Entrar
Microsoft.com
 
Microsoft
 
 
 
Microsoft >
70-640 Certification: AD CS, AD RMS, AD FS

Respondido 70-640 Certification: AD CS, AD RMS, AD FS

  • quarta-feira, 28 de março de 2012 11:59
     
     
    Entrar para Votar
    0

    I am currently studying to do the 70-640 certification. It has been going well so far, based on the Self training kit.

    I've hit the chapters on AD CS, RMS and FS. The book has changed from clear problem, solution, example, practical how to guide. For these sections, theres no explanation of why you would use CS, RMS or FS. Best I can tell from years of IT experience, nobody does. The step by steps are very single path cases without a good explanation of what each part does, or how to make a slight change, or to adapt to a possible real world situation. The RMS step by step role install failed, which required redoing the server from scratch.

    Does anyone know why CS, RMS and FS are in the 70-640 exam? I would have thought they would have their own niche certification for these technologies, as they aren't used by the 99% of people who are trying to become certified in AD.

     

Todas as Respostas

  • segunda-feira, 2 de abril de 2012 22:31
    Moderador
     
     
    Entrar para Votar
    1
    Just bumping this too the top of the forum to assist you with getting an answer

    When you see answers and helpful posts, please click Vote As Helpful, Propose As Answer, and/or Mark As Answer

    Jeff Wharton
    MSysDev (C.Sturt), MDbDsgnMgt (C.Sturt), MCT, MCPD, MCSD, MCITP, MCDBA
    Blog: Mr. Wharty's Ramblings
    Twitter: @Mr_Wharty
    MC ID: Microsoft Transcript

     
  • terça-feira, 3 de abril de 2012 09:20
     
     Respondido
    Entrar para Votar
    2

    Hi Rhys,

    I fully agree wich you that in most small organisations AD RMS, FS, LDS is not used. Not sure about certificates, because in most cases having internal Enterprise CA is recommended by MS for ease administration (enrolling certificates for your web server, users for VPN/Wi-fi/DirectAcces and so on). But in other hand i can understand Microsoft which requires that you need to know how it works and be able to configure simple scenarios with mentioned techlologies. May be such questions need to be moved to 70-646 MCIT Server administrator exam and as i remember i saw questions about these technologies in exam. But believe me it's nothing compared to AD Design exams like old 70-293 for Server 2003 and 70-647 (MCITP Eterprise Admin) for Server 2008 :)

    MCSE 2003: Messaging, Security
    MCITP: Server Administrator, Enterprise Administrator, Virtualization Administrator
    MCITP: Consumer Desktop Support, Enterprise Desktop Support, Enterprise Desktop Support Windows 7, Enterprise Desktop Administrator
    SMS/SCCM, ISA 2004/2006, CCNA Security

     
  • terça-feira, 3 de abril de 2012 20:44
     
     
    Entrar para Votar
    2

    Microsoft's big thing for certifications is making sure that you know about all of their products.  You are correct that some of these products aren't very useful for a smaller business, but having a basic understanding of what these products do is essential to getting your cert (as far as MSFT is concerned).  As for what they do:

    RMS (rights management services) involves controling your word/excel/ppt/etc files and how they are distributed throughout an organization.  Say your company has some confidential sales formulas kept in an excel spreadsheet.  You can restrict access to the share that they are on, but you no control over what someone who has access does with the document.  Say a sales guy, just trying to be helpful, emails that document to a client so the client now knows all their pricing.  This presents a problem for the organization as this information is now out there... they have no control if the client were to send it to a comptitor, or might have to answer an akward question if they were to change their formulas... Enter RMS.  With this product I can restrict what is and is not done with a document.  I can set a policy that says:  no print, no copy, no email, etc. and essentially govern how it is that RMS protected documents are used within my org. 

    Certficiate Services is nothing more than an internal certificate authority.  If you have a website, you go to Godaddy to get a certificate.  You can make internal applications more secure by having a centralized CA issue certificates.  If you have something requiring lots of certs, a CA is what you need.  Unlike RMS, it's relatively cheap to install and provides some nice security features.  In terms of a small business, this is the one most likely to be used, and I suspect it's going to become more of a necessity over time.

    Federation services allows my corporation to access resources from your corporation without the need of a forest trust between the domains.  You use it so that you no longer have to manage accounts for my corporation.  The key word (from an exam point of view) is "single sign on."  In a nut shell, federation services (in conjunction with certificates) can act as a broker/pass through device to allow me to access resources that you designate without me needing to know another password or have another account.  You are correct that small businesses wont' use it much, but this is catching on with bigger businesses, and if you do business with one, it might be required.

    Honestly, from an exam point of view, do yourself a favor and know what they are...  That's all you should need for the exam.