Visit us at
w w w. s y n g r e s s . c o m
Syngress is committed to publishing high-quality books for IT Professionals and
delivering those books in media and formats that fit the demands of our customers.
We are also committed to extending the utility of the book you purchase via additional
materials available from our Web site.

SOLUTIONS WEB SITE
To register your book, visit www.syngress.com/solutions. Once registered, you can
access our Web pages. There you may find an assortment
of valueadded features such as free e-books related to the topic of this book, URLs
of related Web sites, FAQs from the book, corrections, and any updates from the
author(s).

ULTIMATE CDs
Our Ultimate CD product line offers our readers budget-conscious compilations of
some of our best-selling backlist titles in Adobe PDF form. These CDs are the perfect way to extend your reference library on key topics pertaining to your area of
expertise, including Cisco Engineering, Microsoft Windows System Administration,
CyberCrime Investigation, Open Source Security, and Firewall Configuration, to
name a few.

DOWNLOADABLE E-BOOKS
For readers who can’t wait for hard copy, we offer most of our titles in downloadable
Adobe PDF form. These e-books are often available weeks before hard copies, and
are priced affordably.

SYNGRESS OUTLET
Our outlet store at syngress.com features overstocked, out-of-print, or slightly hurt
books at significant savings.

SITE LICENSING
Syngress has a well-established program for site licensing our e-books onto servers
in corporations, educational institutions, and large organizations. Contact us at
for more information.

CUSTOM PUBLISHING
Many organizations welcome the ability to combine parts of multiple Syngress
books, as well as their own content, into a single volume for their own internal
use. Contact us at for more information.use. Contact us at
for more information.


This page intentionally left blank


Tony Piltzecker
Naomi Alpern
Tariq Azad
Dustin Hannifin
Shawn Tooley

Technical Editor


Elsevier, Inc., the author(s), and any person or firm involved in the writing, editing, or production
(collectively “Makers”) of this book (“the Work”) do not guarantee or warrant the results to be
obtained from the Work.
There is no guarantee of any kind, expressed or implied, regarding the Work or its contents. The Work
is sold AS IS and WITHOUT WARRANTY.You may have other legal rights, which vary from state
to state.

In no event will Makers be liable to you for damages, including any loss of profits, lost savings, or other
incidental or consequential damages arising out from the Work or its contents. Because some states do
not allow the exclusion or limitation of liability for consequential or incidental damages, the above
limitation may not apply to you.
You should always use reasonable care, including backup and other appropriate precautions, when
working with computers, networks, data, and files.
Syngress Media® and Syngress®, are registered trademarks of Elsevier, Inc. Brands and product names
mentioned in this book are trademarks or service marks of their respective companies.
KEY
001
002
003
004
005
006
007
008
009
010

SERIAL NUMBER
HJIRTCV764
PO9873D5FG
829KM8NJH2
BPOQ48722D
CVPLQ6WQ23
VBP965T5T5
HJJJ863WD3E
2987GVTWMK
629MP5SDJT

IMWQ295T6T

PUBLISHED BY
Syngress Publishing, Inc.
Elsevier, Inc.
30 Corporate Drive
Burlington, MA 01803
The Real MCITP Exam 70-646 Prep Kit

Copyright © 2008 by Elsevier, Inc. All rights reserved. Printed in the United States of America.
Except as permitted under the Copyright Act of 1976, no part of this publication may be reproduced
or distributed in any form or by any means, or stored in a database or retrieval system, without the
prior written permission of the publisher, with the exception that the program listings may be
entered, stored, and executed in a computer system, but they may not be reproduced for publication.
Printed in the United States of America
1 2 3 4 5 6 7 8 9 0
ISBN 13: 978-1-59749-248-5
Publisher: Andrew Williams
Acquisitions Editor: David George
Technical Editor: Tony Piltzecker
Project Manager: Gary Byrne

Page Layout and Art: SPI
Copy Editor: Michelle Huegel
Indexer: Nara Wood
Cover Designer: Michael Kavish

For information on rights, translations, and bulk sales, contact Matt Pedersen, Commercial Sales
Director and Rights, at Syngress Publishing; email



Technical Editor
Tony Piltzecker (CISSP, MCSE, CCNA, CCVP, Check Point CCSA, Citrix
CCA), author and technical editor of Syngress Publishing’s MCSE Exam
70-296 Study Guide and DVD Training System and How to Cheat at Managing
Microsoft Operations Manager 2005, is an independent consultant based in Boston, MA.
Tony’s specialties include network security design, Microsoft operating system
and applications architecture, and Cisco IP telephony implementations. Tony’s
background includes positions as systems practice manager for Presidio Networked
Solutions, IT manager for SynQor Inc, network architect for Planning Systems,
Inc., and senior networking consultant with Integrated Information Systems.
Along with his various certifications, Tony holds a bachelor’s degree in business
administration. Tony currently resides in Leominster, MA, with his wife, Melanie,
and his daughters, Kaitlyn and Noelle.

v


Contributing Authors
Naomi J. Alpern currently works for Microsoft as a consultant
specializing in Unified Communications. She holds many Microsoft
certifications, including an MCSE and MCT, as well as additional
industry certifications such as Citrix Certified Enterprise Administrator,
Security+, Network+, and A+. Since the start of her technical career
she has worked in many facets of the technology world, including IT
administration, technical training, and, most recently, full-time consulting.
She likes to spend her time reading cheesy horror and mystery novels
when she isn’t browsing the Web. She is also the mother of two fabulous boys, Darien and Justin, who mostly keep her running around
like a headless chicken.
Tariq Bin Azad is the Principal Consultant and Founder of

NetSoft Communications Inc., a consulting company located in
Toronto, Canada. He is considered a top IT professional by his peers,
coworkers, colleagues, and customers. He obtained this status by
continuously learning and improving his knowledge and information
in the field of information technology. Currently, he holds more than
100 certifications, including MCSA, MCSE, MCTS, MCITP (Vista,
Mobile 5.0, Microsoft Communications Server 2007, Windows 2008,
and Microsoft Exchange Server 2007), MCT, CIW-CI, CCA, CCSP,
CCEA, CCI,VCP, CCNA, CCDA, CCNP, CCDP, CSE, and many
more. Most recently, Tariq has been concentrating on Microsoft
Windows 2000/2003/2008, Exchange 2000/2003/2007, Active
Directory, and Citrix implementations. He is a professional speaker
and has trained architects, consultants, and engineers on topics such
as Windows 2008 Active Directory, Citrix Presentation Server, and
Microsoft Exchange 2007. In addition to owning and operating an
independent consulting company, Tariq works as a Senior Consultant
and has utilized his training skills in numerous workshops, corporate

vi


trainings, and presentations. Tariq holds a Bachelor of Science in
Information Technology from Capella University, USA, a Bachelor’s
degree in Commerce from University of Karachi, Pakistan, and is
working on his ALMIT (Master’s of Liberal Arts in Information
Technology) from Harvard University, in Cambridge, MA. Tariq has
been a coauthor on multiple books, including the best-selling MCITP:
Microsoft Exchange Server 2007 Messaging Design and Deployment Study
Guide: Exams 70-237 and 70-238 (ISBN: 047018146X) and The Real
MCTS/MCITP Exam 640 Preparation Kit (ISBN: 978-1-59749-235-5).

Tariq has worked on projects or trained for major companies and
organizations, including Rogers Communications Inc., Flynn Canada,
Cap Gemini, HP, Direct Energy, Toyota Motors, Comaq, IBM, Citrix
Systems Inc., Unicom Technologies, Amica Insurance Company, and
many others. He lives in Toronto, Canada, and would like to thank his
father, Azad Bin Haider, and his mother, Sitara Begum, for his lifetime
of guidance for their understanding and support to give him the skills
that have allowed him to excel in work and life.
Dustin Hannifin (Microsoft MVP—Office SharePoint Server) is a
systems administrator with Crowe Chizek and Company LLC. Crowe
(www.crowechizek.com), one of the nation’s leading public accounting
and consulting firms. Under its core purpose of “Building Value with
Values®,” Crowe assists both public and private companies in reaching
their goals through services ranging from assurance and financial advisory to performance, risk, and tax consulting. Dustin currently works in
Crowe’s Information Services delivery unit, where he plays a key role
in maintaining and supporting Crowe’s internal information technology
(IT) infrastructure. His expertise resides in various Microsoft products,
including Office SharePoint Server, System Center Operations
Manager, Active Directory, IIS, and Office Communications Server.
Dustin holds a bachelor’s degree from Tennessee Technological University
and is a founding member of the Michiana IT Professionals Users
Group. He regularly contributes to technology communities, including
his blog (www.technotesblog.com) and Microsoft newsgroups. Dustin,
a Tennessee native, currently resides in South Bend, IN.
vii


Shawn Tooley owns a consulting firm,Tooley Consulting Group,
LLC, that specializes in Microsoft and Citrix technologies, for which
he is the principal consultant and trainer. Shawn also works as network

administrator for a hospital in northeastern Ohio. Shawn’s certifications
include Microsoft Certified Trainer (MCT), Microsoft Certified System
Engineer (MCSE), Citrix Certified Enterprise Administrator, Citrix
Certified Sales Professional, HP Accredited System Engineer, IBM
XSeries Server Specialist, Comptia A+, and Comptia Certified Trainer.
In his free time he enjoys playing golf.

viii


Contents
Foreword . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xvii
Chapter 1 Planning for Server Deployment . . . . . . . . . . . . . . . . . . . . . . 1
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2
Planning for Installation or Upgrade . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2
Selecting a Windows 2008 Edition . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Rollback Planning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Implementing BitLocker . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Planning for Infrastructure Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Address Assignment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
Name Resolution (DNS) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
DNS Zones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Reverse Zones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Planning For Global Naming Zones . . . . . . . . . . . . . . . . . . . . . . . . 23
DNS Records . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Planning for Dynamic DNS (DDNS) . . . . . . . . . . . . . . . . . . . . . . . 26
Scavenging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Planning For DNS Forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Network Access Protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Planning for NAP Enforcement Methods . . . . . . . . . . . . . . . . . . . . 27

Planning For DHCP NAP Enforcement . . . . . . . . . . . . . . . . . . . . . 29
Planning For IPSec NAP Enforcement . . . . . . . . . . . . . . . . . . . . . . 29
Planning For 802.1x NAP Enforcement . . . . . . . . . . . . . . . . . . . . . 30
Planning For VPN NAP Enforcement. . . . . . . . . . . . . . . . . . . . . . . 30
Planning for NAP Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Health Policy Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Health Requirement Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Health Registration Authority Servers . . . . . . . . . . . . . . . . . . . . 31
Planning for NAP Clients . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Directory Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Planning Forests and Domains . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Planning Domain Controller Placement . . . . . . . . . . . . . . . . . . . . . 35
Planning Active Directory Sites and Site Links . . . . . . . . . . . . . . . . 36
Planning Organizational Unit Design . . . . . . . . . . . . . . . . . . . . . . . 38
Delegating Authority to Organizational Units . . . . . . . . . . . . . . . 39
Planning for Automated Server Deployment . . . . . . . . . . . . . . . . . . . . . . . 42
ix


x

Contents

Standard Server Image . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Automation and Scheduling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Certificate Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Introduction to Public Key Infrastructure . . . . . . . . . . . . . . . . . . . .
Planning Certificate Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Planning Root, Subordinate, and Intermediate
Certificate Authorities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

Planning Application Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Planning for Web Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Web Farms and Web Site Availability. . . . . . . . . . . . . . . . . . . . . . . .
IIS Authentication Methods . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
IIS Delegation and Remote Administration . . . . . . . . . . . . . . . . . . .
IIS 7 Core Server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
FTP, POP3, and SMTP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Windows SharePoint Services 3.0 . . . . . . . . . . . . . . . . . . . . . . . . . .
Planning for Virtualization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Planning for Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Resilience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Accessibility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Planning for File and Print Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Working with Access Permissions . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Share Level Permissions vs File/Folder Permissions . . . . . . . . . . . . .
Providing Access to Users and Groups. . . . . . . . . . . . . . . . . . . . . . .
Allow and Deny . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Storage Quotas . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Planning for Replication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Indexing Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Storage Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Understanding Availability Options . . . . . . . . . . . . . . . . . . . . . . . . . . .
File and Print Server Clustering . . . . . . . . . . . . . . . . . . . . . . . . . . .
Publishing Printers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .


53
54
54
54
55
56
57
57
57
58
58
59
59
59
60
61
61
62
62
62
62
63
64
69
69
70
70
71
71
73

74
74
76
77
81

Chapter 2 Planning for Server Management . . . . . . . . . . . . . . . . . . . . 83
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Developing a Management Strategy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84


Contents

Remote Administration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Remote Desktop . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
Server Management Technologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91
Windows Powershell . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91
Windows Deployment Services (WDS). . . . . . . . . . . . . . . . . . . . . . 92
Windows Reliability and Performance
Monitor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92
Server Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
ServerManagerCMD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98
Delegating Administration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 99
Delegating Authority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .100
Delegating Active Directory Objects . . . . . . . . . . . . . . . . . . . . . . . . . .102
Application Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .103
Planning a Group Policy Strategy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .107
Understanding Group Policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .109
Types of Group Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .109
Local Group Policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .110

Non-Local Group Policy Objects . . . . . . . . . . . . . . . . . . . . . . . . . .113
Preferences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .119
Network Location Awareness . . . . . . . . . . . . . . . . . . . . . . . . . . .122
User . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .123
Computer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .124
Planning for GPOs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .125
Site, Domain, and OU Hierarchy . . . . . . . . . . . . . . . . . . . . . . . . . .126
Group Policy Processing Priority . . . . . . . . . . . . . . . . . . . . . . . . . .128
Creating and Linking Group Policy Objects . . . . . . . . . . . . . . . . . . . . . . .130
Creating Stand-Alone GPOs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .131
Linking Existing GPOs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .131
Creating and Linking at One Time . . . . . . . . . . . . . . . . . . . . . . . . . . .133
Controlling Application of Group Policies . . . . . . . . . . . . . . . . . . . . . . . . .134
Enforce . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .134
Block Inheritance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .138
GPO Backup and Recovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .140
Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .140
Group Policy Results and Group Policy Modeling . . . . . . . . . . . . .141
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .148
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .149
Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .151
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .153

xi


xii

Contents


Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .160
Chapter 3 Monitoring and Maintaining Servers . . . . . . . . . . . . . . . . . 161
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .162
Patch Management. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .162
OS Level Patch Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .164
Windows Server Update Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . .166
WSUS 3.0 SP1 Deployment on Microsoft
Windows 2008 Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .169
Microsoft WSUS 3.0 Service Pack 1 Administration
Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .183
Configure Microsoft WSUS 3.0 Service Pack 1 Automatic
Updates for Clients . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .189
Application Patching. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .196
Monitoring for Performance. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .199
Monitoring Servers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .202
Optimization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .208
Event and Service Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . .217
Trending and Baseline Analysis . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .220
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .223
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .225
Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .226
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .228
Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .231
Chapter 4 Security and Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .234
Remote Access Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .235
Installing and Configuring NPAS . . . . . . . . . . . . . . . . . . . . . . . . . . . .237
Routing and Remote Access Service . . . . . . . . . . . . . . . . . . . . . . . . . .237
Network Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .242
Remote Access Clients . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .243

Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .244
PPTP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .244
L2TP/IPsec . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .247
SSTP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .247
Network Access Protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .248
Working with NAP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .249
Network Layer Protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . .249
NAP Clients . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .250


Contents

NAP Enforcement Points . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .251
Active Directory Domain Services . . . . . . . . . . . . . . . . . . . . . . . . .252
NAP Health Policy Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .252
Health Requirement Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .254
Restricted Network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .254
Software Policy Validation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .255
Server Security. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .256
Windows Firewall Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . .257
Working with Built-in Firewall Exceptions . . . . . . . . . . . . . . . . . . .261
Creating Manual Firewall Exceptions . . . . . . . . . . . . . . . . . . . . . . .263
Advanced Configuration of the Windows Firewall . . . . . . . . . . . . . . . .267
Modifying IPsec Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .270
Key Exchange (Main Mode) . . . . . . . . . . . . . . . . . . . . . . . . . . .272
Data Protection (Quick Mode) . . . . . . . . . . . . . . . . . . . . . . . . .273
Authentication Method . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .274
Creating Connection Security Rules . . . . . . . . . . . . . . . . . . . . . . .279
Configuring a Server-to-Server Connection
Security Rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .284

Creating Firewall Rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .285
Monitoring the Windows Firewall . . . . . . . . . . . . . . . . . . . . . . . . .290
Data Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .291
BitLocker . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .292
Encrypted File System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .294
Auditing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .295
Auditing AD DS and LDS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .296
Event Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .298
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .300
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .301
Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .303
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .305
Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .308
Chapter 5 Planning for Server Virtualization . . . . . . . . . . . . . . . . . . . 309
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .310
Understanding Virtualization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .310
Server Consolidation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .313
Quality Assurance and Development Testing Environments . . . . . . . . . .314
Disaster Recovery. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .317
Microkernelized vs. Monolithic Hypervisor . . . . . . . . . . . . . . . . . . . . .318
Monolithic Hypervisor. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .318

xiii


xiv

Contents

Microkernel Hypervisor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .320

Detailed Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .321
Parent Partition . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .323
Child Partitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .325
Guest Operating Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .325
Guest with Enlightened Operating System . . . . . . . . . . . . . . . . .325
Guest with Partially Enlightened Operating System . . . . . . . . . . .326
Legacy Guest . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .326
Application Compatibility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .326
Microsoft Server Virtualization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .327
Hyper-V . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .330
Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .331
Installing the Virtualization Role on Windows Server 2008 . . . . . . . . . .332
Configuring Virtual Servers with Hyper-V . . . . . . . . . . . . . . . . . . . . .344
Server Core . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .354
Competition Comparison . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .356
Server Placement . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .358
System Center Virtual Machine Manager 2007 . . . . . . . . . . . . . . . . . . . . .360
Virtual Machine Manager Administrator Console . . . . . . . . . . . . . . . . .362
Windows PowerShell Command-Line Interface . . . . . . . . . . . . . . . . . .364
System Center Virtual Machine Manager Self Service
Web Portal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .364
Virtual Machine Manager Library . . . . . . . . . . . . . . . . . . . . . . . . . . . .365
Migration Support Functionality . . . . . . . . . . . . . . . . . . . . . . . . . . . . .366
Virtual Machine Creation Process Using SCVMM. . . . . . . . . . . . . . . .367
Managing Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .368
Stand-Alone Virtualization Management Console . . . . . . . . . . . . . . . . .369
Managing Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .370
Managing VMware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .374
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .376
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .377

Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .381
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .384
Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .387
Chapter 6 Application and Data Provisioning . . . . . . . . . . . . . . . . . . . 389
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .390
Provisioning Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .391
Terminal Server Infrastructure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .391
Terminal Server Licensing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .391


Contents

Terminal Services Gateway Server. . . . . . . . . . . . . . . . . . . . . . . . . .402
Terminal Services Session Broker . . . . . . . . . . . . . . . . . . . . . . . . . .409
Terminal Services RemoteApp . . . . . . . . . . . . . . . . . . . . . . . . . . . .413
Resource Allocation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .419
Microsoft Windows System Resource Manager . . . . . . . . . . . . . . . .420
Application Virtualization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .424
Microsoft SoftGrid Application Virtualization . . . . . . . . . . . . . . . . .425
System Center Configuration Manager 2007 . . . . . . . . . . . . . . . . . . . . . . .426
Introduction to SCCM . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .427
Hardware Inventory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .436
Software Inventory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .439
Application Management and Deployment . . . . . . . . . . . . . . . . . . . . .443
OS Deployment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .446
Provisioning Data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .447
Working with Shared Resources . . . . . . . . . . . . . . . . . . . . . . . . . . . . .447
Offline Data Access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .449
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .452
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .454

Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .456
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .458
Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .461
Chapter 7 Planning for Business Continuity
and High Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 463
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .464
Planning for Storage Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .465
Self Healing NTFS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .466
Multipath I/O (MPIO). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .467
Data Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .468
Share and Storage Management Console . . . . . . . . . . . . . . . . . . . . .468
Storage Explorer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .469
Storage Manager for SANs Console . . . . . . . . . . . . . . . . . . . . . . . .470
Data Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .471
Group Policy Control over Removable Media . . . . . . . . . . . . . . . .471
BitLocker Drive Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .472
BitLocker Volume Recovery . . . . . . . . . . . . . . . . . . . . . . . . . . .474
BitLocker Management Options . . . . . . . . . . . . . . . . . . . . . . . .474
Using BitLocker for the Safe Decommissioning
of Hardware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .475
Data Collaboration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .476

xv


xvi

Contents

Planning for High Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .481

Failover Clustering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .481
Architectural Details of Windows 2008 Failover
Clustering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .482
Multi-Site Clusters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .498
Service Redundancy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .499
Service Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .501
Data Accessibility and Redundancy . . . . . . . . . . . . . . . . . . . . . . . . . . .501
Failover Clustering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .502
Prerequisites . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .502
Distributed File System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .503
Virtualization and High Availability . . . . . . . . . . . . . . . . . . . . . . . . . . .504
Planning for Backup and Recovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .505
Data Recovery Strategies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .520
Server Recovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .521
WinRE Recovery Environment Bare Metal Restore . . . . . . . . . . . .522
Command Line Bare Metal Restore . . . . . . . . . . . . . . . . . . . . . . . .523
Recovering Directory Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .523
Backup Methods for Directory Services . . . . . . . . . . . . . . . . . . . . .523
Backup Types for Directory Services . . . . . . . . . . . . . . . . . . . . . . . .524
Recovery Methods for Directory Services . . . . . . . . . . . . . . . . . . . .524
Directory Services Restore Mode Recovery . . . . . . . . . . . . . . . .524
Non-Authoritative Restore . . . . . . . . . . . . . . . . . . . . . . . . . . . .525
Authoritative Restore . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .527
Object Level Recovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .527
Summary of Exam Objectives . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .535
Exam Objectives Fast Track . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .535
Exam Objectives Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . .540
Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .543
Self Test Quick Answer Key . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .546
Appendix Self Test Appendix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 547

Chapter 1: Planning for Server Deployment . . . . . . . . . . . . . . . . . . . . . . .548
Chapter 2: Planning for Server Management . . . . . . . . . . . . . . . . . . . . . . .553
Chapter 3: Monitoring and Maintaining Servers . . . . . . . . . . . . . . . . . . . .564
Chapter 4: Security and Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .568
Chapter 5: Planning for Server Virtualization . . . . . . . . . . . . . . . . . . . . . . .572
Chapter 6: Application and Data Provisioning . . . . . . . . . . . . . . . . . . . . . .577
Chapter 7: Planning for Business Continuity
and High Availability. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .582
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 589


Foreword

This book’s primary goal is to help you prepare to take and pass Microsoft’s exam
number 70–646, Windows Server 2008 Server Administrator. Our secondary purpose
in writing this book is to provide exam candidates with knowledge and skills that
go beyond the minimum requirements for passing the exam and help to prepare
them to work in the real world of Microsoft computer networking.

What Is Professional Series Exam 70–646?
Professional Series Exam 70–646 is the final requirement for those pursuing
Microsoft Certified Information Technology Professional (MCITP): Server Administrator
certification for Windows Server 2008. The server administrator is responsible for
the operations and day-to-day management of an infrastructure of servers for an
enterprise organization. Windows server administrators manage the infrastructure,
Web, and IT application servers. Candidates for this certification are IT professionals who want to be known as leaders and problem solvers in a current or
future role in an organization that uses Windows Server 2008.
However, not everyone who takes Exam 70–646 will have practical experience
in IT management. Many people will take this exam after classroom instruction or
self-study as an entry into the networking field. Many of those who do have job

experience in IT will not have had the opportunity to work with all of the technologies or be involved with the infrastructure or management issues covered by
the exam. In this book, our goal is to provide background information that will
help you to understand the concepts and procedures described even if you don’t
have the requisite experience, while keeping our focus on the exam objectives.
xvii


xviii Foreword

Exam 70–646 covers the complex concepts involved with administering a
network environment that is built around Microsoft’s Windows Server 2008.
The exam includes the following task-oriented objectives:
■

Planning for Server Deployment This includes planning server
installations and upgrades, planning for automated server deployment,
planning infrastructure services server roles, planning application servers
and services, and planning file and print server roles.

■

Planning for Server Management This includes planning server
management strategies, planning for delegated administration, and
planning and implementing group policy strategy.

■

Monitoring and Maintaining Servers This includes implementing
patch management strategy, monitoring servers for performance evaluation and optimization, and monitoring and maintaining security and
policies.


■

Planning Application and Data Provisioning This includes data
and application provisioning.

■

Planning for Business Continuity and High Availability This
includes planning storage, planning high availability, and planning for
backup and recovery.

NOTE
In this book, we have tried to follow Microsoft’s exam objectives as
closely as possible. However, we have rearranged the order of some
topics for a better flow and included background material to help you
understand the concepts and procedures that are included in the
objectives.

Path to
MCTS/MCITP/MS Certified Architect
Microsoft certification is recognized throughout the IT industry as a way to demonstrate mastery of basic concepts and skills required to perform the tasks involved
in implementing and maintaining Windows-based networks. The certification
www.syngress.com


Foreword

xix


program is constantly evaluated and improved, and the nature of information
technology is changing rapidly. Consequently, requirements and specifications for
certification can also change rapidly. This book is based on the exam objectives as
stated by Microsoft at the time of writing; however, Microsoft reserves the right
to make changes to the objectives and to the exam itself at any time. Exam candidates should regularly visit the Certification and Training Web site at www.microsoft.
com/learning/mcp/default.mspx for the most updated information on each
Microsoft exam.
Microsoft presently offers three basic levels of certification on the technology
level, professional level, and architect level:
■

Technology Series This level of certification is the most basic, and it
includes the Microsoft Certified Technology Specialist (MCTS)
certification. The MCTS certification is focused on one particular
Microsoft technology. There are 19 MCTS exams at the time of this
writing. Each MCTS certification consists of one to three exams, does
not include job-role skills, and will be retired when the technology is
retired. Microsoft Certified Technology Specialists will be proficient in
implementing, building, troubleshooting, and debugging a specific
Microsoft technology.

■

Professional Series This is the second level of Microsoft certification,
and it includes the Microsoft Certified Information Technology
Professional (MCITP) and Microsoft Certified Professional
Developer (MCPD) certifications. These certifications consist of one
to three exams, have prerequisites from the Technology Series, focus on
a specific job role, and require an exam refresh to remain current. The
MCITP certification offers nine separate tracks as of the time of this

writing. There are two Windows Server 2008 tracks, Server Administrator
and Enterprise Administrator. To achieve the Server Administrator
MCITP for Windows Server 2008, you must successfully complete one
Technology Series exam and one Professional Series exam. To achieve
the Enterprise Administrator MCITP for Windows Server 2008, you
must successfully complete four Technology Series exams and one
Professional Series exam.

■

Architect Series This is the highest level of Microsoft certification,
and it requires the candidate to have at least 10 years’ industry experience.
www.syngress.com


xx

Foreword

Candidates must pass a rigorous review by a review board of existing
architects, and they must work with an architect mentor for a period of
time before taking the exam.

NOTE
Those who already hold the MCSA or MCSE in Windows 2003 can
upgrade their certifications to MCITP Server Administrator by passing
one upgrade exam and one Professional Series exam. Those who already
hold the MCSA or MCSE in Windows 2003 can upgrade their certifications
to MCITP Enterprise Administrator by passing one upgrade exam, two
Technology Series exams, and one Professional Series exam.


Prerequisites and Preparation
Although you may take the required exams for MCITP: Server Administrator certification in any order, successful completion of the following MCTS exams is required
for certification, in addition to Professional Series Exam 70–646:
■

70–640 Configuring Windows Server 2008 Active Directory

■

70–642 Configuring Windows Server 2008 Network Infrastructure

NOTE
Those who already hold the MCSA or MCSE in Windows Server 2003
can upgrade their certifications to MCITP Server Administrator by
substituting exam 70–648 (MCSA) or 70–649 (MCSE) for exams 70–640
and 70–642 above.

Preparation for this exam should include the following:
■

Visit the Web site at www.microsoft.com/learning/exams/70–646.mspx
to review the updated exam objectives.

www.syngress.com


Foreword
■


Work your way through this book, studying the material thoroughly
and marking any items you don’t understand.

■

Answer all practice exam questions at the end of each chapter.

■

Complete all hands-on exercises in each chapter.

■

Review any topics that you don’t thoroughly understand.

■

Consult Microsoft online resources such as TechNet (www.microsoft.
com/technet/), white papers on the Microsoft Web site, and so forth,
for better understanding of difficult topics.

■

Participate in Microsoft’s product-specific and training and certification
newsgroups if you have specific questions that you still need answered.

■

Take one or more practice exams, such as the one included on the Syngress/
Elsevier certification Web site at www.syngress.com/certification/70646.


xxi

Exam Day Experience
Taking the exam is a relatively straightforward process. Prometric testing centers
administer the Microsoft 70–646 exam.You can register for, reschedule, or cancel an
exam through the Prometric Web site at www.register.prometric.com. You’ll find
listings of testing center locations on these sites. Accommodations are made for
those with disabilities; contact the individual testing center for more information.
Exam price varies depending on the country in which you take the exam.

Exam Format
Exams are timed. At the end of the exam, you will find out your score and whether
you passed or failed. You will not be allowed to take any notes or other written
materials with you into the exam room. You will be provided with a pencil and
paper, however, for making notes during the exam or doing calculations.
In addition to the traditional multiple-choice questions and the select-and-drag,
simulation, and case study questions, you might see some or all of the following
types of questions:
■

Hot area questions, in which you are asked to select an element or elements
in a graphic to indicate the correct answer.You click an element to select
or deselect it.

www.syngress.com


xxii


Foreword
■

Active screen questions, in which you change elements in a dialog box
(for example, by dragging the appropriate text element into a text box
or selecting an option button or checkbox in a dialog box).

■

Drag-and-drop questions, in which you arrange various elements in a
target area.

Test-Taking Tips
Different people work best using different methods. However, there are some
common methods of preparation and approach to the exam that are helpful to
many test-takers. In this section, we provide some tips that other exam candidates
have found useful in preparing for and actually taking the exam.
■

Exam preparation begins before exam day. Ensure that you know the
concepts and terms well and feel confident about each of the exam
objectives. Many test-takers find it helpful to make flash cards or review
notes to study on the way to the testing center. A sheet listing acronyms
and abbreviations can be helpful, as the number of acronyms (and the
similarity of different acronyms) when studying IT topics can be overwhelming. The process of writing the material down, rather than just
reading it, will help to reinforce your knowledge.

■

Many test-takers find it especially helpful to take practice exams that

are available on the Internet and with books such as this one. Taking
the practice exams can help you become used to the computerized
exam-taking experience, and the practice exams can also can be used
as a learning tool. The best practice tests include detailed explanations
of why the correct answer is correct and why the incorrect answers
are wrong.

■

When preparing and studying, you should try to identify the main
points of each objective section. Set aside enough time to focus on the
material and lodge it into your memory. On the day of the exam, you
should be at the point where you don’t have to learn any new facts or
concepts, but need simply to review the information already learned.

■

The value of hands-on experience cannot be stressed enough. Exam
questions are based on test-writers’ experiences in the field. Working

www.syngress.com


Foreword xxiii

with the products on a regular basis—whether in your job environment
or in a test network that you’ve set up at home—will make you much
more comfortable with these questions.
■


Know your own learning style and use study methods that take advantage
of it. If you’re primarily a visual learner, reading, making diagrams, watching video files on CD, etc., may be your best study methods. If you’re
primarily auditory, listening to classroom lectures, using audiotapes you
can play in the car as you drive, and repeating key concepts to yourself
aloud may be more effective. If you’re a kinesthetic learner, you’ll need
to actually do the exercises, implement the security measures on your
own systems, and otherwise perform hands-on tasks to best absorb the
information. Most of us can learn from all of these methods, but have a
primary style that works best for us.

■

Although it may seem obvious, many exam-takers ignore the physical
aspects of exam preparation. You are likely to score better if you’ve had
sufficient sleep the night before the exam and if you are not hungry,
thirsty, hot/cold, or otherwise distracted by physical discomfort. Eat
prior to going to the testing center (but don’t indulge in a huge meal
that will leave you uncomfortable), stay away from alcohol for 24 hours
prior to the test, and dress appropriately for the temperature in the
testing center (if you don’t know how hot/cold the testing environment
tends to be, you may want to wear light clothes with a sweater or jacket
that can be taken off).

■

Before you go to the testing center to take the exam, be sure to allow
time to arrive on time, take care of any physical needs, and step back to
take a deep breath and relax. Try to arrive slightly early, but not so far in
advance that you spend a lot of time worrying and getting nervous
about the testing process. You may want to do a quick last-minute

review of notes, but don’t try to “cram” everything the morning of the
exam. Many test-takers find it helpful to take a short walk or do a few
calisthenics shortly before the exam to get oxygen flowing to the brain.

■

Before beginning to answer questions, use the pencil and paper provided to you to write down terms, concepts and other items that you
think you may have difficulty remembering as the exam goes on. Then

www.syngress.com


xxiv Foreword

you can refer back to these notes as you progress through the test. You
won’t have to worry about forgetting the concepts and terms you have
trouble with later in the exam.
■

Sometimes the information in a question will remind you of another
concept or term that you might need in a later question. Use your pen
and paper to make note of this in case it comes up later on the exam.

■

It is often easier to discern the answer to scenario questions if you can
visualize the situation. Use your pen and paper to draw a diagram of the
network that is described to help you see the relationships between
devices, IP addressing schemes, and so forth.


■

When appropriate, review the answers you weren’t sure of. However, you
should change your answer only if you’re sure that your original answer
was incorrect. Experience has shown that more often than not, when
test-takers start second-guessing their answers, they end up changing
correct answers to the incorrect ones. Don’t “read into” the question
(that is, don’t fill in or assume information that isn’t there); this is a
frequent cause of incorrect responses.

■

As you go through this book, pay special attention to the Exam Warnings,
as these highlight concepts that are likely to be tested.You may find it
useful to go through and copy these into a notebook (remembering that
writing something down reinforces your ability to remember it) and/or
go through and review the Exam Warnings in each chapter just prior to
taking the exam.

■

Use as many little mnemonic tricks as possible to help you remember facts
and concepts. For example, to remember which of the two IPsec protocols
(AH and ESP) encrypts data for confidentiality, you can associate the “E”
in encryption with the “E” in ESP.

Pedagogical Elements
In this book, you’ll find a number of different types of sidebars and other elements
designed to supplement the main text. These include the following:
■


Exam Warning These sidebars focus on specific elements on which
the reader needs to focus in order to pass the exam (for example,

www.syngress.com