Microsoft 1 - page 118

Microsoft Exchange 2000 Operations Guide — Version 1.0110

SASL

Simple Authentication and Security Layer. Defined in RFC2222.

Schema

The metadata (data about data) that describes the use of objects within a given structure. In

Active Directory, the schema governs the type of objects that can exist and the mandatory

and optional attributes of each object. Windows 2000 Active Directory has an extensible

schema that allows third parties to create their own object classes.

Schemas also exist for other components such as the message transfer agent (MTA) and

information store in Exchange Server.

Secure Hash Algorithm version 1

Published in 1994 as a federal information-processing standard (FIPS PUB 180), this was

developed by the National Institute of Standards and Technology (NIST). Similar to the MD4

family of hash functions, this takes a message of less than 264 bits and produces a 160-bit

message digest. It is slightly slower than MD5 but is more secure against brute-force

collision and inversion attacks.

Security principal

A user who can log on to a domain and have access to network resources. In Active

Directory, a user object is a security principal.

A non-security principal is an object represented in Active Directory that cannot access

resources within the enterprise.

Simple Message Transfer Protocol – SMTP

A major standards-based protocol that allows for the transfer of messages between differ-

ent messaging servers. SMTP is defined under RFC821 and uses simple command verbs to

facilitate message transport over TCP/IP port 25.

Site

A collection of IP subnets. All computers that are in the same site have high-speed connec-

tivity—local area network (LAN) speeds—with one another. Unlike an Exchange site, an

Active Directory site does not include a unit of namespace; for example, multiple sites may

exist within a single domain, and conversely, a single site may span multiple domains.

Scripting Agent

Exchange Server Scripting Agent lets you use server-side scripts that run as a result of

events occurring in Exchange folders. There are four events that can trigger the scripting

agent, timer events and actions: posting, editing, receiving or deleting a message.

Sink

See Event Sink.

Contents

Main ii Contents Chapter 1 Introduction 1 Chapter 2 Capacity and Availability Management 11 Change and Configuration Management 37 Chapter 4 Enterprise Monitoring 53 Chapter 5 Protection 71 Chapter 6 Glossary 97 Support 89 Page Page Page Introduction Microsoft Operations Framework (MOF) Page How to Use This Guide Efficiency, Continuity, and Security Figure 1.2 Efficiency Continuity Security Chapter Outlines Planning and Deployment Service Level Agreements Features Performance Recovery Support Related Topics Page Capacity and Availability Management Capacity Management Page Page Availability Management Service Hours Service Availability Minimizing System Failures Decreasing Single Points of Failure Increasing the Reliability of Exchange 2000 Minimizing System Recovery Time Performance Tuning Making Changes to the Registry No Performance Optimizer Optimizable Features Tuning Considerations Upgrading from Exchange 5.5 to Exchange 2000 Tuning the Message Transfer Agent (MTA) Tuning SMTP Transport Mailroot Directory Location SMTP File Handles Page Store and ESE Tuning Online Store Maintenance Online Backups Choosing the Correct Maintenance Strategy Extensible Storage Engine (ESE) Heaps Store-Database Cache Size Page Log Buffers Tuning Active Directory Integration Page Tuning Outlook Web Access (OWA) Page Hardware Upgrades Page Change and Configuration Management Prerequisites Change Management Defining Change Type Step 1 Request for Change Is Submitted to Change Manager Step 2 Change Manager Assesses the RFC Step 3 Change Is Passed to IT Executive Committee for Approval Step 4 Change Is Passed to the Change Advisory Board for Scheduling Step 5 Change Is Passed to the Change Owner Step 6 Change Process Evaluation Minor and Standard Changes Scripting Minor and Standard Changes Security Software Control and Distribution Documentation Configuration Management Tools for Configuration Management Configuration Management and Change Management Configuration Items Page Page Page Defining Configuration Items Configuration Management and Exchange Maintaining the Configuration Management Database Change Management Ownership Security Backup Exchange System Policies Administering System Policies Page Enterprise Monitoring Prerequisites Performance Monitoring System Monitor Exchange 2000 Objects and Counters to Monitor Service or Resource Performance Object Information Store Counters SMTP Server MSExchangeMTA and MSExchangeMTAConnections MSExchangeIM Virtual Servers MSExchangeAL Windows 2000 Objects and Counters to Monitor Table 4.2 Subjects and Associated Objects and Counters Subsystem Object Counter Exchange Comments Subsystem Object Counter Exchange Comments Centralized Monitoring Event Monitoring Event Viewer Log Files Centralized Event Monitoring Availability Monitoring Monitoring and Status Tool Adding Services to the Default Configuration Monitoring Resources Notifications Status Disabling Server Monitoring Centralized Availability Monitoring Client Monitoring Page Page Protection Chapter Start Point Chapter End Point Protection Against Hacking Firewall Operations Maintaining Firewall Availability Ensuring That Only the Correct Traffic Passes Through the Firewall Monitoring Against Hacker Intrusion Dealing With Security Breaches Anti-Virus Measures Staying Current Dealing With Virus Infection Blocking Attachments at the Client Page Disaster Recovery Procedures Backing Up Page Offline Backup Disk Imaging Restoring Recovering Individual Messages Recovering Lost Mailboxes Recovering Exchange Stores and Storage Groups Full Exchange Server Recovery Recovering Exchange After Active Directory Failure Alternate Server Recovery Recovery Testing Page Page Support Providing Support for End Users Reducing End User Support Costs Page Problem Reporting Dealing with User Problems Notifying Users Exchange Problem Management Page Page Glossary