Planning and design of the Organization Unit structure within each forest domain is a primary task in support of a operationally optimized Active Directory infrastructure – this course discusses Organizational Unit design and some of the primary architectural components of an Active Directory-controlled environment. The Active Directory security model is designed to support focused, selective and targeted delegated administration of the system objects and resources. Being familiar with the Active Directory security model and developing a proactive maintenance approach is a key goal in providing an optimized Active Directory-based service to end users. This course covers Active Directory object security, protection, the general Active Directory security model, and the delegation of access to Active Directory objects by security principles.
The design and implementation of a well constructed, configured, and appropriated targeted Group Policy system is fundamental to the end-user experience, system security, and the optimized operation of an Active Directory-controlled environment.
Allied closely to the deployed OU structure, Group Policy application must be thoroughly tested prior to deployment to a production system – sloppy configuration and untested application can lead to catastrophic problems in a production system. This course covers the methodological approach to designing, creating, testing, deploying and maintaining a Group Policy infrastructural solution within an Active Directory controlled forest environment.
Although Active Directory is designed an extensible system is does have operational limits. Knowing the design limitation Active Directory and the important configurable limits is a key aspect of Active Directory management; designed and configurable limits are discussed in ending this course.
Designing the OU Infrastructure and AD Management
- identify the features and characteristics of an OU
- match the AD default containers with their correct descriptions
- match the OU structure to the correct number of levels
- describe Active Directory object security in Microsoft Windows Server 2012 R2
- recognize the factors that should be considered in defining the security groups that will be delegated administrative control of all or part of the OU
- describe the special attributes that can be set on the NTDS Quotas container
- describe the AdminSDHolder container object in Active Directory
- describe the Server 2012 R2 techniques that can be used to manage Domain Controllers, Active Directory, and member servers from remote locations
Group Policy Design and Object Strategies
- match descriptions of tasks to the Group Policy System implementation phase it falls into
- sequence the definite Group Policy setting process
- describe the properties of a GPO
- identify key characteristics of GPO processing
- recognize the process of designing and implementing OUs to support group policy
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.