2823 Implementing and Administering Security in a Microsoft Windows Server 2003 Network

Instructor led, group-paced, classroom-delivery learning model with structured hands-on activities.

This five-day instructor-led course addresses the MCSA and MCSE skills path for IT Pro security practitioners, specifically addressing the training needs of those preparing for the 70-299 certification exam.
The primary product focus is on Microsoft Windows Server 2003 based infrastructure solutions but will include some client focused content where appropriate. This learning product is to provide functional skills in planning and implementing infrastructure security.
This course is part of the Security Portfolio and will act as the primary entry point for IT Professionals at the implementation level. MOC 2810 will provide an entry point for students to broaden their awareness of security issues. Students will be encouraged to enhance their security design skills by attending MOC 2830.
Microsoft Certification exams
No Microsoft Certification exams are associated with this course currently

•Completed MOC 2810 or equivalent knowledge.
•Experience implementing a Windows 2000 or Windows Server 2003 Active Directory environment. Experience with organizational resources such as Web, FTP and Exchange servers, (not expected to have detailed knowledge) shared resources and network services such as DHCP, DNS and WINS also helpful

•Plan and configure an authorization and authentication strategy.
•Install, configure, and manage certification authorities.
•Configure, deploy, and manage certificates.
•Plan, implement, and troubleshoot smart card certificates.
•Plan, implement, and troubleshoot Encrypting File System (EFS).
•Plan, configure, and deploy a secure member server baseline.
•Plan, configure, and implement secure baselines for server roles.
•Plan, configure, implement, and deploy client computer baselines.
•Plan and implement software updates.
•Plan, deploy, and troubleshoot data transmission security.
•Plan and implement security for wireless networks.
•Plan and implement perimeter security with Internet Security and Acceleration (ISA) Server 2004.
•Secure remote access.

Module 1: Planning and Configuring an Authentication and Authorization Strategy

•Components of an Authentication Model
•Planning and Implementing an Authentication Strategy
•Groups and Basic Group Strategy in Windows Server 2003
•Creating Trusts in Windows Server 2003
•Planning, Implementing, and Maintaining an Authorization Strategy Using Groups

Module 2: Installing, Configuring, and Managing Certification Authorities

•Overview of a PKI
•Introduction to Certification Authorities
•Installing a Certification Authority
•Managing a Certification Authority
•Backing Up and Restoring a Certification Authority

Module 3: Configuring, Deploying, and Managing Certificates

•Overview of Digital Certiificates
•Deploying and Revoking User and Computer Certificates
•Configuring Certificate Templates
•Managing Certificates

Module 4: Planning, Implementing, and Troubleshooting Smart Card Certificates

•Introduction to Multifactor Authentication
•Planning and Implementing a Smart Card Infrastructure
•Managing and Troubleshooting a Smart Card Infrastructure

Module 5: Planning, Implementing, and Troubleshooting Encrypting File System

•Introduction to EFS
•Implementing EFS in a Standalone Microsoft Windows XP Environment
•Planning and Implementing EFS in a Domain Environment
•Implementing EFS File Sharing
•Troubleshooting EFS

Module 6: Planning, Configuring, and Deploying a Secure Member Server Baseline

•Overview of a Member Server Baseline
•Planning a Secure Member Server Baseline
•Configuring Additional Security Settings
•Deploying Security Templates
•Securing Servers by Using the Security Configuration Wizard

Module 7: Planning, Configuring, and Implementing Secure Baselines for Server Roles

•Planning and Configuring a Secure Baseline for Domain Controllers
•Planning and Configuring a Secure Baseline for DNS Servers
•Planning and Configuring a Secure Baseline for Infrastructure Servers
•Planning a Secure Baseline for File and Print Servers
•Planning and Configuring a Secure Baseline for IIS Servers

Module 8: Planning, Configuring, Implementing, and Deploying a Secure Client Computer Baseline

•Planning and Implementing a Secure Client Computer Baseline
•Securing Applications on Client Computers
•Planning and Implementing a Software Restriction Policy
•Implementing Security for Mobile Clients

Module 9: Planning and Implementing Software Updates

•Introduction to Software Update Management
•Implementing Microsoft Baseline Security Analyzer
•Installing Windows Server Update Services
•Managing a WSUS Infrastructure

Module 10: Planning, Deploying, and Troubleshooting Data Transmission Security

•Secure Data Transmission Methods
•Introducing IPSec
•Planning and Implementing Data Transmission Security Using IPSec
•Troubleshooting IPSec Communications

Module 11: Planning and Implementing Security for Wireless Networks

•Introduction to Securing Wireless Networks
•Implementing 802.1x Authentication
•Planning a Secure WLAN Strategy
•Implementing a Secure WLAN
•Troubleshooting Wireless Networks

Module 12: Planning and Implementing Perimeter Security

•Introduction to Internet Security and Acceleration Server 2004
•Installing and Managing ISA Server 2004
•Securing a Perimeter Network by Using ISA Server 2004
•Publishing Servers on a Perimeter Network
•Planning a Perimeter Network
•Implementing a Perimeter Network
•Securing an ISA Server 2000 Computer

Module 13: Securing Remote Access

•Introduction to Remote Access Technologies and Vulnerabilities
•Planning a Remote Access Strategy
•Deploying Network Access Quarantine Control Components

Infero Training Ltd is based in the Lace Market in Nottingham. Training courses take place at the following locations including Nottingham, Derby, Loughborough, Mansfield, Chesterfield, Burton-on-Trent, Lincoln, Leicester, Sheffield, Stoke-on-Trent, Tamworth, Wolverhampton, Walsall, Birmingham, Solihul, Coventry, Nuneaton, Peterborough, Grantham.