Index

Numerics

32-bit version, 45

64-bit version, 45

A

account lockout policy, 153

Action Center, 45

notifications, 4749

Quick Action tiles, 4547

activation, 69, 72

after reinstalling Windows 10, 74

checking status, 73

common errors, 7576

first-time, 74

refurbished devices running Windows 10, 7475

selecting a method, 6970

troubleshooting, 72, 74

using the Activation troubleshooter, 75

virtual machines, 72

volume activation services, 71

troubleshooting, 7273

AD (Active Directory), 119

computer accounts, 119

distribution groups, 119

security groups, 119120

user accounts, 119

AD DS (Active Directory Domain Service), 118, 120121

ADK (Assessment and Deployment Kit), 12, 14

Allow and Deny permissions, 247

AMSI (Antimalware Scan Interface), 170

APIPA (Automatic Private IP Address), 215

apps

allowing through Windows Defender Firewall, 173174

Universal Windows, 9495, 9698

audit policy, 154155

authentication. See also MFA (multifactor authentication)

multifactor, 138, 139141

protocols, 226227

remote user, 226227

Windows Admin Center, 413

automatic device driver installation, 327328

Azure AD, 121

connecting devices, 126

join a new Windows 10 device, 126127

join an existing Windows 10 device, 127128

device management, 121, 123125

device registration, 123, 129

joined devices, 122

registered devices, 122123

B

backup and recovery, 16

BitLocker and, 195

configuring a recovery drive, 305306

creating a system image backup, 315316

encrypted files, 183185

File History, 297299

restoring data, 299300

support for encryption, 300301

Fresh Start, 315

Previous Versions, 301302

recovering files from OneDrive, 302304

Reset This PC, 313315

scheduling backups, 293

startup and, 321322

System Restore, 306308

identifying affected apps and files, 308309

modifying the task schedule, 309310

WBAdmin, 295

performing backups, 295297

restoring data, 296297

Windows RE and, 310312

Backup and Restore tool. See also data recovery

recovering files, 292295

system repair disk, 318319

baseline performance, real-time monitoring and, 374

basic permissions, 245246

battery

power plans, 7879

power settings, 7778

biometric devices, 8

biometrics, 138139

BitLocker, 7, 186188

computer upgrades and, 193194

configuring, 190191

configuring startup key storage and recovery options, 195

configuring using command-line tools, 191192

data recovery, 197198

enabling without a TPM, 189190

key protectors, 188189

moving an encrypted drive to another computer, 194

PowerShell cmdlets, 192193

recovery key backup, 125

BitLocker To Go, 195197

boot store, 322324

built-in local groups, 114116, 117118

C

cellular connections

troubleshooting, 223

Windows 10 and, 222223

checking for updates, 354355

Client Hyper-V, 6

Command Prompt, uninstalling updates, 358359

command-line

DiskPart, 269270

ipconfig, 232

IPv4, configuring, 216217

net share, 260261

permission masks, 248

ping, 232

Remote Desktop and, 406407

tracert, 232

computer accounts, 119

Computer Management, managing local user accounts, 110111

Continuum, 6

Control Panel

managing local user accounts, 111112

uninstalling updates, 357

convertible devices, Tablet mode, 3536

Cortana, 6

D

data access

file and folder permissions, 240, 243244

advanced, 246247

Allow and Deny, 247

basic, 245246

granting, 248

inheritance, 249250, 251

NTFS and ReFS, 245

security, 244

troubleshooting, 253255

viewing effective access, 251253

shared permissions, 255

File Explorer and, 259260

network discovery, 257

Shared Folders snap-in, 258259

SMB (Server Message Block), 256257

troubleshooting, 264266

Windows PowerShell and, 261

taking ownership of resources, 253

data collector sets, 370371, 373

data indexing, 379381

data recovery, 291. See also backup and recovery

BitLocker, 197198

files, 292295

deploying Windows 10, 12

determine Windows 10 Edition requirements for particular features, 5

selecting the appropriate Windows edition, 24

32-bit or 64-bit versions, 45

determine requirements for particular features, 58

deployment rings, 346347

desktop

customizing, 32, 4143

configuring Start tiles, 3638

export Start layout, 3841

grouping Start tiles, 38

Start menu, 3335

support for multiple, 44

device drivers, 324

automatic installation, 327328

disabling updates, 326327

driver signing, 334335

Driver Store and, 335336

packages, 335

adding, 339340

downloading, 338339

managing with DISM, 340

PnPUtil.exe and, 336338

removing, 8788

rollbacks, 328329

support for older hardware, 333334

troubleshooting, 330

updating, 8687, 326

verification tools, 330331

viewing settings, 332333

Device Manager, 324325

devices, 107108. See also Azure AD; printers

connecting to your Microsoft account, 137

enrolling to Microsoft 365, 129130

enrolling to Microsoft 365 Business, 130132

enrolling to Microsoft 365 Enterprise, 133134

installing, 8486, 324325

disabling, driver updates, 326327

Disk Cleanup tool, 340

disk management, 267268

DiskPart, 269270

removable storage, 280

formatting, 280

securing removable devices, 280282

Storage Spaces, 275

configuring, 276278

managing with Windows PowerShell, 279280

storage layouts, 275276

VHDs, 270271

creating with Disk Management, 272

creating with Hyper-V Manager, 272

creating with Windows PowerShell, 273274

Windows PowerShell and, 268269

DiskPart, 269270

distribution groups, 119

DNS (Domain Name System), 212

Driver Store, 335336

Dynamic Lock, 145

E

EFS (Encrypting File System), 180181

file and folder encryption, 181183

performing backup and recovery of encrypted files, 183185

encryption, 180

EFS (Encrypting File System), 180181

file and folder encryption, 181183

performing backup and recovery of encrypted files, 183185

troubleshooting, 185186

File History and, 300301

enrolling devices

to Microsoft 365, 129130

to Microsoft 365 Business, 130132

to Microsoft 365 Enterprise, 133134

eSIM (embedded SIM), 222

event logs, 359361

accessing remotely, 364

Event Viewer, 232

custom views, 361362

subscriptions, 362

creating, 363364

viewing, 362363

F

feature updates, 343

File Explorer, 242243

sharing files, 261263

sharing folders, 259260

File History, 297299

restoring data, 299300

support for encryption, 300301

file systems

NTFS, 241

ReFS, 242

selecting, 240241

files, 243244. See also back up and recovery; shared permissions

advanced permissions, 246247

Allow and Deny permissions, 247

backing up, 292293

basic permissions, 245246

encrypting, 181183

moving, 251

NTFS and ReFS permissions, 245

OneDrive document version history, 304

permissions, 240

granting, 248

inheritance, 249250

troubleshooting, 253255

viewing, 251253

recovering, 292

using Windows Backup and Restore, 292295

recovering from OneDrive, 302304

restoring, 294295

security permissions, 244

sharing, 261263

folders, 243244. See also back up and recovery; shared permissions

advanced permissions, 246247

Allow and Deny permissions, 247

backing up, 292293

basic permissions, 245246

encrypting, 181183

moving, 251

NTFS and ReFS permissions, 245

permissions, 240

granting, 248

inheritance, 249250

troubleshooting, 253255

viewing, 251253

restoring, 294295

security permissions, 244

sharing, 255256, 259261

formatting removable storage, 280

Fresh Start, 315

G

GPOs (Group Policy Objects), 157

Remote Assistance and, 401

Remote Desktop and, 408

Windows Update and, 350354

GPResult command-line tool, 160161

granting permissions, 248

Group Policy(ies), 157

configuring Start menu, 41

Management Editor, 158159

settings, 158

troubleshooting

connection issues, 159

GPResult command-line tool, 160161

RSoP (Resultant Set of Policy) tool, 160

H

hives, 146147, 387

Hotspot 2.0 networks, 237

Hyper-V Manager, creating VHDs, 272

I

IKEv2 (Internet Key Exchange, Version 2), 226

indexing options, 379381

inheritance, 249250

installation, 911. See also performing a clean installation; post-installation configuration

configure Windows for additional regional and language support, 2728

DISM command-line tool, 30

local experience packs, 2829

Lpksetup command-line tool, 3032

determine the appropriate installation media, 1114

devices, 324325

methods, 9

migrating from previous versions of Windows, 2122

considerations, 23

side-by-side migration, 22

USMT (User State Migration Tool), 2327

wipe-and-load migration, 2223

perform an in-place upgrade, 14, 1517

in corporate environments, 16

supported upgrade paths, 1415

using installation media, 1920

using MDT (Microsoft Deployment Toolkit), 1718

strategies, 11

Windows Admin Center, 411412

InstantGo, 6

Internet Explorer, 6469

ipconfig command, 232

IPv4, 212

address classes, 213

configuring, 215217

default gateway address, 212

DNS (Domain Name System), 212

public and private addresses, 214215

subnet mask, 212

subnets, 212

complex networks, 213214

simple networks, 213

IPv6, 217

address types, 217218

configuring, 218219

name resolution, 219220

advanced DNS settings, 221222

DNS settings, 220221

Windows PowerShell networking-related cmdlets, 219

J-K

joined devices, Azure AD, 122

Kerberos, 226

L

L2TP (Layer 2 Tunneling Protocol), 226

LLTP (Link Layer Topology Discovery), 257

Local Group Policy, 146

local groups, 107108, 114

built-in, 114116

special identity groups, 117118

creating, 116117

removing, 117

Local Security Policy, 150152

account lockout policy, 153

configure a password policy, 152153

local policies

audit policy, 154155

security options, 157

user rights policies, 156

local users, 107108

default accounts, 108109

local accounts, 108

managing using Computer Management, 110111

managing using Control Panel, 111112

managing using Settings app, 112113

managing using Windows PowerShell, 113

M

MDT (Microsoft Deployment Toolkit), 1718

MFA (multifactor authentication), 8, 138, 139

biometrics, 138139

Windows Hello, 139141

configure the picture password, 144

configuring the PIN, 141144

Dynamic Lock, 145

Windows Hello for Business, 139

Microsoft 365, 107

device management, 134135

enrolling devices, 129130

Microsoft 365 Business, enrolling devices, 130132

Microsoft 365 Enterprise, enrolling devices, 133134

Microsoft accounts

configuring, 136137

connecting to your device, 137

limiting the use of, 138

signing up for, 137

Microsoft Edge, 5257

customizing, 5758

extensions, 5455

features, 5354

IE mode, 6264

kiosk mode, 5862

Microsoft Store for Business, 9596

Microsoft Store, Universal Windows apps, 9495

migrating from previous versions of Windows, 2122

considerations, 23

side-by-side migration, 22

USMT (User State Migration Tool), 2327

wipe-and-load migration, 2223

Miracast, 6

MMC (Microsoft Management Console), remote management and, 397398

mobile networking, 222

setting up Windows 10 as a mobile hotspot, 224

setting up Windows 10 for a cellular data plan, 222223

mobility settings, 77

configure basic power settings, 7778, 79

power policies, 8182

powercfg.exe, 7981

configure presentation settings, 8384

power plans, 7879

power settings, viewing process power usage, 8283

monitoring, Windows Defender Firewall, 172173

moving, files and folders, 251

N

name resolution, 219220

IPv6

advanced DNS settings, 221222

DNS settings, 220221

troubleshooting, 233234

net share command, 260261

network discovery, 257

Network Troubleshooter, 233

networks, 211212. See also IPv4; IPv6

mobile, 222

setting up Windows 10 as a mobile hotspot, 224

setting up Windows 10 for a cellular data plan, 222223

troubleshooting, 231232

name resolution, 233234

tools, 232233

VPNs (virtual private networks)

authenticating remote users, 226227

configure using the Settings app, 229

creating a connection in Network and Sharing Center, 227229

enabling VPN Reconnect, 230231

profiles, 229230

protocols, 225226

wireless, 234

advanced settings, 238

configuring, 236237

connecting to, 236

Hotspot 2.0, 237

modes, 234235

security, 235

standards, 235

Wi-Fi Direct, 238240

notifications, configuring, 4749

NSLookup, 232

NTFS, 241, 247, 265

O

OneDrive, 7, 282283

document version history, 304

Files on Demand, 283284

recovering files, 302304

web portal, 284285

P

password policy, 152153

Performance Monitor, 369372

commonly tracked objects, 372373

creating data collector sets, 373

performance monitoring

baseline performance and, 374

creating a performance baseline, 374375

troubleshooting, 375377

using Performance Monitor and Data Collector Sets, 369371

using Resource Monitor, 366368

using Task Manager, 366

performing a clean installation, 811. See also post-installation configuration

configure Windows for additional regional and language support, 2728

DISM command-line tool, 30

local experience packs, 2829

Lpksetup command-line tool, 3032

determine the appropriate installation media, 1114

identify an installation strategy, 11

migrating from previous versions of Windows, 2122

considerations, 23

side-by-side migration, 22

USMT (User State Migration Tool), 2327

wipe-and-load migration, 2223

perform an in-place upgrade, 14, 1517

in corporate environments, 16

supported upgrade paths, 1415

using installation media, 1920

using MDT (Microsoft Deployment Toolkit), 1718

using Windows Deployment Services, 17

permissions, 243244. See also shared permissions

advanced, 246247

Allow and Deny, 247

basic, 245246

documenting, 255

granting, 248

inheritance, 249250, 251

NTFS and ReFS, 245

security, 244

shared, 255, 258259, 261

configuring, 263264

network discovery, 257

SMB (Server Message Block), 256257

troubleshooting, 264266

taking ownership of resources, 253

troubleshooting, 253255

viewing, 251253

ping command, 232

PINs, configuring for Windows Hello, 141144

PnPUtil.exe, 336338

policies. See also Local Group Policy

account lockout, 153

audit, 154155

password, 152153

power, 8182

user rights, 156

post-installation configuration, 32

configure Action Center, 45, 4950

notifications, 4749, 5052

Quick Action tiles, 4547

customize the Windows desktop, 32, 4143

configuring Start tiles, 3638

export Start layout, 3841

grouping Start tiles, 38

Start menu, 3335

support for multiple desktops, 44

power settings, 7778, 79

power policies, 8182

powercfg.exe, 7981

viewing process power usage, 8283

PPTP (Point-to-Point Tunneling Protocol), 225226

presentation settings, 8384

Previous Versions, 301302

principle of least administration, 247

Print Management console, 8890, 377378

printers, 88, 377

adding and removing, 90

managing

with Print Management, 377378

with Windows PowerShell, 378379

managing with Windows PowerShell, 9192

Print Management console, 8890

type 4 drivers, 9091

profiles, VPN, 229230

provisioning packages, 9293

Q-R

quality updates, 344

Quick Assist, 402404

recovering, services, 100101

recovery drive, configuring, 305306

ReFS, 242

registration, Azure AD devices, 122123, 129

registry, 146, 386

hives, 146147, 387

keys, 148, 387388

manage settings with PowerShell, 149150, 389390

structure, 386387

subkeys, 148, 387388

values, 148149, 388

Registry Editor (Regedit.exe), 149, 388389

Reliability Monitor, 381382

Remote Assistance, 395396, 398, 401

configuring with GPOs, 401

offering help, 400401

requesting help, 398400

Remote Desktop, 396397

configuring

from the command line, 406407

with GPOs, 408

creating and editing connections, 404406

troubleshooting, 408409

remote management

Remote Assistance and, 401

settings, 393

System Properties and, 395

tools, 392393

using MMC, 397398

using Windows Admin Center, 411

Windows Defender Firewall and, 393395

Windows PowerShell and, 409411

removable storage, 280

formatting, 280

securing removable devices, 280282

removing

device drivers, 8788

local groups, 117

printers and print servers, 90

Reset This PC, 313315

Resource Monitor, performance monitoring and, 366368

rollbacks, 328329

RSoP (Resultant Set of Policy) tool, 160

S

S mode, 34

SAM (Security Accounts Manager), 108

scheduled backups, 293

SDHC (Secure Digital High-Capacity) memory cards, 306

Secure Boot, 7

security, 162. See also encryption; Windows Security

BitLocker, 7, 186188

computer upgrades and, 193194

configuring, 190191

configuring startup key storage and recovery options, 195

configuring using command-line tools, 191192

data recovery, 197198

enabling without a TPM, 189190

key protectors, 188189

moving an encrypted drive to another computer, 194

PowerShell cmdlets, 192193

encryption, File History and, 300301

UAC (User Account Control), 165166

Windows Defender Antivirus, 199203

Windows Defender Firewall, 170171

advanced security, 174177

allowing an app through, 173174

configure connection security rules with IPsec, 177179

creating firewall rules, 179180

Firewall & Network Protection page, 171

monitoring, 172173

wireless networks, 235

services, 98, 382383

configurable options, 384

configuring, 99100

dependencies, 101

managing

from the command line, 384

with Windows PowerShell, 385

recovering, 100101

startup and, 341342

viewing from Task Manager, 101102

Services console, 9899

servicing channel, selecting, 345346

Settings App

managing local user accounts, 112113

uninstalling updates, 358

Shared Folders snap-in, 258259

shared permissions, 255256

configuring, 263264

creating using the Shared Folders snap-in, 258259

net share command, 260261

network discovery, 257

NTFS and, 265

SMB (Server Message Block), 256257

troubleshooting, 264265

Windows PowerShell and, 261

sign-in options, 136

SMB (Server Message Block), 256257

special identity groups, 117118

SSTP (Secure Socket Tunneling Protocol), 226

Start menu

configuring Start tiles, 3638

customizing, 3335, 4143

export Start layout, 3841

grouping Start tiles, 38

startup, 320321

available options for recovery, 321322

boot store, 322324

components, 319320

services and, 341342

Storage Spaces, 275

configuring, 276278

managing with Windows PowerShell, 279280

storage layouts, 275276

subnet mask, 212

subnets

complex networks, 213214

simple networks, 213

System Configuration tool, 385386

system image backups, 315316

System Image Recovery, 317318

System Properties, remote management and, 395

system repair disk, creating, 318319

system resources, 374

System Restore, 306308

identifying affected apps and files, 308309

modifying the task schedule, 309310

T

Tablet mode, 3536

Task Manager, 365366

Performance tab, 366

viewing process power usage, 8283

viewing services, 101102

Task Scheduler, 390391

taskbar

configure notifications area, 5052

configuring, 4950

exporting layout, 3841

TPM (Trusted Platform Module), 7, 187

tracert command, 232

troubleshooting

activation

after a hardware configuration change, 74

common errors, 7576

using the Activation troubleshooter, 75

volume activation services, 7273

cellular connections, 223

device drivers, 330

EFS (Encrypting File System), 185186

Group Policy(ies)

connection issues, 159

GPResult command-line tool, 160161

RSoP (Resultant Set of Policy) tool, 160

networking, 231232

name resolution, 233234

troubleshooting tools, 232233

performance issues, 375377

permissions, 253255

Remote Desktop, 408409

shared permissions, 264266

updates, 355356

volume license activation renewal, 72

Windows RE and, 310312

type 4 printer drivers, 9091

U

UAC (User Account Control), 165166

administrative users, 167168

elevation prompts, 168169

Secure Desktop, 170

settings, 169170

standard users, 166167

uninstalling updates

using Control Panel, 357

using Settings app, 358

using the Command Prompt, 358359

Universal Windows apps, 9495

configure application settings, 9698

Universal Windows driver, 334

updates. See also Windows Update

checking for, 354355

deferrals, 344

deployment rings, 346347

feature, 343

managing, 342343

planning for, 343

quality, 344

rolling back, 357

servicing channel selection and, 345346

testing and validation, 355

troubleshooting, 355356

uninstalling

using Control Panel, 357

using Settings app, 358

using the Command Prompt, 358359

Windows as a service, 343344

user accounts. See also Microsoft accounts

AD (Active Directory), 119

default accounts, 108109

local accounts, 108

managing using Computer Management, 110111

managing using Control Panel, 111112

managing using Settings app, 112113

managing using Windows PowerShell, 113

user rights policies, 156

USMT (User State Migration Tool), 2327

V

VHDs (virtual hard disks), 270271

creating with Disk Management, 272

creating with Hyper-V Manager, 272

creating with Windows PowerShell, 273274

virtual machines, activation, 72

VPNs (virtual private networks), 211, 225

Always On feature, 229

App-Triggered, 230

authenticating remote users, 226227

configure using the Settings app, 229

creating a connection in Network and Sharing Center, 227229

enabling VPN Reconnect, 230231

profiles, 229230

protocols, 225226

rules, 230

traffic filters, 230

VSS (Volume Shadow Copy Service), 294

W

WBAdmin, 295

performing backups, 295297

restoring data, 296297

Wi-Fi Direct, 238240

Windows 10. See also performing a clean installation

32-bit version, 45

64-bit version, 45

activation, 69, 72

after reinstalling Windows 10, 74

common errors, 7576

first-time, 74

refurbished devices running Windows 10, 7475

selecting a method, 6970

troubleshooting, 72, 74

volume activation services, 71

ADK (Assessment and Deployment Kit), 12, 14, 24

Business license, 4

configuring using provisioning packages, 9293

deploying, selecting the appropriate Windows edition, 24

general features, 67

installation, 911

configure Windows for additional regional and language support, 2728

considerations, 23

determine the appropriate installation media, 1114

DISM command-line tool, 30

local experience packs, 2829

Lpksetup command-line tool, 3032

methods, 9

migrating from previous versions of Windows, 2122

perform an in-place upgrade, 14, 1517

side-by-side migration, 22

strategies, 11

USMT (User State Migration Tool), 2327

wipe-and-load migration, 2223

Internet of Things (IoT) editions, 4

mobility settings, 77

configure basic power settings, 7778

performing a clean installation, 811

post-installation configuration, 32

configure Action Center, 45

configure notifications area, 5052

configure Quick Action tiles, 4547

configuring Start tiles, 3638

configuring the taskbar, 4950

customize the Windows desktop, 32, 3335, 4143

export Start layout, 3841

grouping Start tiles, 38

notifications, 4749

support for multiple desktops, 44

provisioned apps, 9495

recovering, 304305

using recovery drives, 305306

using System Restore, 306310

S mode, 34

security features, 78

setting up as a mobile hotspot, 224

setting up for a cellular connection, 222223

sign-in options, 136

upgrading

using installation media, 1920

using MDT (Microsoft Deployment Toolkit), 1718

using Windows Deployment Services, 17

Virtual Secure Mode, 8

Windows 10 Education, 3

Windows 10 Enterprise, 3

Windows 10 Enterprise LTSC, 3

Windows 10 Home, 2

Windows 10 Pro, 2

Windows 10 Pro for Workstations, 3

Windows Admin Center, 411, 413415

authentication, 413

installation, 411412

Windows Biometric Framework (WBF), 138

Windows Configuration Designer, 92

Windows Defender Antivirus, 199203

Windows Defender Firewall, 170171

advanced security, 174177

allowing an app through, 173174

configure connection security rules with IPsec, 177179

creating firewall rules, 179180

enabling remote management, 393395

Firewall & Network Protection page, 171

monitoring, 172173

Windows Deployment Services, upgrading Windows 10, 17

Windows Hello, 139141

configure the picture password, 144

configuring the PIN, 141144

Dynamic Lock, 145

Windows Hello for Business, 139

Windows Mobility Center, 83. See also mobility settings

Windows Network Diagnostic, 232

Windows PowerShell, 125, 233

BitLocker cmdlets, 192193

creating VHDs, 273274

disk management, 268269

IPv4, configuring, 216217

IPv4 networking-related cmdlets, 217

IPv6 networking-related cmdlets, 219

managing driver packages, 337338

managing local user accounts, 113

managing registry settings, 149150, 389390

managing services, 385

printer management, 9192, 378379

remote management and, 409411

Storage Spaces and, 279280

Windows RE, 310312

System Image Recovery, 317318

Windows Remote Management, 392. See also remote management tools

Windows Security, 162165

Windows Update

checking for updates, 354355

configuring settings on an individual computer, 347349

configuring settings using GPOs, 350354

delivery optimization, 295350

disabling, 326327

rolling back updates, 357

uninstalling updates

using Control Panel, 357

using Settings app, 358

using the Command Prompt, 358359

update testing and validation, 355

wireless networks, 234

advanced settings, 238

configuring, 236237

connecting to, 236

Hotspot 2.0, 237

modes, 234235

security, 235

standards, 235

Wi-Fi Direct, 238240

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset