MCSE Certification Training Microsoft Exchange SQL Server  MCSA 2003 Cat > Directory Training Course >
mcse ccnp oracle boot camp cissp ccna a+ orlando, chicago, scottsdale, san diego, New Jersey, Florida, New York, Illinois
Home Page Training
MCSE Security Certification
MCSE 70-270
MCSE 70-290
MCSE 70-291
MCSE 70-293
MCSE 70-298
MCSE 70-299
MCSE 70-294

Microsoft MCSE Certification

Implementing Security in Windows Server 2003 Curriculum Exam 70-298

MCSE Course Description
The Windows Server 2003 curriculum provides functional skills in planning and implementing infrastructure security in a Microsoft Windows Server 2003 environment. The series addresses the skills path for IT professional seeking the core security specialization within MCSA and MCSE certification.

Training Course Outline

  • Module 1: Security Policies: Setup and Management
    • Identify the functions of the security templates and policies.
    • Create, copy, and edit security templates.
    • Edit the properties and permissions for a GPO.
    • Import security templates into Group Policy objects.
    • Identify the various tools available to deploy security templates without Active Directory.
    • Manually update Group Policies and troubleshoot Group Policy inheritance issues.
    • View the effective settings of a security template. 
    • Identify the type of information found in the Gpresults and Advanced System Information reports.
      Locate the registry settings of a security template.
    • Determine when the computer's security settings do not meet the settings specified by a security template.
    • Verify the security template settings on pre-Windows Server 2003 and Windows XP Professional operating systems. 
  • Module 2: Hardening Computers for Specific Roles
    • Plan the requirements for increasing the security of client computers from the baseline security. 
    • Identify the rules to restrict the use of client software.
    • Identify security hardening techniques for desktop computers. 
    • Identify the techniques for hardening the security of mobile computers. 
    • Identify the techniques for securing public Kiosks. 
    • Learn how firewalls are used to protect networks. 
    • Define the purpose of perimeter networks and identify perimeter network components. 
    • Identify security issues when configuring DHCP. 
    • Identify security issues associated with DNS, configure a DNS server role, and authorize a DNS server for your network.
    • Identify security preventions when configuring domain controllers.
    • Identify and use methods for securing an IAS server.
    • Identify and use methods for securing Microsoft Internet Information Services.
    • Identify and use methods for securing an Exchange server. 
    • Identify and use methods to secure a SQL server.
  • Module 3: Deploy Patch Management Infrastructure
    • Identify functionality and system requirements of the Microsoft Baseline Security Analyzer (MBSA). 
      Use the tools supplied with Server 2003 to use the tools supplied with Server 2003 to assess the patch levels on a network.
    • Identify security vulnerabilities when updating new clients.
    • Integrate service packs with the Windows Setup files to create an updated installation. 
    • In this topic, you will learn about manually installing updates to a computer.
    • In this topic, you will be able to make approved updates available to your organization's computers through a SUS server. 
    • Configure the Automatic Updates client to receive updates from either Windows Update or a local SUS server. 
    • Distribute service packs by using a Group Policy object
  • Module 4: Implement and Manage IPSec
    • Identify characteristics of IPSec.
    • Identify aspects of securing host-to-host communications using IPSec. 
    • Identify aspects of securing host-to-network communications using IPSec.
    • Identify aspects of securing network-to-network communications using IPSec. 
    • Identify characteristics of the IPSec negotiation process.
    • Identify key aspects of Authentication Header (AH) and Encapsulating Security Payload (ESP).
    • Identify IPSec improvements in Microsoft Windows Server 2003. 
    • Identify considerations for using Active Directory-based IPSec policies.
    • Identify features of authentication methods used with IPSec policy. 
    • Identify key aspects of testing IPSec.
    • Identify key aspects of IP filters. 
    • Identify considerations to configure IP filter actions. 
    • Identify characteristics of an IP security rule.
    • Identify steps to configure packet filtering on a computer. 
    • Enable encryption and integrity verification on two computers in a domain.
  • Module 5: Deploy, Monitor, and Troubleshoot IPSec
    • Identify features of IPSec scripting tools. 
    • Identify aspects of Certificate Services used for IPSec authentication. 
    • Identify steps to configure Certificate Services for IPSec authentication.
    • Export and import an IPSec policy.
    • Identify features of the IP Security Monitor MMC snap-in. 
    • Identify different IPSec events that you can view by using the Event Viewer.
    • Identify features of the Netsh command-line tool for monitoring IPSec.
    • Identify features of the Performance console.
    • Identify key aspects of Network Monitor.
    • Identify features of the Netcap utility.
    • Monitor IPSec using the IPSec Monitor snap-in.
    • Monitor IPSec using Network Monitor.
    • Identify steps to log dropped packets.
    • Identify ways to troubleshoot Certificate Authentication problems.
    • Identify methods to troubleshoot Network Address translation(NAT) and interoperability problems. 
  • Module 6: Implement Wireless Security
    • Identify threats associated with the security of wireless networks. 
    • Identify key aspects of Wired Equivalent Privacy (WEP). 
    • Identify features of 802.1x authentication. 
    • Identify advantages of Wi-Fi Protected Access (WPA).
    • Identify important aspects of other wireless security techniques. 
    • Identify considerations for planning a wireless access policy.
    • Identify guidelines for designing a user authorization strategy.
    • Identify considerations for configuring the certificate infrastructure. 
    • Identify guidelines for configuring IAS.
    • Configure an IAS server for authenticating wireless users and computers.
    • Identify steps for configuring wireless clients.
    • Configure a client computer to connect to a wireless network. 
  • Module 7: Configure and Manage SSL Certificates
    • Identify features of SSL. 
    • Identify considerations for obtaining SSL certificates. 
    • Identify ports used when configuring firewalls to allow SSL traffic.
    • Identify considerations for verifying the website.
    • Identity using SSL certificates.
    • Identify steps to request a new SSL certificate using the Web Server Certificate Wizard.
    • Renew a SSL certificate using the Web Server Certificate Wizard.
    • Identify key aspects of client certificates. Configure SSL for an IIS server. 
    • Enroll for a client certificate and access a website using HTTPS. 
    • Identify considerations for enabling SSL on Active Directory domain controllers.
    • Identify considerations for enabling SSL on a computer running SQL Server.
    • Configure clients to trust the root CA. 
    • Configure an SSL certificate on a mail server to enable encrypted communications. 
    • Enable SSL encryption for an existing account on Microsoft Outlook 2003.
  • Module 8: Secure Remote Access
  • Identify characteristics of VPN protocols supported by Microsoft Windows Server 2003. 
    • Identify characteristics of authentication methods supported by Microsoft Windows Server 2003. 
    • Identify steps to configure remote access server authentication.
    • Identify key aspects of configuring authorization for a remote access connection. 
    • Enable authentication with smart cards. 
    • Configure a VPN server. 
    • Configure a VPN client. 
    • Identify steps to configure client authentication protocols.
    • Identify guidelines to create a customized remote access connection by using CMAK wizard. 
    • Identify steps to create a VPN file.
    • Create a service profile by using the CMAK. 
    • Install a service profile.
    • Identify key aspects of authentication protocols supported by Microsoft Windows Server 2003.
    • Identify considerations for storing user credentials on servers.
    • Identify guidelines for creating a strong password policy.
    • Identify options for defining account lockout policies. 
    • Identify options for creating Kerberos ticket policies. 
    • Identify Microsoft Windows Server 2003 authentication methods compatible with earlier operating systems.
    • Identify key aspects of using multifactor authentication. 
    • Disable LAN Manager (LM) authentication.
    • Configure a user account to enable account lockout after a specific number of unauthorized access attempts.
  • Module 9:  Authentication Strategy
    • Configure anonymous access for Web users. 
    • Identify authentication options that can be used for configuring Web authentication.
    • Identify key aspects of delegated authentication. 
    • Identify the types of trusts supported in Microsoft Windows Server 2003.
    • Identify key aspects of securing trusts with SIDs to authenticate domains and forests.
    • Raise the domain functional level to Windows Server 2003. 
    • Create a cross-forest trust.
    • Identify characteristics of groups. 
    • Identify the group scopes supported by Microsoft Windows Server 2003. 
    • Identify various domain and forest functional levels and their features.
    • Identify features of various built-in groups provided by Microsoft Windows Server 2003.
    • Identify features of various special groups and accounts included in Microsoft Windows Server 2003.
    • Identify key aspects of a Restricted Groups policy. 
    • Identify key aspects of authorization.
    • Identify important aspects of various types of permissions. 
    • Identify key aspects of using the User/ACL authorization method.
    • Identify key aspects of using the Account Group/ACL authorization method. 
    • Identify key aspects of using the Account Group/Resource Group authorization method.
    • Identify considerations for nesting groups. 
  • Module 10: Plan, Configure, and Troubleshoot PKI
    • Create a subordinate CA.
    • Identify characteristics of a CA hierarchy. 
    • Identify the methods used for protecting CA data. 
    • Identify uses of various certificate templates. 
    • Identify functions of template permissions. 
    • Identify methods to update a certificate template.
    • Identify steps in the certificate enrollment process. 
    • Identify methods for certificate enrollment.
    • Identify ways to revoke certificates. 
    • Identify considerations for publishing certificate revocation lists (CRLs). 
    • Create a certificate by using manual Web enrollment.
    • Create a certificate by using the Certificates MMC snap-in. 
    • Identify key aspects of recovering private keys.
    • Identify key aspects of exporting keys. 
    • Identify key aspects of key archival and recovery.
    • Export and import keys. 
    • Configure key archival.
    • Identify key aspects of a CA. 
    • Configure a root CA.

This Study guide and/or material is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc. Cisco®, Cisco Systems®, CCDA™, CCNA ™, CCDP™, CCNP ™, CCIE™, CCSI™, the Cisco Systems logo and the CCIE logo are trademarks or registered trademarks of Cisco Systems, Inc.

CDi

sales@cdicomp.com
webmaster@netwind.com
Copyright  © CDi Communications Inc. 1996-2007
Netwind Learning Center is a registered trademark of CDi Communications, Inc.

*30-Day Guarantee applies only if products purchased are returned with 50% of product unopened. For example if product purchased contains 6 videos, 3 must remain unopened.