Table Of Content371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page i
Register for Free Membership to
s o l u t i o n s @ s y n g r e s s . c o m
Over the last few years, Syngress has published many best-selling and
critically acclaimed books, including Tom Shinder’s Configuring ISA
Server 2004, Brian Caswell and Jay Beale’s Snort 2.1 Intrusion
Detection, and Angela Orebaugh and Gilbert Ramirez’s Ethereal
Packet Sniffing. One of the reasons for the success of these books has
been our unique [email protected] program. Through this
site, we’ve been able to provide readers a real time extension to the
printed book.
As a registered owner of this book, you will qualify for free access to
our members-only [email protected] program. Once you have
registered, you will enjoy several benefits, including:
■ Four downloadable e-booklets on topics related to the book.
Each booklet is approximately 20-30 pages in Adobe PDF
format. They have been selected by our editors from other
best-selling Syngress books as providing topic coverage that
is directly related to the coverage in this book.
■ A comprehensive FAQ page that consolidates all of the key
points of this book into an easy-to-search web page, pro-
viding you with the concise, easy-to-access data you need to
perform your job.
■ A “From the Author” Forum that allows the authors of this
book to post timely updates and links to related sites, or
additional topic coverage that may have been requested by
readers.
Just visit us at www.syngress.com/solutions and follow the simple
registration process. You will need to have this book with you when
you register.
Thank you for giving us the opportunity to serve your needs. And be
sure to let us know if there is anything else we can do to make your
job easier.
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page iii
How to Cheat at
Designing a Windows Server 2003
Active
Directory
Infrastructure
Melissa M. Meyer
Michael Cross
Hal Kurz
Brian Barber
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page iv
Syngress Publishing,Inc.,the author(s),and any person or firm involved in the writing,editing,or produc-
tion (collectively “Makers”) of this book (“the Work”) do not guarantee or warrant the results to be
obtained from the Work.
There is no guarantee of any kind,expressed or implied,regarding the Work or its contents.The Work is
sold AS IS and WITHOUT WARRANTY.You may have other legal rights,which vary from state to
state.
In no event will Makers be liable to you for damages,including any loss of profits,lost savings,or other
incidental or consequential damages arising out from the Work or its contents.Because some states do not
allow the exclusion or limitation of liability for consequential or incidental damages,the above limitation
may not apply to you.
You should always use reasonable care,including backup and other appropriate precautions,when working
with computers,networks,data,and files.
Syngress Media®,Syngress®,“Career Advancement Through Skill Enhancement®,”“Ask the Author
UPDATE®,”and “Hack Proofing®,”are registered trademarks of Syngress Publishing,Inc.“Syngress:The
Definition of a Serious Security Library”™,“Mission Critical™,”and “The Only Way to Stop a Hacker is
to Think Like One™”are trademarks of Syngress Publishing,Inc.Brands and product names mentioned
in this book are trademarks or service marks of their respective companies.
KEY SERIAL NUMBER
001 HJIRTCV764
002 PO9873D5FG
003 829KM8NJH2
004 HH48996VHI
005 CVPLQ6WQ23
006 VBP965T5T5
007 HJJJ863WD3E
008 2987GVTWMK
009 629MP5SDJT
010 IMWQ295T6T
PUBLISHED BY
Syngress Publishing,Inc.
800 Hingham Street
Rockland,MA 02370
How to Cheat at Designing a Windows Server 2003 Active Directory Infrastructure
Copyright © 2006 by Syngress Publishing,Inc.All rights reserved.Printed in Canada.Except as permitted
under the Copyright Act of 1976,no part of this publication may be reproduced or distributed in any
form or by any means,or stored in a database or retrieval system,without the prior written permission of
the publisher,with the exception that the program listings may be entered,stored,and executed in a com-
puter system,but they may not be reproduced for publication.
Printed in Canada
1 2 3 4 5 6 7 8 9 0
ISBN:159749058X
Publisher:Andrew Williams Page Layout and Art:Patricia Lupien
Acquisitions Editor:Jaime Quigley Cover Designer:Michael Kavish
Technical Editor:Neil Ruston Indexer:Richard Carlson
Copy Editors:Darlene Bordwell,
Beth A.Roberts,Joel Rosenthal
Distributed by O’Reilly Media,Inc.in the United States and Canada.
For information on rights,translations,and bulk sales,contact Matt Pedersen,Director of Sales and Rights,
at Syngress Publishing;email [email protected] fax to 781-681-3585.
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page v
Acknowledgments
Syngress would like to acknowledge the following people for their kindness and sup-
port in making this book possible.
Syngress books are now distributed in the United States and Canada by O’Reilly
Media,Inc.The enthusiasm and work ethic at O’Reilly are incredible,and we would
like to thank everyone there for their time and efforts to bring Syngress books to
market:Tim O’Reilly,Laura Baldwin,Mark Brokering,Mike Leonard,Donna Selenko,
Bonnie Sheehan,Cindy Davis,Grant Kikkert,Opol Matsutaro,Steve Hazelwood,Mark
Wilson,Rick Brown,Tim Hinton,Kyle Hart,Sara Winge,Peter Pardo,Leslie Crandell,
Regina Aggio Wilkinson,Pascal Honscher,Preston Paull,Susan Thompson,Bruce
Stewart,Laura Schmier,Sue Willing,Mark Jacobsen,Betsy Waliszewski,Kathryn
Barrett,John Chodacki,Rob Bullington,Kerry Beck,Karen Montgomery,and Patrick
Dirden.
The incredibly hardworking team at Elsevier Science,including Jonathan Bunkell,Ian
Seager,Duncan Enright,David Burton,Rosanna Ramacciotti,Robert Fairbrother,
Miguel Sanchez,Klaus Beran,Emma Wyatt,Krista Leppiko,Marcel Koppes,Judy
Chappell,Radek Janousek,Rosie Moss,David Lockley,Nicola Haden,Bill Kennedy,
Martina Morris,Kai Wuerfl-Davidek,Christiane Leipersberger,Yvonne Grueneklee,
Nadia Balavoine,and Chris Reinders for making certain that our vision remains
worldwide in scope.
David Buckland,Marie Chieng,Lucy Chong,Leslie Lim,Audrey Gan,Pang Ai Hua,
Joseph Chan,June Lim,and Siti Zuraidah Ahmad of Pansing Distributors for the
enthusiasm with which they receive our books.
David Scott,Tricia Wilden, Marilla Burgess,Annette Scott,Andrew Swaffer, Stephen
O’Donoghue,Bec Lowe,Mark Langley,and Anyo Geddes of Woodslane for distributing
our books throughout Australia,New Zealand,Papua New Guinea,Fiji,Tonga,Solomon
Islands,and the Cook Islands.
v
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page vi
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page vii
Technical Editors
Neil Ruston (MCSE,CNE-4) is an IT Consultant,with more
than 10 years of IT experience.He is currently based at one of the
world’s largest investment banks in London,England.He specializes
in the planning and design phases of large-scale Active Directory
and Windows related technologies within a banking environment.
Previously,Neil worked at another large investment bank,as an
employee of Perot Systems Europe.He has also worked in Dallas at
the Perot Systems head quarters,where he helped design solutions
for other Perot customers,as well as for Perot’s own internal
Windows infrastructure.
Neil also operates as an independent consultant,and supplies
services to other businesses in and around the London area.He has
contributed to several Windows and Active Directory related publi-
cations in both technical editor and authoring roles.
Neil would like to dedicate his work to his wife,Deanne,and
children,George and Charlotte,who all endured his many days and
nights locked away while working on this book.
Jeffery A. Martin (MCSE,MCDBA,MCT,MCP+I,MCNE,
CNI,CCNP,CCI,CCA,CTT,A+,Network+,I-Net+,Project+,
Linux+,CIW,ADPM) has been working with computer networks
for over 15 years.Jeffery spends most of his time managing several
companies including an information technology consulting firm.He
also enjoys working as a technical instructor,training others in the
use of technology.
vii
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page viii
Contributing Authors
Brian Barber (MCSE,MCP+I,MCNE,CNE-5,CNE-4,CNA-3,
CNA-GW) is coauthor of Syngress Publishing’s Configuring
Exchange 2000 Server (ISBN:1-928994-25-3),Configuring and
Troubleshooting Windows XP Professional (ISBN:1-928994-80-6),and
two study guides for the MSCE on Windows Server 2003 track
(exams 70-296 [ISBN:1-932266-57-7] and 70-297 [ISBN:1-
932266-54-2]).He is a Senior Technology Consultant with Sierra
Systems Consultants Inc.in Ottawa,Canada.He specializes in IT
service management and technical and infrastructure architecture,
focusing on systems management,multiplatform integration,direc-
tory services,and messaging.In the past he has held the positions of
Senior Technical Analyst at MetLife Canada and Senior Technical
Coordinator at the LGS Group Inc.(now a part of IBM Global
Services).
Melissa M. Meyer is enrolled to practice before the IRS.Melissa
has held positions as a director of a Fortune 500 company and as an
enterprise consultant.She is a member of MENSA and holds a bach-
elor’s degree from the University of Michigan.Together with her
husband,Melissa provides the guidance for the investment and
accounting activities of Dane Holdings,Inc.She holds licenses
and/or registrations in:life insurance,annuities,health insurance,vari-
able life insurance,variable annuities,and income tax preparation.
Michael Cross (MCSE,MCP+I,CNA,Network+) is an Internet
Specialist/Computer Forensic Analyst with the Niagara Regional
Police Service (NRPS).He performs computer forensic examina-
tions on computers involved in criminal investigation.He also has
consulted and assisted in cases dealing with Internet and computer
related crimes.In addition to designing and maintaining the NRPS
viii
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page ix
Web site at www.nrps.com and the NRPS intranet,he has provided
support in the areas of programming,hardware,and network admin-
istration.As part of an information technology team that provides
support to a user base of more than 800 civilian and uniform users,
he has a theory that when the users carry guns,you tend to be
more motivated in solving their problems.
Michael also owns KnightWare (www.knightware.ca),which
provides computer-related services such as Web page design,and
Bookworms (www.bookworms.ca),where you can purchase col-
lectibles and other interesting items online.He has been a freelance
writer for several years,and he has been published more than three
dozen times in numerous books and anthologies.He currently
resides in St.Catharines,Ontario,Canada,with his lovely wife,
Jennifer,his darling daughter,Sara,and charming son,Jason.
Hal Kurz (MCSE,CCDP,CCNP,CCDA,CCNA) is CIO of
Innovative Technology Consultants and Company,Inc.(www.itc-
cinc.com),a computer consulting and training company located in
Miami,FL.He is also a chief technologist for ITC-Hosting
(www.itc-hosting.com),a Web hosting and Web-based application
development company.He holds Microsoft MCSE certifications for
Windows 2000 and Windows NT 4.0.He is currently gearing up
for his CCIE lab exam and was a contributor to the previous
Syngress Publishing work MCSE/MCSA Exam 70-291:
Implementing,Managing,and Maintaining a Windows Server 2003
Network Infrastructure Study Guide & DVD Training System.Hal is a
University of Florida engineering graduate with experience in
VMS,Unix,Linux,OS/400,and Microsoft Windows.He lives in
Miami with his wife,Tricia,and four children:Alexa,Andrew,Alivia,
and Adam.Thank you,Tricia and kids,for all of your support!
ix
371_HTC_AD_FM.qxd 12/14/05 12:56 PM Page x
Brian P. Mohr (MCSE+I,CNE,CCDA,LPI-1) is a Senior
Consultant at Siemens Business Services,Inc.where his primary
focus is Network Operating System design,which entails Microsoft
Windows NT Domain design,Microsoft Windows 2000/2003
Active Directory design and Novell NDS design.Brian has con-
tributed chapters to four books on Windows 2000 and Windows
2003.Brian served in the United States Air Force for twelve years as
a Computer/Telecommunication Operator.He lives with his wife,
Alice,and two daughters,Rebecca and Jennifer,in Philadelphia,PA.
Paul M. Summitt (MCSE,CCNA,MCP+I,MCP) has a master’s
degree in mass communication.Paul has served as network,
Exchange,and database administrator as well as Web and application
developer.Paul has written on virtual reality and Web development
and has served as technical editor for several books on Microsoft
technologies.Paul lives in Columbia,Missouri with his life and
writing partner,Mary.
x
