Designing and Implementing a Server Infrastructure

Code: 70-413

Exam 70-413 - Designing and Implementing a Server Infrastructure

Skills measured

This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam. View video tutorials about thevariety of question typeson Microsoft exams.

Prerequisties:

Microsoft Training 20413 -Designing and Implementing a Server Infrastructure

Please note that the questions may test on, but will not be limited to, the topics described in the bulleted text.

Do you have feedback about the relevance of the skills measured on this exam? Pleasesend Microsoft your comments. All feedback will be reviewed and incorporated as appropriate while still maintaining the validity and reliability of the certification process. Note that Microsoft will not respond directly to your feedback. We appreciate your input in ensuring the quality of the Microsoft Certification program.

If you have concerns about specific questions on this exam, please submit anexam challenge.

As of April 2014, this exam includescontent covering Windows Server 2012 R2.

Plan and deploy a server infrastructure (20–25%)

  • Design and plan an automated server installation strategy
    • Design considerations including images and bare metal/virtual deployment; design a server implementation using Windows Assessment and Deployment Kit (ADK); design a virtual server deployment
    • Plan for deploying servers to Microsoft Azure infrastructure as a service (IaaS); plan for deploying servers to public and private cloud by using AppController and Windows PowerShell; plan for multicast deployment; plan for Windows Deployment Services (WDS)
  • Implement a server deployment infrastructure
    • Configure multi-site topology and transport servers; implement a multi-server topology, including stand-alone and Active Directory–integrated Windows Deployment Services (WDS) servers; deploy servers to Microsoft Azure IaaS; deploy servers to public and private cloud by using AppController and Windows PowerShell
  • Plan and implement server upgrade and migration
    • Plan for role migration; migrate server roles; migrate servers across domains and forests; design a server consolidation strategy; plan for capacity and resource optimization
  • Plan and deploy Virtual Machine Manager services
    • Design Virtual Machine Manager service templates; plan and deploy profiles, operating system profiles, hardware and capability profiles, application profiles, and SQL profiles; plan and manage services including scaling out, updating and servicing services; configure Virtual Machine Manager libraries; plan and deploy services to non-trusted domains and workgroups
  • Plan and implement file and storage services
    • Planning considerations include iSCSI SANs, Fibre Channel SANs, Virtual Fibre Channel, storage spaces, storage pools including tiered storage and data de-duplication; configure the Internet Storage Name server (iSNS); configure Services for Network File System (NFS); plan and implement SMB 3.0 based storage; plan for Windows Offloaded Data Transfer (ODX)

Preparation resources

  • Windows deployment with the Windows ADK
  • Windows Deployment Services overview
  • Install, use, and remove Windows Server migration tools

Design and implement network infrastructure services (20–25%)

  • Design and maintain a Dynamic Host Configuration Protocol (DHCP) solution
    • Design considerations including a highly available DHCP solution including split scope, DHCP failover, and DHCP failover clustering, DHCP interoperability, and DHCPv6; implement DHCP filtering; implement and configure a DHCP management pack; maintain a DHCP database
  • Design a name resolution solution strategy
    • Design considerations including Active Directory integrated zones, DNSSEC, DNS Socket Pool, cache locking, disjoint namespaces, DNS interoperability, migration to application partitions, IPv6, Single-Label DNS Name Resolution, zone hierarchy, and zone delegation
  • Design and manage an IP address management solution
    • Design considerations including IP address management technologies including IPAM, Group Policy based, manual provisioning, and distributed, centralized, hybrid placement, and database storage; configure role-based access control; configure IPAM auditing; migrate IPs; manage and monitor multiple DHCP and DNS servers; configure data collection for IPAM; integrate IPAM with Virtual Machine Manager (VMM)

Preparation resources

  • DHCP design guide
  • Reviewing DNS concepts
  • IP Address Management (IPAM) overview

Design and implement network access services (15–20%)

  • Design a VPN solution
    • Design considerations including certificate deployment, firewall configuration, client/site to site, bandwidth, protocol implications, connectivity to Microsoft Azure IaaS and VPN deployment configurations using Connection Manager Administration Kit (CMAK)
  • Design a DirectAccess solution
    • Design considerations including deployment topology, migration from Forefront UAG, One Time Password (OTP), and use of certificates issued by enterprise Certificate Authority (CA)
  • Design a Web Application Proxy solution
    • Design considerations including planning for applications, authentication and authorization, Workplace Join, devices, multifactor authentication, multifactor access control, single sign-on (SSO), certificates, planning access for internal and external clients
  • Implement a scalable remote access solution
    • Configure site-to-site VPN; configure packet filters; implement packet tracing; implement multi-site Remote Access; configure Remote Access clustered with Network Load Balancing (NLB); implement an advanced DirectAccess solution, configure multiple RADIUS server groups and infrastructure, configure Web Application Proxy for clustering
  • Design and implement network protection solution
    • Design considerations including Network Access Protection (NAP) enforcement methods for DHCP, IPSec, VPN, and 802.1x, capacity, placement of servers, firewall, Network Policy Server (NPS), and remediation network, configure NAP enforcement for IPsec and 802.1x, monitor for compliance

Preparation resources

  • Plan the Remote Access deployment
  • DirectAccess design, deployment, and troubleshooting guides
  • Microsoft Virtual Academy: Multi site and high availability DirectAccess

Design and implement an Active Directory infrastructure (logical) (20–25%)

  • Design a forest and domain infrastructure
    • Design considerations including multi-forest architecture, trusts, functional levels, domain upgrade, domain migration, forest restructure, Microsoft Azure Active Directory and DirSync
  • Implement a forest and domain infrastructure
    • Configure domain rename; configure Kerberos realm trusts; implement a domain upgrade; implement a domain migration; implement a forest restructure; deploy and manage a test forest including synchronization with production forests
  • Design a Group Policy strategy
    • Design considerations including inheritance blocking, enforced policies, loopback processing, security, and WMI filtering, site-linked Group Policy Objects (GPOs), slow-link processing, group strategies, organizational unit (OU) hierarchy, and Advanced Group Policy Management (AGPM), and Group Policy caching
  • Design an Active Directory permission model
    • Design considerations including Active Directory object security and Active Directory quotas; customize tasks to delegate in Delegate of Control Wizard; deploy administrative tools on the client devices; delegate permissions on administrative users (AdminSDHolder); plan for Kerberos delegation

Preparation resources

  • AD DS design guide
  • Domain Rename technical reference
  • Advanced Group Policy management

Design and implement an Active Directory infrastructure (physical) (20–25%)

  • Design an Active Directory sites topology
    • Design considerations including proximity of domain controllers, replication optimization, and site link; monitor and resolve Active Directory replication conflicts
  • Design a domain controller strategy
    • Design considerations including global catalog, operations master roles, Read-Only Domain Controllers (RODCs), partial attribute set, and domain controller cloning, and domain controller placement
  • Design and implement a branch office infrastructure
    • Design considerations including RODC, Universal Group Membership Caching (UGMC), global catalog, DNS, DHCP, and BranchCache; implement confidential attributes; delegate administration; modify filtered attributes set; configure password replication policy; configure hash publication

Preparation resources

  • Planning domain controller placement
  • RODC frequently asked questions
  • Branch office infrastructure solution

Guaranteed to Run

2018-03-07 09:00 to 2018-03-09 17:00
Fort Lauderdale, Florida (Virtual Instructor-Led)
2017-12-11 09:00 to 2017-12-15 17:00
Attend Online
2017-12-04 09:00 to 2017-12-08 17:00
Attend Online
2017-12-04 09:00 to 2017-12-08 17:00
Attend Online
2017-11-27 09:00 to 2017-12-01 17:00
Attend Online
2017-11-27 08:00 to 2017-12-01 17:15
Attend Online

Course Reviews

No reviews found for this course.

Be the first to write a review