|
Introduction
This five-day instructor-led course addresses the MCSA and MCSE skills path for IT Pro security practitioners, specifically addressing the training needs of those preparing for the 70-299 certification exam.
The primary product focus is on Microsoft Windows Server™ 2003 based infrastructure solutions but will include some client focused content where appropriate. This learning product is to provide functional skills in planning and implementing infrastructure security.
This course is part of the Security Portfolio and will act as the primary entry point for IT Professionals at the implementation level. Course 2810 will provide an entry point for students to broaden their awareness of security issues. Students will be encouraged to enhance their security design skills by attending Course 2830.
Audience
The course is for a system administrator or system engineer who has the foundation implementation skills and knowledge for the deployment of secure Microsoft Windows Server 2003 based solutions. This course is not intended to provide design skills, but will cover planning skills at a level sufficient to enable decision making for the implementation process.
At Course Completion
After completing this course, students will be able to:
- Plan and configure an authorization and authentication strategy in a multi-forest organization.
- Install, configure, and manage a certification authority (CA).
- Configure, deploy, and manage certificates.
- Plan, implement, and troubleshoot smart card certificates.
- Plan, implement, and troubleshoot Encrypting File System (EFS).
- Plan, configure, and deploy a secure member server baseline.
- Plan, configure, and implement secure baselines for server roles.
- Plan, configure, implement, and deploy a secure client computer baseline.
- Plan and implement Software Update Services.
- Plan, implement, and troubleshoot data transmission security.
- Plan and implement security for wireless networks.
- Plan and implement perimeter security with Internet Security and Acceleration Server (ISA) 2000.
- Secure remote access.
Prerequisites
Before attending this course, students must have:
- Completed Course 2810 Fundamentals of Network Security or equivalent knowledge.
- Experience implementing a Windows® 2000 or Windows Server 2003 Active Directory® environment. Experience with organizational resources such as Web, FTP and Exchange servers, (not expected to have detailed knowledge) shared resources and network services such as DHCP, DNS and WINS also helpful.
Course Outline
- Planning and Configuring an Authorization and Authentication Strategy
- Groups and Basic Group Strategy in Windows Server 2003
- Creating Trusts in Windows Server 2003
- Planning, Implementing, and Maintaining an Authorization Strategy Using Groups
- Components of an Authentication Model
- Planning and Implementing an Authentication Strategy
- Installing, Configuring, and Managing Certification Authorities
- Introduction to PKI and Certification Authorities
- Installing a Certification Authority
- Managing a Certification Authority
- Backing Up and Restoring a Certification AuthorityConfiguring, Deploying, and Managing Certificates
- Configuring Certificate Templates
- Deploying and Revoking User and Computer Certificates
- Managing CertificatesPlanning, Implementing, and Troubleshooting Smart Card Certificates
- Introduction to Multifactor Authentication
- Planning and Implementing a Smart Card Infrastructure
- Managing and Troubleshooting a Smart Card Infrastructure
- Planning, Implementing, and Troubleshooting Encrypting File System
- Introduction to EFS
- Implementing EFS in a Standalone Microsoft Windows XP Environment
- Planning and Implementing EFS in a Domain Environment with a PKI
- Implementing EFS File Sharing
- Troubleshooting EFS
- Planning, Configuring, and Deploying a Secure Member Server Baseline
- Overview of a Member Server Baseline
- Planning a Secure Member Server Baseline
- Configuring Additional Security Settings
- Deploying Security Templates
- Planning, Configuring, and Implementing Secure Baselines for Server Roles
- Planning and Configuring a Secure Baseline for Domain Controllers
- Planning and Configuring a Secure Baseline for DNS Servers
- Planning and Configuring a Secure Baseline for Infrastructure Servers
- Planning a Secure Baseline for File and Print Servers
- Planning and Configuring a Secure Baseline for IIS Servers
- Planning, Configuring, Implementing, and Deploying a Secure Client Computer Baseline
- Planning and Implementing a Secure Client Computer Baseline
- Configuring and Deploying a Client Computer Baseline
- Planning and Implementing a Software Restriction Policy
- Implementing Security for Mobile Clients
- Planning and Implementing Software Update Services
- Introduction to Software Update Services and Update Management
- Planning an Update Management Strategy
- Implementing an SUS Infrastructure
- Planning, Deploying, and Troubleshooting Data Transmission Security
- Secure Data Transmission Methods
- Introducing IPSec
- Planning Data Transmission Security
- Implementing Secure Data Transmission Methods
- Troubleshooting IPSec Communications
- Planning and Implementing Security for Wireless Networks
- Introduction to Securing Wireless Networks
- Implementing 802.1x Authentication
- Planning a Secure WLAN Strategy
- Implementing a Secure WLAN
- Troubleshooting Wireless Networks
- Planning and Implementing Perimeter Security with Internet Security and Acceleration Server 2000
- Introduction to Internet Security and Acceleration Server 2000
- Installing ISA Server 2000
- Securing a Perimeter Network with ISA Server 2000
- Publishing Servers on a Perimeter Network
- Securing ISA Server Computers
- Securing Remote Access
- Introduction to Remote Access Technologies and Vulnerabilities
- Planning a Remote Access Strategy
- Deploying Network Access Quarantine Control Components
Microsoft Certified Professional Exams
Exam 70-299: Implementing and Administering Security in a Microsoft Windows Server 2003 Network
Course Materials
The student kit includes a comprehensive workbook and other necessary materials for this class.
Related courses:
|
What is Software Assurance?
Software Assurance (SA) provides an easy way for Microsoft's Volume Licensing customers to stay current with the latest and most innovative Microsoft products. Under the SA program, customers acquire the right to install any new release of products covered in the agreement during the term of their coverage. Companies can acquire tomorrow's technology at today's prices and have the ability to spread payments annually instead of paying up front. Visit www.microsoft.com/licensing to learn more about Microsoft's licensing programs.
What is the SA Enhancement Offering?
The SA Enhancement Offering is designed to increase customer satisfaction by giving customers more value from Software Assurance and a better Microsoft product experience. The Enhancement Offering contains tools, training, and support as well as additional licensing benefits which meet different customer needs across product segments and across customer segments. The many benefits include:
- Training vouchers redeemable
- Employee Purchase Program
- Home Use Program
- Problem Resolution Support
- TechNet Subscription
- Technology & Tools
What is the Software Assurance (SA) Training Voucher Program?
Qualifying organizations that purchase Software Assurance receive training credits from Microsoft. Each training credit is worth the equivalent of one day of training at Networking Technologies™. Customers can redeem these credits for SA Training Vouchers for select Microsoft courses from «Networking Technologies»™.
How to Get Started?
Contact the individual in your organization responsible for software purchases to verify that you purchased volume licensing with Software Assurance. We can help you activate your benefits and administer the training vouchers. To register for a training contact Education Center «Networking Technologies»™ directly via e-mail edu@tex.kiev.ua
|
