MS2823 - Implementing Security in a Windows 2003 Network

This five-day instructor-led course addresses the MCSA and MCSE skills path for IT Pro security practitioners, specifically addressing the training needs of those preparing for the 70-299 certification exam.

The primary product focus is on Microsoft Windows Server™ 2003 based infrastructure solutions but will include some client focused content where appropriate. This learning product is to provide functional skills in planning and implementing infrastructure security.

This course is part of the Security Portfolio and will act as the primary entry point for IT Professionals at the implementation level. Course 2810 will provide an entry point for students to broaden their awareness of security issues. Students will be encouraged to enhance their security design skills by attending Course 2830.



Audience
The course is for a system administrator or system engineer who has the foundation implementation skills and knowledge for the deployment of secure Microsoft Windows Server 2003 based solutions. This course is not intended to provide design skills, but will cover planning skills at a level sufficient to enable decision making for the implementation process.

Delivery:	In house
Category:	Networking

At Course Completion

After completing this course, students will gain the skills to:



Determine the necessary group structure for a multi-domain or multi-forest environment.

Create trusts in a Microsoft Windows Server 2003 environment.

Plan, implement, and maintain an authorization and authentication strategy in a multi-forest organization.

Plan and implement an authorization and authentication strategy in a multi-forest organization.

Install a certification authority (CA).

Create and publish Certificate Revocation Lists and Authority Information Access (AIA) distribution points.

Back up and restore a certification authority.

Configure certificate templates.

Deploy and revoke certificate templates.

Manage certificate templates.

Implement EFS in a standalone Microsoft Windows® XP environment.

Plan and implement EFS in a domain environment that uses public key infrastructure (PKI).

Implement EFS file sharing.

Troubleshoot EFS problems.

Plan for data transmission security.

Implement secure data transmission methods.

Troubleshoot data transmission errors.

Plan a secure WLAN infrastructure.

Implement a secure WLAN infrastructure.

Troubleshoot WLAN errors and components.

Install ISA Server 2000.

Secure a screened subnet with ISA Server 2000.

Publish servers.

Plan a remote access strategy.

Implement and configure a VPN server.

Deploying network access Quarantine control components.

Plan a secure member server baseline.

Configuring additional security settings.

Deploy security templates.

Plan and configure a secure baseline for a server roles.

Plan, implement, and troubleshoot a smart card infrastructure.

Plan a secure client computer baseline.

Configure and deploy a client computer baseline.

Plan and implement a Software Restriction Policy.





Prerequisites

Before attending this course, students must have:



Completed Course 2810 or equivalent knowledge.

Experience implementing a Windows 2000 or Windows Server 2003 Active Directory® environment. Experience with organizational resources such as Web, FTP and Exchange servers, (not expected to have detailed knowledge) shared resources and network services such as DHCP, DNS, and WINS also helpful