Communications and Security in Windows Server 2008

This course is included in our On-demand training solution.


Windows Server 2008 introduces Read-Only Domain Controllers (RODCs) which can be deployed by organizations in locations where physical security may be an issue. A RODC will improve security, provide faster login times and more efficient access to network resources, especially over a WAN. This course discusses various policies, such as Group Policies, Default Domain Security Policies, Account Policies, and Password Policies, that are used to implement security in your organization. It also explains how organizational units can be used to apply the Group Policy settings to a specific subset of computers or users, and how Internet Protocol Security (IPSec) can be used to secure Active Directory communications. The course is one in a series that covers the objectives for Microsoft exam 70-640: TS: Windows Server 2008 Active Directory, Configuring. Passing this exam completes the requirements for the MCTS: Windows Server 2008 Active Directory, Configuration certification, and counts as credit towards the following certifications: Microsoft Certified IT Professional (MCITP): Enterprise Administrator, and the Microsoft Certified IT Professional (MCITP): Server Administrator, since both MCITPs are certifications that require more than one exam.

Target Audience

The audience for this path includes administrators who are rolling out and supporting Windows Server 2008 in the enterprise. The audience also includes individuals seeking certification on Microsoft’s new generation server platform.


As an exam prerequisite, any candidate should have a minimum of one year of experience implementing and administering a network operating system in an environment that has the following characteristics: • 250 to 5,000 or more users • three or more physical locations • three or more domain controllers • network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management • connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet

Expected Duration

90 min.

Course Objectives

Secure Active Directory

  • restrict delegated authentication for an object
  • set permissions for an organizational unit
  • System User Accounts

  • manage user accounts
  • Active Directory Security

    Using IPSec

  • implement an IPSec policy on a network
  • Read-Only Domain Controllers

  • perform an unattended deployment of an RODC on a domain
  • Managing Read-Only Domain Controllers