HOME
    PRODUCTS  TRAINING    SERVICES  SOLUTIONS    SUPPORT         CAREERS      COMPANY   
    Home / Training / E-Commerce / M212    
 
 

M212

 

M212: Designing and Deploying Secure Microsoft Windows 2000 Infrastructure - 4 Days

 

Who Should Attend:

System and Network Administrators, System and Network Managers, PC support personnel and IT professionals interested in understanding secure implementation and deployment of Windows 2000 workstations and servers, security fir system services and overall threat assessment to Windows networks.

 

Prerequisites:

This module assumes some basic familiarity with basic Windows NT/2000 system and network administration. Participants lacking this knowledge are advised to enrol in M211a: Windows NT/2000 Server System Administration or Network Administration.


Objectives:
This hands-on module covers security practices, which can be applied when administering, and deploying networks principally uses Windows 2000 architecture. Among the topics covered in this module are Windows 2000 security basics, encryption of data, IPSec features, how to use public and private key mechanisms, Secure installation (according to US DoD), secure printing services, disaster recovery are also covered.

 

Contents:


Security Risks in your system: Data risks, Risks to Services, Potential Threats, Security Standards, Planning Network Security

Windows 2000 Security Basics: Active Directory services, Authenticating User Accounts, Encryption, Encrypting Stored and Transmitted Data, Public Key Infrastructure Technology, Administrative Model, Design Strategies, Planning Local Administrative Access, Planning Remote Administrative Access.

User Accounts in Active Directory: Account Policies and Group Policy, Account Creation and Location, Auditing.

Windows 2000 Security: Security Requirements, Deploying Security Configuration, Securing File and Print Resources, Examining Windows 2000 File System Security, Protecting Resources Using DACLs, Encrypting Data Using EFS Auditing, Backup security, Protecting Data from Viruses

Securing Network Data: Network Data Transfer Risks, Application-Layer Security, IP-Layer Security implementation, Implementing Network Traffic Encryption.

 

Security-Enhanced Access (to Non-Microsoft Clients) : Providing Security-Enhanced Network Access to LINUX, NetWare and Macintosh Clients. Securing Network Services in a Heterogeneous Network. Monitoring for Security Breaches.

 

Security-Enhanced Access (to Remote Users): Designing Security for Dial-Up and VPN Connections. Centralizing Remote Access Security Settings. Protecting Connections Using Routers. Securing VPN Connections Between Remote Offices

Security-Enhanced Network Access (to Internet Users) : Using Firewalls to Protect Network Resources. Using Screened Subnets to Protect Network Resources. Securing Public Access to a Screened Subnet.

Security-Enhanced Internet Access (to Network Users): Planning Internet Usage Policies. Managing Internet Access Through Proxy Server Configuration and Client-Side Configuration.

Extending the Network to Partner Organizations: Securing Applications Used by Partners. Securing Connections Used by Remote. Partners. Active Directory.

Designing a Public Key Infrastructure: Using Certificates. Certification Authority. Designing a Security Plan.

--------

 

 

  
   

 
 

Entegra Consultancy Pte Ltd © 2003-2005 • Privacy PolicyTerms Of Use

This site is designed and published in EntegrOS Publisher WEB Edition