Module 1: Planning and Configuring an Authorization and Authentication Strategy
This module explains how to evaluate the infrastructure of your organization and create and document an authorization and authentication plan that allows the appropriate level of access to various security principals. It also describes trust relationships, domain and forest functional levels, and basic security principles.
Lessons
• Groups and Basic Group Strategy in Windows Server 2003
• Creating Trusts in Windows Server 2003
• Planning, Implementing, and Maintaining an Authorization Strategy Using Groups
• Components of an Authentication Model
• Planning and Implementing an Authentication Strategy
Module 2: Installing, Configuring, and Managing Certification Authorities
This module describes the fundamentals of the systems that make secure communication possible. It describes methods, such as a public key infrastructure (PKI), that enable you to securely communicate on networks.
Lessons
• Introduction to PKI and Certification Authorities
• Installing a Certification Authority
• Managing a Certification Authority
• Backing Up and Restoring a Certification Authority
Module 3: Configuring, Deploying, and Managing Certificates
This module explains how to ensure that the certificates are issued to the correct security principals and for the intended purpose. It describes, for example, how to make the deployment of certificates an easy and straightforward task for end users.
Lessons
• Configuring Certificate Templates
• Deploying and Revoking User and Computer Certificates
• Managing Certificates
Module 4: Planning, Implementing, and Troubleshooting Smart Card Certificates
This module describes how to deploy, manage, and configure certificates and certificate templates in a public key infrastructure (PKI) environment.
Lessons
• Introduction to Multifactor Authentication
• Planning and Implementing a Smart Card Infrastructure
• Managing and Troubleshooting a Smart Card Infrastructure
Module 5: Planning, Implementing, and Troubleshooting Encrypting File System
This module describes how to plan, implement, and troubleshoot Encrypting File System (EFS).
Lessons
• Introduction to EFS
• Implementing EFS in a Standalone Microsoft Windows XP Environment
• Planning and Implementing EFS in a Domain Environment with a PKI
• Implementing EFS File Sharing
• Troubleshooting EFS
Module 6: Planning, Configuring, and Deploying a Secure Member Server Baseline
The security of a network depends on the security configuration of the servers that make up the network. Any breach of security on a single server can jeopardize the security of all computers in the network, thereby jeopardizing the security of the network itself. In this module, students will learn how to create secure baselines for servers.
Lessons
• Overview of a Member Server Baseline
• Planning a Secure Member Server Baseline
• Configuring Additional Security Settings
• Deploying Security Templates
Module 7: Planning, Configuring, and Implementing Secure Baselines for Server Roles
In this module, students will learn how to create secure baselines for various server roles.
Lessons
• Planning and Configuring a Secure Baseline for Domain Controllers
• Planning and Configuring a Secure Baseline for DNS Servers
• Planning and Configuring a Secure Baseline for Infrastructure Servers
• Planning a Secure Baseline for File and Print Servers
• Planning and Configuring a Secure Baseline for IIS Servers |
Module 8: Planning, Configuring, Implementing, and Deploying a Secure Client Computer Baseline
In this module, students will learn how to create secure baselines for client computers.
Lessons
• Planning and Implementing a Secure Client Computer Baseline
• Configuring and Deploying a Client Computer Baseline
• Planning and Implementing a Software Restriction Policy
• Implementing Security for Mobile Clients
Module 9: Planning and Implementing Software Update Services
In this module, students will learn how to plan and implement update management strategies on computers.
Lessons
• Introduction to Software Update Services and Update Management
• Planning an Update Management Strategy
• Implementing an SUS Infrastructure
Module 10: Planning, Deploying, and Troubleshooting Data Transmission Security
This module provides students with the information they need to plan and troubleshoot data transmission security.
Lessons
• Secure Data Transmission Methods
• Introducing IPSec
• Planning Data Transmission Security
• Implementing Secure Data Transmission Methods
• Troubleshooting IPSec Communications
Module 11: Planning and Implementing Security for Wireless Networks
A wireless network uses technology that enables two or more devices to communicate through standard network protocols and electromagnetic waves—not network cabling—to carry signals over part or all of the communication path. This module describes how to plan and implement security for wireless networks.
Lessons
• Introduction to Securing Wireless Networks
• Implementing 802.1x Authentication
• Planning a Secure WLAN Strategy
• Implementing a Secure WLAN
• Troubleshooting Wireless Networks
Module 12: Planning and Implementing Perimeter Security with Internet Security and Acceleration Server 2000
Networks in organizations today are commonly interconnected—various networks within an organization connect to each other, and corporate networks connect to the Internet. Although this presents new business opportunities, it can also cause concerns about security, performance, and manageability.
Lessons
• Introduction to Internet Security and Acceleration Server 2000
• Installing ISA Server 2000
• Securing a Perimeter Network with ISA Server 2000
• Publishing Servers on a Perimeter Network
• Securing ISA Server Computers
Module 13: Securing Remote Access
Remote access enables remote access clients to access corporate networks as if they were directly connected to the corporate network. The remote access clients connect to the network by using dial-up communication links. The security of a network is compromised if unauthorized remote users gain access to intranet-based resources. An effective network access security design ensures confirmation of the identity of the clients attempting to access your organization?s network resources and protection of specific resources from inappropriate access by users.
Lessons
• Introduction to Remote Access Technologies and Vulnerabilities
• Planning a Remote Access Strategy
• Deploying Network Access Quarantine Control Components |
