Microsoft Security Guidance Training

Microsoft Security Guidance Training 3

This one-day instructor-led clinic builds on existing knowledge of server and client security and provides students with the knowledge and skills to apply best practices to securing Exchange Server clients, protecting e-mail and data content, securing services and critical accounts, and securing administrative accounts and remote access using smart cards.

Attendees will be current IT professionals with experience using Microsoft Windows 2000 Server or Microsoft Windows Server 2003 and with knowledge of Microsoft Active Directory concepts. Students will also benefit from experience with Microsoft Exchange 2000 or Exchange Server 2003. The students will be in an environment where they are responsible for aspects of security management and deployment associated with their internal network infrastructure and Internet or intranet services

Prerequisites
Before attending this clinic, students must have:

Hands-on experience with Microsoft Windows 2000 or Microsoft Windows Server 2003
Experience with Active Directory and Group Policy
Basic understanding of Windows authorization and authentication concepts
Working knowledge of Internet protocols including POP3, IMAP4, SMTP, and HTTP
Basic understanding of PKI concepts and technologies
Delegates will learn how to
List challenges related to message security.
Compare commonly employed methods used to secure and protect e-mail content, such as S/MIME and Information Rights Management.
Compare commonly employed methods used to secure client access to Exchange Server, such as RPC over HTTP and publishing Exchange Server services by using Internet Security and Acceleration (ISA) Server 2004.
Configure Outlook 2003 to improve security, by implementing features such as attachment security.
Compare forms-based authentication, SSL, and S/MIME as methods for securing Outlook Web Access.
Identify challenges and benefits to protecting confidential information.
Identify and explain the components and prerequisites needed to implement a Rights Management Services infrastructure.
Explain the process of key generation, distribution, and management.
Highlight implementation best practices for both server and client scenarios
Review and demonstrate the administrative and configuration tasks associated with Rights Management on the server.
Understand the challenges faced with securing service and critical accounts.
Explain the types of accounts used to run services.
Understand how to plan for service-account security.
Understand how to run services securely by determining current service-security status and then implementing least privilege for service deployment.
Explain how to secure administrative accounts by using Microsoft best practices.
Identify common security challenges and benefits of using multifactor authentication.
Identify and evaluate prerequisites and hardware needed to implement a multifactor authentication strategy using smart cards.
Explain how to use smart cards to secure administrator accounts.
Explain how to use smart card authentication to secure remote access.
Course Outline
Implementing Messaging Security for Exchange Server Clients

Implementing Message Security
Configuring Secure Client Access to Exchange Server
Understanding Additional Outlook 2003 Security Features
Securing Outlook Web Access
Protecting Information with Microsoft Windows Rights Management Services

Introduction to Managing Digital Information
Understanding Rights Management Services
Planning Considerations for RMS Deployments
Administering an RMS Infrastructure
Securing Services and Critical Accounts

Securing Administrator Accounts
Overview of Service Account Security
Planning Service Account Security
Implementing Service Account Security
Implementing Multifactor Authentication Using Smart Cards

Securing Accounts by Using Multifactor Authentication
Planning the Implementation of Smart Card Authentication
Using Smart Cards to Secure Administrative Accounts
Implementing Smart Cards to Secure Remote Access

This one-day instructor-led clinic builds on existing knowledge of server and client security and provides students with the knowledge and skills to apply best practices to implement perimeter and network defenses and enhance security for applications and Microsoft Windows Server System components. It also provides students with prescriptive guidance to enhance security for Microsoft Windows server and client computers and practical strategies for implementing security best practices across an environment.

Attendees will be current IT professionals with experience using Microsoft Windows 2000 Server or Microsoft Windows Server 2003 and with knowledge of Active Directory® concepts. Students will also benefit from experience with Microsoft Exchange Server, Microsoft SQL Server� and Microsoft Internet Security and Acceleration (ISA) Server 2000. The students will be in an environment where they are responsible for aspects of security management and deployment associated with their internal network infrastructure and Internet or intranet services.

Prerequisites
Before attending this clinic, students must have:

Hands-on experience with Windows 2000 or Windows Server 2003 management tools.
Experience with Active Directory and Group Policy.
Attended Clinic 2801, Microsoft Security Guidance Training I, or have equivalent knowledge.
Delegates will learn how to
Use Internet Connection Firewall (ICF) to protect clients
Understand the importance of client and server security
Describe the tasks and tools involved in implementing client security
Identify the methods for securing Windows operating systems
Protect wireless networks
List methods available for providing mobile client security
Learn real-world strategies for patch management and network security and how to troubleshoot problems with existing security configurations
Understand best practices for enhancing security across heterogeneous environments, including legacy and third-party systems
Understand how to implement perimeter defenses
Use ISA Server to protect the network perimeter
Implement client defenses
Protect Exchange Server, SQL Server, and Microsoft Small Business Server, and keep data secure and private
Identify the important tasks that you can do today to improve your organization’s security
Describe the tasks and tools involved in implementing server security
List methods available for securing Microsoft Internet Information Services (IIS)
Build on existing knowledge of server, client, and network security and learn practical strategies for implementing the best practices for security across your environment
Protect networks by using IP Security (IPSec).
Explain the basics of network security and the reasons why your defenses should be layered from the general to the specific for the most secure environment

This one-day instructor-led clinic provides students with introductory knowledge and skills essential for the design and implementation of a secure computing environment. It also provides students with prescriptive guidance on security update management and best practices for implementing security on Microsoft Windows server and client computers.

Prerequisites
Attendees will be current IT professionals with experience using Microsoft Windows 2000 Server or Microsoft Windows Server 2003 and with knowledge of Active Directory concepts. The students will be in an environment where they are responsible for aspects of security management and deployment associated with their internal network infrastructure and Internet or intranet services.

Before attending this clinic, students must have:

Hands-on experience with Windows 2000 or Windows Server 2003 management tools.
Experience with Active Directory and Group Policy.
Delegates will learn how to
Discuss the 10 immutable laws of security
Use patch management tools and processes to implement patch management in their organizations
Manage domain controller policy settings
Use multiple layers of defense to minimize the possibility of successful attacks against an organization
Implement best practices for maximizing a secure networked environment
Understand the three basic security pr
Apply the Windows 2003 Security Guide templates for server hardening
Harden infrastructure servers by using service startup settings, enabling Dynamic Host Configuration Protocol (DHCP) and Windows Internet Name Service (WINS) logging, and restricting access to DHCP and WINS administrators groups
Increase security for stand-alone clients
Understand antivirus strategies and best practices for deploying antivirus software
Understand firewall technologies and best practices for implementing a firewall
Describe specific attack scenarios and implement measures to combat them
Establish the business case for security
Describe the Microsoft strategy for continuing to deliver improved patch management tools, technologies, and information to customers
Understand the importance of server security
Apply the Security Risk Management Discipline (SRMD) to ensure that a business becomes and stays secure
Respond effectively to security incidents
Understand the processes that Microsoft has developed to respond to system attacks, and how to apply a successful patch strategy
Use Active Directory objects to manage server security
Understand the requirements for securing client computers in environments where Windows Server 2003, Windows 2000, and Microsoft Windows NT® 4.0 servers are present
Implement best practices for clients in extreme high-security environments
Use Software Restriction Policy to manage and secure computers in an organization

This one-day instructor-led clinic provides students with knowledge and skills essential for the creation of applications with enhanced security. Students will learn about the need for implementing security at every stage of the development process and best practices for applying security principles. Students will also learn how to use established threat modeling methodologies and tools with other best practices to minimize vulnerabilities and limit damage from attacks. Finally, students will learn how to implement security features to enhance security for Web applications and Web services that are built by using Microsoft ASP.NET.

Prerequisites
Before attending this clinic, students must have:

Development experience with Microsoft Visual Basic, Microsoft Visual C++, or C#
Experience building Microsoft Windows® or Web applications using the .NET Framework
Delegates will learn how to
Identify potentially hostile applications
Understand the secure product development timeline
Enhance security for ASP.NET Web applications
Enhance security for ASP.NET Web services
Apply appropriate tips for writing secure code with the .NET Framework
Describe the principles of designing with security in mind
Describe common types of attacks
Describe Microsoft .NET Framework security features
Understand the consequences of poor security
Describe the security framework
Understand the historical implications of Trustworthy Computing
Identify common types of attacks
Recognize examples of security intrusions.
Identify challenges involved in implementing security
Understand the need for process improvement throughout the development process
Understand the importance of data security
Identify threat scenarios
Target who we are defending against
Explain how code access security works
Explain how role-based security works
Explain how to use cryptography to sign and verify data

Pages:- 1 2
[ Online / Live ] [ Corporate Training ] [ Locations ] [ Schools ] [ Job Seekers ]

Dear Visitor: You are strongly recommended to bookmark this page and come back later, since new course may be available anytime. Click to Proceed>>