Course Overview

Chapter 1: Course Introduction

Chapter 1 introduces the course and discusses the associated TestOut and Microsoft certifications. It also shows students how to navigate various interfaces including: Windows 10 and 11, Window Client interface, Windows Server, and the Azure interface.

Chapter 2: On Premise Windows Server

Chapter 2 discusses Windows Server, from installation and server roles to configuration and management. Here, students will learn to use tools essential to these tasks, such as PowerShell and Performance Monitor. They will also learn about remote management options.

Chapter 3: Cloud and Azure

Chapter 3 covers essential cloud computing concepts including cloud models and services. Additionally, students will explore topics such as Azure architectural components, Azure core products, Azure solutions, and Azure security and features. Students will learn how to create an Azure account, use Azure Portal to manage apps and services, and create and configure Azure AD managed domain.

Chapter 4: Manage IP Addressing

Chapter 4 introduces networking concepts as they relate to server environments. Students will learn IPv4 and IPv6 addressing, IP Address Management, NIC teaming, and DHCP. Students will also learn how to troubleshoot common networking problems including issues with configuration, IP communication, and DHCP.

Chapter 5: Implement DNS

Chapter 5 explores DNS and how to implement it in hybrid server environments. Students will learn about DNS record types and how to configure DNS addresses, zones, host records, and CNAME records. They will learn to configure name resolution and zone management including Active Directory integration. They will also discover DNS protection and troubleshooting. Finally, they will learn to implement hybrid name resolution with Windows Server DNS and Azure DNS Private Zones.

Chapter 6: Active Directory

Chapter 6 discusses how to configure Active Directory (AD) across on-premises and cloud-based tools. Students will learn the basics of Active Directory, how to configure a domain controller, install the AD role on a server, and create and join domains. They will learn to join Windows Servers to Azure AD DS and learn how to manage domain controllers in Azure. This chapter covers how to manage read-only domain controllers, FSMO roles, and global catalog servers and concludes by introducing Active Directory trusts, sites, and how to manage hybrid identities.

Chapter 7: Active Directory Objects

Chapter 7 focuses on implementing and managing Active Directory objects. Students will learn to manage Organizational Units, and Active Directory computers, users, groups, service accounts, and bulk operations. They will also learn about delegation control, backing up AD, rights delegation, and authoritative and non-authoritative restore.

Chapter 8: Group Policy

Chapter 8 introduces management options in group policy. Students will learn to configure and manage settings in group policy such as local policies, inheritance, categories, and linking group policy objects. They will learn to create a central store, configure group policy scope, and manage group policies. They will configure password and audit policies as well as user rights. They will also learn about security options and configure user account control. This chapter concludes discussing restricted groups, application restriction policies, group policy preferences and how to implement group policy in Azure AD DS.

Chapter 9: Manage Servers and Workloads in a Hybrid Environment

Chapter 9 explores the concepts and tools used to manage servers and the distribution of workloads in a hybrid environment. Students will learn to use Windows Admin Center, PowerShell remoting, Azure Arc, Azure Automation, Azure Monitor, Azure Security Center, and Azure Policy. With these tools, students will learn to manage Windows Servers through Admin Center and Azure Arc, utilize Azure VM extensions, configure guest policies, and configure IaaS VMs for automation.

Chapter 10: Manage Storage Service

Chapter 10 covers storage management and file system configuration. It covers partitioning, disk and volume management, storage spaces, storage replica, and data deduplication. Students will learn to configure storage quality of service and how to optimize storage performance. Additionally, they will learn to configure file share permissions for NTFS and ReFS including configuration, maintenance, and troubleshooting.

Chapter 11: Manage File Service

Chapter 11 focuses on file management and how to integrate those services into a hybrid environment. It also covers how to manage sharing files and folders, advanced file sharing options, file sharing through PowerShell, and share caching. Students will learn to configure quotas and file screens through the File Server Resource Manager. They will utilize BranchCache to implement distributed and hosted cache modes. They will learn to configure fault tolerance and create namespaces in DFS. This chapter concludes by instructing how to configure and manage Azure FileSync including sync groups, cloud endpoints, server endpoints, and migrating DFS to Azure File Sync.

Chapter 12: Virtualization and Containers

Chapter 12 discusses virtual machine (VM) management, integrating VMs in a hybrid environment, and containers. Students will learn about virtualization and how to assess workloads as well as how to install and configure Hyper-V. They will learn to manage Hyper-V deployments and configure nested virtualization. They will learn to create both Windows and Linux virtual machines, configure VM resource groups, and manage and upgrade VMs. They will learn to manage VM storage, including virtual, differencing, and pass-through disks as well as checkpoint and snapshot management. They will manage virtual networks including virtual switches, network isolation and optimization. They will learn how to move VMs, configure storage migration, and utilize VHD storage. They will also learn about Hyper-V replication and high availability including failover clusters, guest clusters, VM monitoring, and node fairness. They will learn to manage Azure VMs that run Windows Server by managing data disks, resizing Azure VMs, configuring continuous delivery, and managing network connectivity between Azure virtual networks. Finally, students will learn to configure Windows Server containers and manage container images, instances, and networking.

Chapter 13: On Premises and Hybrid Network Connectivity

Chapter 13 explores how to configure network resources to enable connectivity in a hybrid server environment. Students will learn to configure remote access and will implement Azure networking. They will learn to install network policy server (NPS) and configure network policies for various network connection types. They will configure a RADIUS solution and NPS certificates. They will learn to configure web application proxy (WAP) and ADFS. They will also learn to configure VPNs including remote access service, site-to-site VPN, remote desktop gateway, and implement Azure relay. Additionally, they will learn to implement Azure Virtual WAN and Azure Ad Application Proxy.

Chapter 1: Course Introduction

Windows and Azure Simulator Interface

  • Windows Client Interface
  • Windows Server Interface
  • Azure Interface

Chapter 2: On Premise Windows Server

Server Installation

  • Install and Configure Windows Server

Windows Server Roles

  • Manage Server Roles and Features
  • Install Server Roles and Features
  • File Server Role

PowerShell

Windows Server Core

Windows Server Configuration and Management

Performance Monitor

  • Server Monitor
  • Task Manager
  • Monitor Performance
  • Data Collector sets
  • Resource Monitor

Remote Management Options

  • Remote management
  • Remote Desktop
  • Desktop connections

Chapter 3: Cloud and Azure

Cloud Concepts

  • Cloud Services
  • Cloud Models

Azure Concepts

  • Architecture components
  • Azure Core Products
  • Azure Solutions
  • Azure Privacy, Compliance and Data Protection
  • Azure security
  • Accounts
  • Subscriptions
  • Domains

Chapter 4: Manage IP Addressing

IP Addressing

  • Numbering Systems
  • IP Addresses
  • Subnets
  • IP Address Assignment

Troubleshooting IP Configuration Issues

  • using ipconfig
  • Troubleshooting IP configuration

Troubleshooting IP Communication

  • Network Communication Troubleshooting
  • using ping and tracert

DHCP

  • Configure a DHCP Server
  • DHCP Options
  • DHCP Exclusions
  • DHCP Client Reservations
  • Client Addressing
  • Troubleshoot DHCP exhaustion

DHCP Relay

  • DHCP Relay Agent
  • DHCP server on Another Subnet

Advanced DHCP Management

  • High Availability Failover
  • High Availability Load Balancing
  • Failover
  • Filters
  • Split Scope
  • Name Protection

Troubleshoot DHCP

  • DHCP and APIPA Issues
  • Alternate Addressing
  • Troubleshooting DHCP

IP Version 6

  • IPv4 to IPv6 Migration
  • IPv6 Address Assignment
  • Configuring IPv6
  • Configuring a DHCP6 Server

IP Address Management

  • IPAM
  • Install and Provision IPAM
  • Configure Servers for IPAM
  • Managing DHCP Server with IPAM
  • DHCP Policies with IPAM
  • DHCP Failover with IPAM
  • DNS Server with IPAM
  • Managing Multiple Forests

NIC Teaming

  • Configuring NIC Teaming

Chapter 5: Implement DNS

DNS

  • Record Types
  • Configuring DNS
  • Standard DNS Zones
  • Host Records
  • CNAME Records
  • Troubleshoot DNS
  • Server Properties

Name Resolution

  • Conditional Forwarders
  • Stub Zones
  • Configuring Forwarding
  • Root Hints
  • Root Zones

Zone Management

  • Forward and Reverse Lookup Zones
  • Standard DNS Zones
  • Active Directory Integrated Zones
  • Zone Properties

Troubleshoot DNS

  • DNS Troubleshooting
  • DNS attacks
  • Using nslookup

DNS Protection

  • Protection Features
  • Security Extensions
  • Socket Pooling
  • Cache Locking
  • Rate Limiting
  • Delegated Administration
  • Configuring DNSSEC

Hybrid Name Resolution

  • Implement Hybrid Name Resolution
  • Integrate Windows Server DNS with Azure DNS Private Zones

Chapter 6: Active Directory

Active Directory

  • Domain Controller Installation
  • DNS Configuration Issues
  • Install AD Role on a Server
  • Create a Domain
  • Add a Domain Controller to an Existing Domain
  • Join Windows Servers to Azure and Azure AD DS
  • Deploy and Manage Domain Controllers

Azure Active Directory

  • Create and Manage Users
  • Manage and Create Group

Read Only Domain Controllers

  • Install an RODC
  • Manage an RODC
  • Password Replication Policy
  • Configure and Edit Password Replication Policy

FSMO Roles and Global Catalog Servers

  • Manage FSMO Roles
  • Seize FSMO Roles
  • Operations Master Roles
  • Manage Operations Masters Roles
  • Transfer RID and PDC Masters
  • Transfer the Infrastructure Masters
  • Troubleshoot Operations Masters
  • Manage Global Catalog Servers
  • Global Catalog and UGMC
  • Enable Universal Group Membership Caching

Active Directory Trusts

  • Create and Manage Active Directory Trusts
  • Create a Forest Root Trust
  • Trust Types
  • Design Trusts
  • Create a Shortcut Trust

Active Directory Sites

  • Create and Manage Active Directory Sites
  • Sites
  • Configure Sites
  • Manage Sites and Subnets

Active Directory Replication

  • Manage Active Directory Replication
  • SYSVOL Replication
  • Intrasite Replication

Implement and Manage Hybrid Identities

  • Hybrid Identities
  • Azure AD Connect
  • IdFix to Prepare AD for Synchronization
  • Manage Azure AD for Synchronization
  • Implement Azure AD Connect Cloud Sync
  • Integrate Azure AD, AD DS, and Azure AD DS
  • Manage Azure AD DS
  • Manage Azure AD Connect Health
  • Manage Authentication in On-Premises and Hybrid Environments

Chapter 7: Active Directory Objects

Active Directory Organizational Units

  • Active Directory Design
  • Create and Manage OUs
  • Organizational Units

Active Directory Computers

  • Create and Manage Computer Accounts
  • Computer Accounts
  • Active Directory Computers
  • Create Computer Accounts

Active Directory Users

  • Create User Accounts
  • User Templates
  • Manage User Accounts
  • Manage User Accounts with PowerShell
  • Change User Accounts UPN Suffix
  • Perform an Offline Domain Join
  • User account Management

Active Directory Groups

  • Create and Manage Groups
  • Manage Group Membership
  • Groups
  • Global Groups
  • Distribution Groups
  • Group Scope
  • Group Strategy

Active Directory Service Accounts

  • Create and Manage Service Accounts
  • Managed Service Accounts
  • Service Accounts

Active Directory Bulk Operations

  • Bulk Operations

Delegation of Control

  • Delegate Control
  • Backup Active Directory
  • Rights Delegation
  • Active Directory Recycle Bin
  • Non-Authoritative Restore
  • Authoritative Restore
  • Delegate Administrative Control

Chapter 8: Group Policy

Group Policy

  • Configure Local Policies
  • Group Policy Processing
  • Group Policy Objects
  • Managing Group Policy Inheritance
  • Categories
  • Starter GPO

Password Policies

  • Configure and Manage AD DS Passwords

Audit Policies

  • Configuring Audit Policies

User Rights Assignment

  • User Rights
  • Configure User Rights

Security Options

  • Configure Security Options
  • User Account Control
  • Enforce User Account Control

Restricted Groups

  • Manage Groups with Group Policy
  • Configure Restricted Groups

Application Restriction Policies

  • AppLocker
  • Configure AppLocker

Group Policy Preferences

  • Manage Preferences
  • Configure Power Options in a GPO
  • Deploy Shortcuts in a GPO

Group Policy in Azure AD DS

  • Implement Group Policy in Azure AD DS

Chapter 9: Manage Servers and Workloads in a Hybrid Environment

Windows Admin Center

  • Windows Admin Center Gateway Server
  • Target Machine for Windows Admin

Windows PowerShell Remoting

  • Configure PowerShell Remoting
  • CredSSP for Second Hop Remoting
  • JEA for PowerShell Remoting

Azure Arc

  • Use Azure Arc
  • Using Azure Arc to Manage Windows Servers
  • Azure VM Extensions

Azure Automation

  • Manage Updates for Windows Machines
  • Manage laaS Virtual Machines in Azure That Run Windows Servers
  • Azure Automation for Hybrid Workloads
  • Create Runbooks to Automate Tasks on Target VMs
  • Implement DSC to Prevent Configuration Drift in laaS Machines

Azure Monitor

  • Integrate Windows Servers with Log Analytics

Azure Security Center

  • Use Azure Security Center
  • Integrate Windows Servers with Azure Security Center

Azure Policy

  • Assign Azure Policy Guest Configuration

Chapter 10: Manage Storage Service

Configure Disk and Volumes

  • Partitions, Volumes, and File Systems
  • MBR and GPT Partitioning
  • Disk Facts
  • Disk Preparation
  • Volume Management
  • Managing Disks and Volumes
  • Volume Facts
  • Configure Volumes

Configure and Manage Storage Spaces

  • Storage Spaces
  • Install Storage Replica
  • Configuring and Managing Storage Spaces

Storage Replica

  • Storage Replica Planning
  • Server-to-Server Storage Replica

Data Duplication

  • Configure and Manage Data Duplication

SBM Direct and SMB Multichannel

  • SMB Direct and SMB Multichannel Overview
  • Enable SMB direct on RDMA

Configure Storage Quality of Service

  • Calculate Effective Permissions
  • Storage Quality of Service

Configure File Systems

  • NTFS Permissions
  • ReFS Permissions
  • NTFS Quotas
  • File Access
  • Inherited Permissions
  • Quota Restrictions
  • Quota Limits
  • Quota Entry

NTFS Permission Troubleshooting

  • Troubleshooting NTFS Permissions
  • Configure NTFS and Share Permissions

Chapter 11: Manage File Service

SMB Shares

  • Install and Configure FSRM
  • SMB Sharing
  • Simple File Sharing
  • Advanced File Sharing
  • File Sharing with PowerShell
  • Share Caching
  • Share Permissions

Configure File Server Resource Manager

  • Configure FSRM Quotas

Configure Files Screens

  • File Screens

BranchCache Installation and Configuration

  • BranchCache
  • Distributed Mode
  • Hosted Cache Mode
  • Implement BranchCache for Application Servers
  • Troubleshooting BranchCache

Distributed File System (DFS)

  • DFS Namespaces
  • Fault Tolerance for DFS Namespaces
  • Role Services for DFS

Configure and Manage Azure File Sync (Part 1)

  • Azure File Sync Service
  • Sync Groups
  • Cloud Endpoints
  • Register Servers

Configure and Manage Azure File Sync (Part 2)

  • Cloud Tiering
  • Monitor File Sync
  • Migrate DFS to Azure File Sync

Chapter 12: Virtualization and Containers

Virtualization Deployment

  • Virtualization
  • Workload Assessment with MAP
  • Hyper-V
  • Hyper-V Management Tool
  • Hyper-V Deployment
  • Nested Virtualization

Virtual Machines

  • Windows Virtual Machines
  • Discrete Device Assignment
  • Linux Virtual Machines
  • Manage Virtual Machines
  • VM CPU Groups
  • Hypervisor Scheduling Types
  • Manage VM with PowerShell and HVC
  • Legacy Virtual Machines

Virtual Machine Storage

  • Virtual Hard Disks
  • Differencing Disks
  • Pass through Disks
  • Checkpoints
  • Production Snapshots
  • VM Storage
  • Parent VM
  • Child VM

Virtual Networks

  • Virtual Switches
  • Virtual Network Adapters
  • Network Isolation
  • Production Virtual Machine

Virtual Network Optimization

  • Virtual Network Performance
  • Virtual Network Bandwidth
  • Virtual NIC Teaming
  • VM Optimization

Virtual Machine Movement

  • VM Movement
  • VM Manual Movement
  • Storage Migration
  • Live and Quick Migrations
  • Hyper-V Clustering and Migration

VHD Storage

  • Mounting a VHD
  • Creating a VHD

Hyper-V Replication

  • Hyper-V Replicas
  • Configuring Hyper-V Replication
  • Hyper-V Hosts for Failover

Hyper-V High Availability

  • Configuring Guest Clusters
  • Configuring VM Monitoring
  • Node Fairness

Manage Azure Virtual Machines that Run Windows Server

  • Manage Data Discs
  • Resize Azure VM
  • Configuring Continuous Delivery for Azure VM
  • Configuring Connections to VMs
  • Managing Azure VM Network Configuration

Containers

  • Windows Serve Containers
  • Managing Windows Server Containers
  • Container Images
  • Container Networks
  • Container Instances

Chapter 13: On Premises and Hybrid Network Connectivity

Remote Access Role

  • Remote Access
  • Installing Routing and Remote Access Role

Implement Azure Network Adapter

  • Managing Azure Network Adapter

Implement Azure Extended Network

  • Managing Azure Extended Network

Network Policy Server Role

  • NPS
  • Installing NPS
  • NPS Network Policies
  • Configuring Network Policies for VPN, Wireless and Wired Clients
  • RADIUS Client
  • RADIUS Proxy
  • NPS Certificates
  • RADIUS Solution

Implement Web Application Proxy

  • Web application Proxy (WAP)
  • Configuring WAP
  • WAP Publishing

Implement Azure Relay

  • Azure Relay

Virtual Private Networks

  • VPN
  • VPN Server
  • VPN Reconnect
  • Remote Access Service
  • VPN Installation
  • Site-to-Site VPN
  • Remote Desktop Gateway

Implement Azure Virtual WAN

  • Implementing Azure Virtual WAN

Implement Azure Ad Application Proxy

  • Implementing Azure Ad Application Proxy