Date post: | 17-Jan-2018 |
Category: |
Documents |
Upload: | myra-marshall |
View: | 222 times |
Download: | 0 times |
Module 10: Identity and Access Services in Windows Server 2008 Active Directory
Overview
Install and configure Active Directory Federation ServicesInstall and configure Active Directory Lightweight Directory ServicesInstall and configure Active Directory Rights Management Services
Lesson 1: Active Directory Federation Services
Describe AD FS operationDescribe AD FS installation
AD FS Overview
Corporate Network Client
Account Federation Server
Active Directory
Resource Federation Server
ADFS Enabled Web Server
Active Directory
Internal Client
Corporate Network
Perimeter Network
AD FS Installation Considerations
Review the requirements for deploying ADFS in your organization.Install one or more federation serversInstall one or more ADFS-enabled Web servers using the appropriate ADFS Web AgentInstall either an Active Directory account store or an Active Directory Lightweight Directory Services account storeIncoming claims must be associated with organization group claims or custom claims for SSOInstall either a claims-aware application or a Windows NT token-based application, or both.
Lesson 2: Active Directory Lightweight Directory Services
Describe previous Windows directory services technologiesDescribe AD LDSList benefits of using AD LDSExplain AD LDS usage scenarios
New Technology
Active Directory Lightweight Directory Services
Active Directory Application Mode
AD LDS Overview
Active Directory Lightweight Directory Services
AD DS
Benefits of AD LDS
Functional Benefits Operational Benefits
AD LDS uses same Directory Service Technology as AD DS.
Increased scalability.
Separate schema.
X.500-style naming contexts.
Secure.
Backwards compatible.
Easy to deploy.
Doesn’t affect AD DS.
Doesn’t require restart.
Same administrative model as AD DS.
Increased reliability.
AD LDS Usage Scenarios
Application-specific directories that use customized schemas
Directory-enabled application development that are separate from the enterprise’s domain structure
Management of external client computer’s access to network resources
Enabling of earlier LDAP client computers in a heterogeneous environment to authenticate against AD DS
Lesson 3: Active Directory Rights Management Services
Explain how AD RMS worksDescribe AD RMS configuration tasks
AD RMS Overview
1
2
1
2
Configuring Active Directory Rights Management Services
Install AD RMS
Configure SSL
Register a Service Connection Point
Configure AD RMS Client and Client Service Discovery