Introduction -- Pt. I. Windows Server 2008 Active Directory Overview -- What's New In Active Directory For Windows Server 2008 -- Active Directory Domain Services Components -- Active Directory Domain Services And Domain Name System -- Active Directory Domain Services Replication -- Pt. Ii. Designing And Implementing Windows Server 2008 Active Directory -- Designing The Active Directory Domain Services Structure -- Installing Active Directory Domain Services -- Migrating To Active Directory Domain Services -- Pt. Iii. Administering Windows Server 2008 Active Directory -- Active Directory Domain Services Security -- Delegating The Administration Of Active Directory Domain Services -- Managing Active Directory Objects -- Introduction To Group Policy -- Using Group Policy To Manage User Desktops -- Using Group Policy To Manage Security -- Pt. Iv. Maintaining Windows Server 2008 Active Directory -- Monitoring And Maintaining Active Directory -- Active Directory Disaster Recovery -- Pt. V. Identity And Access Management With Active Directory -- Active Directory Lightweight Directory Services -- Active Directory Certificate Services -- Active Directory Rights Management Services -- Active Directory Federation Services. Stan Reimer ... [et Al.]. Includes Index. (NOTE: Each chapter concludes with a Summary.)Introduction. I. PREPARING FOR PROGRAMMATIC ADMINISTRATION. 1. Overview of the Active Directory Service Interfaces (ADSI). ADSI Abstracts Namespace Manipulation. Practical Usage of ADSI. Interface Support. Applied Theory: Using ADSI to Migrate from Windows NT 4.0 to Windows. 2000.2. Making the Transition: Multi-Tier Development for System Administrators. Why Visual Basic? Establishing the Development Environment. Configuring the Visual Basic Environment. Testing Code Segments in a Non-Critical Environment. Using ADSI and Visual Basic Interactively. Developing a COM Server Using Visual Basic and ADSI.II. EXPLORING THE ADSI SERVICE PROVIDERS: WINDOWS NT. 3. Container Enumeration Methods and Programmatic Domain Account. Policy Manipulation Enumerating Domains in the Windows NT Namespace. Managing Windows NT Domain Properties. Enumerating Objects Within a Domain or Computer. Creating and Deleting Objects Using IADsContainer. Creating the NTContainerManagement Class Module.4. Programmatic User Account Manipulation. User Object Binding Syntax. Managing User Account Properties. Manipulating User Environment Profiles. Manipulating User Login Hours. Manipulating a User Login Workstation. Manipulating Account Properties. Manipulating the Parameters Property. ADSI Exposed Properties that Cannot Be Manipulated Using Standard GUI Tools. Creating the NTUserManagement Class Module.5. Programmatic Group Manipulation. Windows NT Security Group Administration. Using Groups to Manage File System Security.6. Programmatic Computer and Service Manipulation. Querying Computer Properties: The IADsComputer Interface. Querying and Manipulating Computer Services: The IADsService Interface. Querying and Manipulating Service Operations: The IADsServiceOperations Interface. Creating the NTComputerManagement Class Module.7. Programmatic File and Print Resource Management. Managing File Resources. Managing File Sessions. Managing Open Resources. Managing Print Resources. Creating the NTResourceManagement Class Module.III. EXPLORING THE ADSI SERVICE PROVIDERS: IIS. 8. Programmatic Management of the IIS Metabase. IIS Metabase Structure. The IIsComputer Object. IIS Site Logging. Programmatic Site Management. Programmatic Site Operations. Creating the IIsSiteManagement Class Module.9. Programmatic Management of Web Site Properties. Virtual Site Binding. Virtual Directory Binding. Property Inheritance. Programmatically Administering the Web Site Property Sheet. Programmatically Administering the Web Operators Property Sheet. Programmatically Administering the Web Performance Property Sheet. Programmatically Administering the Home Directory Property Sheet. Programmatically Administering the Documents Property Sheet. Programmatically Administering the Directory Security Property Sheet. Programmatically Administering the HTTP Headers Property Sheet. Creating the IIsWebManagement Class Module.10. Programmatic Management of FTP Site Properties. Determining Property Inheritance. Programmatically Administering the FTP Site Property Sheet. Programmatically Administering the Security Accounts Property Sheet. Programmatically Administering the Messages Property Sheet. Programmatically Administering the Home Directory Property Sheet. Programmatically Administering the Directory Security Property Sheet. Creating the IIsFTPManagement Class Module.IV. EXPLORING THE ADSI SERVICE PROVIDERS: LDAP. 11. Programmatic Management of LDAP Infrastructures. A Brief Overview of LDAP Technology and Terminology. Available LDAP APIs. Commercial Products Supporting LDAP. Applied Theory: Installing the Netscape Directory Server. Manipulating an LDAP Directory Using ADSI. Using ADO to Search an LDAP Directory Using Visual Basic. Managing Microsoft Exchange Mailboxes and Distribution Lists Using. ADSI's LDAP Provider. Creating the LDAPObjectManagement Class Module. Creating the ExchangeObjectMgt Class Module.12. Programmatic Management of the Windows 2000 Active Directory. Active Directory Terminology Primer. Binding to Objects in the Active Directory. Manipulating Objects in the Active Directory. Creating Objects in the Active Directory. Removing Objects from the Active Directory Using Visual Basic. Managing Security for Objects in the Active Directory. Creating the ADObjectManagement Class Module.V. APPENDIXES. Appendix A. VBScript Code Reference. Chapter 3: Container Management Code. Chapter 4: User Management Code. Chapter 5: Group Management Code. Chapter 6: Computer and Service Management Code. Chapter 7: File and Print Service Management Code. Chapter 8: IIS Site Operations Code. Chapter 9: IIS Web Site Operations Code. Chapter 10: IIS FTP Site Operations Code. Chapter 11: LDAP Infrastructure Management Code. Chapter 12: Windows 2000 Management Code.Appendix B. ADSI 2.5 Programmer's Reference. AccessControlEntry Interface. AccessControlList. IADs Interface. IADsCollection. IADsComputer. IADsContainer. IADsDeleteOps Interface. IADsDomain. IADsFileService. IADsFileServiceOperations. IADsFileShare. IADsGroup. IADsLocality. IADsMembers. IADsO Interface. IADsOU Interface. IADsOpenDSObject. IADsPrintJob. IADsPrintJobOperations. IADsPrintQueue. IADsPrintQueueOperations. IADsResource. IADsService. IADsServiceOperations. IADsSession. IADsUser. Custom WinNT Properties. WinNTSystemInfo.Appendix C. Further Reading. Active Directory Design and Administration. Active Directory Service Interfaces (ADSI). Active Server Page (ASP) Scripting. ActiveX Data Objects. Lightweight Directory Access Protocol (LDAP). Visual Basic. Get the definitive, in-depth resource for designing, deploying, and maintaining Windows Server 2008 Active Directory in an enterprise environment. Written by experts on directory services and the Active Directory team at Microsoft, this technical resource is packed with concrete, real-world design and implementation guidance. Youll get in-depth guidance on installation, Active Directory components, replication, security, administration, and more. You also get answers to common questions from network architects, engineers, and administrators about Windows Server 2008 Active Directoryplus scripts, utilities, job aids, and a fully searchable eBook on CD. A Note Regarding the CD or DVD The print version of this book ships with a CD or DVD. For those customers purchasing one of the digital formats in which this book is available, we are pleased to offer the CD/DVD content as a free download via O'Reilly Media's Digital Distribution services. To download this content, please visit O'Reilly's web site, search for the title of this book to find its catalog page, and click on the link below the cover image (Examples, Companion Content, or Practice Files). Note that while we provide as much of the media content as we are able via free download, we are sometimes limited by licensing restrictions. Please direct any questions or concerns to booktech@oreilly.com. Designed to help enterprise administrators develop real-world, job-role-specific skills—this Training Guide focuses on deploying and managing core infrastructure services in Windows Server 2012. Build hands-on expertise through a series of lessons, exercises, and suggested practices—and help maximize your performance on the job. This Microsoft Training Guide: Provides in-depth, hands-on training you take at your own pace Focuses on job-role-specific expertise for deploying and managing Windows Server 2012 core services Creates a foundation of skills which, along with on-the-job experience, can be measured by Microsoft Certification exams such as 70-410 Coverage includes: Deploying Servers and Domain Controllers Remote Management Administering Active Directory Network Administration Using Group Policy Provisioning and Managing Storage Deploying Hyper-V Hosts Deploying and Managing Virtualized Workloads Deploying File Servers Managing Print Services Scripting provides system administrators an optimal means of automating tedious and time-consuming application, configuration, and management tasks. In addition you can take advantage of new capabilities offered by VBScript, ADSI and Windows Scripting Host. ADSI is particularly important in light of the upcoming release of Windows 2000, as it provides a means of accessing functionality in the Active Directory Microsoft's highly-publicized directory service. ADSI allows for cross-functionality with directory services in other computing platforms, which is critical since 90% of all enterprise networks comprise multiple platforms. This book will provide system administrators with solutions to automate and simplify the configuration and management of their networks. The author will present expert tips, code development and proven in real-world enterprise environments. Get the definitive, in-depth resource for designing, deploying, and maintaining Windows Server 2008 Active Directory in an enterprise environment. Written by experts on directory services and the Active Directory team at Microsoft, this technical resource is packed with concrete, real-world design and implementation guidance. You'll get in-depth guidance on installation, Active Directory components, replication, security, administration, and more. You also get answers to common questions from network architects, engineers, and administrators about Windows Server 2008 Active Directory—plus scripts, utilities, job aids, and a fully searchable eBook on CD. For customers who purchase an ebook version of this title, instructions for downloading the CD files can be found in the ebook.