Book Image

Mastering Windows Server 2019, Third Edition - Third Edition

By : Jordan Krause
Book Image

Mastering Windows Server 2019, Third Edition - Third Edition

By: Jordan Krause

Overview of this book

Written by a nine-time Microsoft MVP award winner with over twenty years of experience working in IT, Mastering Windows Server 2019 is a hands-on guide for anyone looking to keep their skills up to date. This third edition comes with four new chapters to provide you with the in-depth knowledge needed to implement and use this operating system in any environment. Centralized management, monitoring, and configuration of servers are key to an efficient IT department. This book delves into multiple methods for quickly managing all your servers from a ‘single pane of glass' — the ability to monitor different servers across a network using Server Manager, Windows PowerShell, and even Windows Admin Center — from anywhere. Despite the focus on Windows Server 2019 LTSC, you will still explore containers and Nano Server, which are more related to the SAC of server releases. This additional coverage will give you insights into all aspects of using Windows Server 2019 in your environment. This book covers a range of remote access technologies available in this operating system, teaches management of PKI and certificates, and empowers you to virtualize your datacenter with Hyper-V. You will also discover the tools and software included with Windows Server 2019 that assist in the inevitable troubleshooting of problems that crop up.

Related Content you might be interested in

Current Title:

Small book image
Mastering Windows Server 2019, Third Edition - Third Edition
Jordan Krause
Jul, 2021 | 690 pages
Small book image
Windows Server 2016 Security, Certificates, and Remote Access Cookbook
Jordan Krause
Apr, 2018 | 138 pages
Small book image
Windows Server 2019 Cookbook
Jordan Krause | Mark Henderson
Jul, 2020 | 650 pages
Small book image
Windows Server 2016 Administration Cookbook
Jordan Krause
Apr, 2018 | 248 pages
Table of Contents (19 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
1
Getting Started with Windows Server 2019
Getting Started with Windows Server 2019
The purpose of Windows Server
It's getting cloudy out there
Windows Server versions and licensing
Overview of new and updated features
Windows Server 2019 interface
Using the newer Settings screen
Two ways to do the same thing
Task Manager
Task View
Summary
Questions
Free Chapter
2
Installing and Managing Windows Server 2019
Installing and Managing Windows Server 2019
Technical requirements
Installing Windows Server 2019
Installing roles and features
Centralized management and monitoring
Windows Admin Center (WAC)
Enabling quick server rollouts with Sysprep
Summary
Questions
3
Active Directory
Active Directory
What is a domain controller?
Creating your first domain
Multiple domain controllers for redundancy
Active Directory Users and Computers
Active Directory Domains and Trusts
Active Directory Sites and Services
Active Directory Administrative Center
Read-only domain controllers
Group Policy
Summary
Questions
4
DNS and DHCP
DNS and DHCP
The purpose of DNS
Types of DNS records
Split-brain DNS
Types of DNS zones
IP addressing with DHCP
Creating a DHCP scope
DHCP reservations
DHCP failover
IPAM
Summary
Questions
5
Group Policy
Group Policy
Group Policy Object
Building a GPO
Scoping a GPO
Computer settings and user settings
Policy vs preference
Default Domain Policy
Administrative Templates
Central Store
Summary
Questions
6
Certificates in Windows Server 2019
Certificates in Windows Server 2019
Common certificate types
Planning your PKI
Creating a new certificate template
Issuing your new certificates
Obtaining a public-authority SSL certificate
Exporting and importing certificates
Summary
Questions
7
Networking with Windows Server 2019
Networking with Windows Server 2019
Introduction to IPv6
Your networking toolbox
Building a routing table
NIC Teaming
Software-defined networking
Summary
Questions
8
Remote Access
Remote Access
Always On VPN
DirectAccess
Remote Access Management Console
DA, VPN, or AOVPN? Which is best?
Web Application Proxy
Requirements for WAP
Latest improvements to WAP
Summary
Questions
9
Hardening and Security
Hardening and Security
Windows Defender Antivirus
Windows Defender Firewall – no laughing matter
Encryption technologies
Azure AD Password Protection
Fine-grained password policy
Advanced Threat Analytics – end of support
General security best practices
Summary
Questions
10
Server Core
Server Core
Why use Server Core?
Interfacing with Server Core
Windows Admin Center for managing Server Core
The Sconfig utility
Roles available in Server Core
Building a Server Core domain controller
What happened to Nano Server?
Summary
Questions
11
PowerShell
PowerShell
Why move to PowerShell?
Working within PowerShell
Using a pipeline
PowerShell Integrated Scripting Environment
Remotely managing a server
Desired State Configuration
Summary
Questions
12
Redundancy in Windows Server 2019
Redundancy in Windows Server 2019
Network Load Balancing (NLB)
Configuring a load-balanced website
Failover clustering
Clustering tiers
Setting up a failover cluster
Clustering improvements in Windows Server 2019
Storage Replica (SR)
Storage Spaces Direct (S2D)
Summary
Questions
13
Containers and Nano Server
Containers and Nano Server
Understanding application containers
Containers and Nano Server
Windows Server containers versus Hyper-V containers
Docker and Kubernetes
Working with containers
Summary
Questions
14
Hyper-V
Hyper-V
Designing and implementing your Hyper-V Server
Using virtual switches
Implementing a new virtual server
Managing a virtual server
Shielded VMs
Integrating with Linux
ReFS deduplication
Hyper-V Server 2019
Summary
Questions
15
Troubleshooting Windows Server 2019
Troubleshooting Windows Server 2019
Backup and Restore
Task Manager
Resource Monitor
Performance Monitor
Windows Firewall with Advanced Security
System Insights
Remote toolsets
Event Logs
MMC and MSC shortcuts
Summary
Questions
16
Other Books You May Enjoy
Other Books You May Enjoy
17
Index
Index
Appendix: Answers to the end-of-chapter Questions
Appendix: Answers to the end-of-chapter Questions

General security best practices

Sometimes we need only to rely on ourselves, and not necessarily on functionality provided by the OS, to secure our systems. There are many common-sense approaches to administratorship (it's kind of fun being behind this keyboard: I get to make up new words all day long) that are easy to accomplish but are rarely used in the field.

The following are a few tips and tricks that I have learned over the years and have helped companies implement. Hopefully, you as the reader have even more to add to this list as to what works well for you, but if nothing else this section is intended to jog your thinking into finding creative ways with which you can limit administrative capability and vulnerability within your network.

Getting rid of perpetual administrators

Do all of your IT staff have domain admin rights the day they are hired? Do any of your IT staff have access to the built-in domain administrator account password? Do you have...

Previous Section
End of Section 8
Next Section