M at er ia l MICROSOFT EXAM OBJECTIVES C COVERED OV VE R E D IN THIS CHAPTER: Ûß Installing and Configuring Microsoft soft Exchange Servers S ed Ûß Prepare the infrastructure forr Exchange xchange installation.
If it isn’t already clear from the title, the primary goal of this book is to prepare you to pass the 70-236 exam. This being the case, we’ll spend most of our time together ensuring that you acquire the required knowledge and skills to help you achieve that goal. As someone who has a great deal of passion for messaging, I also hope not only to help you to be successful on the exam, but also to be successful as a messaging professional.
Active Directory for Exchange Server 2007 3 information about mailboxes and recipients. What filled this void? A descendant of the Exchange 4.0 directory was reworked into a more powerful version that was then built into Windows 2000 and called Active Directory or, as the service is called in Windows Server 2008, Active Directory Domain Services (AD DS).
4 Chapter 1 N Preparing for the Exchange Installation Windows Server 2008 introduced Active Directory Domain Services (AD DS). This is essentially a rebranding of Active Directory to describe the feature better and to be able to incorporate related products with Active Directory branding in Windows Server 2008.
Active Directory for Exchange Server 2007 5 Organizational Units An organizational unit (OU) is a container in which you can place objects such as user accounts, groups, computers, printers, applications, file shares, and other organizational units. You can use organizational units to hold groups of objects, such as users and printers, and you can assign specific permissions to them.
6 Nß Nß Nß Chapter 1 N Preparing for the Exchange Installation Windows Server 2003 interim: This supports only Windows NT 4.0 and Windows Server 2003 domain controllers. This mode is only used when you upgrade domain controllers in Windows NT 4.0 domains to Windows Server 2003 domain controllers. The domains in a forest are raised to this functional level; the forest level has been increased to interim.
Active Directory for Exchange Server 2007 7 Domains establish trust relationships with one another that allow objects in a trusted domain to access resources in a trusting domain. Since Windows Server 2003, Active Directory has supported transitive, two-way trusts between domains. When a child domain is created, a trust relationship is automatically configured between that child domain and the parent domain.
8 Chapter 1 N Preparing for the Exchange Installation Physical Components The physical side of Active Directory is primarily represented by domain controllers and sites. These enable organizations to optimize replication traffic across their networks and to assist client workstations in finding the closest domain controller to validate logon credentials.
Active Directory for Exchange Server 2007 9 By default, the entire forest has only one global catalog, and that is the first domain controller installed in the first domain of the first tree. All others must be configured manually. It is recommended to always add a second global catalog for backup and load balancing. Furthermore, each domain should have at least one global catalog to provide for more efficient Active Directory searches and network logons.
10 Chapter 1 N Preparing for the Exchange Installation Active Directory Partitions, Masters, and Replication The information contained within Active Directory is not all stored in a single location, or partition in this case. Actually, five Active Directory partitions contain different pieces of information about the Active Directory forest and domains.
Active Directory for Exchange Server 2007 11 Global Catalog Partition The global catalog partition is a special type of Active Directory partition that is replicated to configured domain controllers across the entire forest. The global catalog is a read-only partial representation of all objects in a forest. It is used to locate information about objects from any domain in the forest without having to know in which domain the object is located.
12 Nß Chapter 1 N Preparing for the Exchange Installation RID master: One RID master role exists in each domain in the forest and is responsible for issuing blocks of relative identifiers (RIDs) to other domain controllers in the domain. This block of RIDs is known as the RID pool. When a domain controller runs low on RIDs in its RID pool, it makes a request to the RID master for another block of RIDs for its usage. Each object that exists within a domain has a unique security identifier (SID).
Active Directory for Exchange Server 2007 13 the other domain controllers within that site. After replication has occurred with the first replication partner that domain controller has, it will wait three seconds and then commence replication with its next replication partner, and so forth, until the original domain controller has replicated with all replication partners within that site.
14 Chapter 1 N Preparing for the Exchange Installation Exchange organization cannot span multiple forests but can span multiple domains within a single forest. Domain Name Service (DNS) For Active Directory and Exchange Server 2007 to function, DNS must be properly functioning in your organization. Outlook Web Access, SMTP connectivity, and Internet connectivity all rely on DNS.
Active Directory for Exchange Server 2007 Nß 15 The global catalog partition received many new items of information as a result of the installation of Exchange Server 2007 in a forest. Exchange uses the global catalog to generate address lists for usage by Exchange recipients, and Exchange Server also uses it to locate a recipient to aid in the delivery of mail items to that recipient. Exchange Server automatically generates the global address list (GAL) from all recipients listed in the global catalog.
16 Chapter 1 N Preparing for the Exchange Installation 7. If multiple Active Directory sites must be crossed, the message is delivered to a Hub Transport server along the path and then passed along to a Hub Transport server in the destination site. 8. If there are no operating Hub Transport servers in the destination site, the message will be queued on a Hub Transport server in the site closest to the one where the destination Mailbox server resides.
What’s New in Exchange Server 2007? Nß Nß Nß Nß Nß 17 Active Directory (AD) site–based routing: No longer do you need to plan, implement, and manage an Exchange-specific routing environment with routing groups. Exchange Server 2007 is AD site–aware and will use the existing Active Directory sites configuration to perform routing and to select which Exchange servers it should directly communicate with.
18 Nß Chapter 1 N Preparing for the Exchange Installation Antivirus and antispam controls: The Edge Transport role, one of the new Exchange Server 2007 server roles, is responsible for preventing spam messages from entering your Exchange organization.
What’s No Longer Supported in Exchange Server 2007? Nß Nß Nß Nß Nß Nß Nß Nß Nß Nß Nß 19 Exchange management via Active Directory Users and Computers: Management of all recipient objects (discussed more in Chapter 5) is now performed via the Exchange Management Console and Exchange Management Shell.
20 Chapter 1 N Preparing for the Exchange Installation Features That Have Been De-emphasized The following key features and functionality have been de-emphasized in Exchange Server 2007: Nß Nß Public folders: Public folders are no longer required in a clean installation of Exchange Server 2007. In previous versions of Exchange Server, public folders contained critical system data such as the Offline Address Book (OAB) and free/busy calendaring data.
Preparing the Infrastructure for Exchange Server 2007 Deployment Nß Nß Nß Nß Nß Nß 21 The Active Directory domain that Exchange will be installed into or that contains Exchange recipients should use at least the Windows 2000 Server native domain functional level. All Exchange Server 5.5 computers must be removed from the domain and the Exchange organization must be set to Exchange 2000 native mode.
22 Chapter 1 N Preparing for the Exchange Installation Nß If a site has multiple domain controllers, consider using a Bridgehead server for Active Directory replication to other sites. Nß Install the right number of Global Catalog servers in each site to support the applications. When using 32-bit domain controllers, the ratio of Global Catalog processor cores to Exchange Mailbox server processor cores is 1 to 4.
Exam Essentials 23 time, convergence occurs as all domain controllers receive and pass replication updates and the partitions that they hold become closer to matching exactly. In a production environment, complete convergence is almost impossible to achieve, but that rarely poses a problem. Intersite replication is designed to have the minimum possible impact on the typically slower WAN links that commonly separate the physical locations that Active Directory sites represent.
Chapter 1 24 N Preparing for the Exchange Installation Review Questions 1. You are currently running in the Windows 2000 mixed domain functional level and are considering making the switch to the Windows 2000 native domain functional level. Which of the following would be valid concerns to take into account before making the switch? (Choose all that apply.) A. The switch is irreversible. 2. B.
Review Questions 6. 25 Which of the following statements about an organizational unit is true? A. An organizational unit cannot contain objects from other domains. 7. B. An organizational unit can contain objects only from other trusted domains. C. An organizational unit can contain objects only from other domains in the same domain tree. D. An organizational unit can contain objects only from other domains in the same domain forest.
Chapter 1 26 N Preparing for the Exchange Installation 12. User account objects are found in which Active Directory partition? A. Configuration B. Global catalog C. Schema D. Domain 13. What impact does the failure of the domain controller holding the schema master role have on the normal operations of Active Directory? A. Active Directory will cease to function properly until the schema master role has been brought back online. B.
Review Questions 27 17. Intersite replication refers to which of the following? A. Replication between domain controllers in the same Active Directory site B. Replication between domain controllers in different domains C. Replication between domain controllers in different forests D. Replication between domain controllers in different Active Directory sites 18. Which Active Directory partition is used to create the Exchange address lists? A. Configuration B. Global catalog C. Schema D.
28 Chapter 1 N Preparing for the Exchange Installation Answers to Review Questions 1. A, D. The switch to the Windows 2000 native domain functional level is a one-time, one-way switch and is irreversible. Once you have switched to the Windows 2000 native domain functional level, you will no longer be able to have Windows NT 4.0 domain controllers within the organization. 2. D. Windows Server 2003 (along with Windows 2000 Server) and Active Directory support two-way transitive trusts between domains.
Answers to Review Questions 29 11. B, D. The streaming database ( STM), first introduced in Exchange 2000 Server, has been removed in Exchange Server 2007. Several other enhancements have been made to storage in Exchange Server 2007. Exchange Server 2007 does not interoperate with the Active Directory Connector (ADC) or Site Replication Service (SRS) as in the previous two versions of Exchange. As a result, you can no longer directly migrate from Exchange Server 5.5 to Exchange Server 2007. 12. D.
