Forgot My Password Support
 
◊ WINDOWS 2000 SECURITY DESIGN 70-220 ONLINE TRAINING SERIES

Online Windows 2000 Security Design 70-220 Training

Server Administration » Windows

Check out these great money-saving course packages:

Only $42.95

Windows 2000 Security Design 70-220 Series (40 hours)

ONLINE Windows 2000 Security Design 70-220 TRAINING FEATURES

  • Learn Windows 2000 Security Design 70-220 online with these interactive online Windows 2000 Security Design 70-220 courses.
  • Affordable Pricing (Only $42.95 for the complete series)
  • A full year to complete the Windows 2000 Security Design 70-220 courses
  • Retake the Windows 2000 Security Design 70-220 courses as many times as you like
  • Measure your progress with assessment tests after each course
  • Earn completion certificates after passing each assessment test

1. Analyzing Business Requirements

Time: 5 hours
This course shows users how to identify business considerations that will affect the structure and implementation of proposed network security designs.

Objectives

  • Analyze existing and planned business models, including company model, geographic scope, and company processes
  • Analyze existing and planned organizational structures
  • Analyze the structure of IT management
  • List factors that influence company strategies
  • Outline the current physical model and information security model
  • Analyze business and security requirements for the end user
  • Calculate internal and external security risks

Topics

  • Business Models
  • Organization and Management
  • Company Strategies
  • Physical and Information Security Models
  • Risk Analysis
  • End User Requirements


2. Analyzing Technical Requirements

Time: 4 hours
This course shows users how to evaluate an existing IT infrastructure in preparation for developing a security design.

Objectives

  • Evaluate the company's existing and planned technical environment
  • Analyze company size and user and resource distribution
  • Assess available connectivity between work sites and remote sites
  • Assess net available bandwidth
  • Analyze performance requirements
  • Analyze the method of accessing data and systems
  • Analyze network roles and responsibilities
  • Analyze the impact of a proposed security design on the existing and planned technical environment

Topics

  • Network Connectivity and Topology
  • Network Bandwidth and Performance
  • Data and Systems Access
  • Roles and Responsibilities
  • Analyzing the Existing Security Design


3. Establishing a Security Baseline

Time: 3 hours
This course introduces users to the security provided by Active Directory and shows users how to implement security for domain controllers, servers, and workstations using security templates provided by Windows 2000.

Objectives

  • Describe the role of security templates and domain security policies in establishing a security baseline
  • Create and modify security templates to implement a standard level of security
  • Identify the level of security that standard security templates provide for domain controllers and operations masters
  • Identify the level of security that standard security templates provide for servers, desktop computers, portable computers, and kiosks

Topics

  • Active Directory
  • Domain Controllers
  • Servers, Desktop Computers, and Kiosks
  • Policies and Templates


4. Planning Security for System Resources

Time: 2 hours
This course shows users how to plan and implement security for system resources including printers, files, shares, registry keys, Internet access, and dial-in access.

Objectives

  • Use file system and share permissions to provide security for files and folders
  • Analyze the default permissions provided for files and folders
  • Analyze user and system access to registry keys
  • Analyze the permissions structure governing printers, dial-in access, and Internet access

Topics

  • File and Folder Security
  • Default Settings for Files and Folders
  • Registry Keys
  • Security for Other Resources


5. Designing a Security Group Strategy

Time: 2 hours
This course shows users how to plan membership in security groups and how to use group structure to assign permissions.

Objectives

  • Identify the types and scopes of groups in Windows 2000
  • Identify default groups and user accounts
  • Design a security group strategy
  • Design a delegation of authority strategy

Topics

  • Understanding Groups in Windows 2000
  • Default Groups and Users
  • Managing Security Groups
  • Delegation of Authority


6. Designing Security Policy Inheritance

Time: 3 hours
This course shows users how to design the placement and inheritance of security policies for sites, domains, and organizational units.

Objectives

  • Describe Group Policy and its application
  • Create, edit, apply, and import Group Policies
  • Explain the inheritance relationships among Group Policies in an Active Directory hierarchy
  • Explain how Group Policies are implemented in mixed-mode environments
  • Design a Group Policy strategy

Topics

  • Understanding Group Policies
  • Implementing Group Policies
  • Group Policy Inheritance
  • Group Policies in Mixed Mode
  • Designing Group Policy Strategies


7. Protecting Resources with Auditing and Encryption

Time: 3 hours
This course shows users how to design and implement an audit policy and how to design a strategy for using the Encrypting File System (EFS).

Objectives

  • Design an audit strategy
  • Implement and configure an audit policy
  • Describe the encryption provided by the Encrypting File System
  • Plan for the recovery and management of encrypted files
  • Design a strategy for securing files and folders with encryption

Topics

  • Designing an Audit Policy
  • Implementing an Audit Policy
  • Using the Encrypting File System (EFS)
  • File Recovery and Management with EFS
  • Designing an EFS Strategy


8. Using Native Windows 2000 Authentication

Time: 2 hours
This course explains the Kerberos authentication model and shows users how to implement security with Kerberos in Windows 2000 networks and mixed networks.

Objectives

  • Describe the security model provided by Windows 2000
  • Describe Microsoft's implementation of the Kerberos standard
  • Implement and troubleshoot Kerberos authentication on a Windows 2000 network
  • Describe the requirements for using Kerberos authentication in mixed networks

Topics

  • Kerberos Authentication
  • Kerberos Tickets
  • Kerberos Client/Server Exchange
  • Kerberos and Interoperability


9. Using Alternate Authentication Strategies

Time: 3 hours
This course explains authentication models other than Kerberos that are available under Windows 2000 and shows users how to implement security with these methods in Windows 2000 networks and in mixed networks.

Objectives

  • Explain LM, NTLM, and NTLMv2 authentication and their use in a Windows 2000 environment
  • Explain digest authentication
  • Explain the use of certificate-based authentication
  • Describe Secure Sockets Layer (SSL) transmission
  • Explain smart cards
  • Explain RADIUS authentication
  • Identify the strategies that allow Windows 2000 authentication to interoperate with other operating systems

Topics

  • NTLM and Digest Authentication
  • Certificate-Based Authentication and SSL
  • Smart Cards
  • RADIUS
  • Authentication and Interoperability


10. Designing a Public Key Infrastructure

Time: 4 hours
This course explains strategies and procedures for using Certificate Services in Windows 2000 networks and in mixed networks.

Objectives

  • Design Certificate Authority (CA) hierarchies
  • Identify certificate server roles
  • Manage certificates
  • Integrate with third-party certificate authorities
  • Map certificates to user accounts

Topics

  • Understanding Certificate Services
  • Installing Certificate Services
  • Configuring Certificate Services
  • Managing Certificates
  • Interoperability and Third-Party PKI


11. Designing Security for Network Services

Time: 3 hours
This course explains strategies for securing Windows 2000 network services, including Domain Name Service, Remote Installation Services, and the Simple Network Management Protocol.

Objectives

  • Identify key security risks connected with the Domain Name Service (DNS)
  • Describe the dynamic DNS update process
  • Design Windows 2000 DNS security
  • Design Windows 2000 Remote Installation Services security
  • Design Windows 2000 SNMP security

Topics

  • Understanding DNS
  • The Dynamic Update Process
  • DNS Security
  • RIS Security
  • SNMP Security


12. Designing Security for Access between Networks

Time: 3 hours
This course explains how to provide secure access from a private network to the Internet, how to provide partners and other external users with secure access to private networks, and how to provide secure access between multiple local or wide area networks (LANs or WANs).

Objectives

  • Provide secure access to public networks from a private network
  • Provide external users with secure access to private network resources
  • Provide secure access for users using Remote Access Services
  • Provide secure access between private networks
  • Use public networks to provide secure access between private networks

Topics

  • Secure Access to Public Networks
  • Secure Access for External and Remote Users
  • Secure Access between Private Networks
  • Secure Access across Public Networks


13. Designing Security for Communications Channels

Time: 3 hours
This course explains how to use SMB signing and the IPSec protocol to secure traffic within private networks and across public networks and how to enable and enforce the use of SMB signing and IPSec through Windows 2000 Group Policy.

Objectives

  • Explain SMB signing
  • Describe IPSec architecture
  • Implement an IPSec solution
  • Design an IPSec management strategy
  • Design security policies for IPSec

Topics

  • SMB Signing
  • IPSec Architecture
  • IPSec Negotiation and Encryption
  • IPSec Management
  • IPSec Policies



Resources for Windows 2000 Security Design 70-220