ADLER-TECH

Windows Server Advanced Administration

3 days (24 hours total)
Focus: advanced AD, security, automation, cluster/HA, PKI, hybrid integration.

Multi-site replication, site links, bridgeheads, troubleshooting lingering objects, USN rollback behavior.

FSMO seizure, metadata cleanup, authoritative restores, tombstone lifecycle, DC isolation testing.

Admin tiering, privileged access workstations, role separation, secure delegation, ESAE principles.

Loopback, AGPM, GPO versioning, advanced filtering, GPO processing analysis, Sysvol migration (DFSR).

AIA/CRL design, OCSP responders, HSM integration basics, cross-forest PKI trust, certificate lifecycle controls.

Conditional forwarders, stub zones, DNSSEC high-level, secure dynamic updates, AD-integrated DNS health.

Failover clustering, MAC filtering, superscopes, option inheritance, rogue server detection.

Connection security rules, IPSec negotiation modes, certificate auth, securing server-to-server channels.

CIS templates, secure baselines, LAPS (Legacy + LAPS v2), credential guard, secure bootchain analysis.

Advanced scripting structure, remoting at scale, Just Enough Administration, DSC configurations, partial configs.

Cluster networking, CSV internals, cluster-aware updating, resource fencing, Stretch cluster fundamentals.

Nested virtualization, SR-IOV, NUMA tuning, shielded VMs, storage live migration behavior.

SMB Direct (RDMA), multi-channel, SOFS, ReFS behavior, S2D conceptual overview.

Seamless SSO, PTA vs AAD Connect, device writeback, hybrid join, conditional access workflows.

Event forwarding, advanced audit policy, Sysmon, AD change tracking, core incident response flow.