MCITP Training, MCITP Online Training, MCITP online Exams, MCSE Training, CCNA, CCIE, MCTS Online Training, MCTS Online Exams, MCSE 2003, MCTS Training, Citrix

Microsoft Issues New Windows Security Advisories
Microsoft issued even more details about Windows security concerns, even after releasing its August security update on Tuesday.

Late yesterday, Microsoft MCTS Training announced two security advisories. One is new, while the other updates a previously issued advisory. Meanwhile, IT pros already are tying to cope with this month’s massive security update.

The updated advisory simply states that Microsoft has concluded its investigation into a security advisory issued in February. That problem concerns the Transport Layer Security and Secure Sockets Layer (TLS/SSL) protocols in general, and the Windows Secure Channel security package in particular.

The issue was addressed with critical security bulletin MS10-049  in Microsoft’s August patch. It’s designed address the flaw in Windows Server 2008, Windows 7 and 12 other supported versions of the Windows OS, including XP and Vista.

Left unpatched, the Windows Secure Channel vulnerability could allow attackers the ability to perform “man-in-the-middle” attacks via TLS/SSL connections. The problem is of general concern, and Microsoft’s issuance of a fix suggests that broad industry engagement occurred, according to Jason Miller, data and security team manager at Shavlik Technologies.

“In recent months, we have heard of Microsoft working with other vendors such as Adobe to address vulnerabilities as a whole and not as a one-company issue,” Miller said. “The release of MS10-049 shows that Microsoft is again working with the industry with vulnerability management.”

Miller added that the fix from Microsoft had long been in the works. The TLS/SSL vulnerability was “not just Microsoft’s problem” as it affected the “IT industry as a whole,” he said.

Windows Service Isolation Flaw
Next up, Microsoft issued a new security advisory on Tuesday concerning a Windows Service Isolation feature that could enable elevation-of-privilege exploits. The operating systems involved include Windows XP, Windows Vista and Windows 7, as well as Windows Server 2003 and Windows Server 2008.

Microsoft said that an attacker could use this feature to elevate processes running on a Windows-based “NetworkService account” to the “LocalSystem account” on a server. It could give the attacker the ability to take control of a system.

At-risk Microsoft products include the Windows telephony application programming interfaces, SQL Server and Internet Information Services (IIS) in Windows Server 2003 and Windows Server 2008.

Because there is no known vulnerability and only a “potential” likelihood of such attacks at this time, Microsoft did not specify whether the issue would warrant further actions, such as the issuance of workarounds or patches. However, in this Knowledge Base article, the software giant describes various access control tools in both IIS and SQL that can restrict entry into the NetworkService account.

No Security Advisory for Clipboard Issue
On Wednesday, Microsoft provided an updated statement on the zero-day Windows kernel-level clipboard vulnerability uncovered last week by independent security researchers. The software giant said it will not release a security advisory for the heap overflow problem affecting all supported Windows versions.

For this issue to be exploited, it has to be an inside job, according to the rationale of the Microsoft security team. Redmond said “an attacker must have valid log-on credentials on the target system and be able to log on locally, or must already have code running on the target system.”

This assessment rules out the prospect that an urgent out-of-band patch will arrive soon. However, Microsoft MCITP Certification promised that the issue would be fixed in a future security update. Microsoft Security Response Center spokesperson Jerry Bryant wrote that Microsoft “will continue monitoring the threat landscape and alert customers if anything changes.”

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCPD, mcse 2003, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Microsoft Extends UTD Discount for Windows and Office
Microsoft has extended its “up-to-date” (UTD) discount upgrade offer for Windows and Office licensees through next month.

The extension of the UTD upgrade offer “through September 30, 2010″ was announced on Tuesday by Eric Ligman, global partner experience lead for the Microsoft Worldwide Partner Group. He provided a description of how the UTD offer works in a blog post back in January. At that time, Microsoft had said that the offer would expire in July.

The terms of the deal only apply under Microsoft’s “open value subscription” (OVS) three-year licensing program. Users can upgrade their copies of the Professional editions of Windows or Office to the current Professional editions, and Microsoft grants a half-off discount for the first year of the OVS subscription only. The cost reverts back to the nondiscounted price in years two and three of the OVS subscription.

This nondiscounted price is called the “estimated retail price” by Microsoft. In this case, according to Microsoft’s volume-licensing lingo, “retail” doesn’t mean the box price as found in retail stores. It’s the price set by Microsoft’s partners, who buy Open Value Subscription licenses from Microsoft. Consequently, the estimated retail price can vary, depending on the partner offering it, but it’s typically lower than store box prices.

The UTD discount plan permits upgrades to current Windows and Office Professional editions from releases that are two generations removed. Microsoft MCTS Training uses the math expression, “N-2,” as a shorthand explanation for this concept. The N-2 release for the current Windows 7 product is Windows XP. The N-2 release for the current Office 2010 product is Office 2003.

The older software being upgraded can be based on OEM, retail or volume licenses, but only the Professional editions qualify. In addition, if IT shops have some current releases mixed in, they will have to pay again for those licenses under the OVS program. To qualify under OVS licensing, organizations need to have more than five PCs but less than 250 PCs.

OVS is unlike other open-value licenses in that it does not require the purchase of Software Assurance (SA), according to Paul DeGroot, research vice president at Directions on Microsoft MCITP Certification . SA is a licensing option that lets organizations upgrade to the next version of a product within the SA contract’s time period. OVS costs less “because you never pay for the licenses,” DeGroot said in an e-mail. However, after the three-year subscription period is over, organizations will either have to buy the licenses, renew the OVS or just stop using the software.

OVS allows “true downs” in calculating annual licensing costs. So, licensing costs can go down as the number of PCs running the software declines in an organization. This kind of licensing might prove to be valuable for small companies that downsize the workforce, for instance.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCPD, MCSA, MCSD, mcse 2003, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

HTML5 raises new security issues
When it comes to new security issues, the security team for the Firefox browser have the new version of the Web HyperText Markup Language, HTML5, foremost on the mind.

“Web apps are becoming incredibly rich with HTML5. The browser is starting to manage full-bore applications and not just Web pages,” said Sid Stamm, who works on Firefox security issues for the Mozilla Foundation. Stamm was speaking at the Usenix Security Symposium, held last week in Washington D.C.
Free trial: V-locity virtual platform disk optimizer: View now

“There is a lot of attack surface we need to think about,” he said.

On the same week Stamm expressed worry over HTML5, developers of the Opera browser were busy fixing a buffer overflow vulnerability that could be exploited using the HTML5 canvas image-rendering feature of Microsoft MCTS Training.

Is it inevitable that the World Wide Web Consortium’s (W3C) new set of standards for rendering Web pages, collectively known as HTML5, come with a whole new bundle of vulnerabilities? At least some security researchers are thinking this is the case.

“HTML5 brings a lot of features and power to the Web. You can do so much more [malicious work] with plain HTML5 and JavaScript now than it was ever possible before,” said security researcher Lavakumar Kuppan.

The W3C is “gearing this entire redesign over the idea that we will start executing applications within the browser, and we’ve proven over the years how secure browsers are,” said Kevin Johnson, a penetration tester with security consulting firm Secure Ideas. “We have to go back to understanding the browser is a malicious environment. We lost site of that.”

Although it is the name of a specification on its own, HTML5 is also often used to describe a collection of loosely interrelated set of standards that, taken together, can be use to build full-fledged web applications. They offer capabilities such as page formatting, offline data storage, image rendition and other aspects. (Though not a W3C spec, JavaScript is also frequently lumped in these standards, so widely used it is in building Web applications).

All this new proposed functionality is beginning to be explored by security researchers.

Earlier this summer, Kuppan and another researcher posted a way to misuse the HTML5 Offline Application Cache. Google Chrome, Safari, Firefox and the beta of the Opera browser have all already implemented this feature, and would be vulnerable to attacks that used this approach, they noted.

The researchers argue that because any Web site can create a cache on the user’s computer, and, in some browsers, do so without that user’s explicit permission, an attacker could set up a fake log-in page to a site such as a social networking or e-commerce site. Such a fake page could then be used to steal the user’s credentials.

Other researchers were divided about the value of this finding.

“It’s an interesting twist but it does not seem to offer network attackers any additional advantage beyond what they can already achieve,” wrote Chris Evans on the Full Disclosure mailing list. Evans is the creator of the Very Secure File Transfer Protocol (vsftp) software Microsoft MCITP Certification.

Dan Kaminsky, chief scientist of the security research firm Recursion Ventures, agreed that this work is a continuation of attacks developed before HTML5. “Browsers don’t just request content, render it, and throw it away. They also store it for later use … Lavakumar is observing that the next-generation caching technologies suffer this same trait,” he said, in an e-mail interview.

Critics agreed that this attack would rely on a site not using Secure Sockets Layer (SSL) to encrypt data between the browser and Web page server, which is commonly practiced. But even if this work did not unearth a new type of vulnerability, it does show that an old vulnerability can be reused in this new environment.

Johnson says that, with HTML5, many of the new features constitute threats on their own, due to how they increase the number of ways an attacker could harness the user’s browser to do harm of some sort.

“For years security has focused on vulnerabilities–buffer overflows, SQL injection attacks. We patch them, we fix them, we monitor them,” Johnson said. But in HTML5′s case, it is often the features themselves “that can be used to attack to us,” he said.

As an example, Johnson points to Google’s Gmail, which is an early user of HTML5′s local storage capabilities. Before HTML5, an attacker may have had to steal cookies off a machine and decode them to get the password for an online e-mail service. Now, the attacker needs only to gain entry into the user’s browser, where Gmail stories a copy of the inbox.

“These feature sets are scary,” he said. “If I can find a flaw in your Web application, and inject HTML5 code, I can modify your site and hide things I don’t want you to see.”

With local storage, an attacker can read data from your browser, or insert other data there without your knowledge. With geolocation, an attacker can determine your location without your knowledge. With the new version of Cascading Style Sheets (CSS), an attacker can control what elements of a CSS-enhanced page you can see. The HTML5 WebSocket supplies a network communication stack to the browser, which could be misused for surreptitious backdoor communications.

This is not to say that the browser makers are oblivious to this issue. Even as they work to add in the support for the new standards, they are looking at ways to prevent their misuse. At the Usenix symposium, Stamm noted some of the techniques that the Firefox team is exploring to mitigate damage that could be done with these new technologies.

For instance, they are working on an alternative plug-in platform, called JetPack, that would keep tighter control of what actions a plug-in could execute. “If we have complete control of the [application programming interface], we’re able to say ‘This add-on is requesting access to Paypal.com, would you allow it?’” Stamm said.

JetPack may also use a declarative security model, in which the plug-in must declare to the browser each action it intends to undertake. The browser then would monitor the plug-in to ensure it stays within these parameters.

Still, whether browser makers can do enough to secure HTML5 remains to be seen, critics contend.
Gaining Network Visibility Into Virtualized Infrastructure: View now

“The enterprise has to start evaluating whether it is worth these features to roll out the new browsers,” Johnson said. “This is one of the few times you may hear ‘You know, maybe [Internet Explorer]6 was better.’”

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, mcse 2003, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Surviving And Staying Ahead
To survive and thrive in today’s brutally competitive business environment, tech firms must find ways to continuously move ahead– and to stay ahead– of their competition. Here’s an insight on the factors that differentiate the best from the rest, and the leaders from the also-rans.

Joe Tiller, a famous football coach, said, “It’s always a chess game, and you’re trying to stay one move ahead of the competition.” Tiller’s words are as applicable to business as they are to football. Today, the Internet and the WWW (World Wide Web) are changing the way business is done, by providing a level playing field for small companies to effectively and efficiently compete with large conglomerates. No longer are cash-laden behemoths safe in their market-lead positions– those could be taken at any time by smart and agile new competitors.

Running an efficient organisation Microsoft MCITP Certification that delivers high-quality products and services at reasonable prices is essential for business success– but it is no longer sufficient to ensure survival. Customer satisfaction; early adoption and effective use of technology; better data collection, analysis and decision-making; automation of business processes, etc, are all essential for survival. However, these are not the key differentiators in today’s global Web economy.

Innovate or perish

Many research firms and industry analysts indicate that the only way for companies to compete is to constantly innovate; avenues for improving the bottom line have been exhausted, and the only way to move forward is to sustain top line growth and increase profits. So CEOs and the top management must change their focus from the operational issues to growth and innovation. According to Rosabeth Kanter, “To stay ahead, you must have your next idea waiting in the wings.”

Some well-known examples of companies that constantly innovate are Dell, which revolutionised the PC market; McDonald’s, which redefined the fast food market; and – of course! – Apple. Consider the barrage of new Apple products in recent years– the iMac, iBook, iCube, and eMac; the iPod and its multiple variants and versions; iTunes, the Mac Book, Mac Pro, Apple TV, the iPhone, and more. With such ceaseless innovation, no wonder other firms are always trying to catch up with Apple, and never quite succeeding! According to Apple CEO Steve Jobs, “Innovation distinguishes between a follower and a leader.” Today, innovation is no longer a luxury; it is the key to survival.

Innovation does not happen automatically; organisations need to foster it, to create an environment that is conducive to innovation. For example, at Google, employees can spend 20 per cent of their time on exploring and developing their own ideas. Some of the best Google applications and products are the result of such projects. Organisations must also prevent innovation stoppers and idea-killers from stamping out the innovative spirit of employees. In his book “The Myths of Innovation”, Scott Berkun defines an innovation stopper as “a person with the power and motivation to kill new ideas.” Idea-killers are those whose response to new ideas are, “We have tried it before” or “We don’t have the time/budget.”

Continuous learning

Continuous learning keeps employees up-to-date with the latest technological developments, and helps them improve their efficiency with newer methods, practices, tools and techniques. In his book,The Fifth Discipline: The Art and Practice of the Learning Organisation , Peter Senge stresses the importance of making an organisation a home of continuous learning, where people continually expand their capacity to achieve the results they truly desire. New ideas, new knowledge and new findings are used to anticipate and to innovate.

Again, organisations need to provide employees with an environment that promotes learning, as well as ample learning opportunities. Well-stocked libraries and computer facilities are a necessity. HRD should study employee profiles to fill the gaps in employee skill-sets, in accordance with the organisation’s long-term strategies. For example, before a switch from UNIX to Windows as the main operating system, employees who are not familiar with Windows need to be trained to ensure a smooth transition.

Continuous evolution

The phrase ‘survival of the fittest’ – one of the fundamental laws of evolution– is true in the case of businesses too. Tech firms that adapt to new environments and evolve are able to survive and thrive even during difficult times. The two aspects of evolution are diversification and strengthening of core competencies.

All organisations have core competencies which they should identify and strengthen. For example, a car manufacturer should find ways to improve the quality of cars, make them safer, more fuel efficient and comfortable, while keeping prices as low as possible.

Diversification can be either horizontal or vertical. In the case of horizontal diversification, the organisation enters areas that are related to its core competency– like acquiring or developing new products that appeal to existing customers. For example, a car manufacturer can diversify into auto accessories. In vertical diversification, the company moves into the business areas of its suppliers. For example, the car manufacturer could diversify into manufacturing steel or tyre- making so that it could produce what’s required for its core business.

Diversification, if done properly, gives entry to new markets, provides new business opportunities, and reduces financial risk. Diversification can be achieved through mergers, acquisitions and by starting new business units. The advantages of the first two strategies are that you get a new product and a set of talented people, while eliminating a potential competitor.

Kaizen– continuous improvement

The Japanese concept of Kaizen, or continuous improvement, is one of the best ways to improve the efficiency and effectiveness of an organisation.

The difference between innovation and improvement is that innovation often involves drastic changes to the existing process, and requires large investments, whereas Kaizen signifies small but continuous improvements– the result of coordinated and continuous efforts by all employees. Improvements could range from the elimination of an unnecessary process to the introduction of a safer working practice.

Such small and minor improvements can have a dramatic impact on the overall performance of a company. Consider the example of AZ Technologies, which conducted touch-typing training for all its employees when they found that 95 percent of employees used computers for at least four hours a day. The productivity improvement was dramatic– many employees were able to save hours, as their typing speed doubled or tripled.

Recruiting and retaining the best…

Employees are the most valuable assets of any organisation. But recruiting and retaining the best minds is not an easy task– it takes a lot of work, coupled with really innovative and creative plans.

Google (the best company to work for, according to Fortune magazine, 2007), offers goodies such as stock options, an informal work environment, free meals, a spa, free on-site medical care, free transportation, hair saloons, gyms, massage parlours, childcare, on-site notaries, car services, and more. It’s no wonder that Google gets more than 1,300 resumes a day!

According to the 2007 Business Today study of the best company to work for, Microsoft MCTS Training India has toppled the 2005 and 2006 winner, Infosys. The reasons? A host of innovative strategies, including leadership development programmes, recognition of talent, seamless internal branch transfers, excellent compensation packages, an exemplary mentoring system, assistance with finding homes, school admissions, childcare, etc.

All the top employee-friendly companies have informal and flexible work environments, challenging assignments, a fun-filled and enjoyable work culture, comfortable and often luxurious workplaces, excellent perks, ample scope for personal and professional growth, and so on.

Business agility

Change is one thing that all businesses have to cope with. How well an organisation manages change is one of the factors that decides its success. New technological developments are revolutionising the way we think, work and do business due to the introduction of new business models, addition of new rules and regulations, and entry of new competitors. Customer preferences change so fast that most new products have a very short shelf-life.

In such an environment, the success of an organisation depends on how fast it can adapt, and how quickly and effectively it can respond to change– its agility. When an organisation has to adapt quickly, the responsibility of problem solving will go to its employees. Innovative and apt solutions for each new situation can be created quickly by the collective intelligence of employees. According to Kouzes and Posner (Management 21C, 2000), the secret of high-performing organisations is that everyone within them knows that leadership at all levels is expected and rewarded, and that individuals everywhere are responsible for making extraordinary things happen.

Jack Welch, the former CEO of General Electric, has popularised the concept of ‘boundary-less organisations’. These are firms that are not limited by the horizontal, vertical or external boundaries imposed by a predetermined structure, and where cross-functional teams dissolve horizontal barriers, while external partnerships and collaboration overcome the firm’s boundaries. Obstacles like hierarchy, bureaucracy, unnecessary regulations, and geography are removed, to achieve outstanding business performance– enabling the company to respond quickly to environmental changes, and to spur and stimulate innovation.

Staying ahead

To survive and stay ahead of the competition, the management must run leaner and smarter organisations. Whether a company becomes an industry leader or remains just another in the pack, depends on its ability to constantly innovate and learn, continuously improve, use technology intelligently and effectively, anticipate, adopt, and react to changes quickly. Organisations should hire the best talent, keep them happy, and make the best use of their talents. The four factors that are critical for the success of any organisation are people, innovation, information and technology.

Change is continual…

“It is change, continuing change, inevitable change that is the dominant factor in society today. No sensible decision can be made any longer without taking into account not only the world as it is, but the world as it will be…This, in turn, means that our statesmen, our businessmen, our everyman must take on a science fictional way of thinking.” Isaac Asimov

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCPD, MCSA, MCSD, mcse 2003, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

What’s New With Operating Systems?
In the light of fast-paced changes on the browser front, are users finding that innovation at the desktop has stagnated? Has it? Or is there a lot brewing ‘under the hood’ that we’re just not aware of, yet take for granted as our user experience improves incrementally?

For most computer users, an operating system is somewhat like the engine under a car’s hood. They know how to start and stop the engine, how to drive around, probably how to check oil levels, but beyond that, the knowledge is limited. With a car, that is okay, since we do not really need to know more unless we are hard-core enthusiasts, or working in the automotive industry.

Getting back to operating systems, the beauty of these ‘engines’ is that they allow users to run their computers and use their favourite applications, while they take care of allocating system resources, handling processes, and so on. Operating systems are far from perfect, but they are remarkable pieces of software for the sheer complexity of tasks that they handle.

We open up the engine and take a look at some of the recent innovations in operating systems.

Splashtop: A fast-booting OS

What do PC users do after they press their PC’s power button?

* Go get a cup of coffee
* Stare at the screen and practice meditation
* Chat with colleagues
* Any of the above

Jokes aside, most of us usually spend minutes waiting for the operating system (OS) to boot up. This is especially frustrating when we need to look up something on the Internet quickly, or just have a few minutes to check personal e-mail.

{quotes}A new operating system called Splashtop allows you to connect to the Internet without booting your main operating system{/quotes}. Splashtop has two components: a core engine that runs out of the BIOS, and an optimised Linux stack that boots rapidly. Splashtop boots out of the BIOS (basic input-output system) on the motherboard of the PC, generally in five seconds or less, according to the website, and provides quick access to certain applications, like the Splashtop Web browser (based on Firefox) and Skype– or offers you the choice of booting your main operating system.

Splashtop is currently available only on ASUS motherboards. When we enquired about how the company plans to make Splashtop available to customers, Andrew Kippen, press and blogger relations manager at DeviceVM (the company that provides Splashtop) revealed, “We spoke about many different ways to release Splashtop, but in the end decided that launching with a partner like ASUS, the world’s largest motherboard manufacturer, was the best way to reach consumers. Splashtop-enabled laptops and desktops will be released later this year.”

Splashtop uses flash memory on the motherboard to store its applications. Could that be a bottleneck? Kippen says, “This is not an issue, since we tailor each version of Splashtop to the manufacturer’s specifications. If there is a size issue, manufacturers can include a larger flash memory chip, or run Splashtop from a partition on the hard drive.”

On issues like vulnerability to attacks and whether it is possible to save attachments or documents, Kippen says, “Like I mentioned earlier, we tailor each version of Splashtop to a manufacturer’s specifications, so [the answer to] your question depends on the manufacturer. On current ASUS products, we allow persistent data (like bookmarks and cookies) to be written to memory. However, users cannot save files, for security reasons.”

Since Splashtop is Linux-based, it is immune to most of the attacks that plague traditional operating systems. Restricting access to memory, whether flash memory or the hard drive, further ensures that Splashtop always works properly.

Speaking on the reasons for the OS’s popularity, Kippen adds, “A major reason for Splashtop’s success is that more and more applications are moving to the Web. Users (excluding business users) spend more time with Web-based e-mail, Facebook, MySpace, YouTube, and other websites than on any desktop program. Online applications like Google and Zoho are quickly becoming viable options for most Office-like applications.

“We are targeting mass-market consumers, i.e., normal people who just want their computer to work without any wait or fuss. We see ourselves as a good complement to the traditional OS, great for lightweight applications like Web browsing and media playback, but not the right fit if you want to do video editing.”

Splashtop is not the only company in this space. Phoenix Technologies, a company that makes BIOS software, is developing software called Hyperspace that will launch along with the PC’s regular OS. Hyperspace, which is billed as a “compact and secure application environment”, will be able to run applications as well as perform systems maintenance (repair, back-up, recovery, etc) and security. Phoenix expects manufacturers to start offering Hyperspace in the latter half of 2008.

Desktop search

While Google is the leader in Web search engines, its dominance in the desktop environment is not so clear-cut. A probable reason for this is that both Apple and Microsoft MCTS Training have included better search capabilities in their operating systems, Mac OS X and Vista.

Leopard, the latest version of Mac OS X, allows you to flip through files just as you would browse album art on iTunes, perform Boolean searches, save searches, and even find files on your network. Vista’s search capabilities include tagging, search folders (pre-defined searches), and search integration with different applications.

About innovations in desktop search, Dr Michael Swift, an assistant professor at the University of Wisconsin-Madison says, “Since the introduction of Apple’s OS X 10.4 [Tiger], desktop search has become a predominant way of accessing files. This was followed by Vista’s search capabilities. Currently, these capabilities are not completely integrated into the OS, in that they execute as shell extensions, but I see search as becoming the dominant way to access files on a PC.”

BumpTop: Real-world desktop metaphors

Take a look at the desk where you work. Do you have piles of books, or maybe papers stacked on it or even strewn about? Most of us tend to organise in stacks– of books, magazines, and papers. What if you could organise your computer’s files on your desktop in a similar way?

BumpTop, software developed by Anand Agarwala and Ravin Balakrishnan, aims to do exactly that. The interface uses techniques like shading and animation to drag files with a fluid movement. You can drag, or even toss files into piles. You can view the items in the pile in different ways by using widgets– flipping them like you would flip pages in a book, or viewing them like a deck of cards. Other manipulation techniques let you organise your files in different ways.

BumpTop is in the ‘private alpha’ stage at the moment, but you can sign up on the website to try it once it is available. You can also view a demo video from the website at http://www.bumptop.com/

It is too early to tell whether BumpTop will change the way in which we organise our desktops. What is clear, though, is that BumpTop’s interface is an interesting and innovative concept.

Device driver reliability

Most of us are unaware that device drivers which are required for the different hardware that we use cause many of the crashes we experience with operating systems. Researchers are looking at ways to minimise the effects of device drivers when something goes wrong.

One such effort is the Nooks project, being conducted at the University of Washington by Dr Michael Swift. Nooks (as defined by the researchers) is a reliability sub-system that seeks to enhance OS reliability by isolating the OS from driver failures.

{quotes}The Nooks project worked on the Linux kernel, since the source code was freely available.{/quotes} According to Dr Swift, “The team also investigated an implementation in the Windows 2000 kernel, even going as far as to implement key portions: object tracking, wrappers, and limited recovery. However, the inability to redistribute code, and the lack of available driver source code for Windows, limited our ability to pursue this work.”

About the future of driver protection mechanisms, Dr Swift says, “I would expect that in the future, driver protection mechanisms will come in two formats: user-level drivers and driver protection integrated with virtual machines. Windows Vista added support for the User-Mode Driver Framework (UMDF), which allows certain drivers to be written for user mode. This does not provide the compatibility of Nooks, but does provide similar protection.

“You can see driver protection in Xen [an open source virtual machine monitor], in its ability to run drivers in a separate virtual machine. However, Xen to date has not added recovery support, so it does not tolerate driver failures in the same way as Nooks. I would expect that improved recovery would become part of virtualised drivers.”

Making back-up easier

Backing up your computer is like eating healthy– you know you should, but you probably don’t actually do it. Since operating systems in the past did not offer easy-to-use solutions, it made the task of backing up onerous. Dr Swift thinks that this will change.

He says, “As people put more of their life online, I think that back-up will be a place that desktop operating systems innovate. Apple has done this already with its Time Machine back-up system, which allows simple time- or date-based access to old versions of files. Microsoft MCITP Certification has added back-up capabilities to Vista as well, but not with the same level of UI (user interface) sophistication.”

Other areas of innovation

What are the other areas of innovation in the OS space? Dr Swift reveals, “Security continues to play a huge role on the desktop. Both Apple and Microsoft have added extensive new security features to their latest products, in the form of more powerful firewalls and the ability to restrict the permissions of executing code (Sandboxing on Leopard; and User Account Control and Internet Explorer safe mode with mandatory integrity controls on Vista).”

He adds, “As the hardware industry moves from single-processor chips to multi-core chips, desktop operating systems need to invest more in scalability and parallelism, to both reduce the cost of OS activity, and to enable applications to make better use of the multiple cores. Vista introduced several new mechanisms for writing concurrent code, including new types of locks and signalling methods.

{quotes}”Reliability has become an important place for innovation on the desktop. Vista has more support for detecting and handling application hangs, and a new kernel transaction manager with filesystem transactions.{/quotes} These transactions make it easier to simultaneously update several files, and to handle any failures that occur during the update process.”

Microsoft Research’s OS team is also working on a research project called Singularity in order “…to build more reliable systems and applications.” On whether the research would make its way into newer versions of Windows, a Microsoft spokesperson says, “We are not giving official guidance to the public yet about the next version of Windows. We are currently in the planning stages for Windows 7 and will provide updates when we are ready.”

In the case of the One Laptop Per Child (OLPC) project, in addition to its hardware innovation, it has created a laptop with a Linux-based operating system and a radical desktop interface (SUGAR) that was designed for children.

Speaking about OS innovations, Walter Bender, president of Software/Content and COO of the OLPC Foundation, reveals, “From the OLPC perspective, there are a number of metrics we consider paramount in regard to the operating system, which are not mainstream considerations in an era of ‘bigger-faster’ computing.”

“Most important is power management. When you live off the electrical grid, making the most of every watt is critical. We are pushing the concept of power management to new extremes. Memory management is another area of concern: memory costs money, and consumes power. The extent to which we can better manage memory usage is correlated with the extent to which we can manage power usage. A further challenge is the lack of swap space, since we are using flash storage rather than a hard disk. Finally, the culture of free and open source is essential for the viability of a project such as One Laptop Per Child: it is the only way to scale, and at the same time, enable unencumbered local capacity development.”

In short, we may not be able to ‘see’ all the innovations in the operating systems space, but they are taking place!

What the future holds

If you look back to the days of DOS-based PCs, we have come a long way to our current operating systems. What will the future of PC operating systems be? Will we even have PC operating systems, given that Web-based operating systems are coming up? What about the fast-booting operating systems, embedded on the motherboard?

Dr Swift says, “To date, there have been many attempts to dislodge the dominant operating system vendors, with little success. I have not used the systems you mention [Web operating systems] enough to understand what their value proposition is, but I think they may be most useful as layers above a normal operating system. In this way, they would serve more as an advanced browser than as a full operating system, as they may not provide the complete hardware access and resource scheduling capabilities of Windows, Mac OS, or Linux.

“Fast-booting OS concepts make sense for embedded devices or closed products where devices cannot be attached, but the extensibility of the personal computer makes it unlikely that these products will supplant existing desktop operating systems.

“Regarding Web operating systems, I think they provide some benefit, but people today are comfortable going to individual websites for their content, so I am not sure they add that much value. What may happen instead is that more of people’s computing experience will migrate to mobile devices, such as smart phones, so the services that Web-based operating systems offer will be used from mobile devices rather than desktop PCs.” It looks like desktop operating systems are here to stay, albeit in a different avatar in the future.
Ubuntu: the new face of desktop Linux?

Linux has been around for quite a while now, especially in the server world — but distributions like Xandros and Mandriva have made installing and using Linux on your desktop much easier. The latest buzz around the desktop Linux world, though, is Ubuntu, which has become a major player since Dell began selling computers with Ubuntu pre-installed, in Europe and the US, in 2007.

Mark Shuttleworth (owner of Canonical Ltd, which sponsors Ubuntu) blogged that while a number of excellent companies like System76 already offer Linux pre-installed, Dell represents “the industry”, and it’s very important that the industry is now seeing a future for Linux on the desktop.

In other recent high-profile adoptions, the French National Assembly migrated to Ubuntu late last year. France’s Gendarmerie National recently announced plans to migrate 70,000 desktops from Windows to Ubuntu. In India, HCL has announced low-price laptops that run Ubuntu.

About Ubuntu’s innovations in the OS space, Gerry Carr, marketing manager, Canonical Limited, says: “Ubuntu’s innovation is that it ‘just works’. Linux was held back for many years by its perceived and actual difficulty.” Earlier, people’s peripherals would not work, and adding applications would require going to the command line. Ubuntu has changed that; due to the Ubuntu team’s efforts, adding drivers is now easy, and hardware compatibility has improved. New users usually have a wonderful experience on the desktop, rarely needing to go “under the hood”. Linux has had a lot of the fear that was associated with it taken away by Ubuntu’s simple, clean, and effective interface.

This is why it’s possible that Ubuntu is going to be the new face of desktop Linux; do keep an eye on the progress of this amazing Linux distribution– and if you haven’t tried it yet, maybe it’s time you did!
Backing up the back-up!

Apple’s Time Machine, released in October 2007 as part of Mac OS X Leopard, lets you do incremental back-ups, and allows you to go back to a specific date and see how a file looked on that date. Windows Vista also allows incremental back-ups, and allows you to back up to a location on a network. Vista’s shadow copy lets you recover files that you may have accidentally deleted. Maybe, someday, we will see operating systems that back up files via the Internet to a data centre

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCSA, MCSD, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Intel grabs server market share from AMD, says IDC

Intel has expanded its share of the server microprocessor market, taking advantage of a slow product transition at perennial rival Advanced Micro Devices, according to figures released late Wednesday by IDC.

Intel supplied 93.5 percent of the server processor units shipped in the second quarter, up from 89.9 percent in the same quarter last year. AMD’s share slipped to 6.5 percent from 10.1 percent over the same period, IDC said Microsoft MCTS Training .
Virtualization Boosts Public Sector Efficiency: Download now

Most of AMD’s share loss occurred between the first and second quarters, when server makers were slow to offer AMD’s new 6000 series Opterons in their systems.

“AMD is in the middle of a product transition. It stated in late Q1 and they hoped it would be completed in Q2, but it turns out it took their OEMs a bit longer to ramp up the products they were building,” said Mercury Research analyst Dean McCarron.

AMD executives said as much during an earnings call for the second quarter, in which the company swung to a loss after two straight quarters of profit. Intel had a much stronger quarter, thanks largely to growth in its server chip business.

“Intel got significant sales traction for its new 32 nanometer Xeon DP products, formerly code-named Westmere-EP, and for its 45 nanometer Xeon MP products, formerly code-named Nehalem-EX,” IDC analyst Shane Rau said via e-mail.

“In contrast, while AMD launched its 8-core and 12-core Opteron products, formerly code-named Magny Cours, OEMs didn’t buy them and ship them in significant volume [in the second quarter]. I expect that to change in [the third quarter],” he said.

McCarron also said things could look up now for AMD. “Presumably in the third and fourth quarters they won’t be weighed down by those transition issues,” he said.

In the wider x86 market, including server, desktop and mobile processors, things looked better for AMD. Its overall market share increased a fraction between the first and second quarters, from 18.8 percent to 19.0 percent of processor units shipped Microsoft MCITP Certification.

AMD’s share of laptop processor shipments increased to 13.7 percent in the second quarter, from 12.1 percent in the first quarter, while Intel’s share fell from 87.8 percent to 86.1 percent. In desktop processors, Intel added a half percentage point of share from the first quarter, to reach 72.2 percent, IDC said.

Via Technologies accounted for 0.3 percent of overall processor shipments in the second quarter, up from 0.2 percent in the first quarter but down from 0.5 percent in the first quarter last year, IDC said.

Overall x86 processor shipments for all vendors were up 30.8 percent year-over-year in the second quarter, as IT buyers resumed spending on equipment. The mobile sector saw the most growth, followed by servers.

(IDC is owned by International Data Group, the parent company of IDG News Service.)

Tags: http://www.testkingdom.com, MCITP, mcitp certification, mcitp exams, MCITP Training, MCSE, mcse 2003, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS certification, MCTS exams, online IT exams Training

Microsoft aims to stop drive-by downloads on Patch Tuesday

and third-party security experts warned that users could be subjected to drive-by downloads because of flaws in Windows and Internet Explorer that received fixes on Patch Tuesday this week.

Hackers are likely to use social engineering tricks to lure users to infected Web sites and media files, they warned. The vulnerabilities are among 10 security updates that patch a record-tying 34 vulnerabilities in Windows, Internet Explorer, Office and SharePoint.

Microsoft TechEd event to shed light on cloud computing plans

One bug in particular – a Windows kernel TrueType font parsing vulnerability – was rated as the most serious Patch Tuesday fix by Joshua Talbot, security intelligence manager for Symantec.

“Exploiting this – likely through a drive-by download attack – would give an attacker near system-level privileges. It’s doubtful that attackers would compromise a legitimate site to exploit this vulnerability, so users should be extra cautious of social engineering tricks coaxing them to visit unfamiliar Web pages, which could contain a malicious font.”

The TrueType vulnerability was contained in Security Bulletin MS10-032, one of the ten issued by Microsoft Tuesday.

However, Microsoft MCTS Training rated three other bulletins as being even more important than this one, with two of them involving potential drive-by downloads, which occur when users authorize a download without understanding the consequences, or that simply occur without the user’s knowledge.

MS10-033, a critical bulletin, “is a remote code execution vulnerability in both Quartz.dll and Asycfilt.dll and is rated Critical on all supported versions of Windows. Specially crafted media files could trigger the vulnerability when a user visits a web page or opens a malicious file,” Microsoft said.

With this vulnerability, hackers may use media files to lure users into downloading malicious code.

“This could result in a drive-by download where the user visits a specially crafted Web site, and in this case it would be like a media file that could start streaming or the user could open a specially crafted media file that got sent to them via e-mail or some method like that,” Microsoft security official Jerry Bryant said in a video accompanying the announcement.

These bugs are on par with some of the most critical ones observed on Patch Tuesday, says Andrew Storms, director of security operations at the security vendor nCircle.

Rather than making businesses vulnerable on the server side, this month’s most serious bugs mainly target end users, he said.
“What looks to be a normal movie file that you click on and watch could have embedded malware inside and take control of your system,” Storms said.

Similarly, the new bulletin MS10-035 involves flaws in Internet Explorer which could also result in drive-by downloads.

A third critical bulletin, MS10-034, involves ActiveX Kill Bits and affects Windows 2000, XP, Vista and Windows 7.
Kill Bits ensure that vulnerable ActiveX controls can no longer be exploited through Internet Explorer.

Typically, Kill Bits are issued for third-party software, rather than for software created by Microsoft, according to Storms. What is unusual about MS10-034 is that two out of the six Kill Bits being issued are for Microsoft ActiveX controls.

“What that means is Microsoft has found one of their ActiveX controls to be vulnerable as well,” Storms said. “Today they found two. That’s unusual. We haven’t seen that from Microsoft since last summer.”

Overall, this was a record-setting month for Patch Tuesday.

“This is the largest Microsoft MCITP Certification patch release of 2010 and ties the record for the most vulnerabilities ever addressed in a single month; a record set in October of last year,” Talbot of Symantec said. “This month’s release also features the largest ever single bulletin, with 14 vulnerabilities in Excel being addressed together.”

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCPD, MCSA, MCSD, MCSE, mcse 2003, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Microsoft offers Windows 7, Office 2010 via download stores
Microsoft has for the first time allowed selected partners to sell its flagship software products as downloads. The move sees Microsoft selling Windows 7, Microsoft MCTS Training Office 2010 and other flagship titles via ESD (Electronic Software Delivery) at online stores including the PC Advisor Software Shop.

ESD is the practice of delivering software without the use of physical media, typically by downloading via the internet. Digital distribution bypasses conventional physical distribution media, such as paper or DVDs, reducing costs and waste. As broadband connections have become more widespread software downloads have become an increasingly popular method of purchasing programs.
Get your job scheduler out of the 90′s: Download now

Traditionally Microsoft has sold the majority of its operating system software via OEM (original equipment manufacturer) deals. Manufacturers would buy Windows licences from Microsoft and pass the cost of the OS on to customers when they buy desktop PCs and laptops. Similarly, Office licences have typically been sold in large chunks to enterprises.

As digital media has become more capacious, Microsoft has targetted consumers with software DVDs sold from high street stores, with download purchases available only direct from Microsoft. Thus the decision to allow selected third-party vendors is a significant move by Microsoft.

PC Advisor has available for download a range of Microsoft MCITP Certification products including upgrades and full versions of all flavours of Windows 7 and Microsoft Office 2010. This is the first time that Microsoft has allowed third parties to sell downloads of its products in the UK, and follows a matter of weeks after the company first trialed ESD in France and Germany.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCPD, MCSA, MCSD, MCSE, mcse 2003, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Windows 8 Wish List of Features and Functions
Use Roles in Windows 8
Level the Playing Field with a Help Desk in the Cloud: Download now
for more info on MCTS Training, MCITP Certification login in to Certkingdom.com
When installing Windows Server, the base operating system is installed first and then an administrator can select the “role” the server will play. For example, an admin can choose the Web role, which installs features such as the Internet Information Services (IIS) Web server, or the Hyper-V role, which installs Microsoft’s hypervisor. Multiple roles can be installed on a server.

The client OS should have roles too, writes Cherry, because they make “installation fast and easy and reduce the OS surface area, which can reduce security threats and maintenance such as patching.”

Implementing roles into the client OS should be easy given its high-degree of componentization, writes Cherry, adding that possible client OS roles could be e-mail and Web browsing, student, business desktop, business mobile and gamer.

“An interesting side effect of adding roles might be faster start-up times,” writes Cherry. “If a person had a small netbook, and only installed the e-mail and Web browsing role, the OS might be able to start faster, because it only has to load the components for that role, and it doesn’t have to install other components for features that are not needed.”

Integrate Windows Phone 7 UI

The user interface for Windows Phone 7, internally called “Metro,” incorporates capacitive touch screens and a new feature called “Tiles” that work as visual shortcuts for an application or its content. Users can pin any Tile they want to the phone’s Start page.

Incorporating the “Metro” Shell into Windows 8 would be extra work for IT (organizations don’t want to retrain users for UI changes), but would help tie future versions of Windows Phone 7 and Windows together, writes Cherry. Users could then choose between the Windows Phone 7 “Metro” interface and the classic Windows 8 desktop interface.

The Metro shell would also “begin the process of making the Windows client more viable as a tablet with a UI that can better handle touch rather than relying on a mouse or a stylus for navigation,” writes Cherry.

Meaningful Error Messages

Windows error messages are often cryptic, showing hexadecimal error code such as 0xe0000100. In Windows 8, Cherry calls for error messages that make sense to the common user.

“You end up having to put code in a search engine to find out what the problem is,” says Cherry.

“If you can’t explain in an error message what went wrong and clearly indicate what to do about it, then you shouldn’t have an error message.”

More Powerful Power Management

Faster start-up times for Windows are on nearly everyone’s wish list, and Windows 8 is no exception. It also “needs to sleep, hibernate and wake up quickly and reliably, writes Cherry.

Cherry defines “start-up time” as the time between turning on the power to a machine that was stopped until you actually start performing useful work.

“On my Dell Precision T3400 with Windows 7 64-bit & after pushing the power button it is eight seconds until the BIOS has started and Windows 7 begins to load,” writes Cherry.

“At approximately the 15-second mark the ‘Starting Windows’ message and animation starts. At the 54-second mark, the Windows logon appears, and after logging on there is a 41-second period where all I can really do is watch the ‘donut’ cursor. After one minute and 50 seconds Outlook can be started, and mail can be sent and received with an Exchange server at the two minute 23 second mark. It takes 2.5 minutes to start Windows 7.”
Connecting to the Cloud with F5 and VMware VMotion: Download now

Cherry calls for more speed and accuses Microsoft of trying to convince users that continually “hibernating” their system is the answer to faster start-up. This is an illusion, he writes, and warns that “hibernate” has its own set of problems such as occasionally preventing network cards from resuming correctly.

Tags: MCAD, MCITP Training, MCP, MCSD, MCSE, mcse 2003, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Stupid data center tricks Part II
One day, Bowers had taken some personal time and was out for a jog when his iPhone rang — the switch in the school of medicine’s server room was overloaded, causing denials to every service it hosted.

“The green lights go on and off when packets pass through,” he explained. “It had ramped up until the lights were more on than off.”

Bowers quickly began troubleshooting over the phone. He was able to determine that nothing on the school of medicine’s network had changed. Then he remembered that purple cable. He told his co-worker on the phone to unplug it, and activity on the switch went back to normal. Then he had his co-worker plug it back in and the switch overloaded again, proving that the problem was at the other end of the purple cable — in the university hospital building.

It turned out that an IT staffer who was normally based out of a satellite location came to the university hospital’s IT room to work on a project and needed extra connectivity. He inadvertently created a loop by plugging two network cables from the university switch into a hub he had added to the network so he could attach additional devices.

Get Daily News by Email

“So it kept trying to send data around in a circle, over and over,” says Bowers, which in turn caused the switch in the school of medicine building to overload.

Bowers says the network was cobbled together like that when he began working at the university, so he inherited the setup — which a better approach to network planning and design would have no doubt flagged as problematic. But at least now the IT department knows one scenario to avoid going forward: Jury-rigged cabling and traveling techies can be a bad mix Microsoft MCTS Training.

“We didn’t do an official lessons learned [exercise] after this, it was just more of a ‘don’t do that again,’” says Bowers. However, this event, combined with another incident where a user unwittingly established a rogue wireless access point on the school of medicine’s network and overloaded the switch, has convinced Bowers of one thing: “I hold to the concept that human errors account for more problems than technical errors,” he says.
Save $35, lose all your data

More often than not, data center mishaps are caused, directly or indirectly, by employers’ attempts to save money. In this case, it was all about saving $35 on a backup tape.

In 1999, Charles Barber worked as technical support manager at a health-instrument company (one that no longer exists) that made stand-alone, server-based equipment that connected to treadmills to collect the data resulting from patient stress tests. One of the company’s customers was a small medical practice in St. Louis where the administrative assistant also served as the IT person Microsoft MCITP Certification.

“She was pretty competent” — but not a trained IT professional, says Barber.

One Friday evening, she heard strange noises coming from the equipment’s server and realized that the hard drive had failed. That Saturday she purchased a new hard drive, installed it and reloaded Microsoft’s Windows Server and SQL Server, since she had saved the discs and documentation. Barber had provided written instructions for her on how to configure the server, in case such a thing ever happened, and the assistant did so successfully. (“I’ve had field engineers call me to get help with these things,” says Barber, but this woman managed it on her own.)

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCSE 2003 Certification, MCSE 2003 training, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Stupid data center tricks
A university network brought to its knees when someone inadvertently plugged two network cables into the wrong hub. An employee injured after an ill-timed entry into a data center. Overheated systems shut down after a worker changes a data center thermostat setting from Fahrenheit to Celsius.

What users hate about IT pros

Stupid data center tricks. D’oh!

These are just a few of the data center disasters that have been caused not by technological malfunctions or natural catastrophes, but by human error.

According to the Uptime Institute, a New York-based research and consulting organization that focuses on data-center performance, human error causes roughly 70% of the problems that plague data centers today. The group analyzed 4,500 data-center incidents, including 400 full downtime events, says Julian Kudritzki, a vice president at the Uptime Institute, which recently published a set of guidelines for operational sustainability of data centers.

“I’m not surprised,” Kudritzki says of the findings. “The management of operations is your greatest vulnerability, but also is a significant opportunity to avoid downtime. The good news is people can be retrained.”

Whether it’s due to neglect, insufficient training, end-user interference, tight purse strings or simple mistakes, human error is unavoidable. And these days, thanks to the ever-increasing complexity of IT systems — and the related problem of increasingly overworked data center staffers — even the mishaps that can be avoided often aren’t, says Charles King, an analyst at Pund-IT Inc.
Have your say

Has user error ever taken down your data center? Share the gory details.

“Whenever you mix high levels of complexity and overwork, the results are typically ugly,” says King. And as companies become more reliant on technology to achieve their business goals, those mistakes become more critical and more costly.

Wrong worker, wrong cable

Take the example of the university data center switch that overloaded because an IT worker mistakenly plugged two network cables into a downstream hub. That happened about four years ago at the Indiana University School of Medicine in Indianapolis, according to Jeramy Jay Bowers, a security analyst at the school Microsoft MCTS Training, and MCITP Certification.

The problem arose out of less-than-optimal network design, says Bowers, who worked at the school as a system engineer at the time of the incident. The IT department for the school of medicine was split into two locations, with one room in the school of medicine building and another room at the neighboring university hospital — not an ideal setup to begin with, says Bowers.

The department had run fiber — a purple cable, to be exact — from a switch in the first building to the second, running it up through the ceiling, through a set of doors and across to the hospital’s administrative wing next door. That cable attached to a 12-port switch that sat in the hospital building’s IT room, and staffers could easily disconnect from the school of medicine network and connect to the hospital network through a jack in the wall, Bowers explains.

Tags: http://www.testkingdom.com, MCITP, mcitp certification, mcitp exams, MCITP Training, MCP, MCSA, MCSE, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Training, MCTS Training, online IT exams Training

Mcse Boot Camp
The transition of computers from cutting edge technology to everyday business functions led to the need for qualified systems engineers. As a result, the need for a certification system was required to differentiate between systems engineers who claimed their expertise in managing systems and those who were actually qualified to do so. Microsoft felt this need and developed a certification system that tested an individual about Microsoft platforms and servers.

MCTS Training certification is incredibly important in the computing field, especially for those individuals who want to excel technologically as well as financially. The MCSE certification helps individuals prove that they are expert in this platform. The individual is able to implement and design the infrastructure required in the two available streams, Windows 2000 and Windows server 2003 and so they will have to give different sets of examinations for them.

Individuals planning to secure training in IT will have to go through MCSE boot camp. The MCSE boot camp provides an intensive training that helps students to get trained, pass the examination and handle any kind of work efficiently in any company. The concept of MCSE boot camp has earned its name for its intensity and not for any disciplined military approach.

Most MCSE boot camps last for two weeks. The cost of the boot camp is rather higher, especially when they include air transportation, lodging and meals. In most of the cases, employers pay for the cost of the camp.

During the boot camp, students take up seven certification examinations and work directed by instructors towards preparation for each examination. Every instructor is experienced in all Microsoft platforms and so students need not worry. Also, there are practical guides using up to date hardware and software. MCSE boot camps always have a twenty four hour lab access to the students.

The advantage of training under a boot camp is the success associated with it. Generally, there are guaranteed success assurances. However, if there are some failures, the instructors identify and correct any mistakes responsibly and facilitate re-examination of the failures at a reduced rate.

Individual attention is the key to a successful completion of the test and so many Microsoft MCITP Certification, MCSE boot camps have small classes and therefore a high instructor to student ratio.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Pass Mcse 70-290 Exam Easily MCSE 2003 70-290 Certification

Get Certified in Days
According to our survey, over 85% of the candidates acknowledge that they have spent needless time and money before finding the most suitable solution to pass the 70-290 exams. It doesn’t matter if you are just starting out and looking for the most suitable way to get certified, or a skilled technician looking for the most efficient way to get certified, we have the right solution for you Microsoft MCTS Training.

We provide the following to help you get certified in the most convenient way

24/7, around the clock, consulting service that will assist you, guide you and help you, until you get certified. This price also includes; exam vouchers and all other related expenses. There is no further cost to attain your certification.

Our Guarantee

We will refund any payment that you make, should you for any reason fail to get certified. The refund is an unconditional total refund of any moneys paid.

Why MCSE 2003

MCSE 2003 70-290 Certifications are among the most specialized certifications available today. The MCSE 2003 70-290 Certification give you industry recognition for your expertise for business solutions based on the Microsoft Windows? 2003 platform and Microsoft 2003 server software. Implementation responsibilities include installing, configuring, and troubleshooting network systems. The MCSE 2003 credential is one of the most

widely recognized technical certifications in the industry, a credential in high demand. By earning the premier MCSE credential, individuals are demonstrating that they have the skills necessary to lead organizations in the successful design, implementation, and administration of the most advanced Microsoft Windows platform and Microsoft server products Microsoft MCITP Certification.

MCSE 2003 Certification Requirement:

1. Core exams (six exams required)

• Four networking system exams: (four exams required)

Exam 70-290: Managing and Maintaining a Windows Server 2003 Environment.

Exam 70-291: Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure.

Exam 70-293: Planning and Maintaining a Windows Server 2003 Network Infrastructure.

Exam 70-294: Planning, Implementing, and Maintaining a Windows Server 2003 Active Directory Infrastructure.

• One client operating system exam: (one exam required)

Exam 70-620: TS: Microsoft Windows Vista, Configuring.

Exam 70-270: Installing, Configuring, and Administering Microsoft Windows XP Professional.

Exam 70-210: Installing, Configuring, and Administering Microsoft Windows 2000 Professional.

• One design exam:

Exam 70-297: Designing a Windows Server 2003 Active Directory and Network Infrastructure.

Exam 70-298: Designing Security for a Windows Server 2003 Network.

2. Elective exams (one exam required)

Exam 70-089: Designing, Implementing, and Managing a Microsoft Systems Management Server 2003 Infrastructure.

Exam 70-227: Installing, Configuring, and Administering Microsoft Internet Security and Acceleration (ISA) Server 2000, Enterprise Edition.

Exam 70-228: Installing, Configuring, and Administering Microsoft SQL Server 2000 Enterprise Edition.

Exam 70-229: Designing and Implementing Databases with Microsoft SQL Server 2000 Enterprise Edition.

Exam 70-235: TS: Developing Business Process and Integration Solutions Using BizTalk Server.

Exam 70-236: TS: Microsoft Exchange Server 2007, Configuring.

Exam 70-262: TS: Microsoft Office Live Communications Server 2005 – Implementing, Managing, and Troubleshooting.

Exam 70-281: Planning, Deploying, and Managing an Enterprise Project Management Solution.

Exam 70-282: Designing, Deploying, and Managing a Network Solution for a Small- and Medium-Sized Business.

Exam 70-284: Implementing and Managing Microsoft Exchange Server 2003.

Exam 70-285: Designing a Microsoft Exchange Server 2003 Organization.

Exam 70-297: Designing a Microsoft Windows Server 2003 Active Directory and Network Infrastructure.

Exam 70-298: Designing Security for a Microsoft Windows Server 2003 Network.

Exam 70-299: Implementing and Administering Security in a Microsoft Windows Server 2003 Network.

Exam 70–301: Managing, Organizing, and Delivering IT Projects by Using Microsoft Solutions Framework 3.0.

Exam 70–350: Implementing Microsoft Internet Security and Acceleration (ISA) Server 2004.

Exam 70–431: TS: Microsoft SQL Server 2005 – Implementation and Maintenance.

Exam 70-445: Microsoft SQL Server 2005 Business Intelligence – Implementation and Maintenance.

Exam 70-500: TS: Microsoft Windows Mobile Designing, Implementing, and Managing.

Exam 70-501: TS: Microsoft Windows Server 2003 Hosted Environments, Configuring, and Managing.

Exam 70-620: TS: Microsoft Windows Vista, Configuring.

Exam 70-624: TS: Deploying and Maintaining Windows Vista Client and 2007 Microsoft Office System Desktops.

Exam 70-630: TS: Microsoft Office SharePoint Server 2007, Configuring.

Exam 70-631: TS: Configuring Microsoft Windows SharePoint Services 3.0.

With rich experience in writing, often in the major websites, newspapers published articles and welcomed by a large number of readers,and articles written by others with a large number of quote.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCPD, MCSD, MCSE, mcse 2003, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS exams, MCTS Training, online IT exams Training

What Are Requirements of Possessing and Using the MCTS Exam Vouchers

MCTS Training exam vouchers are number tickets, which provide a discount or free passing the exams during a certain term. Vouchers can be both in electronic (only the number) or in paper form. The only way to get them is through the authorized centres of testing, which are VUE and Prometric. Vouchers can also be used in advertising actions as a prize. The other option is to get such vouchers before the increase of the exams prices.

The VUE centres of testing offer services on the organization of exams to the sponsor companies, such as Cisco, Ericsson and others. The full list of the exams given by system VUE can be found at this address: http://www.vue.com. System VUE supports the control centre of data including a database of candidates and examination questions. Within 3-5 minutes after the order of exam, the individual set of questions for the given order is sent on the Internet in the authorized centre of testing. After passing the testing, results of the examination are sent back to the control centre of data VUE, and from there – to the sponsor company or MCITP Certification.

The company Prometric is a world famous developer and provider of computer tests on products of leading world manufacturers of the software: Microsoft, Oracle and many others. The full list of the examinations given by the system Prometric can be found in the web site: http://www.prometric.com. Prometric puts forward worldwide a uniform extensive list of requirements to the opened centres of testing. Some of them are spacious and well-shined classes, special computer equipment, certificated personnel, and strict control for those who pass the exams.

As a rule, any interested person can be registered on exam of the sponsor company, having paid its cost. It is possible to pay for the examination in cash, or showing gotten in advance MCTS exam voucher. The voucher allows you to pass the exam or to receive a discount in any centre of testing VUE or Prometric.

Those who already decide to use CCNA exam vouchers should know some of the requirements about these vouchers. The Voucher for the CCNA exam is ordered from the system of testing Prometric or from the system of testing VUE. Changing of the system of testing is impossible. The voucher can be used in the EMEA region

Cisco and the partners of the company, which are carrying out testing, do not guarantee authenticity of any discounts or codes of advertising actions (like vouchers), received from foreign persons or the organizations. So be careful and follow the advice of Cisco to get vouchers for passing the examinations directly in the centres of testing VUE and Prometric. As a sanction for using of not authorized discounts or advertising codes, the results of the exam can be recognized null and void. Besides, Cisco can eliminate such candidate for life from passing of any further exam and the certificates received earlier can be cancelled. Cisco will not make a replacement of the voucher, when it is recognized as counterfeit or used.

Patricia Stevens owns and operates http://www.Certkingdom.com MCTS TEST . Use of this article is permitted when bio and link to MCTS Test Exam is included.

Tags: MCITP, mcitp certification, MCITP Training, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Microsoft MCSE Messaging Certification Overview
Microsoft MCSE  Messaging (Microsoft Certified Systems Engineer) Certification enables IT professionals to proof extensive skills in planning, deploying, supporting, maintaining, and optimizing IT infrastructures. It includes . Microsoft MCSE Messaging Certification The Microsoft Certified Systems Engineer Certification (Microsoft MCSE Messaging Certification) credential establish that MCSE Messaging certificates holder has the extensive necessary skills to perform a particular job role, such as System administrator or database administrator MCSE Messaging certifications build on the Microsoft Certified Systems Engineer (MCSE Messaging) certifications and MCSE Messaging exam. Therefore, you will earn one or more MCSE Messaging certifications on your way to earning an MCSE Certification.

About Our Services
Generally, people may select to take a MCSE Messaging Training courses and reading the MCSE Messaging braindumps and pass the MCSE Messaging exam. Actually, There is no man selling the real MCSE Messaging dumps of Microsoft and Microsoft is keeping updating the MCSE Messaging Exam, so people can’t pass the MCSE Messaging Exam easily, MCSE Messaging training kits or any MCSE Messaging training is not torward for the real MCSE Messaging exam. In real MCSE Messaging Exam, Microsoft will not test the general work environment because it may be too easy, but it is most importain for us to study, so mcitp Training is not very related with the exam. Our services help the man who have enough experience(or MCSE Messaging Training) but seeking the way to get MCSE Messaging Certified. Or any SME who is willing to get MCSE Messaging Certification to get any Microsoft product discount.

for more info in MCTS Training and MCITP Certification at Certkingdom.com

Microsoft MCSE Study Guide & Questions. Covers Core Exams 70-210, 70-215,70-216 70-298 measures your ability to implement, administer, and troubleshoot Windows 2000 as a operating system in any network environment with emphasis on actual exam Microsoft MCSE Study Guide & Questions. Covers Core Exams 70-210, 70-215, 70-216, 70-217 measures your ability to implement, administer, and troubleshoot Windows 2000 as a operating system in any network environment with emphasis on actual exam questions. Includes Windows 2000 Professional, Server, Active Directory, and Network Infrastructure topics including implementing and conducting administration of resources; implementing,& managing IT operations. exam focuses on the following server roles: file and print, database, messaging, proxy server or firewall, dial-in server, desktop management, and Application server (including Web hosting server). Connectivity needs include connecting individual offices and users at remote locations to the corporate network, and connecting corporate networks to the Internet. Also explains DNS, DHCP, Remote Access, Network Protocols, WINS, and IP Routing. In addition, measures the skills required to manage, monitor, and troubleshoot Network Address Translation (NAT) and Certificate Services. Explains and then tests you on Active Directory, DNS for Active Directory, the components of Active Directory, Active Directory security solutions, as well as change and configuration management. Wheelertech was founded in early 1999, in order to help the flood of students studying for the prestigious MCSE! Since we had also gone through the MCSE study cycle, we knew there were shortfalls in the area of exam materials. The most notable shortfalls were 1) the cost of the materials, and 2) the quality of the materials. So we decided to make good materials at a price students' could afford. Many companies spend a lot of money (thus making you spend lots of money) making their programs really complicated. Not us! We've kept in mind what's important: quality questions and a price that you can afford!.

MCSE Certification offer opportunity for those who are IT professionals to prove their ability on their area.However,people feel hard to pass the MCSE test and have to pay much passion and money on the preparation.Here we offer some good method to you get a 70-298 Exam.

Tags: CompTIA Security+, MCITP, mcitp certification, mcitp exams, MCITP Training, mcse 2003, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS exams, MCTS Exmas, MCTS Training, online IT exams Training

Microsoft vs Mac Redux New Site Reignites Rivalry

Just in time for the back-to-school shopping season, tech’s greatest rivalry is back. No, I’m not talking about Apple vs. Google; that’s small potatoes. Long before Google launched its Android assault on Apple and its iPhone, Microsoft MCTS Training and Apple were publicly doing battle for supremacy in the personal computer market. And now, thanks to Microsoft’s latest campaign to mock the Mac, the rivalry has been renewed.

Microsoft this week added a new “PC vs Mac” section to its Web site, which touts the advantages that Windows-based PCs have over Macs. The multi-page site, which highlights the fact that Windows-based PCs can “easily share” Microsoft Office documents and play Blu-ray discs, was launched just days after a new report suggested that Macs have become the computers of choice for incoming college students.
Capacity Management in VMWare Virtualized Infrastructures: Download now

Forty-seven percent of college students who plan to buy a new laptop planned to buy a Mac, the report, which was published on CNN.com and based on figures from Student Monitor, a research firm that tracks higher education computer purchases. Student Monitor notes that Dell used to be the laptop brand of choice for college students, and says that in the last five years, Dell and Apple have swapped places: “In 2005, 47 percent of students buying laptops chose Dells. In 2010, 47 percent are choosing MacBooks.”

These numbers can’t be making anyone in Redmond happy, and it’s clear they haven’t escaped Microsoft’s notice. The new site clearly touts Windows features designed to appeal to college-aged students, as the first topic in its itemized list of the PC’s advantages is “Having Fun.”

“When it’s time to enjoy movies, games, and HDTV from anywhere in your home, PCs are ready to play,” the new site reads. “There are some things you simply can’t do out of the box with a Mac, like watch, pause, rewind, and record TV like a DVR.” This section of the site also highlights the fact that “most of the world’s most popular computer games aren’t available for Macs.”

The site then goes on to tout the simplicity of the PC, noting that they “just work.” (Hey, that sounds familiar.) Only then does the site go on to talk about the “working” capabilities of the PC, highlighting its ability to easily share Office documents and give presentations. “If most of the computers in your office or school run Windows, you may find it harder to get things done with a Mac,” the site notes.

Microsoft’s latest attack on Apple isn’t as high profile as some of the earlier salvos in this bitter rivalry. A Web site alone (there’s no word on whether Microsoft plans to expand this campaign to print or TV spots) isn’t going to gain the attention of Apple’s “switchers” ad campaign, or its classic (but recently pulled) “I’m a Mac” ads. Nor is this site going to gain the attention of Microsoft’s “laptop hunters” ads.

But maybe it doesn’t need to: Windows 7 is, after all, the fastest-selling operating system in history, so Microsoft MCITP Certification clearly is doing something right. Still, it’s clear that Microsoft isn’t willing to sit back and watch Apple gain any ground. That rivalry has always been fun to watch and I, for one, am glad it’s back. Here’s hoping this site is just the first strike of many to come.

Tags: MCITP, mcitp certification, MCITP Training, MCPD, mcse 2003 specialization, MCSE 2003 training, mcse exams, MCTS, MCTS exams, MCTS Training, online IT exams Training

Microsoft vs Mac Redux New Site Reignites Rivalry

Just in time for the back-to-school shopping season, tech’s greatest rivalry is back. No, I’m not talking about Apple vs. Google; that’s small potatoes. Long before Google launched its Android assault on Apple and its iPhone, Microsoft MCTS Training and Apple were publicly doing battle for supremacy in the personal computer market. And now, thanks to Microsoft’s latest campaign to mock the Mac, the rivalry has been renewed.

Microsoft this week added a new “PC vs Mac” section to its Web site, which touts the advantages that Windows-based PCs have over Macs. The multi-page site, which highlights the fact that Windows-based PCs can “easily share” Microsoft Office documents and play Blu-ray discs, was launched just days after a new report suggested that Macs have become the computers of choice for incoming college students.
Capacity Management in VMWare Virtualized Infrastructures: Download now

Forty-seven percent of college students who plan to buy a new laptop planned to buy a Mac, the report, which was published on CNN.com and based on figures from Student Monitor, a research firm that tracks higher education computer purchases. Student Monitor notes that Dell used to be the laptop brand of choice for college students, and says that in the last five years, Dell and Apple have swapped places: “In 2005, 47 percent of students buying laptops chose Dells. In 2010, 47 percent are choosing MacBooks.”

These numbers can’t be making anyone in Redmond happy, and it’s clear they haven’t escaped Microsoft’s notice. The new site clearly touts Windows features designed to appeal to college-aged students, as the first topic in its itemized list of the PC’s advantages is “Having Fun.”

“When it’s time to enjoy movies, games, and HDTV from anywhere in your home, PCs are ready to play,” the new site reads. “There are some things you simply can’t do out of the box with a Mac, like watch, pause, rewind, and record TV like a DVR.” This section of the site also highlights the fact that “most of the world’s most popular computer games aren’t available for Macs.”

The site then goes on to tout the simplicity of the PC, noting that they “just work.” (Hey, that sounds familiar.) Only then does the site go on to talk about the “working” capabilities of the PC, highlighting its ability to easily share Office documents and give presentations. “If most of the computers in your office or school run Windows, you may find it harder to get things done with a Mac,” the site notes.

Microsoft’s latest attack on Apple isn’t as high profile as some of the earlier salvos in this bitter rivalry. A Web site alone (there’s no word on whether Microsoft plans to expand this campaign to print or TV spots) isn’t going to gain the attention of Apple’s “switchers” ad campaign, or its classic (but recently pulled) “I’m a Mac” ads. Nor is this site going to gain the attention of Microsoft’s “laptop hunters” ads.

But maybe it doesn’t need to: Windows 7 is, after all, the fastest-selling operating system in history, so Microsoft MCITP Certification clearly is doing something right. Still, it’s clear that Microsoft isn’t willing to sit back and watch Apple gain any ground. That rivalry has always been fun to watch and I, for one, am glad it’s back. Here’s hoping this site is just the first strike of many to come.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCSE 2003 Certification, mcse 2003 specialization, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS certification, MCTS Training, online IT exams Training

Microsoft bolsters partnerships in advance of OCS 14 release

Microsoft is building out its partner network to support the impending upgrade of its unified communications software, with a new deal with Polycom that will guarantee tens of millions of dollars in investment in new products and marketing programs.

The multi-year agreement with Polycom, to be announced Monday, is not exclusive but is “unique in the amount of commitment and resources,” says Ashima Singhal, manager of Microsoft’s unified communications partner marketing. The partnership will be key for Microsoft in persuading customers that Communications Server 14, slated for release in Q4, can be a real replacement for PBX systems.

Microsoft MCTS Training to kill Response Point VoIP sales Aug. 31
Getting the Foundation Right: Unified Communications: Download now

Microsoft and Polycom didn’t specify exactly how much money will be spent by the two companies, but said product development will include “next generation Polycom CX series endpoints optimized for Microsoft UC,” featuring Polycom’s high-definition video and voice technologies; “room-based video systems” that will compete against Cisco’s TelePresence; and guarantees of interoperability with “Polycom’s existing and future video conferencing solutions.”

Polycom isn’t placing all its eggs in the Microsoft basket. Polycom has partnerships with the likes of HP, IBM, Juniper, Broadsoft, Siemens, Avaya and Cisco. And Polycom will not be the only vendor delivering hardware using Microsoft’s Communications Server 14.

But with 14, Microsoft now has “an enterprise-grade communications” platform, whereas previous versions were not as comprehensive as they needed to be, says Mark Roberts, vice president of partner marketing at Polycom.

OCS 14 is more “elegant” and integrated into natural workflows, Roberts says. In particular, Roberts says OCS 14 lets users locate the proper contacts based upon their skills before initiating a conversation.

The user experience has also been updated with more integration with line-of-business applications such as SharePoint, Exchange and Office, according to Singhal.

“It’s really about connecting people,” Singhal says.

In addition to new products and integrations between Microsoft MCITP Certification software and Polycom hardware, the companies are expanding their go-to-market initiatives with sales training and combined marketing campaigns.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCPD, MCSE 2003 Certification, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS exams, MCTS Training, online IT exams Training

InfoWorld review Microsoft ADFS 2.0 and Forefront Identity Manager 2010
Managing user access in businesses today is something like playing traffic cop in an intersection of a thousand roads. From Web-based applications to homegrown programs, from desktop PCs to the latest crop of smartphones, IT has to be able to control access to every sort of resource while allowing users to access them from anywhere and any platform.

A bigger challenge is providing seamless access to applications and systems across corporate or network boundaries. It’s no trouble for IT to define and manage user names and passwords on their own network, but it takes more work — or is nearly impossible — to extend access to internal systems to numerous external users or to manage local user access to a system outside of their control.
Reducing Costs and Risks for Data Migration: Download now

[ Get all the details you need on deploying and using Windows 7 in the InfoWorld editors' 21-page Windows 7 Deep Dive PDF special report. Learn how to put AppLocker, BitLocker to Go, security accounts, and other key Windows 7 security improvements to good use in "The ultimate guide to Windows 7 security." ]

Microsoft MCTS Training has updated Forefront Identity Manager (FIM) 2010 and Active Directory Federation Services (ADFS) to aid IT in applying identity management across domains and business boundaries. Both of these tools are intended to extend user access control across the enterprise; FIM uses a common platform to tie user, certificate, group, and policy management together, while ADFS provides trust accounts between different networks or organizations. Together, they provide a powerful platform for extending user management beyond the company domain or network edge.

Related Content

* The current state of net neutrality is¿ who knows?
* Ericsson objects to new Indian telecom rules
* Global IT spending set to rise
* Gartner Research Report: Load Balancers Are Dead: Time to Focus on Application DeliveryWHITE PAPER
* Kids snub IT careers as lessons are boring

* FCC calls off net neutrality negotiations
* Google, Verizon in talks on net neutrality deal?
* Google denies talks with Verizon to end net neutrality
* Economizer Fundamentals: Smart Approaches to Energy-Efficient Free-Cooling for Data Centers WHITE PAPER
* BT launches faster broadband upload speeds

View more related content

Get Daily News by Email

Active Directory Federation Services 2.0 Active Directory Federation Services, first available in Windows Server 2003, is now a server role in Windows Server 2008 R2. ADFS is a single-sign-on technology that uses claims-based authentication to validate a user’s identity across domains. Normally when the user’s account is in one domain and the resource is in another, the resource will prompt the user for local credentials. ADFS eliminates the secondary credential request; the user’s identity is validated, and access provided, based on information in the user’s home directory.

Through the use of ADFS, it is possible to facilitate a wide range of managed access. It makes it easy for users to access an Internet-accessible application on another company’s network or to allow outside contractors access to internal resources for the duration of a specific project. The key advantage is that neither domain need contain any of the other domain’s user information; no user information is shared, and each side remains responsible only for its own user management.

 

A claims-based system, like many others, uses digital tokens that contain information about the user. But unlike a request made directly against Active Directory and generating a Kerberos token, the resource being accessed doesn’t interact directly with the user data store. Instead, it talks to a Security Token Service, such as ADFS, which performs the check against the user information store and creates a claims token based on the result of the lookup. The claims token can contain as much — or as little — information as needed to access the particular service.

Using claims-based authentication between two different domains requires a Security Token Service in each domain. Each domain’s Security Token Service must trust the other one, and based on this trust, a policy is defined that specifies if access is granted or denied to a specific resource. For example, when a user on Network A attempts to access a Web portal on Network B, an authentication request is made to the user’s Security Token Service on Network A. After validating the claims for the user against the local user directory, Network A’s Security Token Service provides a token to Network B’s Security Token Service, which then issues its own token to the requesting user in order to access the Web portal. There is a lot of back and forth behind the scenes, but once the remote domain gets the all-clear from the user’s Security Token Service, the user gets a new token as if they were a member of the remote domain.

[ From powerful productivity enhancers to important security safeguards, Microsoft Office 2010 has a number of features that businesses will love. See "Top 10 Office 2010 features for business," "More great Office 2010 features for business," and "PowerPivot for Excel 2010: Power to Excel people." ]

Within a single domain — such as when you want to extend user access to a cloud service without implementing a direct authentication connection to Active Directory or another user database — a single Security Token Service will do the job. In addition to supporting claims-aware ASP.Net applications and (through an IIS Web server agent) Windows NT token-based applications on the resource side, ADFS 2.0 can communicate with third-party federation services and cloud services using SAML 2.0.

The great advantage of claims-based authentication — and ADFS 2.0 — is that no changes are made to either domain’s users and no confidential information is sent between domains. When a claims-based request is made from the resource, it simply performs an “is allowed?” request against the issuing claims server. The claim token returns a Yes or No response regarding the user and nothing more. This gets the application out of the user authentication business. It simply asks a trusted partner if it is OK to allow this person to access its resources. All the heavy lifting is done behind the scenes.

ADFS 2.0: Federation services and user claims There are three role services that make up ADFS: the Federation Service, the Federation Service Proxy, and the Web server agent. The Federation Service is the core of ADFS; it’s the part of the system that handles user authentication requests from other federation servers. The Federation Service Proxy runs on a server located in the network’s DMZ and proxies an external user authentication request to an internal ADFS server. It collects user credentials from browser clients and sends them on to the ADFS server. The Web proxy agent works with claims-aware (ASP.Net) applications on a website and redirects user login requests to the ADFS server. The Federation Service Proxy and the Web agent are optional and may not be needed in all scenarios.

Active Directory Federation Services 2.0 provides an extensible platform for handling claims-based authorization between local and remote domains. Here we see a list of the claims offered by the ADFS server to any other trusted Security Token Service provider. Each trust can have a different set of claims associated with it, allowing ADFS to fit in any situation.

To get started with ADFS, make sure you have a valid SSL certificate (self-signed is sufficient but not recommended for a production environment), Windows Server 2008 R2, Microsoft SQL Server 2008 (for the policy store), and Active Directory Domain Services. The ADFS 2.0 software is available as a free download from Microsoft through the Download Center.

Setting up ADFS takes quite a few steps, most of which involve importing the SSL certificate, exporting certificates, and creating shared certificates. Each ADFS server has to import the other’s SSL certificate in order to authenticate the external lookup request. The end result is that a trust relationship between the two federation servers (Security Token Services) is established using SOAP messages and SAML metadata. The last step is generating the claims rules appropriate for the exposed resource.

Claims rules can come in many forms and vary greatly based on the target resource or application. For the most part, each rule or policy must know the Uniform Resource Identifier (URI) of the application, which claims are being offered, which claims the application requires, the URL the application should expose to the user, and finally, if the token should be encrypted or not. Some rules might require user name, email address, and group affiliation, while others may only need first and last name. Rules can simply pass information through to ADFS or transform the data into something recognizable. For example, if ADFS talks to an LDAP server, it might need to reformat the user name so that the other ADFS (or Security Token Service) can properly process it. ADFS provides a very flexible rule engine that can handle most every situation.

Active Directory Federation Services is a great way to extend trusted authenticated access between domains using claims-based authentication. The fact that it works with other open Web standards allows it to extend its reach into non-Microsoft domains, while still allowing trusted access and single-sign-on capabilities. It does require a little work to get set up, but once in place, the benefits really pay off.

Forefront Identity Manager 2010 Forefront Identity Manager 2010 is a powerful platform for managing user identities, credentials, and identity-based access policies for both Windows and non-Windows environments. In FIM 2010, Microsoft took smart card and certificate management and merged it with identity lifecycle tools to streamline administration and improve user security and compliance. FIM 2010 also empowers users through self-service tools to manage their own group memberships or reset their user password from the Windows logon page. FIM 2010 is based on Web standards for greater extensibility and will work with third-party certificate authorities.

To get a feeling for how FIM 2010 fits into a real-world situation, I tested it in a highly virtualized environment made up of Active Directory domain controllers, SharePoint 2007 servers, Exchange 2007 servers, and two FIM 2010 and ADFS 2.0 servers in two domains, for a total of 13 virtual clients and servers. I was able to create and execute FIM 2010 policies on one server and see the results across both domains. I found the SharePoint-based UI easy to use, and after a couple of false starts, I had little trouble with the policy engine. The workflow wizard did a good job of walking me through workflow generation even though I had never created a workflow before.

A good portion of defining trusts in Active Directory Federation Services 2.0 is spent importing, exporting, and creating certificates through the ADFS management utility.

The previous release, Microsoft Identity Lifecycle Manager 2007, provided a platform for identity synchronization, basic certificate and smart card management, and user provisioning. Forefront Identity Manager 2010 takes these base features and enhances them to reduce the time, effort, and cost of managing a user’s account throughout its lifecycle.

One area that got a lot of attention in FIM 2010 is policy management. The administration UI is a SharePoint-based system that uses natural language queries and menu-driven controls to generate rules and policies for managing users. The rules can be applied automatically to other users and groups based on various criteria. For example, you can create a rule to automatically add a new user to a group, issue a one-time password for a smart card, and push the user’s email address and telephone number to another user directory while flagging HR to issue a request for a new health insurance policy.

One of the most powerful policy management features is the inclusion of Windows Workflow Foundation (WF). With WF, IT can create a multistep policy to easily automate user management. Workflows can be simple or complex with multiple branches depending on need. During my tests, I was able to create workflows to send approve or disapprove notifications to a specific manager whenever a user account was added to a certain group. FIM 2010 can also import and reuse existing WF-based workflows so that IT doesn’t have to re-create the workflow wheel and can speed up deployment.

Another very nice feature in FIM 2010 is that it will synchronize user information between heterogeneous systems. Forefront Identity Manager 2010 integrates with a wide range of systems, including Active Directory, Novell, Sun, IBM, Lotus Notes, Exchange, Oracle and SQL Server databases, SAP, and even flat file systems — in most cases with no additional software agent installed on the target system. A synchronization service takes care of passing user information in and out of FIM 2010.

A good example of this would be the scenario in which a new user is added to the company. HR creates the new user in FIM 2010. The synchronization service pushes the new user info into the enterprise’s Active Directory, and following the workflow, once the manager gives approval, this same user information is then sent to the company’s insurance provider (an external system, secured by ADFS) to add them to the health insurance plan.

Note that the synchronization isn’t merely a one-way street; when the insurance company creates a new account in their system and assigns the new employee an account ID, that information can be sent back into FIM on a subsequent synchronization and stored in the employee’s AD record or in FIM 2010 alone. Any update to the user record in any of these systems — FIM 2010 or AD or the external insurance system — is automatically updated in the others. With the multibranch capabilities of the policy engine, one change can create a cascade effect on other pertinent systems.

Forefront Identity Manager 2010′s intuitive SharePoint-based Web interface (above) provides access to all aspects of user identity management. Among the many new identity management features is user self-service password resets (below), with definable lockout thresholds and challenge-and-response prompts.

FIM 2010: Automating rights management Credential management has been greatly simplified for both IT and the end-user. Now all user credential management — including one-time password devices and third-party certificate authorities — can be done through a single console. FIM 2010 also provides a mechanism to allow end-users to reset their password from the Windows logon screen. Based on policy, the user can be presented with traditional question-and-answer prompts, or FIM 2010 can send a one-time password via text message, or any combination of these. This reduces the burden on IT and allows the end-user to continue working instead of waiting on a simple password reset.

A couple of nice enhancements to user management are built into FIM 2010. In addition to simply creating the user account, FIM 2010 can automatically provision resources, such as an email account or a one-time PIN for a smart card. This automation becomes especially important when the time comes to de-provision a user. By allowing the proper policies to automatically take the user out of the system, FIM 2010 helps maintain compliance and minimizes the chance of leaving a user account active and failing a compliance audit.

Another nice feature is the ability for end-users to manage portions of their own user profile. For example, FIM 2010 can be set up to allow users to update telephone numbers, addresses, or other personal information without being able to change email address or logon name.

Along these same lines, users can manage their own distribution and user groups. This can be done through the FIM Web portal or, via integration with Office 2007 or Office 2010, right from inside Outlook. Group managers can approve or disapprove user requests via Outlook, making user group management even easier.

In a world where users are not always the exclusive management property of one domain, Forefront Identity Manager 2010 offers a way to bridge the gaps between systems. The bi-directional synchronization between heterogeneous identity systems extends FIM 2010′s reach beyond Microsoft MCITP Certification only networks, while the use of policy and workflows helps keep the compliance train on track. If you have to work with multiple domains or authentication systems, Forefront Identity Manager 2010 is definitely one tool to check out.

* Greatly extends user management capabilities beyond local domains
* Supports traditional Windows-based authorization in addition to claims-based authentication
* No changes or additions to user directories required
* No confidential information is passed between domains
* Based on open Web standards (SAML 2.0, WS-Federation, WS-Trust)

* Powerful policy engine
* Extremely flexible workflow engine
* User self-support features
* Works with non-Windows directories and user data stores via synchronization engine

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS certification, MCTS exams, MCTS Training, online IT exams Training

Microsoft gaming revenues up 30 percent this quarter
Microsoft ended its fiscal year on June 30 and today reports making record numbers for their fourth quarter and their entire year. The gaming division, however, had some unusual ups and downs.

For the quarter, things looked good. Microsoft MCTS Training sold 1.5 million consoles in Q4 versus the 1.2 million they sold during the same time last year. Revenues for the Entertainment and Devices Division (which houses all Xbox-related stuff) were up 30 percent to $228 million in the quarter.
Justifying IT Security:Managing Risk & Keeping Your Network Secure: Download now

From the full-year perspective, however, the gaming division slipped. Sales of consoles dropped to 10.3 million compared to fiscal year 2009′s 11.2 million, while revenues for both the Xbox and PC market shrank by $12 million with fewer consoles sold.

The silver lining here is that revenues from Xbox Live are booming. During the earnings call, Microsoft said that for the first time ever, Xbox Live market revenue exceeded the revenues they get from Xbox Live subscriptions. With over 25 million Xbox Live members, it’s easy to imagine how that happened.

Microsoft MCITP Certification hopes to keep the money train going with Kinect and the new Windows 7 phone due out this holiday season. Kinect is due out November 4 for $150.

Got any tips, corrections, or feedback? Contact GamePro’s news team or follow the author of this story on Twitter.

Tags: MCITP, mcitp certification, mcitp exams, MCITP Training, MCSE 2003 training, MCSE Certification, mcse exams, MCSE Training, MCTS, MCTS exams, MCTS Training, online IT exams Training