Preparation Guide for Exam
70-291
Implementing, Managing, and Maintaining a Windows Server 2003 Network
Infrastructure
Audience profile
The Microsoft Certified Systems Administrator (MCSA) on Windows Server 2003
credential is intended for IT professionals who work in the typically complex
computing environment of medium to large companies. An MCSA candidate should
have 6 to 12 months of experience administering client and network operating
systems in environments that have the following characteristics:
250 to 5,000 or more users
Three or more physical locations
Three or more domain controllers
Network services and resources such as messaging, database, file and print,
proxy server, firewall, Internet, intranet, remote access, and client computer
management
Connectivity requirements such as connecting branch offices and individual users
in remote locations to the corporate network and connecting corporate networks
to the Internet
Credit toward certification
When you pass the Implementing, Managing, and Maintaining a Windows Server
2003 Network Infrastructure exam, you achieve Microsoft Certified Professional (MCP)
status. You also earn credit toward the following certifications:
Core credit toward Microsoft Certified Systems Administrator (MCSA)
on Windows Server 2003 certification
Core credit toward Microsoft Certified Systems Engineer (MCSE)
on Windows Server 2003 certification
Core credit toward Microsoft Certified Database Administrator (MCDBA)
on Microsoft SQL Server 2000 certification
Preparation tools and resources
In addition to your hands-on experience working with the product, we recommend
that you use the following tools and training to help you prepare for this exam.
Classroom training for this exam
Course 2276: Implementing a Windows Server 2003 Network Infrastructure: Network
Hosts
Course 2277: Implementing, Managing, and Maintaining a Windows Server 2003
Network Infrastructure: Network Services
Microsoft Press self-paced training products
MCSA/MCSE Self-Paced Training Kit (Exam 70-291): Implementing, Managing and
Maintaining a Microsoft Windows Server 2003 Network Infrastructure
MCSE Self-Paced Training Kit: Microsoft Windows Server 2003 Core Requirements,
Exams 70-290, 70-291, 70-293, 70-294
TechNet: Designed for IT professionals, this site includes how-to instructions,
best practices, downloads, technical chats, and much more.
MSDN: The Microsoft Developer Network (MSDN) is a reference for developers. It
features code samples, technical articles, newsgroups, chats, and more.
Training and certification newsgroups: A newsgroup exists for every Microsoft
certification. By participating in the ongoing dialogue, you take advantage of a
unique opportunity to exchange ideas with and ask questions of others, including
more than 750 Microsoft Most Valuable Professionals (MVPs) worldwide.
Skills being measured
This certification exam measures your ability to implement, manage, and
maintain a Windows Server 2003 network infrastructure. Before taking the exam,
you should be proficient in the job skills listed in the following matrix. The
matrix shows which Official Microsoft Learning Products may help you reach
competency in the skills being tested in the exam.
KEY: The course provides a general introductory overview of this task. You will
need to supplement the course with additional work. = The course provides a
general introductory overview of this task. You will need to supplement the
course with additional work. The course includes some material to prepare you
for this task. You will need to supplement the course with additional work. =
The course includes some material to prepare you for this task. You will need to
supplement the course with additional work. The course includes material to
prepare you for this task. = The course includes material to prepare you for
this task.
Implementing, Managing, and Maintaining IP Addressing
Configure TCP/IP addressing on a server computer.
Manage DHCP.
Manage DHCP clients and leases.
Manage DHCP Relay Agent.
Manage DHCP databases.
Manage DHCP scope options.
Manage reservations and reserved clients.
Troubleshoot TCP/IP addressing.
Diagnose and resolve issues related to Automatic Private IP Addressing (APIPA).
Diagnose and resolve issues related to incorrect TCP/IP configuration.
Troubleshoot DHCP.
Diagnose and resolve issues related to DHCP authorization.
Verify DHCP reservation configuration.
Examine the system event log and DHCP server audit log files to find related
events.
Diagnose and resolve issues related to configuration of DHCP server and scope
options.
Verify that the DHCP Relay Agent is working correctly.
Verify database integrity.
Implementing, Managing, and Maintaining Name Resolution
Install and configure the DNS Server service.
Configure DNS server options.
Configure DNS zone options.
Configure DNS forwarding.
Manage DNS.
Manage DNS zone settings.
Manage DNS record settings.
Manage DNS server options.
Monitor DNS. Tools might include System Monitor, Event Viewer, Replication
Monitor, and DNS debug logs.
Implementing, Managing, and Maintaining Network Security
Implement secure network administration procedures.
Implement security baseline settings and audit security settings by using
security templates.
Implement the principle of least privilege.
Install and configure software update infrastructure.
Install and configure software update services.
Install and configure automatic client update settings.
Configure software updates on earlier operating systems.
Monitor network protocol security. Tools might include the IP Security Monitor
Microsoft Management Console (MMC) snap-in and Kerberos support tools.
Troubleshoot network protocol security. Tools might include the IP Security
Monitor MMC snap-in, Event Viewer, and Network Monitor.
Implementing, Managing, and Maintaining Routing and Remote Access
Configure Routing and Remote Access user authentication.
Configure remote access authentication protocols.
Configure Internet Authentication Service (IAS) to provide authentication for
Routing and Remote Access clients.
Configure Routing and Remote Access policies to permit or deny access.
Manage remote access.
Manage packet filters.
Manage Routing and Remote Access routing interfaces.
Manage devices and ports.
Manage routing protocols.
Manage Routing and Remote Access clients.
Manage TCP/IP routing.
Manage routing protocols.
Manage routing tables.
Manage routing ports.
Implement secure access between private networks.
Troubleshoot user access to remote access services.
Diagnose and resolve issues related to remote access VPNs.
Diagnose and resolve issues related to establishing a remote access connection.
Diagnose and resolve user access to resources beyond the remote access server.
Troubleshoot Routing and Remote Access routing.
Troubleshoot demand-dial routing.
Troubleshoot router-to-router VPNs.
Maintaining a Network Infrastructure
Monitor network traffic. Tools might include Network Monitor and System Monitor.
Troubleshoot connectivity to the Internet.
Troubleshoot server services.
Diagnose and resolve issues related to service dependency.
Use service recovery options to diagnose and resolve service-related issues.