LOGO

Document Sample
LOGO Powered By Docstoc
					                                       BROWARD COLLEGE
                                        COURSE OUTLINE


LAST REVIEW:                                NEXT REVIEW: 2014-2015                                              STATUS: A
   (i.e. 2003-2004)                            (i.e. 2008-2009)                                                  (A, I, D)


COURSE TITLE: Microsoft Windows Active Directory
COMMON COURSE NUMBER: CTS2345C
CREDIT HOURS: 4                                                   CONTACT HOUR BREAKDOWN
                                                                                (per 16 week term)

CLOCK HOURS:                                                        Lecture:           48            Lab:   16
  (Voc. Course ONLY)
                                                                    Clinic:            0             Other: 0

PREREQUISITE(S): CTS1347C (with a grade of C or higher)
COREQUISITE(S):
PRE/COREQUISITE(S):

COURSE DESCRIPTION (750 characters, maximum):
This Microsoft IT Academy course provides students with the knowledge and skills to configure and troubleshoot
Active Directory services on Windows Servers. It will also introduce students to Active Directory roles such as AD
DS, AD LDS, AD CS, AD RMS, and AD FS. Students will also learn how to manage access to Active Directory
resources, how to configure group policy objects, how to implement security using group policies and about AD DS
and DNS integration.

General Education Requirements – Associate of Arts Degree (AA), meets Area(s):                              Area
General Education Requirements – Associate in Science Degree (AS), meets Area(s):                           Area
General Education Requirements – Associate in Applied Science Degree (AAS), meets Area(s):                  Area


UNIT TITLES
 1. Configuring Domain Name System (DNS) for Active Directory

 2. Configuring the Active Directory Infrastructure

 3. Configuring Additional Active Directory Server Roles

 4. Creating and Maintaining Active Directory Objects

 5. Maintaining the Active Directory Environment

 6. Configuring Active Directory Certificate Services




                                                                  Page 1 of 7
                                            BROWARD COLLEGE
                                             COURSE OUTLINE


EVALUATION:
Please provide a brief description (250 characters maximum) that details how students will be evaluated on the course outcomes.

Evaluation instruments will include written and/or skills-based examinations and individual in-class and/or take-
home assignments. Evaluation methods may also include group in-class and/or take-home assignments.


                                           Common Course Number:            CTS2345C

UNITS

         Unit 1

                  General Outcome:

                            1.0    The student shall: Configure Domain Name System (DNS) for Active Directory


                  Specific Measurable Learning Outcomes:
                          Upon successful completion of this unit, the student shall be able to:

         1.1 Configure zones. May include but is not limited to: Dynamic DNS (DDNS), Non-dynamic DNS
             (NDDNS), and Secure Dynamic DNS (SDDNS), Time to Live (TTL), GlobalNames, Primary,
             Secondary, Active Directory Integrated, Stub, SOA, zone scavenging, forward lookup, reverse
             lookup

         1.2 Configure DNS server settings. May include but is not limited to: forwarding, root hints, configure
         zone delegation, round robin, disable recursion, debug logging, server scavenging

         1.3 Configure zone transfers and replication. May include but is not limited to: configure
             replication scope (forestDNSzone, domainDNSzone), incremental zone transfers, DNS Notify,
             secure zone transfers, configure name servers, application directory partitions

         1.4 Configure a forest or a domain. May include but is not limited to: remove a domain, perform an
             unattended installation, Active Directory Migration Tool (ADMT) v3 (pruning and grafting),
             raise forest and domain functional levels, interoperability with previous versions of Active
             Directory, alternate user principal name (UPN) suffix, forestprep, domainprep




                                                                  Page 2 of 7
                               BROWARD COLLEGE
                                COURSE OUTLINE


                              Common Course Number:        CTS2345C

Unit 2

         General Outcome:

                 2.0   The student shall: Configure the Active Directory Infrastructure


         Specific Measurable Learning Outcomes:
                 Upon successful completion of this unit, the student shall be able to:

2.1 Configure a forest or a domain. May include but is not limited to: remove a domain, perform an
    unattended installation, Active Directory Migration Tool (ADMT) v3 (pruning and grafting),
    raise forest and domain functional levels, interoperability with previous versions of Active
    Directory, alternate user principal name (UPN) suffix, forestprep, domainprep

2.2 Configure trusts. May include but is not limited to: forest trust, selective authentication versus
    forest-wide authentication, transitive trust, external trust, shortcut trust, SID filtering

2.3 Configure sites. May include but is not limited to: create Active Directory subnets, configure site
    links, configure site link costing, configure sites infrastructure

2.4 Configure Active Directory replication. May include but is not limited to: Distributed File System,
one-way replication, bridgehead server, replication scheduling, configure replication     protocols, force
intersite replication

2.5 Configure the global catalog. May include but is not limited to: Universal Group Membership
    Caching (UGMC), partial attribute set, promote to global catalog

2.6 Configure operations masters. May include but is not limited to: seize and transfer, backup
    operations master, operations master placement, Schema Master, extending the schema, time
    service




                                                  Page 3 of 7
                              BROWARD COLLEGE
                               COURSE OUTLINE


                             Common Course Number:       CTS2345C

Unit 3

         General Outcome:

                3.0    The student shall: Configure additional Active Directory server roles


         Specific Measurable Learning Outcomes:
                 Upon successful completion of this unit, the student shall be able to:

3.1 Configure Active Directory Lightweight Directory Service (AD LDS). May include but is not limited
to: migration to AD LDS, configure data within AD LDS, configure an authentication server, server core,
Windows Server 2008 Hyper-V

3.2 Configure Active Directory Rights Management Service (AD RMS). May include but is not limited to:
certificate request and installation, self-enrollments, delegation, Active Directory Metadirectory Services
(AD MDS), Windows Server virtualization

3.3 Configure the read-only domain controller (RODC). May include but is not limited to: unidirectional
replication, Administrator role separation, read-only DNS, BitLocker, credential caching, password
replication, syskey, Windows Server virtualization

3.4 Configure Active Directory Federation Services (AD FS). May include but is not limited to: install AD
FS server role, exchange certificate with AD FS agents, configure trust policies, configure user and group
claim mapping, Windows Server virtualization




                                                Page 4 of 7
                               BROWARD COLLEGE
                                COURSE OUTLINE


                              Common Course Number:        CTS2345C

Unit 4

         General Outcome:

                4.0    The student shall: Create and Maintain Active Directory Objects


         Specific Measurable Learning Outcomes:
                 Upon successful completion of this unit, the student shall be able to:


4.1 Automate creation of Active Directory accounts. May include but is not limited to: bulk import,
configure the UPN, create computer, user, and group accounts (scripts, import, migration), template
accounts, contacts, distribution lists

4.2 Maintain Active Directory accounts. May include but is not limited to: configure group membership,
account resets, delegation, AGDLP/AGGUDLP, deny domain local group, local versus domain,
Protected Admin, disabling accounts versus deleting accounts, deprovisioning, contacts, creating
organizational units (OUs), delegation of control

4.3 Create and apply Group Policy objects (GPOs). May include but is not limited to: enforce, OU
hierarchy, block inheritance, and enabling user objects, Group Policy processing priority, WMI, Group
Policy filtering, Group Policy loopback

4.4 Configure GPO templates. May include but is not limited to: user rights, ADMX Central Store,
administrative templates, security templates, restricted groups, security options, starter GPOs, shell
access policies

4.5 Configure GPO templates. May include but is not limited to: user rights, ADMX Central Store,
administrative templates, security templates, restricted groups, security options, starter GPOs, shell
access policies

4.6 Configure software deployment GPOs. May include but is not limited to: publishing to users,
assigning software to users, assigning to computers, software removal

4.7 Configure account policies. May include but is not limited to: domain password policy, account
lockout policy, fine-grain password policies

4.8 Configure audit policy by using GPOs. May include but is not limited to: audit logon events, audit
account logon events, audit policy change, audit access privilege use, audit directory service access,
audit object access




                                                  Page 5 of 7
                              BROWARD COLLEGE
                               COURSE OUTLINE


                              Common Course Number:        CTS2345C

Unit 5

         General Outcome:

                5.0    The student shall:   Maintain the Active Directory Environment



         Specific Measurable Learning Outcomes:
                 Upon successful completion of this unit, the student shall be able to:


5.1 Configure backup and recovery. May include but is not limited to: using Windows Server Backup,
backup files and system state data to media, backup and restore by using removable media, perform an
authoritative or non-authoritative Active Directory restore, linked value replication, Directory Services
Recovery Mode (DSRM) (reset admin password), back up and restore GPOs

5.2 Perform offline maintenance. May include but is not limited to: offline defragmentation and
compaction, Restartable Active Directory, Active Directory database storage allocation

5.3 Monitor Active Directory. May include but is not limited to: Network Monitor, Task Manager,
Event Viewer, ReplMon, RepAdmin, Windows System Resource Manager, Reliability and Performance
Monitor, Server Performance Advisor, RSOP




                                                  Page 6 of 7
                              BROWARD COLLEGE
                               COURSE OUTLINE


                              Common Course Number:        CTS2345C

Unit 6

         General Outcome:

                6.0    The student shall: Configure Active Directory Certificate Services


         Specific Measurable Learning Outcomes:
                 Upon successful completion of this unit, the student shall be able to:

6.1 Install Active Directory Certificate Services. May include but is not limited to: standalone versus
enterprise, CA hierarchies—root versus subordinate, certificate requests, certificate practice statement

6.2 Configure CA server settings. May include but is not limited to: key archival, certificate database
backup and restore, assigning administration roles

6.3 Manage certificate templates. May include but is not limited to: certificate template types, securing
template permissions, managing different certificate template versions, key recovery agent

6.4 Manage enrollments. May include but is not limited to: network device enrollment service (NDES),
autoenrollment, Web enrollment, smart card enrollment, creating enrollment agents

6.5 Manage certificate revocations. May include but is not limited to: configure Online Responders,
Certificate Revocation List (CRL), CRL Distribution Point (CDP), Authority Information Access (AIA)




                                                  Page 7 of 7

				
DOCUMENT INFO
Shared By:
Categories:
Tags:
Stats:
views:2
posted:2/8/2012
language:
pages:7