PUBLISHED BY
Microsoft Press
A Division of Microsoft Corporation
One Microsoft Way
Redmond, Washington 98052-6399
Copyright © 2004 by Microsoft Corporation
All rights reserved. No part of the contents of this book may be reproduced or transmitted in any form or
by any means without the written permission of the publisher.
Library of Congress Cataloging-in-Publication Data
Zacker, Craig.
MCSE Self-Paced Training Kit (Exam 70-293): Planning and Maintaining a Microsoft
Windows Server 2003 Network Infrastructure / Craig Zacker with Microsoft Corporation.
p. cm.
Includes index.
ISBN 0-7356-1893-3
1. Electronic data processing personnel--Certification. 2. Microsoft
software--Examinations--Study guides. 3. Computer networks--Examinations--Study
guides. 4. Microsoft Windows server. I. Microsoft Corporation. II. Title.
QA76.3.Z32 2003
004.6--dc21 2003056205
Printed and bound in the United States of America.
1 2 3 4 5 6 7 8 9 QWT 8 7 6 5 4 3
Distributed in Canada by H.B. Fenn and Company Ltd.
A CIP catalogue record for this book is available from the British Library.
Microsoft Press books are available through booksellers and distributors worldwide. For further informa-
tion about international editions, contact your local Microsoft Corporation office or contact Microsoft
Press International directly at fax (425) 936-7329. Visit our Web site at www.microsoft.com/mspress. Send
comments to tkinput@microsoft.com.
Active Directory, Authenticode, Microsoft, Microsoft Press, NetMeeting, Windows, the Windows logo,
Windows NT, and Windows Server are either registered trademarks or trademarks of Microsoft Corpora-
tion in the United States and/or other countries. Other product and company names mentioned herein may
be the trademarks of their respective owners.
The example companies, organizations, products, domain names, e-mail addresses, logos, people,
places, and events depicted herein are fictitious. No association with any real company, organiza-
tion, product, domain name, e-mail address, logo, person, place, or event is intended or should be
inferred.
Acquisitions Editor: Kathy Harding
Project Editor: Jean Trenary
Technical Editor: Linda Zacker
Body Part No. X09-16614
Craig Zacker
Craig is a writer, editor, and networker whose computing experience began in the days
of teletypes and paper tape. After making the move from minicomputers to PCs, he
worked as an administrator of Novell NetWare networks and as a PC support techni-
cian while operating a freelance desktop publishing business. After earning a Master’s
Degree in English and American Literature from New York University, Craig worked
extensively on the integration of Microsoft Windows NT into existing internetworks,
supported fleets of Windows workstations, and was employed as a technical writer,
content provider, and Webmaster for the online services group of a large software com-
pany. Since devoting himself to writing and editing full-time, Craig has authored or
contributed to many books on networking topics, operating systems, and PC hardware,
including MCSA/MCSE Self-Paced Training Kit: Microsoft Windows 2000 Network Infra-
structure Administration, Exam 70-216, Second Edition and MCSA Training Kit: Man-
aging a Microsoft Windows 2000 Network Environment. He has also developed
educational texts for college courses, online training courses for the Web, and has pub-
lished articles with top industry publications. For more information on Craig’s books
and other works, see http://www.zacker.com.
1 1
2 2
3 3
4 4
5 5
6 6
7 7
8 8
9 9
10
11
12
13
Contents at a Glance
Part 1€ Learn at Your Own Pace
Planning a Network Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . -3€
Planning a TCP/IP Network Infrastructure . . . . . . . . . . . . . . . . . . . . . . . . -1€
Planning Internet Connectivity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Planning a Name Resolution Strategy . . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Using Routing and Remote Access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Maintaining Server Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Clustering Servers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Planning a Secure Baseline Installation . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Hardening Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . -1€
Deploying Security Configurations . . . . . . . . . . . . . . . . . . . . . . . . . . . . .10-1€
Creating and Managing Digital Certificates . . . . . . . . . . . . . . . . . . . . . .11-1€
Securing Network Communications Using IPSec . . . . . . . . . . . . . . . . . .12-1€
Designing a Security Infrastructure . . . . . . . . . . . . . . . . . . . . . . . . . . . .13-1€
Part 2 Prepare for the Exam
14 Planning and Implementing Server Roles and Server Security (1.0). . .14-3€
15 Planning, Implementing, and Maintaining a €
Network Infrastructure (2.0) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15-1€
16 Planning, Implementing, and Maintaining €
Routing and Remote Access (3.0) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16-1€
17 Planning, Implementing, and Maintaining Server Availability (4.0) . . . . 17-1€
18 Planning and Maintaining Network Security (5.0) . . . . . . . . . . . . . . . . . 18-1€
19 Planning, Implementing, and Maintaining €
Security Infrastructure (6.0) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .19-1€
v