CHAPTER OVERVIEWIdentify the key differences among the Windows Server 2003 editions.Install Windows Server 2003.Create a domain controller.Identify the key structures and concepts of Active Directory.

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

WINDOWS SERVER 2003 EDITIONSWeb EditionStandard EditionEnterprise EditionDatacenter Edition

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

SYSTEM REQUIREMENTS

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

Web Edition

Standard Edition

Enterprise Edition

Datacenter Edition

Minimum processor speed

133 MHz

133 MHz

133 MHz

400 MHz

Minimum processor speed

550 MHz

550 MHz

733 MHz

733 MHz

Minimum RAM

128 MB

128 MB

128 MB

512 MB

Recommended minimum RAM

256 MB

256 MB

256 MB

1 GB

Maximum RAM

2 GB

4 GB

32 GB

64 GB

Symmetric multiprocessing (SMP) support

Up to 2 processors

Up to 4 processors

Up to 8 processors

Up to 32 processors

Minimum disk space

1.5 GB

1.5 GB

1.5 GB

1.5 GB

WEB EDITIONSingle-purpose Web server platformLimit of 10 inbound SMB connectionsSupport for up to two processors and up to 2 GB of RAM

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

STANDARD EDITIONDesigned as a departmental server or for smaller organizationsMultipurpose server platformSupports up to four processors and 4 GB of RAM

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

ENTERPRISE EDITIONServer platform for medium- to large-sized businessesSupports up to eight processors and 32 GB of RAMEight-node clustering support through Microsoft Clustering Services

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

DATACENTER EDITIONDesigned for high-end, high-traffic application serversSupports up to 32 processors and 64 GB of RAMDoes not include ICF or ICS

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

64-BIT EDITIONS

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

Enterprise Edition

Datacenter Edition

Minimum processor speed

733 MHz

733 MHz

Maximum RAM

64 GB

512 GB

Symmetric multiprocessing (SMP) support

Up to 8 processors

Up to 64 processors

Minimum disk space

2 GB

2 GB

INSTALLING WINDOWS SERVER 2003

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

ACTIVATING WINDOWS SERVER 2003

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

CONFIGURING WINDOWS SERVER 2003

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

SERVER ROLESFile serverPrint serverApplication server

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

SERVER ROLES (CONT.)Mail serverTerminal Services serverRemote Access/VPN server Domain contoller

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

SERVER ROLES (CONT.)DNS serverDHCP serverStreaming media serverWINS server

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

CREATE A DOMAIN CONTROLLER

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

AN ACTIVE DIRECTORY PRIMERStandards-based, LDAP-compliant directory services system.Hierarchical structure provides organizational and administrative benefits.Directory services database can be distributed across multiple servers to provide fault tolerance and increase performance.

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

AN ACTIVE DIRECTORY PRIMER (CONT.)Active Directory database is stored in the \WINDOWS\NTDS directory on each domain controller.A repository for objects and resources, including user accounts, group accounts, computer accounts, and printers.Each object has a set of properties that is also stored in Active Directory.

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

DOMAINS AND DOMAIN CONTROLLERS

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

DOMAINS, TREES, AND FORESTSDomainAdministrative unit of Active DirectoryTreeA collection of one or more domainsForestA collection of one or more trees

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

ACTIVE DIRECTORY TREE

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

ACTIVE DIRECTORY FOREST

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

OBJECTS AND ATTRIBUTESObjectsUsers, groups, printers, computersAttributesNames, phone numbers, locations

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

CONTAINERS AND LEAVESContainersDomains, organizational units (OUs), groupsLeavesUsers, printers, computers

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

GROUP POLICYGroup policy objects Collections of hundreds of possible configuration settings.Can be applied to users, computers, and OUs.Policy applied at one level can override policy applied at another level.

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

SUMMARYWindows Server 2003 is available in Web Edition, Standard Edition, Enterprise Edition, and Datacenter Edition.The Manage Your Server page and the Configure Your Server Wizard make it easy to configure a Windows Server 2003 system to perform specific roles.Active Directory is a domain-based enterprise directory service that consists of objects, which are themselves composed of attributes. The Active Directory hierarchy is formed using forests, trees, domains, and organizational units. Permissions, rights, and group policy settings all flow downward in the hierarchy.

Chapter 1: INTRODUCING MICROSOFT WINDOWS SERVER 2003

Briefly describe the topics covered in the chapter. The purpose of this chapter is to orient the students to Windows Server 2003, some of the features included with the various editions, and the roles that a Windows Server 2003 system can perform. The chapter also introduces some of the basic concepts of Active Directory.Explain the reasoning behind multiple editions of Windows Server 2003. Encourage students to call them editions, not versions. (Version normally describes the release, as in Microsoft Windows NT 4 and Microsoft Windows 2000.) Do not cover technical details of each edition yet. This information is discussed later in the chapter. You can find an excellent comparison of the editions and their features at http://www.microsoft.com /windowsserver2003/evaluation/features/compareeditions.mspx.Explain why there is a difference between the minimum numbers and the recommended numbers. Stress that in most environments, more powerful hardware than the recommendation is always best. Stress that students will not be tested on the information in the table in the 70-290 exam, but that it is important information to know for their work with Windows Server 2003 in the real world.Discuss the limitations of the Web Edition, such as a limit of 10 inbound standard file and print connections. Students might not understand what this means, so you might need to explain the difference between an HTTP or other Web connection and a standard SMB connection. Also explain that the Web Edition does not support the Internet Connection Firewall (ICF), Internet Connection Sharing (ICS), or Terminal Server, and that it cannot be used as a Dynamic Host Configuration Protocol (DHCP) or Domain Name System (DNS) server. The Web Edition can be purchased only from OEM or System Builder partners. It is not available for retail sale or purchase. This is the first time Microsoft has produced a single-purpose server platform.Explain that the Standard Edition is designed for use as a departmental server or as a server in smaller organizations. A server running Windows Server 2003 can take on a range of roles, including domain controller, DHCP server, DNS server, WINS server, file server, print server, application server, and terminal server, without any additional software. Also explain that the Standard Edition, like the other editions, includes a complete suite of management and monitoring tools (such as Backup, System Monitor, and Network Monitor).Explain that the Enterprise Edition is designed for use as a server in larger organizations. Discuss some features of this edition, such as Hot Add Memory and Windows System Resource Manager (WSRM).Explain that the Datacenter Edition is designed for high-demand enterprise computing environments in which fault-tolerant measures such as clustering are important. Explain that the Datacenter Edition cannot be purchased as a separate product and must be preinstalled by the hardware vendor on approved hardware. Discuss the Datacenter program, and direct students to more information at http://www.microsoft.com/windowsserver2003/datacenter /dcprogram.mspx.Some students might not be aware of 64-bit computing platforms such as the Intel Itanium. Explain that 64-bit computing platforms are becoming increasingly common in high-demand environments. Explain that 64-bit applications such as the 64-bit version of Microsoft SQL Server are needed to take full advantage of a 64-bit computing platform.Explain that the activation procedure is used to protect the copyright of the operating system software. Detailed information on product activation and the activation procedure can be found in Knowledge Base article 302806.Demonstrate running and using the Manage Your Server wizard. Explain that the wizard does not allow you to do anything that you cannot do using other toolsit just provides a simpler way to do it. Also mention that the Manage Your Server wizard starts every time the server is started until you select the Dont Display This Page At Logon check box in the bottom left corner.Make sure students understand that a single server can offer one or more of the services discussed. For each role, provide a basic explanation and discuss the network environment where that service might be used. For the application server, explain Web services such as Microsoft Internet Information Services (IIS) and XML and also explain that the term application server refers to systems that host applications such as SQL Server or Microsoft Great Plains accounting. The discussion of server roles continues on the next slide.Discuss these additional roles that a Windows Server 2003 system can perform. For each role, provide a basic explanation and discuss the network environment in which that service might be used. Emphasize the importance of the domain controller in a Windows Server 2003 network, but not in detailit is covered later in the chapter. The discussion of server roles continues on the next slide.Discuss these additional roles that a Windows Server 2003 system can perform. For each role, provide a basic explanation and discuss the network environment in which that service might be used. Discuss Active Directory in general terms. Explain that students will not require a deep understanding of Active Directory to pass the 70-290 exam, but that for further courses they will. For some students, the concept that a single database can be used across the entire network can be difficult to grasp. The best way to explain this is by saying that each domain controller holds a copy of the database. If students have experience with Microsoft Windows NT 4, discuss the differences between the NT domain model (NTDS) and Active Directory. Give students the URL http://www.microsoft.com /windowsserver2003/technologies/directory/activedirectory/default.mspx and suggest that they do some reading on Active Directory because it is important to understand. The discussion of Active Directory continues on the next slide.Continue discussing the advantages and features of Active Directory. To show students where the physical active directory database is stored, show the contents of the %systemroot%\NTDS directory on a domain controller. Point out the Ntds.dit file.Explain that domains provide a logical division within the directory that can be used for tasks such as administrative delegation. Describe some scenarios in which a company might have more than one domainfor example, for multiple locations or multiple departments. Briefly discuss DNS naming for domains and explain that subdomains must be contiguously named. This is a good opportunity to make sure students are familiar with DNS and DNS naming. Explain that a domain controller is a Windows 2000 or Windows Server 2003 system that holds a copy of the Active Directory database. Explain that it is common practice to have more than one domain controller for fault-tolerance reasons.Explain how Active Directory is structured. A graphical representation of an Active Directory tree is provided on the next slide, and an Active Directory forest is shown on the slide after that.Explain that any Active Directory structure, even one with a single domain, can be called a tree. Explain that all domains in a tree must share a contiguous namespace, a common schema, and a global catalog. Explain that transitive trusts are automatically created between all domains in the tree. Explain that these trust relationships are important because they make it possible to assign permissions to an object in one domain for a resource in another domain.Give some examples of when forests are relevant, such as in a large, distributed organization or when a company takes over another and wants to create a single Active Directory structure that covers the entire organization. Explain that all trees in a forest share a global catalog and common schema but have a noncontiguous DNS namespace.Demonstrate objects and attributes by identifying a user account in the directory and then viewing the properties of the user account. Explain that by using an extensible schema, you can add objects and attributes to the directory manually or by installing applications such as Microsoft Exchange.Explain the function of domains and OUs in Active Directory. Explain that OUs provide a way to group resources based on function, location, or type. Make sure students understand that OUs are created within a domain and that you can create as many OUs as necessary. The term leaf applies to any object that cannot contain another object. Ask students: Is a group a leaf object? Explain that it is not because the group membership is simply a property of that object. Note that while domains and OUs are hierarchical containers, groups can contain members from anywhere in the domain.Explain to students the basic principles of group policies.Summarize the information presented in this chapter. Again suggest that students do some research and reading on Active Directory. An understanding of Active Directory will be a definite asset throughout the course.