Fabrikamcom and rdfabrikamcom there are no trust

This preview shows page 24 - 26 out of 187 pages.

The network contains two Active Directory forests named corp.fabrikam.com and rd.fabrikam.com. There areno trust relationships between the forests.Corp.fabrikam.com is a production forest that contains identities used for internal user and computerauthentication.Rd.fabrikam.com is used by the research and development (R&D) department only.Network InfrastructureEach office contains at least one domain controller from the corp.fabrikam.com domain. The main officecontains all the domain controllers for the rd.fabrikam.com forest.All the offices have a high-speed connection to the Internet.An existing application named WebApp1 is hosted in the data center of the London office. WebApp1 is used bycustomers to place and track orders.WebApp1 has a web tier that uses Microsoft Internet Information Services (IIS) and a database tier that runsMicrosoft SQL Server 2016. The web tier and the database tier are deployed to virtual machines that run onHyper-V.The IT department currently uses a separate Hyper-V environment to test updates to WebApp1.Fabrikam purchases all Microsoft licenses through a Microsoft Enterprise Agreement that includes SoftwareAssurance.
Problem StatementsThe use of Web App1 is unpredictable. At peak times, users often report delays. At other times, manyresources for WebApp1 are underutilized.RequirementsPlanned ChangesFabrikam plans to move most of its production workloads to Azure during the next few years.As one of its first projects, the company plans to establish a hybrid identity model, facilitating an upcomingMicrosoft Office 365 deployment.All R&D operations will remain on-premises.Fabrikam plans to migrate the production and test instances of WebApp1 to Azure.Technical RequirementsFabrikam identifies the following technical requirements:Web site content must be easily updated from a single point.User input must be minimized when provisioning new app instances.Whenever possible, existing on-premises licenses must be used to reduce cost.Users must always authenticate by using their corp.fabrikam.com UPN identity.Any new deployments to Azure must be redundant in case an Azure region fails.Whenever possible, solutions must be deployed to Azure by using platform as a service (PaaS).An email distribution group named IT Support must be notified of any issues relating to the directorysynchronization services.Directory synchronization between Azure Active Directory (Azure AD) and corp.fabrikam.com must not beaffected by a link failure between Azure and the on-premises network.Database RequirementsFabrikam identifies the following database requirements:Database metrics for the production instance of WebApp1, must be available for analysis so that databaseadministrators can optimize the performance settings.To avoid disrupting customer access, database downtime must be minimized when databases aremigrated.Database backups must be retained for a minimum of seven years to meet compliance requirements.Security RequirementsFabrikam identifies the following security requirements:

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture