting ready How to do it... How it works... See also Determining whether a virtual domain controller has a VM-GenerationID How to do it... How it works... Demoting a domain controller Getting ready How to do it... How it works... There\'s more... Demoting a domain controller forcefully Getting ready How to do it... See also Inventory domain controllers How to do it... Decommissioning a compromised read-only domain controller How to do it... How it works... Chapter 3: Managing Active Directory Roles and Features About FSMO roles Recommended practices for FSMO roles Querying FSMO role placement Getting ready How to do it... How it works... Transferring FSMO roles Getting ready How to do it... How it works... Seizing FSMO roles Getting ready How to do it... How it works... Configuring the PDC Emulator to synchronize time with a reliable source Getting ready How to do it... How it works... Managing time synchronization for virtual domain controllers Getting ready How to do it... How it works... Managing global catalogs Getting ready How to do it... How it works Chapter 4: Managing Containers and Organizational Units Differences between OUs and containers Containers OUs OUs versus Active Directory domains Creating an OU Getting ready How to do it... How it works... There\'s more... Deleting an OU Getting ready How to do it... How it works... There\'s more... Modifying an OU Getting ready How to do it... How it works... There\'s more... See also Delegating control of an OU Getting ready How to do it... How it works... See also Modifying the default location for new user and computer objects Getting ready How to do it... How it works... See also Chapter 5: Managing Active Directory Sites and Troubleshooting Replication What do Active Directory sites do? Recommendations Creating a site Getting ready How to do it... See also Managing a site Getting ready How to do it... How it works... See also Managing subnets Getting ready How to do it... How it works... See also Creating a site link Getting ready How to do it... How it works... See also Managing a site link Getting ready How to do it... See also Modifying replication settings for an Active Directory site link Getting ready How to do it... How it works... See also Creating a site link bridge Getting ready How to do it... See also Managing bridgehead servers Getting ready How to do it... How it works... See also Managing the ISTG and KCC Getting ready How to do it... How it works... See also Managing UGMC Getting ready How to do it... How it works... See also Working with repadmin.exe Getting ready How to do it... How it works... See also Forcing replication Getting ready How to do it... How it works… See also Managing inbound and outbound replication Getting ready How to do it... How it works... There\'s more... See also Modifying the tombstone lifetime period Getting ready How to do it... How it works... See also Managing strict replication consistency Getting ready How to do it... How it works... Upgrading SYSVOL replication from FRS to DFSR Getting ready How to do it... How it works... See also Checking for and remediating lingering objects Getting ready How to do it... How it works... See also Chapter 6: Managing Active Directory Users Creating a user Getting ready How to do it... How it works... There\'s more... Deleting a user Getting ready How to do it... How it works... See also Modifying several users at once Getting ready How to do it... How it works... There\'s more... Moving a user Getting ready How to do it... How it works... Renaming a user Getting ready How to do it... How it works... Enabling and disabling a user Getting ready How to do it... How it works... There\'s more... Finding locked-out users Getting ready How to do it... How it works... See also Unlocking a user Getting ready How to do it... Managing userAccountControl Getting ready How to do it... How it works... Using account expiration Getting ready How to do it... How it works... Chapter 7: Managing Active Directory Groups Creating a group Getting ready How to do it... How it works... Deleting a group Getting ready How to do it... How it works... Managing the direct members of a group Getting ready How to do it... How it works... Managing expiring group memberships Getting ready How to do it... How it works... Changing the scope or type of a group Getting ready How to do it... How it works... See also… Viewing nested group memberships Getting ready How to do it... How it works... Finding empty groups Getting ready How to do it... How it works... Chapter 8: Managing Active Directory Computers Creating a computer Getting ready How to do it... How it works... There\'s more... Deleting a computer Getting ready How to do it... How it works... See also Joining a computer to the domain Getting ready How to do it... How it works... There\'s more... See also Renaming a computer Getting ready How to do it... How it works... There\'s more... Testing the secure channel for a computer Getting ready How to do it... How it works... See also Resetting a computer\'s secure channel Getting ready How to do it... How it works... Getting ready How to do it... How it works... Chapter 9: Managing DNS Managing the DNS server role on domain controllers Getting ready How to do it… How it works… See also Creating a DNS zone Getting ready How to do it… How it works… Managing the DNS zone properties Getting ready How to do it… How it works… Deleting a DNS zone Getting ready How to do it… How it works… Creating a DNS record Getting ready How to do it… How it works… Deleting a DNS record Getting ready How to do it… How it works… Verifying the domain controller SRV DNS records Getting ready How to do it… How it works… Creating a DNS conditional forwarder Getting ready How to do it... How it works… See also Chapter 10: Getting the Most Out of Group Policy Creating a GPO Getting ready How to do it... How it works... See also Copying a GPO Getting ready How to do it... How it works... There\'s more... Deleting a GPO Getting ready How to do it... How it works... See also Modifying the settings of a GPO Getting ready How to do it... How it works... Assigning scripts Getting ready How to do it... How it works... Installing applications Getting ready How to do it... How it works... Linking a GPO to an OU Getting ready How to do it... How it works... There\'s more... Blocking inheritance of GPOs on an OU Getting ready How to do it... How it works... Enforcing the settings of a GPO Link Getting ready How to do it... How it works... Applying security filters Getting ready How to do it... How it works... Creating and applying WMI filters Getting ready How to do it... How it works... There\'s more... Refreshing GPO settings Getting ready How to do it… How it works… Configuring loopback processing Getting ready How to do it... How it works... Restoring a default GPO Getting ready How to do it... How it works... There\'s more... Creating the Group Policy Central Store Getting ready How to do it... How it works... There\'s more... Chapter 11: Securing Active Directory Applying fine-grained password and account lockout policies Getting ready How to do it... How it works... There\'s more... Backing up and restoring GPOs Getting ready How to do it... How it works... There\'s more... Backing up and restoring Active Directory Getting ready How to do it... How it works... See also… Working with Active Directory snapshots Getting ready How to do it... How it works... There\'s more... See also Managing the DSRM passwords on domain controllers Getting ready How to do it... How it works... Protecting important objects from accidental deletion Getting ready How to do it… How it works… There\'s more… Implementing LAPS Getting ready How to do it... How it works... See also Managing deleted objects Getting ready How to do it... How it works... There\'s more... See also Working with gMSAs Getting ready How to do it... How it works... There\'s more... Configuring diagnostic logging Getting ready How to do it… How it works… Configuring the advanced security audit policy Getting ready How to do it... How it works... Resetting the KRBTGT secret Getting ready How to do it... How it works... There\'s more... Using the SCW to secure domain controllers Getting ready How to do it How it works... Leveraging the Protected Users group Getting ready How to do it... How it works... See also Putting authentication policies and authentication policy silos to good use Getting ready How to do it... How it works... Configuring Extranet Smart Lockout Getting ready How to do it... How it works... Chapter 12: Managing Certificates Deciding between your own CA and a public CA How to do it… How it works… See also There\'s more… Setting up a CA Getting ready How to do it… How it works… There\'s more… Setting up an online responder Getting ready How to do it… How it works… See also Removing a certificate template Getting ready How to do it… How it works… Duplicating and editing a certificate template Getting ready How to do it… How it works… Requesting a web server certificate Getting ready How to do it… How it works… See also Issuing domain controller certificates Getting ready How to do it… How it works… Managing certificate autoenrollment Getting ready How to do it… How it works… See also Revoking a certificate Getting ready How to do it… How it works… Decommissioning a CA Getting ready How to do it… How it works… Chapter 13: Managing Federation Choosing the right AD FS farm deployment method Getting ready How to do it... How it works... There\'s more... See also Installing the AD FS server role Getting ready How to do it... How it works... Setting up an AD FS farm with WID Getting ready How to do it... How it works... There\'s more... See also Setting up an AD FS farm with SQL Server Getting ready How to do it... How it works... There\'s more... See also Adding additional AD FS servers to an AD FS farm Getting ready How to do it... How it works... Removing AD FS servers from an AD FS farm Getting ready How to do it... How it works... There\'s more... Creating an RPT Getting ready How to do it... How it works... Deleting an RPT Getting ready How to do it... How it works... Configuring branding Getting ready How to do it... How it works... Migrating a WID-based AD FS farm to an SQL Server Getting ready How to do it... How it works… Setting up a WAP Getting ready How to do it... How it works... There\'s more... Decommissioning a WAP Getting ready How to do it... How it works... Chapter 14: Handling Authentication in a Hybrid World (AD FS, PHS, PTA, and DSSO) Choosing the right authentication method Getting ready How to do it... How it works... There\'s more... Signing up for Azure AD Getting ready How to do it How it works… Verifying your DNS domain name Getting ready How to do it... How it works... Implementing PHS with Express Settings Getting ready How to do it... How it works... Implementing PTA and Seamless SSO Getting ready How to do it... How it works... There\'s more... Implementing SSO using AD FS Getting ready How to do it... How it works... There\'s more... Managing AD FS with Azure AD Connect Getting ready How to do it... How it works... Implementing Azure Traffic Manager for AD FS geo-redundancy Getting ready How to do it... How it works... There\'s more... Migrating from AD FS to PTA for SSO to Office 365 Getting ready How to do it... How it works... There\'s more... Making PTA (geo)redundant Getting ready How to do it... How it works... Chapter 15: Handling Synchronization in a Hybrid World (Azure AD Connect) Choosing the right source anchor attribute for user objects Getting ready How to do it... How it works... There\'s more... Configuring staging mode Getting ready How to do it... How it works... See also Switching to a staging-mode server Getting ready How to do it... How it works... Configuring domain and OU filtering Getting ready How to do it... How it works... Configuring Azure AD app and attribute filtering Getting ready How to do it... How it works... Configuring hybrid Azure AD join Getting ready How to do it... How it works... Configuring device writeback Getting ready How to do it... How it works... Configuring password writeback Getting ready How to do it... How it works... Configuring group writeback Getting ready How to do it... How it works... Changing passwords for Azure AD Connect service accounts Getting ready How to do it... How it works... Chapter 16: Hardening Azure AD Setting contact information Getting ready How to do it... How it works... See also Preventing non-privileged users from accessing the Azure portal Getting ready How to do it... How it works... Viewing all privileged users in Azure AD Getting ready How to do it... How it works... Preventing users from registering or consenting to apps Getting ready How to do it... How it works... Preventing users from inviting guests Getting ready How to do it... How it works... There\'s more... See also Allowing and blocking invitations for Azure AD B2B Getting ready How to do it... How it works... Configuring Azure AD join and Azure AD registration Getting ready How to do it... How it works... See also Configuring Intune auto-enrollment upon Azure AD join Getting ready How to do it... How it works... Choosing between Security defaults and Conditional Access Getting ready How to do it... How it works… Configuring Conditional Access Getting ready How to do it... How it works... See also Accessing Azure AD Connect Health Getting ready How to do it... How it works... There\'s more... Configuring Azure AD Connect Health for AD FS Getting ready How to do it... How it works... There\'s more… Configuring Azure AD Connect Health for AD DS Getting ready How to do it... How it works... Configuring Azure AD PIM Getting ready How to do it... How it works... Configuring Azure AD Identity Protection Getting ready How to do it... How it works... Implementing Defender for Identity Getting ready How to do it… How it works… Index Other Books You May Enjoy
