Exam Code 70-290)

Managing & Maintaining Windows Server 2003 Environment

Editions of Windows Server 2003

Microsoft Windows Server 2003 Web Edition

Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Enterprises Edition
Microsoft Windows Server 2003 Datacenter Edition

Microsoft Windows Server 2003 Web Edition

Web Edition is Single purpose Operating System for dedicated web Service and hosting.
IT provides a platform for rapidly developing and deploying web services and
applications. It support up to 2 GB of RAM and 2 way symmetric multiprocessing.

Microsoft Windows Server 2003 Standard Edition

Microsoft Windows Server 2003 Standard Edition used for small business departments as
Domain Controllers and member server. It support up to 4 GB of RAM and 4 way
symmetric multiprocessing.

Microsoft Windows Server 2003 Enterprises Edition

Microsoft Windows Server 2003 Enterprises Edition used for medium to large
organizations and as application server, Domain controller and clustering. It support uo to
32 GB of RAM and 8 way of symmetric multiprocessing.

Microsoft Windows Server 2003 Datacenter Edition

Microsoft Windows Server 2003 Datacenter Edition used for machine critical solution for
databases enterprises resource planning software, high volume real-time transaction
processing and Servers consolidation. It supports 64 GB of RAM and 32 way of
symmetric multiprocessing.

Active Directory
A directory is stored collection of in formations about object, data related to one another
in some where. Example: Telephone directory.

Active Directory is the directory service included in the Microsoft Windows Server 2003.
Active Directory include the directory which stores information about network resources,
as well as the services that make the information available and useful.

The resources stored in the Active Directory such as user data, printers, servers, data
bases, groups, services, computers and security policies are known as Objects.
Features of Active Directory

1. Centralizability.
2. Scalability.
3. Extensibility.
4. Manageability.

5. Integration with DNS.

6. Policy base administration.
7. Replication of information.

(Multi master replication)

8. Flexible and Secure.

(Authentication and Authorization)

9. Security integration.
10. Inter operability with other directory services.
11. Signed and encrypted LDAP traffic.

Components of Active Directory

Active Directory has logical and physical structures.
Physical
Logical
1. Domain Controller
2. Sites

1. Domain
2. Tree
3. Forest

4. OU (Organizational Unit)
Logical Structures
Domain: Domain is the logical grouping of computers, which shares a centralized
security data. All network objects exist within a Domain and each Domains store
information only about the objects it contains.
Domain is represented by
Organizational Unit

An organization Unit (OU) is a container used to organize objects with in a Domain it to

a logical administrative group. An OU can contain objects such as user accounts, groups,
computers, printers, file shares and other OU from the same Domain. An OU can
simplify applying policies and delegations. The process of adding one OU to another OU
is called nesting.

Tree
A tree is a grouping or hierarchal arrangement of one or more Domains that can create by
adding one or more child Domains to an existing parent Domain which follows a
contiguous name space.

Exchange Server 2003

1. Tell me a bit about the capabilities of Exchange Server.

1) Outlook Anywhere (OWA)

2) Mailbox Can sync with Blackberry Device.
3) Calender Shairing.
4) MAPI & POP3 Client support.

Another great options:

• Mobile access: Easy access to email for handhelds like the BlackBerry, Treo or Windows
Mobile devices.
• Centrally stored information: Allows email, files and other company data to be accessed
from anywhere at any time.
• Shared calendars: Lets employees see colleagues' availability to schedule or rearrange
meetings, book conference rooms, and plan projects.
• Shared task lists: Allows 'to do' lists to be created and assigned, then shared with team
members.
• Shared contacts: Company or shared address books means important contact details will
never be lost or misplaced.
• Outlook Web access: Allows for email and information access through an Internet Web
browser.
2. What are the different Exchange 2003 versions?
1.Standard
2.Enterprise
NS Deals with version and not the edition
the version of exchange are

1. exchange 5.5
2. exchange server 2000
3. exchange server 2003
4. exchange server 2007

Microsoft plan to introduce exchange 14 which is under

devolopment.
Standard 2003
Enterprise 2003
SBS 2003 (bundled)

3. What's the main differences between Exchange 5.5 and Exchange

2000/2003?
 Exchange 5.5 does not integrate with the NT4 domain or the
Windows 2000/2003 Active Directory in a meaningful way. A
single user could be associated with several different
mailboxes. Exchange 2000/2003/2007 integrates tightly with
Active Directory, and there is a 1:1 relationship between
mailboxes and AD user accounts.
There are other differences, depending on whether you have
a standard or enterprise version as it relates to maximum
database size, but the directory integration is probably
the biggest difference.

4. What are the major network infrastructure for installing Exchange 2003?
In general, you should assess your network infrastructur

from the following perspectives:

1.Geographical considerations
2.Bandwidth and latency
3.Current usage
4.Current messaging system

5.What is the latest Exchange 2003 Service Pack? Name a few changes in
functionality in that SP.
Service Pack 2,
SP2 is a cumulative update that enhances your Exchange

Server 2003 messaging environment with:

Mobile e-mail improvements

Better protection against spam

Mailbox advancements

6.What are the disk considerations when installing Exchange (RAID types, locations and so on).
Server hardware
•

Four 1 gigahertz (GHz), 1 megabyte (MB) or 2 MB L2

cache processors
•

4 gigabytes (GB) of Error Correction Code (ECC) RAM

•
 Two 100 megabits per second (Mbps) or 1000 Mbps
network interface cards
•

RAID-1 array with two internal disks for the

Windows Server 2003 and Exchange Server 2003 program files
•

Two redundant 64-bit fiber Host Bus Adapters (HBAs)

to connect to the Storage Area Network
7. You got a new HP DL380 (2U) server, dual Xeon, 4GB of RAM, 7 SAS disks, 64-bit.
What do you do next to install Exchange 2003? (you have AD in place)
8. Why not install Exchange on the same machine as a DC?
•
well, this is not a good pratice to so and the reasons
behind are :
•

1. Redundancy and Stability - if the exchange server fails

then Domain Controller also fails and it concludes a big
failure...

2. Overload : It may overload your existing server and that

can cause a significant performance problem.
well if think there is something important that i missed
please inform me via mail.

Folder Contents, and Read

•
Creator Owner
None
•
Server Operators group

Modify, Read and Execute,

List Folder Contents, Read, and Write
•

System account
Full Control
21)Exchange full admin – full control over the exchange
organization including permission
2)Exchange Admin – Manage everything within the
organization except org permission.
3)Exchange view only administrator – read only
administrative access to Exchange organization
17. How can you grant access for an administrator to access all mailboxes on a specific
server?

1. Start Exchange System Manager.

2. Drill down to your server object within the appropriate
Administrative Group. Right-click it and choose Properties.
3. In the Properties window go to the Security tab.
4. Click Add, click the user or group who you want to have
access to the mailboxes, and then click OK.
5. Be sure that the user or group is selected in the Name box.
6. In the Permissions list, click Allow next to Full
Control, and then click OK.
Note: Make sure there is no Deny checkbox selected next to
the Send As and Receive As permissions.
7. Click Ok all the way out.

18. What is the Send As permission?

Send As Permission means user A will be able to access the

mail box of user B and reply back to those mail. Even
though user A has replied to the mail, the send address
will display user b email

20.What are Exchange Recipient types? Name 5.

In exchange 2003,
1.Mail-enabled user
2.Mailbox enabled user.
3.DL
4.Contact
5.Mail-Enabled public folder

The people and resources that send and receive messages are
the core of any messaging and collaboration system. In an
Exchange Server organization, these people and resources
are referred to as recipients.

A recipient is any mail-enabled object in the Active

Directory directory service to which Exchange can deliver
or route messages. This topic discusses the recipient types
that are supported in Microsoft Exchange Server 2007.

User mailbox
A mailbox that is assigned to an individual user in your
Exchange organization. It typically contains messages,
calendar items, contacts, tasks, documents, and other
important business data.
Linked mailbox

A mailbox that is assigned to an individual user in

a separate, trusted forest.
Shared mailbox
A mailbox that is not primarily associated with a single
user and is generally configured to allow logon access for
multiple users.
Legacy mailbox
A mailbox that resides on a server running Exchange Server
2003 or Exchange 2000 Server.
Room mailbox
A resource mailbox that is assigned to a meeting location,
such as a conference room, auditorium, or training room.
Room mailboxes can be included as resources in meeting
requests, providing a simple and efficient way of
organizing meetings for your users.

21. You created a mailbox for a user, yet the mailbox does not appear in ESM. Why?

This situation happens because the securityDescriptor

object (msExchMailboxSecurityDescriptor) is not read from
Active Directory until the user first logs on to the
mailbox or the mailbox is sent an item of mail.

23.You wanted to change mailbox access permissions for a mailbox, yet you see the SELF
permission alone on the permissions list. Why?

In Microsoft Exchange 2000 Server or Microsoft Exchange

Server 2003, when you create new mailbox-enabled accounts
in Active Directory, they do not have inherited mailbox
rights. The only object that is granted permission is Self,
which is granted full mailbox access and read rights.
To view mailbox rights, follow these steps:
In Active Directory Users and Computers, click Advanced
Features on the View menu.
Note: This is not necessary on Exchange Server 2003 because
of the fact that the Exchange Advanced tab is exposed by
default.
Under Active Directory Users and Computers, click the
account, click the Exchange Advanced tab, and then click
Mailbox Rights.
The rights are displayed in the Permissions for account
name dialog box.
= Bad!
This behavior occurs because the mailbox security
descriptor is not read from the Active Directory account

object until the user logs on or gets mail. The Recipient

Update Service (RUS) does not stamp the inherited
permissions when the mailbox is created. After the mailbox
is created in the store, the store calculates inherited
mailbox rights.
To resolve this behavior perform one of the following
actions:
Log on to the mailbox you've created. You can do so by
opening an Outlook profile for the new user and running
Outlook, or by opening a OWA session the the destination
mailbox by typing http://servername/exchange/username in
the address bar of your browser.
Note: Opening Outlook requires you to be logged on as the
destination user, while OWA does not require you to be
logged on as the user. However, both methods require that
you know the destination user's password.
Send a message to the mailbox.
Note: The second method is quicker and easier to perform,
that's why you'll need to know how to Send Mail from Script
and to Test SMTP Service in IIS and Exchange.
When the mailbox is created in the store, the store itself
calculates the inherited permissions and stamps them on the
store's copy of the mailbox security descriptor.
= Good

24. What are Query Based Distribution groups?

A query-based distribution group provides the same
functionality as a standard distribution group.
However, instead of specifying static user memberships, you
can use an LDAP query (for example, "All full-time
employees in my company") to dynamically build membership
in a query-based distribution group.

This reduces administrative costs because of the dynamic

nature of the distribution group. However, query-based
distribution groups have a higher performance cost for
queries whose outcome produces many results.

This cost is in terms of server resources, such as high CPU

usage and increased memory usage. This increased usage
occurs because every time an e-mail message is sent to a
query-based distribution group, an LDAP query is executed
against Active Directory to determine its membership.

25. What type of groups would you use when configuring distribution groups in a multiple
domain forest?

create a Universal Distribution Group.

A Distribution Group with Scope of Universal Group Because
of only Universal group will be appeared at forest Boundary.

Use Universal distribution groups in a multiple-domain environment. The membership of universal

distribution groups is replicated to each global catalog server in each domain
26. Name a few configuration options for Exchange recipients.
1. Microsoft Exchange Recipient Parameters
The Microsoft Exchange recipient isn't a typical recipient

41. What are Routing Groups? When would you use them?

A routing group is a logical collection of servers used to

control mail flow and public folder referrals. In a routing
group, all servers communicate and transfer messages
directly to one another.
In a routing group, all servers communicate and transfer
messages directly to one another, as follows:
1.

A user in your Exchange organization uses a mail

client to send mail to another user.
2.
 Using SMTP, the sender's client submits this mail
to the SMTP virtual server on the Exchange server on which
the client's mailbox resides.
3.

The Exchange server looks up the recipient of the

mail message to determine which server the recipient's
mailbox resides on.
4.

One of two things occurs:

•

If the recipient's mailbox is on the same Exchange

server, Exchange delivers the message to the recipient's
mailbox.
•

If the recipient's mailbox is on another Exchange

server, the first Exchange server sends the message to the
recipient's home mailbox server, and it is the recipient's
home mailbox server that delivers the message to the
recipient's mailbox.

9.How would you plan and configure Public Folder redundancy?

To ensure availability of public folders and to reduce

network traffic through Exchange 2003 Routing Groups, it is
possible to replicate public folders to different Exchange
Servers. A copy of a public folder is called a
replica.Public Folder replication is simple. Navigate to
the public folder which you want to replicate - right click
Properties - Replication and add a new public folder store
to replicate to. You can specify the replication interval
and the Replication Message Priority.

30. How can you immediately stop PF replication?

Exchange Server 2003, SP2 introduced the ability for an
administrator to stop all public folder content replication
in the organization. You can stop all public folder
replication by right-clicking the Organization name in
Exchange System Management and clicking Stop Public Folder
Content Replication. When Stop Public Folder Content
Replication is clicked, bit 1024 is set in the heuristics
attribute. You should only stop all public folder
replication in extreme cases, such as troubleshooting an
organization-wide public folder or mail flow issue.
31. How can you prevent PF referral across slow WAN links?

On each individual Exchange connector, you can prevent

public folder referrals. To do this, right-click the
connector, click Properties, and then click to select the
Do not allow public folder referrals check box. By default,
this check box is not selected.

32. What types of PF management tools might you use?

PFDAVADMIN Tool
it has a number of capabilities as described within the
accompanying Word document, a sample of which is:
Propagate public folder Access Control Entry (ACE)
additions, removals and modifications without overwriting
the existing Access Control List (ACL).
Rectify damaged Discretionary Access Control Lists (DACL).
Import or export permissions against either mailboxes or
public folders.
Import or export public folder replica lists.
Set Calendar folder permissions in bulk.
33. What are the differences between administrative permissions and client permissions
in PF?

Run time polymorphism means later binding,function

overriding concepts are involved in this polymorphism.
compile time poly means early binding ,fn overloading
concepts

34. How can you configure PF replication from the command prompt in Exchange 2003?
PFMIGRATE allows you to move a bunch of Public Folders from
an Exchange Server to an Exchange 2003 Server from the
command line.
PFMIGRATE.WSF is a Script, which is located on the Exchange
2003 CD and the Exchange 2003 SP1 under SUPPORT\EXDEPLOY.
PFMIGRATE requires ONE Exchange 2003 Server in your