Troubleshooting Secure Channels
02/19/2011

The Information Technology Services (ITS) department is still running UNIX servers and hosting the company's Internet connection. ITS has delegated the applicable DNS namespace for each domain to the Marketing, Administration, and Research depart-ments.

Online PR News – 19-February-2011 – – Both the Nltest and Netdom tools can be used to verify and reset (http://www.mcitp-70-620.com) MCTS certification secure channels between domain controller and domain member computers. If either utility indicates a secure channel doesn't exist for the domain member computer, try the following:
1.Remove the computer from the domain by making it a member of a workgroup.
2.Delete the computer account from the Active Directory Users And Computers console.
3.Join the computer to the domain once again.
You are a computer consultant working for the Graphic Design Institute. In the past year you've helped the institute implement Active Directory in three different departments: Marketing, Administration, and Research. See the Case Scenario Exercises in Chapter 2 and Chapter 3 for more information about this company. Today, the company's network infrastructure is host to three different forests.
The Information Technology Services (ITS) department is still running UNIX servers and hosting the company's Internet connection. ITS has delegated the applicable DNS namespace for each domain to the Marketing, Administration, and Research depart-ments. Each department has its own network administration team.
Laura Steele, the director of the institute, wants to discuss some issues (http://www.mcitp-70-620.com) free 70-620 test questions she and the department directors have experienced.
Answer the following questions based on this information:
1. Right now, Research and Marketing are sharing data by burning CD-ROMs and DVD-ROMs. Under the current structure, how could Research and Marketing share information over the network?
Laura asks you, "What if we decided that ITS should handle the entire institute's network administration? If we were building the entire administrative structure right now using Windows Server 2003 and Active Directory, how would it be different than what we have now?"
3. What are the potential issues of simply moving the management function of the existing structure to the ITS department, without modifying anything?
operations master A domain controller that has been assigned one or more special roles in an Active Directory domain. The domain controllers assigned these roles perform operations that are single-master (not permitted to occur at different places on the network at the same time).
selective authentication A method of setting the scope of authentication differently for outgoing and incoming external and forest trusts. Selective trusts allow you to make flexible access control decisions between external domains in a forest.
trust relationship A logical relationship established between domains to allow passthrough authentication, in which a trusting domain honors the logon authen?tications of a trusted domain. User accounts and global groups defined in a trusted domain can be given rights and permissions in a
(http://www.examshots.com) free practice tests trusting domain, even though the user accounts or groups don't exist in the trusting domain's directory.