MCSE Training Kit: Designing Microsoft Windows 2000 Network Security, Exam 70-220

Official Microsoft study guide for the skills you need on the job-and on the exam!
Make the right design decisions to protect your business network-and prepare for the Microsoft Certified Professional (MCP) exam-with this official Microsoft study guide. Work at your own pace through a system of case-study scenarios and tutorials to gain practical experience planning the security infrastructure for a Windows 2000 network. As you build these real-world design skills, you’re also preparing for MCP Exam 70-220-a core credit on the Windows 2000 MCSE track.
HERE’S WHAT YOU’LL LEARN:

Analyzing business requirements, including strategies, structures, and processes
Evaluating your company’s existing and planned technical environment
Identifying security risks and requirements and defining security baselines
Planning an authentication strategy and Public Key Infrastructure
Controlling access to resources using EFS, NTFS, security groups, and Group Policy
Designing security for Windows 2000 network services: DNS, Remote Installation Services (RIS), SNMP, and Terminal Services
Developing an IPSec data encryption scheme and management strategy
Providing secure connections for users of remote access services, VPNs, extranets, or the Internet
HERE’S WHAT’S INSIDE:

Comprehensive self-paced training manual that maps to MCP exam goals and objectives
Case study-based exercises that help you apply what you learn to the job
Summaries and end-of-chapter review questions to help gauge your progress
120-day evaluation version of Windows 2000 Advanced Server
All the book’s content-plus supplemental materials-on CD-ROM
NEW! Sample MCSE Readiness Review practice-test questions on-line. See “About This Book” for details.

——————————————————————————–
Customer Reviews

Customer Reviews: 6 Average Customer Rating:
Jun 20, 2003 MartyB from Minnesota
Excellent Resource
This is an excellent resource for preparing for the 222 exam. It is clear, concise, and very well written. I would also recommend supplimenting this resource with plenty of hands-on.

Jan 22, 2002 J Leeds from Atlanta GA
Believe it or not, a great training aid
Not only does this book cover the material on the exam thouroughly, it also does so in a way that really prepares you for the exam. Each chapter is structured as a case study, and each section of the chapter takes you through making decisions based on the case study. I was amazed that Microsoft Press actually had a good MCSE book available, but they do.

Dec 9, 2001 Zack B. from Los Angeles, CA
The Best MS press book I ‘ve ever read!!!
This book really worth the whole five stars. It is so different from the other books in that it contains a lot of case studies and questions. Also, I really believe that this book would be a good referance for exams 70-215 and 70-217

Dec 10, 2001 Tomas from Maryland
Content = 5 stars, Test prep = 2 stars
It’s an awesome book for general knowledge. It’s scope is way beyond the actual test (perhaps the test seemed narrow on focus because I did poorly– barely passed), but the book does not cover how to approach the more abstract, visual based questions.

I would use both this and other sources to study, because if you don’t know what Microsoft wants (it’s more than knowing what technologies are best applied in certain situations, but also extending to how to approach a confusing point-and-click question with not nearly half of the explanation you need to understand how two things are related).

For example, there are several questions interrelating abstract objects (laptop, vpn server, isp, etc..) via an even more abstract “relationship” (such as “Lan connection”, PPTP connection, etc..). Since the question is purposely abstract and confusing, I got stuck on the questions and no doubt got all of them wrong…. I didn’t understand it until after the test, but “relationship” means moreso which two objects have a common quality (such as a vpn connection between a laptop and a vpn server) rather than what quality one object uses with a second object ultimately for a third object (i.e., a laptop using a pptp connection THROUGH an ISP connection ULTIMATELY TO a vpn server). In this case, microsoft wants you to answer that the laptop and the vpn server are related via the vpn connection, and that the isp is not related at all to either of those via a “vpn connection” (in MY mind it WAS, since the vpn connection is physically going THROUGH the isp). Confusing. Hope this helps, though.

All in all, a really good book. I would definitely buy it, even if not taking the MS exam. It’s good enough for designing UNIX networks (just replace certain microsoft terms with the equivalent UNIX ones, such as “IIS” with “Apache”, “Active Directory” with “LDAP and Kerberos”, etc…).

I would recommend it for the exam, but PLEASE get a book that also talks about how to beat the exam (i.e., there are questions that are not multiple choice) and not just know the content.

Sep 11, 2001
Great Book
This is an outstanding book from MS. To the point, logical, clear, and regarding preparation for this exam, it is complete. A real pleasure to read.

Sep 8, 2001 Gareth from Toronto
Great…
The first MS Press book I’ve used which helped me pass this exam.

QUESTION 1
DRAG DROP
You need to design a naming strategy for the new internal and external domains.
You need to identify the appropriate domain name for each domain. You need to
ensure that your solution meets the business and technical requirements of IT
Training Institute.
What should you do? (To answer, drag the appropriate name space to the correct
location or locations in the work area.)

Actualtest.org- The Power of Knowing
Answer:
Explanation: The Chief Information Officer indicates that: “We have to keep the
domain name ittraining.com for our external network. We don’t want to use more
domain names and we want keep our domains separate.”
Therefore, the domain name ittraining.com must be used for the external network as IT
Training Institute will not be registering a new domain name. To keep the domain
separate, a different domain name should be used for the internal network.
Reference:
http://www.microsoft.com/resources/documentation/WindowsServ/2003/all/deploy
guide/en-us/dssbc_logi_lcbx.asp
QUESTION 2
DRAG DROP
You need to design a strategy for the migration of the internal network to Windows
Server 2003. Your solution must meet the business and technical requirements of IT
Training Institute.
What should you do? (To answer, move the appropriate actions from the list of
actions to the answer area and arrange them in the appropriate order. Use only
actions that apply.)

Actualtest.org- The Power of Knowing
Answer:
Explanation: A migration is accomplished by creating a new pristine Active
Directory on a new server. Then, you use a migration tool to copy the domain
information from your old domain to your new one. Here are some of the
advantages of this method:
1. Migration is gradual. You can migrate one department at a time.
2. Accounts are copied rather than moved, so you can return to the old domain if
necessary.
3. You avoid the complexity of taking existing database bugs and moving them into your
new Active Directory.
4. You can re-evaluate your existing domain structure and consolidate or expand your
domains, as you deem necessary.
Reference:
Michael Cross, Jeffery
A. Martin, and Todd
A. Walls: MCSE: Planning, Implementing,
and Maintaining a Windows Server 2003 Active Directory Infrastructure Study Guide &
DVD Training System, Syngress, Chapter 7, pp. 501.
QUESTION 3
You need to design the site topology for IT Training Institute’s internal domain.
You need to ensure that your solution meets the company’s business and technical
requirements.

Actualtest.org- The Power of Knowing
What should you do?
A. Create a site for each physical location and configure the default IP site link to only
allow replication between 9:00 P.M. and 3:00 A.M.
B. Set the replication interval on the default IP site link to 60 Minutes and configure the
default IP site link to only allow replication between 9:00 P.M. and 3:00 A.M.
C. Create a site for each physical location and configure the default IP site link to only
allow replication between 6:00 A.M. and 12:00 A.M.
D. Set the replication interval on the default IP site link to 30 Minutes and configure the
default IP site link to only allow replication between 6:00 A.M. and 12:00 A.M.
Answer: A
Explanation: The DFS object stores the DFS metadata for a domain-based
namespace. The DFS object is created in Active Directory when you create a
domain -based root, and Active Directory replicates the entire DFS object to all
domain controllers in a domain.
Incorrect Answers:
B: DFS is replicated with Active Directory; therefore you cannot set the replication
interval to every 60 minutes.
C: One of the goals in the case study says: “DFS replication must occur after hours.”
Therefore replication should not be allowed to occur up until 12:00 A.M. as this will be
well into the business day.
D: DFS is replicated with Active Directory; therefore you cannot set the replication
interval to every 30 minutes. Furthermore, replication should not be allowed to occur up
until 12:00 A.M. as this will be well into the business day.
Free download:pass4sure Microsoft 70-220
Free download:testking Microsoft 70-220

password:www.pass4sure.org