MCSE in a Nutshell: The Windows 2000 Exams


Microsoft's MCSE (Microsoft Certified Systems Engineer) candidates in the Windows 2000 track are required to pass five core exams and two elective exams. These exams are designed to provide a valid and reliable measure of competency for experienced IT professionals working in the typically complex computing environment of medium to large organizations.MCSE in a Nutshell: The Windows 2000 Exams is a comprehensive study guide and detailed quick reference that covers the following ...

See more details below
$23.51 price
(Save 21%)$29.95 List Price
Other sellers (Paperback)
  • All (15) from $1.99   
  • New (8) from $2.21   
  • Used (7) from $1.99   
Sending request ...


Microsoft's MCSE (Microsoft Certified Systems Engineer) candidates in the Windows 2000 track are required to pass five core exams and two elective exams. These exams are designed to provide a valid and reliable measure of competency for experienced IT professionals working in the typically complex computing environment of medium to large organizations.MCSE in a Nutshell: The Windows 2000 Exams is a comprehensive study guide and detailed quick reference that covers the following exams:

  • Exam 70-210: Installing, Configuring, and Administering Microsoft Windows 2000 Professional
  • Exam 70-215: Installing, Configuring, and Administering Microsoft Windows 2000 Server
  • Exam 70-216: Implementing and Administering a Microsoft Windows 2000 Network Infrastructure
  • Exam 70-217: Implementing and Administering a Microsoft Windows 2000 Directory Services Infrastructure
  • Exam 70-219: Designing a Microsoft. Windows. 2000 Directory Services Infrastructure
  • Exam 70-221: Designing a Microsoft. Windows. 2000 Network Infrastructure
  • Exam 70-220: Designing Security for a Microsoft. Windows. 2000 Network
Each chapter covers one exam. It includes:
  • A summary of the key areas covered by the exam
  • A description of the format, difficulty of each exam and tips for passing it
  • Definitions of key terms
Any administrator who is serious about acquiring MCSE certification will find this book indispensable. MCSE in a Nutshell: The Windows 2000 Exams is the best value on the market, combining a low price and fast pace that will appeal to sophisticated users who need a bridge between real-world experience and the MCSE Exam requirements.

The responsibilities of the Microsoft Certified Systems Engineer include installing, configuring, and troubleshooting network systems. "MCSE in a Nutshell: The Windows 2000 Exams" bridges the gap between real-world experience and the MCSE Exam requirements; readers won't just learn enough to pass the exams--they'll actually learn the technologies.

Read More Show Less

Product Details

  • ISBN-13: 9780596000301
  • Publisher: O'Reilly Media, Incorporated
  • Publication date: 2/28/2001
  • Series: In a Nutshell (O'Reilly) Series
  • Edition number: 1
  • Pages: 480
  • Product dimensions: 6.01 (w) x 8.98 (h) x 0.97 (d)

Meet the Author

Michael Moncur is a freelance author and consultant in Salt Lake City, Utah. He is the owner of Starling Technologies, a small company specializing in network consulting and Web content development. Michael is certified as both a CNE and an MCSE, and is the author of several books on NetWare, NT, and the CNE and MCSE programs, including NT Network Security and CNE Study Guide for IntranetWare (Sybex/Network Press) and the upcoming MCSE: The Electives in a Nutshell (O'Reilly).

Paul Murphy is a freelance author and training manager for Dreamscape OnLine, a Syracuse, NY, Internet service provider. He has been teaching classes on the Internet, HTML, operating systems, and Microsoft Office since 1996. Certified as an MCSE, he has worked as a technical reviewer for O'Reilly's MCSE series.

Read More Show Less

Read an Excerpt

Chapter 2: Study Guide

This chapter includes the following sections, which address various topics covered on the Implementing and Administering a Microsoft Windows 2000 Directory Services Infrastructure MCSE exam:

Introduction to Active Directory
Introduces the vocabulary and concepts needed to understand the Windows 2000 Active Directory architecture.
Installing Active Directory
Discusses the steps necessary to plan for and install Active Directory. It also describes how to verify that the installation was successfully completed.
Configuring Active Directory
Describes how to set up the Organizational Unit (OU) structure and discusses the creation and management of Active Directory components.
Active Directory Objects
Describes the building blocks of Active Directory objects. Discusses how to create, manage, and move objects through the use of Group Policies, administrative templates, and software policies.
DNS for Active Directory
Describes the creation and integration of DNS zones. Includes dynamic updates, DNS monitoring, and replication.
Directory Maintenance and Replication
Describes both intersite and intrasite replication.
Remote Installation Service (RIS)
Describes the steps necessary to automatically deploy Windows 2000, including disk images, security, and troubleshooting Remote Installation Service.
Active Directory Security
Discusses issues related to Directory Services infrastructure and Group Policy security. Describes security templates, audit policies, and security events.
Active Directory Maintenance
Describes techniques for managing accounts and backing up and restoring Active Directory. Discusses how to optimize the performance of both Active Directory and the domain controllers that support it.
Troubleshooting Active Directory
Discusses how to troubleshoot problems with DNS, Group Policies, Active Directory components, and software deployment. Describes how to recover from a system failure.

Introduction to Active Directory

Active Directory replaces the Windows NT domain model. It is designed to simplify access to network resources by providing network administrators with the ability to add, modify, and remove both users and resources from a single, hierarchical database. There are many new concepts to learn, but if you keep in mind that its two main functions are to keep track of all the available network resources and to provide access only to authorized users, you'll have no trouble getting up to speed with Active Directory.

Active Directory is stored on Windows 2000 domain controllers. Only Windows 2000 Servers can be Windows 2000 domain controllers. One major change between Windows NT and Windows 2000 is that there are no primary or backup domain controllers on a Windows 2000 network. All Windows 2000 domain controllers are equal and replicate the Active Directory database using a virtual ring topology.


The following terms relating to Microsoft Active Directory will be useful in understanding how Active Directory works. A solid understanding of the vocabulary will help make an abstract concept like Active Directory a lot easier to grasp:

A network of computers and related hardware that share a user database. This user database is replicated among all the domain controllers. The main benefits of a domain are centralized administration of network resources and a single user logon to access those resources, regardless of where the resources are physically located in the domain.
Organizational Unit (OU)
A tool for dividing domain resources into groups that match the actual structure of your business. For example, the Accounting Organizational Unit can contain the user accounts of employees in the accounting department, the folders that store financial data, the printers used for invoices, and the billing software. Permissions can then be granted to the OU as a whole.
A collection of Windows 2000 domains with two-way trust relationships. These domains share a common root domain, such as Subdomains of the root domain are named in DNS dotted format, to the left of the root domain. Two examples of this naming scheme would be and
A collection of two or more trees, each with its own root domain name. The trees in the forest automatically have transitive trust relationships. This means that if tree A trusts tree B and tree B trusts tree C, tree A automatically trusts tree C and vice-versa, without any separate trust relationships between A and C.
A section of the network that has a fast enough TCP/IP connection to allow for efficient replication of files. Microsoft recommends a minimum of 512 Kbps for efficient replication. Because the main requirement is speed, a single site can span multiple domains or a domain can have multiple sites, depending on the network bandwidth available.
Any individual component on the network, including files, folders, scanners, printers, tape backup devices, and even user accounts.
An object that contains other objects is called a container. A folder that contains files would be a container because the folder is an object and its files are also objects.
An object is described by its attributes. A file's attributes would include its name, size, location, and permissions.
A way to describe objects within the Active Directory schema. A class is just the list of attributes that describe an object. Basically, the file object is the physical file itself. The file class is the logical definition of the file's properties, such as name, size, and location.
A list of what types of objects can be managed in the Active Directory database. The schema is made up of classes (definitions of objects) and attributes (containers for the descriptions of objects). The schema can theoretically be modified by a qualified programmer to customize and extend Active Directory to meet their individual needs.

Installing Active Directory

After you have at least one Windows 2000 Server up and running, you can get started with Active Directory. You'll need to do a bit of planning first. The best way to get started is to take an inventory of all the hardware and map out the physical network connections.

If all the network administration tasks are handled from one location, this process can be relatively simple. If you are configuring an Active Directory that spans multiple physical locations across WAN links, it will get quite complex.

When planning a network, you should always take a methodical approach and document everything you've done. There will come a day when another administrator will have to figure out what you've done after you've gone on to bigger and better things. Just remember . . . some day that other administrator will be you.


Every Windows 2000 domain and its Active Directory can consist of millions of objects. Instead of adding new domains for each location, you should consider breaking down a single large domain into Organizational Units (OU), which are covered in detail later in this chapter.

There are a few cases where multiple domains would be a better solution. If two locations have different Internet domain names, they'll probably want to keep their identities separate on the private portions of their networks, too.

If you have slow WAN connections between physical locations or very strict security requirements in a certain location, you probably want to use separate domains to reduce replication and authentication traffic across those links. Otherwise, keep it as simple as possible by using one domain.

Microsoft recommends that you register at least one domain name for your network from an official naming organization, like Network Solutions. You can choose to register a single domain name for use inside and outside a firewall, or you can register two separate domain names. There are advantages and disadvantages to both methods.

If you choose to use the same domain for the private portion of your network as you do for your Internet presence, you have to be very careful not to allow access to your private data from the public Internet. With the sheer number of security holes in all network operating systems, including Windows 2000, this can be a serious issue. Because of the additional security concerns, it is generally more complex to successfully manage a domain using this naming scheme.

If you choose to use a different domain name inside your network than you use for your Internet presence, it is much easier to figure out whether a resource is public or private. This makes the security a bit easier to manage.


If you've just finished installing Windows 2000 Server on the first computer in the domain and the Configure Your Server window is displayed, choose the Active Directory Installation Wizard. Otherwise, you can open the Configure Your Server window by choosing it from the Start Programs Administrative Tools menu.

When you begin the installation with the Active Directory Installation Wizard, you'll have the choice of creating a new domain controller for a new domain or adding a domain controller to an existing domain.

If you choose to create a new domain controller, you'll have the choice of either starting a new tree or joining an existing tree as a subdomain. Active Directory requires a DNS server to function properly. The Active Directory Installation Wizard allows you to make the current computer the DNS server during the installation process. Following is a description of the steps involved in running the wizard:

  1. Start the Active Directory Installation Wizard from the Configure Your Server dialog box. During the install, you'll have to click the Next button to move between screens.
  2. You'll see the Domain Controller Type screen. Here's where you'll have to choose to either create a domain controller for a new domain or add a domain controller to an existing domain. I'll assume you're starting from scratch and want to create a new domain.
  3. You'll see the Create Tree or Child Domain screen. Create a new tree.
  4. You'll see the Create or Join Forest screen. Create a new forest.
  5. You'll see the New Domain Name screen. Type your registered domain name in the Full DNS Name for New Domain box.
  6. For some reason, Microsoft didn't kill off NetBIOS completely, so the next screen you'll see will show you the shortened DNS domain name as a Domain NetBIOS name.
  7. You'll see the Database and Log Locations screen. You should see the path WINNT\NTDS.
  8. You'll see the Shared System Volume screen. You should see the path WINNT\SYSVOL.
  9. You'll get a warning screen about the need for a DNS server. Click OK, and the Configure DNS Wizard will start.
  10. Choose Install and Configure DNS on This Computer.
  11. You'll see the Permissions screen. Choose Permissions Compatible Only with Windows 2000 Servers.
  12. You'll see the Directory Services Restore Mode Administrative Password screen. Type in the password that will be required if you ever have to restore Active Directory.
  13. You'll see a report of all the choices you've made so far.
  14. After you've accepted the configuration, the wizard will actually start the configuration process. You'll see a progress bar, and it could take a few minutes to finish.
  15. You'll see the Completing the Active Directory Installation Wizard screen. Click Finish, then click Restart. When the computer reboots, you should be all set.
Verifying the Active Directory installation

There are a couple of quick tests to be sure that Active Directory and DNS are working. Look for the new domain you created in My Network Places. If you see your domain name, you should be okay. You can also look for your domain using the Active Directory Users and Computers MMC snap-in...

Read More Show Less

Table of Contents

  • Preface
  • Chapter 1: About the MCSE Exams
  • Windows 2000 Professional
    • Chapter 2: Exam Overview
    • Chapter 3: Study Guide
    • Chapter 4: Suggested Exercises
    • Chapter 5: Practice Tests
    • Chapter 6: Highlighter’s Index

  • Windows 2000 Server
    • Chapter 7: Exam Overview
    • Chapter 8: Study Guide
    • Chapter 9: Suggested Exercises
    • Chapter 10: Practice Tests
    • Chapter 11: Highlighter’s Index

  • Active Directory
    • Chapter 12: Exam Overview
    • Chapter 13: Study Guide
    • Chapter 14: Suggested Exercises
    • Chapter 15: Practice Tests
    • Chapter 16: Highlighter’s Index

  • Network Infrastructure
    • Chapter 17: Exam Overview
    • Chapter 18: Study Guide
    • Chapter 19: Suggested Exercises
    • Chapter 20: Practice Tests
    • Chapter 21: Highlighter’s Index

  • Designing Active Directory
    • Chapter 22: Exam Overview
    • Chapter 23: Study Guide
    • Chapter 24: Suggested Exercises
    • Chapter 25: Practice Tests
    • Chapter 26: Highlighter’s Index

  • Designing Network Infrastructure
    • Chapter 27: Exam Overview
    • Chapter 28: Study Guide
    • Chapter 29: Suggested Exercises
    • Chapter 30: Practice Tests
    • Chapter 31: Highlighter’s Index

  • Designing Security
    • Chapter 32: Exam Overview
    • Chapter 33: Study Guide
    • Chapter 34: Suggested Exercises
    • Chapter 35: Practice Tests
    • Chapter 36: Highlighter’s Index

  • Colophon

Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star


4 Star


3 Star


2 Star


1 Star


Your Rating:

Your Name: Create a Pen Name or

Barnes & Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation


  • - By submitting a review, you grant to Barnes & and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Terms of Use.
  • - Barnes & reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)