###BeginCaseStudy###
Case Study: 12
A Datum Corporation
COMPANY OVERVIEW
A.
Datum Corporation is a manufacturing company that has a main office and a branch office. The
main office is located in Denver. The branch office is located in Seattle.
PLANNED CHANGES
Datum plans to implement the following changes:
Transition the network from IPv4 to IPv6.
Decommission all of the WINS servers on the network.
Open a new sales office in Redmond. The Redmond office will connect to the Seattle office by using
a WAN link.
Deploy two new applications named App1 and App2. App1 and App2 cannot be installed on the
same client computer. All users must be able to run App1 and App2 when they are disconnected
from the network
EXISTING ENVIRONMENT
Business Goals
A) Datum has the following business goals:
Minimize WAN link utilization.
Minimize the cost of managing the network infrastructure and the servers.
Existing Active Directory/Directory Services
The network contains a single Active Directory forest. The forest contains two domains named
adatum.com and contoso.com.
The forest contains the domain controllers configured as shown in the following table.
Existing Network Infrastructure
All servers run Windows Server 2008 R2. All client computers were exchanged recently for new
client computers that run Windows 7 Enterprise.
The main office has two file servers and two WINS servers.
The network contains multiple client/server applications that require NetBIOS name resolution. The
network has Active Directory Rights Management Services (AD RMS) deployed.
A)
Datum has a human resources (HR) department that publishes employee guidelines. The guideline
files are stored in a shared folder on a file server. The HR manager updates the guidelines regularly.
All users access the guideline
TECHNICAL REQUIREMENTS
Security Requirements
All sensitive documents are stored in a network share named Share1. All of the new documents in
Share1 must be automatically rights protected.
All users must be able to send rights-protected documents from Share1 to users in a partner
organization. The users in partner organization must be able to view the contents of the documents.
The partner organization does not have an AD RMS infrastructure.
Only employees of Adatum can have user accounts in the Adatum.com domain.
User Requirements
All employee guideline files must be available to all users if the file server that stores the files fails.
###EndCaseStudy###
You need to recommend a storage solution for the rights-protected documents that meets the
company’s security requirements. What should you include in the recommendation?
Active Directory Certificate Services (AD CS)
A.
Datum Corporation is a manufacturing company that has a main office and a branch office. The
main office is located in Denver. The branch office is located in Seattle.
PLANNED CHANGES
Datum plans to implement the following changes:
Transition the network from IPv4 to IPv6.
Decommission all of the WINS servers on the network.
Open a new sales office in Redmond. The Redmond office will connect to the Seattle office by using
a WAN link.
Deploy two new applications named App1 and App2. App1 and App2 cannot be installed on the
same client computer. All users must be able to run App1 and App2 when they are disconnected
from the network
EXISTING ENVIRONMENT
Business Goals
A) Datum has the following business goals:
Minimize WAN link utilization.
Minimize the cost of managing the network infrastructure and the servers.
Existing Active Directory/Directory Services
The network contains a single Active Directory forest. The forest contains two domains named
adatum.com and contoso.com.
The forest contains the domain controllers configured as shown in the following table.
Existing Network Infrastructure
All servers run Windows Server 2008 R2. All client computers were exchanged recently for new
client computers that run Windows 7 Enterprise.
The main office has two file servers and two WINS servers.
The network contains multiple client/server applications that require NetBIOS name resolution. The
network has Active Directory Rights Management Services (AD RMS) deployed.
A)
Datum has a human resources (HR) department that publishes employee guidelines. The guideline
files are stored in a shared folder on a file server. The HR manager updates the guidelines regularly.
All users access the guideline
TECHNICAL REQUIREMENTS
Security Requirements
All sensitive documents are stored in a network share named Share1. All of the new documents in
Share1 must be automatically rights protected.
All users must be able to send rights-protected documents from Share1 to users in a partner
organization. The users in partner organization must be able to view the contents of the documents.
The partner organization does not have an AD RMS infrastructure.
Only employees of Adatum can have user accounts in the Adatum.com domain.
User Requirements
All employee guideline files must be available to all users if the file server that stores the files fails.
###EndCaseStudy###
You need to recommend a storage solution for the rights-protected documents that meets the
company’s security requirements. What should you include in the recommendation?
Active Directory Certificate Services (AD CS)
A.
Datum Corporation is a manufacturing company that has a main office and a branch office. The
main office is located in Denver. The branch office is located in Seattle.
PLANNED CHANGES
Datum plans to implement the following changes:
Transition the network from IPv4 to IPv6.
Decommission all of the WINS servers on the network.
Open a new sales office in Redmond. The Redmond office will connect to the Seattle office by using
a WAN link.
Deploy two new applications named App1 and App2. App1 and App2 cannot be installed on the
same client computer. All users must be able to run App1 and App2 when they are disconnected
from the network
EXISTING ENVIRONMENT
Business Goals
A) Datum has the following business goals:
Minimize WAN link utilization.
Minimize the cost of managing the network infrastructure and the servers.
Existing Active Directory/Directory Services
The network contains a single Active Directory forest. The forest contains two domains named
adatum.com and contoso.com.
The forest contains the domain controllers configured as shown in the following table.
Existing Network Infrastructure
All servers run Windows Server 2008 R2. All client computers were exchanged recently for new
client computers that run Windows 7 Enterprise.
The main office has two file servers and two WINS servers.
The network contains multiple client/server applications that require NetBIOS name resolution. The
network has Active Directory Rights Management Services (AD RMS) deployed.
A)
Datum has a human resources (HR) department that publishes employee guidelines. The guideline
files are stored in a shared folder on a file server. The HR manager updates the guidelines regularly.
All users access the guideline
TECHNICAL REQUIREMENTS
Security Requirements
All sensitive documents are stored in a network share named Share1. All of the new documents in
Share1 must be automatically rights protected.
All users must be able to send rights-protected documents from Share1 to users in a partner
organization. The users in partner organization must be able to view the contents of the documents.
The partner organization does not have an AD RMS infrastructure.
Only employees of Adatum can have user accounts in the Adatum.com domain.
User Requirements
All employee guideline files must be available to all users if the file server that stores the files fails.
###EndCaseStudy###
You need to recommend a storage solution for the rights-protected documents that meets the
company’s security requirements. What should you include in the recommendation?
Active Directory Certificate Services (AD CS)
B.
File Server Resource Manager (FSRM)
C.
Microsoft System Center Data Protection Manager 2010
D.
Network Policy Server (NPS)
http://blogs.technet.com/b/amolrb/archive/2010/02/09/automating-the-doc-protection-using-fciintegration-withrms-bulk-protection-tool.aspx