|
|
|
Securing Windows Server 2003 |
|
You Will Learn How To
- Design and implement the robust security components of Windows Server
2003
- Leverage certificate services for effective data integrity, authentication
and confidentiality
- Configure the Active Directory to effectively deploy security in
large enterprises
- Apply industry standard best practices to protect your organization
- Deploy Kerberos authentication for seamless access to resources
- Secure the Active Directory from malicious manipulation
Course Benefits
With increased connectivity to the Internet, the need for system security is at
an all-time high. In this hands-on course, you gain the skills and experience necessary
to secure a Windows Server 2003 enterprise environment. Through hands-on exercises,
you learn to control the privacy, authenticity and integrity of data within your
organization.
Who Should Attend
Those who design, implement or support Windows Server 2003 systems, including system
administrators, security analysts, auditors and consultants. Course 595, "Windows
Server 2003 Comprehensive Introduction," or equivalent experience is assumed.
Hands-On Training
You gain extensive practical experience in securing Windows Server 2003 systems.
Exercises include:
- Installing and configuring Microsoft Certificate Services
- Applying security policies with Group Policy
- Hacking into a Windows Server 2003 machine
- Strengthening authentication with smart cards, tokens
- Analyzing domain security and implementing software restriction policies
- Deploying the Security Configuration Wizard to create role-based
security policies
- Using IPsec to secure data on public networks
- Using MBSA to determine patch compliance
- Key security technologies
- Identifying attack categories
- Penetration testing of default systems
- Sources of security guidance
- Leveraging pre-defined security templates
- Deploying security via Group Policy
- Constructing custom security policies
- Applying security policies with Group Policy
- Importing and exporting custom templates
- Implementing a PKI with Microsoft Certificate Services
- Requesting, managing and revoking X.509v3 certificates
- Publishing a Certificate Revocation List
- Backing up digital certificates and private keys
- Designing a scalable baseline security policy
- Customizing role-based security using the Security Configuration
Wizard
- Converting role-based XML templates to group policies
- Translating organizational policies into effective security settings
- Designing, analyzing and applying custom security templates
- Security configuration and analysis
- Group Policy Editor
- Resultant Set of Policies wizard
- Cracking passwords using third-party utilities
- Installing and configuring smart cards and tokens
- Implementing certificate-based authentication policies
- Securing access to resources with NTFS permissions
- Determining resultant access with the Effective Permissions tool
- Pinpointing NTFS vulnerabilities with hacker tools
- Configuring EFS for real-world implementation
- Integrating digital certificates with EFS
- Creating recovery agent policies to assure data access
- Sniffing networks to detect common vulnerabilities
- Configuring IPsec to provide confidentiality and integrity services
- Strengthening IPsec authentication security with digital certificates
- Preventing execution of unauthorized scripts and other code
- Implementing disallow policies for applications
- Disabling unnecessary services
- Controlling service startup with Group Policies
- Enabling and configuring auditing
- Dissecting audit logs
- Auditing network traffic with protocol analyzers
- Recognizing evidence of intrusion attempts
- Managing the testing and deployment of security updates and hot fixes
- Administering WSUS, MBSA and Windows Update with Group Policy
|
|
|
|
|
|