(An accredited vocational institute of NIOS under Ministry of Human Resource Development Government of India) NIOS study center code :590048

Microsoft Certified Systems Engineer (MCSE)


The Microsoft Certified Systems Engineer (MCSE) certification shows clients and employers that you are skilled in designing, implementing, and administering infrastructures for business solutions based on Windows Server 2003 and Microsoft Windows 2000 Server. Implementation responsibilities include installing, configuring, and troubleshooting network systems.
If you want to be certified on newer Microsoft technologies, such as Exchange Server 2010, Windows Server 2008, or SQL Server 2008, you should pursue the Microsoft Certified IT Professional (MCITP) certification. And if you have the MCSE on Windows Server 2003 certification, you can upgrade to the Microsoft Certified Technology Specialist (MCTS) and Microsoft Certified IT Professional (MCITP) on Windows Server 2008 certifications.

  • Installing and Configuring Windows Server 2012
  • Administering Windows Server 2012
  • Configuring Advanced Windows Server 2012 Services After successfully completing steps 1-3, you'll earn a Microsoft Certified Solutions Associate (MCSA): Windows Server 2012 certification.
  • Designing and Implementing a Server Infrastructure
  • Implementing an Advanced Server Infrastructure

Exam 70-413 Designing and Implementing a Server Infrastructure

Plan and deploy a server infrastructure

  • Design an automated server installation strategy
  • Design considerations including images and bare metal/virtual deployment; design a server implementation using Windows Assessment and Deployment Kit (ADK); design a virtual server deployment
  • Plan and implement a server deployment infrastructure
  • Configure multicast deployment; configure multi-site topology and distribution points; configure a multi-server topology; configure autonomous and replica Windows Deployment Services (WDS) servers
  • Plan and implement server upgrade and migration
  • Plan for role migration; migrate server roles; migrate servers across domains and forests; design a server consolidation strategy; plan for capacity and resource optimization
  • Plan and deploy Virtual Machine Manager services
  • Design Virtual Machine Manager service templates; define operating system profiles; configure hardware and capability profiles; manage services; configure image and template libraries; manage logical networks
  • Plan and implement file and storage services
  • Planning considerations include iSCSI SANs, Fibre Channel SANs, Virtual Fibre Channel, storage spaces, storage pools, and data de-duplication; configure the iSCSI Target server; configure the Internet Storage Name server (iSNS); configure Network File System (NFS); install Device Specific Modules (DSMs)

Design and implement network infrastructure services

  • Design and maintain a Dynamic Host Configuration Protocol (DHCP) solution
  • Design considerations including a highly available DHCP solution including split scope, DHCP failover, and DHCP failover clustering, DHCP interoperability, and DHCPv6; implement DHCP filtering; implement and configure a DHCP management pack; maintain a DHCP database
  • Design a name resolution solution strategy
  • Design considerations including secure name resolution, DNSSEC, DNS Socket Pool, cache locking, disjoint namespaces, DNS interoperability, migration to application partitions, IPv6, Single-Label DNS Name Resolution, zone hierarchy, and zone delegation
  • Design and manage an IP address management solution
  • ssDesign considerations including IP address management technologies including IPAM, Group Policy based, manual provisioning, and distributed vs. centralized placement; configure role-based access control; configure IPAM auditing; migrate IPs; manage and monitor multiple DHCP and DNS servers; configure data collection for IPAM

Design and implement network access services

  • Design a VPN solution
  • Design considerations including certificate deployment, firewall configuration, client/site to site, bandwidth, protocol implications, and VPN deployment configurations using Connection Manager Administration Kit (CMAK)
  • Design a DirectAccess solution
  • Design considerations including topology, migration from Forefront UAG, DirectAccess deployment, and enterprise certificates
  • Implement a scalable remote access solution
  • Configure site-to-site VPN; configure packet filters; implement packet tracing; implement multi-site Remote Access; configure Remote Access clustered with Network Load Balancing (NLB); configure DirectAccess
  • Design a network protection solution
  • Design considerations including Network Access Protection (NAP) enforcement methods for DHCP, IPSec, VPN, and 802.1x, capacity, placement of servers, firewall, Network Policy Server (NPS), and remediation network
  • Implement a network protection solution
  • Implement multi-RADIUS deployment; configure NAP enforcement for IPSec and 802.1x; deploy and configure the Endpoint Protection client; create anti-malware and firewall policies; monitor for compliance
  • Design and implement an Active Directory infrastructure (logical) (20–25%)
  • Design a forest and domain infrastructure
  • Design considerations including multi-forest architecture, trusts, functional levels, domain upgrade, domain migration, forest restructure, and hybrid cloud services
  • Implement a forest and domain infrastructure
  • Configure domain rename; configure Kerberos realm trusts; implement a domain upgrade; implement a domain migration; implement a forest restructure; deploy and manage a test forest including synchronization with production forests
  • Design a Group Policy strategy
  • Design considerations including inheritance blocking, enforced policies, loopback processing, security, and WMI filtering, site-linked Group Policy Objects (GPOs), slow-link processing, group strategies, organizational unit (OU) hierarchy, and Advanced Group Policy Management (AGPM)
  • Design an Active Directory permission model
  • Design considerations including Active Directory object security and Active Directory quotas; customize tasks to delegate in Delegate of Control Wizard; deploy administrative tools on the client computer; delegate permissions on administrative users (AdminSDHolder); configure Kerberos delegation

Design and implement an Active Directory infrastructure (physical)

  • Design an Active Directory sites topology
  • Design considerations including proximity of domain controllers, replication optimization, and site link; monitor and resolve Active Directory replication conflicts
  • Design a domain controller strategy
  • Design considerations including global catalog, operations master roles, Read-Only Domain Controllers (RODCs), partial attribute set, and domain controller cloning
  • Design and implement a branch office infrastructure
  • Design considerations including RODC, Universal Group Membership Caching (UGMC), global catalog, DNS, DHCP, and BranchCache; implement confidential attributes; delegate administration; modify filtered attributes set; configure password replication policy; configure hash publication

Exam 70-414 Implementing an Advanced Server Infrastructure

Manage and maintain a server infrastructure

  • Design an administrative model
  • Design considerations including user rights, built-in groups, and end-user self-service portal; design a delegation of administration structure for Microsoft System Center 2012
  • Design a monitoring strategy
  • Design considerations including monitoring servers using Audit Collection Services (ACS), performance monitoring, centralized monitoring, and centralized reporting; implement and optimize System Center 2012 – Operations Manager management packs; plan for monitoring Active Directory
  • Implement automated remediation
  • Create an Update Baseline in Virtual Machine Manager; implement a Desired Configuration Management (DCM) Baseline; implement
  • Virtual Machine Manager Integration with Operations Manager; configure Virtual Machine Manager to move a VM dynamically based on policy;integrate System Center 2012 for automatic remediation into your existing enterprise infrastructure

Plan and implement a highly available enterprise infrastructure

  • Plan and implement failover clustering
  • Plan for multi-node and multi-site clustering; design considerations including redundant networks, network priority settings, resource failover and failback, heartbeat and DNS settings, Quorum configuration, and storage placement and replication
  • Plan and implement highly available network services
  • Plan for and configure Network Load Balancing (NLB); design considerations including fault-tolerant networking, multicast vs. unicast configuration, state management, and automated deployment of NLB using Virtual Machine Manager service templates
  • Plan and implement highly available storage solutions
  • Plan for and configure storage spaces and storage pools; design highly available, multi-replica DFS namespaces; plan for and configure multi-path I/O, including Server Core; configure highly available iSCSI Target and iSNS Server
  • Plan and implement highly available server roles
  • Plan for a highly available Dynamic Host Configuration Protocol (DHCP) Server, Hyper-V clustering, Continuously Available File Shares, and a DFS Namespace Server; plan for and implement highly available applications, services, and scripts using Generic Application,
  • Generic Script, and Generic Service clustering roles
  • Plan and implement a business continuity and disaster recovery solution
  • Plan a backup and recovery strategy; planning considerations including Active Directory domain and forest recovery, Hyper-V replica, domain controller restore and cloning, and Active Directory object and container restore using authoritative restore and Recycle Bin

Plan and implement a server virtualization infrastructure

  • Plan and implement virtualization hosts
  • Plan for and implement delegation of virtualization environment (hosts, services, and VMs), including self- service capabilities; plan and implement multi-host libraries including equivalent objects; plan for and implement host resource optimization; integrate third-party virtualization platforms
  • Plan and implement virtualization guests
  • Plan for and implement highly available VMs; plan for and implement guest resource optimization including smart page file, dynamic memory, and RemoteFX; configure placement rules; create Virtual Machine Manager Templates
  • Plan and implement virtualization networking
  • Plan for and configure Virtual Machine Manager logical networks; plan for and configure IP address and MAC address settings across multiple Hyper-V hosts including IP virtualization; plan for and configure virtual network optimization
  • Plan and implement virtualization storage
  • Plan for and configure Hyper-V host storage including stand-alone and clustered setup using SMB 2.2 and CSV; plan for and Configure Hyper-V guest storage including virtual Fibre Channel, iSCSI, and pass-through disks; plan for storage optimization
  • Plan and implement virtual guest movement
  • Plan for and configure live, SAN, and network migration between Hyper-V hosts; plan for and manage P2V and V2V Manage and maintain a server virtualization infrastructure
  • Manage dynamic optimization and resource optimization; manage Operations Manager integration using PRO Tips; automate VM software and configuration updates using service templates; maintain library updates

Design and implement identity and access solutions

  • Design a Certificate Services infrastructure
  • Design a multi-tier Certificate Authority (CA) hierarchy with offline root CA; plan for multi-forest CA deployment; plan for
  • Certificate Enrollment Web Services; plan for network device enrollment; plan for certificate validation and revocation; plan for disaster recovery; plan for trust between organizations
  • Implement and manage a Certificate Services infrastructure
  • Configure and manage offline root CA; configure and manage Certificate Enrollment Web Services; configure and manage Network
  • Device Enrollment Services; configure Online Certificates Status Protocol responders; migrate CA; implement administrator role separation; implement and manage trust between organizations; monitor CA health Implement and manage certificates
  • Manage certificate templates; implement and manage deployment, validation, and revocation; manage certificate renewal including
  • Internet-based clients; manage certificate deployment and renewal to network devices; configure and manage key archival and recovery
  • Design and implement a federated identity solution
  • Plan for and implement claims-based authentication including planning and implementing Relying Party Trusts; plan for and
  • Configure Claims Provider Trust rules; plan for and configure attribute stores including Active Directory Lightweight Directory Services
  • (AD LDS); plan for and manage Active Directory Federation Services (AD FS) certificates; plan for Identity Integration with cloud services
  • Design and implement Active Directory Rights Management Services (AD RMS)
  • Plan for highly available AD RMS deployment; manage AD RMS Service Connection Point; plan for and manage AD RMS client deployment; manage Trusted User Domains; manage Trusted Publishing Domains; manage Federated Identity support; manage Distributed and Archived Rights Policy templates; configure Exclusion Policies; decommission AD RMS