1. Active Directory Boundaries - Purpose Replication Boundaries Security Boundaries

2. Active Directory Boundaries - Types Geographic vs Organizational Contiguous vs Discontigous namespace i.e. oldcompany1.newcompany.com and oldcompany2.newcompany.com are 2 contiguous namespaces

3. Prestaging forestprep and domainprep Removal

4. Removing Domains or Trees ADMT pruning/grafting ADMTv3.1

5. Functional Levels Viewing Raising Interoperability UPN – User Principal Name

7. Simplifying Logon Each user Has a unique down-level logon name Can have multiple friendly UPN's

8. Trust Basics Trusts allow communication between the boundaries of domains and forests 1 way Trust 2 way Trust

9. Transitive Trusts Extend permissions across multiple domains Automatically created as new domain joins a tree or new child is created

11. Forest Trusts Forest wide Selective authentication

12. External Trusts Non-Transitive NT4.0 or Kerebos compatible

13. Shortcut Trust Transitive Speeds up authentication and authorization

14. Identity Security Identification (SID) filtering

15. Create Sites Balance service delivered to all locations. Inventory the number of users at each site Inventory the types of WAN links

17. Create AD Subnets Associate subnets with the site location that has the closest DC

18. Configure Site Links Site Links = WAN links Star vs Mesh

19. Associating Link Costs Cost = Speed/Availability of WAN

21. Configure Infrastructure Manually link Operational Masters with their backup servers

22. Global Catalog Servers Deploy Global Catalog servers at each site when possible

23. Replication Each domain can have its own replication topology and schedule Different events have different priorities to trigger replication

24. DFS DFS – Distributed File System Method for synchronizing shared folders

25. DFS DFS – Distributed File System Method for synchronizing shared folders Conflict and Deleted folder Good for application distribution or other read-only data

26. Replication - Automatic Knowledge Consistency Checker (KCC) Bridgehead Server Intersite Topology Generator

27. Replication - Automatic Knowledge Consistency Checker (KCC) Bridgehead Server Intersite Topology Generator Scheduling IP and SMTP protocols

28. Replication - Manual Designate a specific bridgehead server Make a one way replication partnership Manually force replication after making changes to AD

29. Global Catalog Server DC that contains information about other Domains

30. Promotion Use the AD snap-in Sites and Services Partial Attribute Set

32. Alternate Methods UGMC – Universal Group Membership Caching

33. Domain Operations Masters PDC emulator Relative ID (RID) Infrastructure

34. Forest Operations Masters Schema Master Domain Naming

35. Operations Master Seize vs Transfer Backup Placement

37. Schema Master Schema can be extended with various tools Placement should be on a Global Catalog Time Service is important for successful upgrades