Wednesday, August 13, 2008

Microsoft Exam 70-297


Microsoft Exam 70-297:Designing a Windows Server 2003 Active Directory and Network Infrastructure

As title suggest Microsoft exam 70-297 based on Active Directory & network infrastructure of win server 2003. Study includes learning from creating logical design for active directory & network services infrastructure to plan physical deign for active directory & network infrastructure.


  • Credits for this certification:

When you pass Microsoft exam 70-297 you became Microsoft Certified Professional (MCP)


Microsoft exam 70-297 is also one of the exams which require achieving following group certifications:

Certificate MCSE on Windows Server 2003 certification... = core exam


  • Program of study for Microsoft exam 70-297

Microsoft exam 70-297 is regarding to planning... n planning what active directory.. n network infrastructure...

So you must aware of all terms about active directory.. Like OUs Policies etc...

& about network infrastructure... like.. start from DNS DHCP... to IP Addressing, TCP/IP etc...


  • Creating the Conceptual Design by Gathering and Analyzing Business and Technical Requirements

Hardware and software requirements

Interoperability requirements

Current level of service within an existing technical environment

Current network administration model

Network requirements


Current DNS infrastructure

Analyze the current namespace


Existing domain model

Number and location of domain controllers on the network

Configuration details of all servers on the network. Server types might include primary domain controllers, backup domain controllers, file servers, print servers, and Web servers.


Analyze current security policies, standards, and procedures

Active Directory on the current security infrastructure

Existing trust relationships


Design the envisioned administration model

Create the conceptual design of the Active Directory forest structure

Create the conceptual design of the Active Directory domain structure

Design the Active Directory replication strategy

Create the conceptual design of the organizational unit (OU) structure


Create the conceptual design of the DNS infrastructure

Create the conceptual design of the WINS infrastructure

Create the conceptual design of the DHCP infrastructure

Create the conceptual design of the remote access infrastructure


Constraints in the current network infrastructure

Interpret current baseline performance requirements for each major subsystem.



  • Creating the Logical Design for an Active Directory Infrastructure

Identify the Group Policy requirements for the OU structure

Design an OU structure for the purpose of delegating authority


Design a security group strategy

Define the scope of a security group to meet requirements

Define resource access requirements

Define administrative access requirements

Define user roles


Common authentication requirements

Select authentication mechanisms

Optimize authentication by using shortcut trust relationships


Specify account policy requirements

Specify account requirements for users

Computers, administrators, and services


Design an Active Directory naming strategy

Internet domain name registration requirements

Use of hierarchical namespace within Active Directory

NetBIOS naming requirements


Design migration paths to Active Directory

Define whether the migration will include an in-place upgrade, domain restructuring, or migration to a new Active Directory environment


Strategy for Group Policy implementation

Administration of Group Policy objects (GPOs)

Deployment strategy of GPOs

Strategy for configuring the user environment with Group Policy

Strategy for configuring the computer environment with Group Policy


Design sites

Site links


  • Creating the Logical Design for a Network Services Infrastructure

DNS name resolution strategy

Create the namespace design

DNS interoperability with Active Directory, WINS, and DHCP

Zone requirements

DNS security

A DNS strategy for interoperability with UNIX Berkeley Internet Name Domain (BIND) to support Active Directory


Design a NetBIOS name resolution strategy

Design a WINS replication strategy


Security for remote access users

Security host requirements

Authentication and accounting provider

Remote access policies

Specify logging and auditing settings


DNS service implementation

Strategy for DNS zone storage

Use of DNS server options

Registration requirements of specific DNS records


Design a remote access strategy

Specify the remote access method

Specify the authentication method for remote access


Design an IP address assignment strategy

Specify DHCP integration with DNS infrastructure

Specify DHCP interoperability with client types


  • Creating the Physical Design for an Active Directory and Network Infrastructure

DNS service placement

An Active Directory implementation plan

Placement of domain controllers and global catalog servers

Placement of flexible operations master roles

Domain controller creation process


Specify the server specifications to meet system requirements

Internet connectivity for a company


Network and routing topology for a company

TCP/IP addressing scheme through the use of IP subnets

The placement of routers

IP address assignment by using DHCP

Design a perimeter network


Design the remote access infrastructure

Plan capacity

Ascertain network settings required to access resources

Design for availability, redundancy, and survivability


Before taking Microsoft exam 70-297 ensure that you have gone through all topics mention above.


No comments: