Forgot My Password Support
 
◊ WINDOWS SERVER 2003 SECURITY MCSE 70-298 ONLINE TRAINING SERIES

Online Windows Server 2003 Security MCSE 70-298 Training

Server Administration » Windows

Check out these great money-saving course packages:

Only $99.95

Windows Server 2003 Security MCSE 70-298 Series (33 hours)

ONLINE Windows Server 2003 Security MCSE 70-298 TRAINING FEATURES

  • Learn Windows Server 2003 Security MCSE 70-298 online with these interactive online Windows Server 2003 Security MCSE 70-298 courses.
  • Affordable Pricing (Only $99.95 for the complete series)
  • A full year to complete the Windows Server 2003 Security MCSE 70-298 courses
  • Retake the Windows Server 2003 Security MCSE 70-298 courses as many times as you like
  • Measure your progress with assessment tests after each course
  • Earn completion certificates after passing each assessment test

1. Designing a Secure Network Framework

Time: 2 hours
This course explains how to design a secure Windows Server 2003 network framework by analyzing business requirements, and both internal and external threats. It also details how to create an incident response plan and examines interoperability issues.

Objectives

  • Analyze existing security policies and procedures
  • Analyze requirements for securing different types of data
  • Predict threats to a network from internal and external sources
  • Design a process for incident response and recovery
  • Identify capabilities of existing infrastructures including interoperability constraints

Topics

  • Analyzing existing security Policies and procedures
  • Determining requirements for securing data
  • Analyzing current security practices
  • Predicting network threats
  • Recognizing external threats
  • Implementing risk analysis
  • Responding to security incidents
  • Analyzing technical constraints


2. Defining a Baseline Security Template

Time: 3 hours
This course explains what you need in order to apply consistent security settings across a network. It also details how to deploy security templates efficiently throughout a network, focusing on the use of Group Policy Objects (GPO) and scripting techniques.

Objectives

  • Design, create, and deploy a security template
  • Configure security for down-level clients
  • Analyze results of security settings
  • Deploy security using scripts

Topics

  • Administrative security tools overview
  • Working with predefined security templates
  • Adding security templates snap-ins
  • Reapplying default security settings
  • Configuring security templates
  • Configuring security for down-level clients
  • Deploying security templates
  • Reviewing the result of security policy settings
  • Using security configuration and analysis to review security settings
  • Using the secedit.exe command-line tool


3. Designing Role-Based Server Security

Time: 2 hours
This course explains how to modify baseline security templates based on functions of an individual or group of servers. This course specifically addresses security configurations for Domain Controllers, Internet Information Services (IIS) Servers, POP3 Mail Servers, and other infrastructure servers.

Objectives

  • Knowledge of common server roles and best security practices
  • Modify baseline security templates according to role
  • Configure security for Domain Controllers, Internet Information Services, Application, Mail, Infrastructure, File, Print, and Member, Terminal, Remote Access, and Streaming Media servers
  • Apply security across an enterprise

Topics

  • Common server roles
  • Adding or changing server roles
  • Configuring security for domain controllers
  • Securing the Internet Information Server (IIS)
  • Configuring security for POP3 mail servers
  • Securing network infrastructure servers
  • Securing remote access servers
  • Securing file, print, terminal, and streaming media servers
  • Modifying baseline security templates according to role


4. Securing a Public Key Infrastructure and Network Management Processes

Time: 4 hours
This course explains the deployment of public key infrastructures (PKI), the certificate authorities that establish and verify identities of organizations, and the implementation of PKI in the Windows Server 2003 environment. This course also covers security administration and the related tasks and tools needed to secure a Microsoft operating system.

Objectives

  • Design a public key infrastructure (PKI) that uses Certificate Services
  • Design a logical authentication strategy
  • Design security for network management
  • Design a security update infrastructure

Topics

  • PKI basics
  • Designing a certification authority implementation
  • Designing a logical authentication strategy
  • Designing security for CA servers
  • Designing certificate distribution
  • Requesting, approving, and revoking certificates
  • Renewing and auditing certificates
  • Managing the risks of network administration
  • Securing MMC, Remote Assistance, and Telnet
  • Securing Terminal Services and Remote Desktop
  • Designing security for EMS
  • Designing a Security Update infrastructure
  • Trust relationship basics
  • Designing forest and domain trust models
  • Designing security for interoperability


5. Designing Network Infrastructure Security

Time: 3 hours
This course examines how to protect data as it is transmitted through a network infrastructure by use of IP Security (IPSec). This course also explains how to secure the Domain Naming System (DNS) service, another area of an enterprise network subject to security vulnerabilities.

Objectives

  • Design network infrastructure security
  • Design an IPSec policy
  • Design IP filtering
  • Specify the required protocols for a firewall configuration
  • Secure a DNS implementation

Topics

  • Network infrastructure security basics
  • Assessing risk for network services
  • IPSec overview
  • Phase I security association
  • Phase II security association
  • IPSec policies overview
  • IPSec rules
  • How IPSec policy is applied
  • IPSec driver modes and best practices
  • Designing IPSec policies
  • Designing IP filtering and configuring a firewall
  • Securing DNS


6. Securing Data Transmissions and Wireless Networks

Time: 2 hours
This course explains how to secure wireless network traffic including the technologies available and the challenges they present. This course also discusses common vulnerabilities in a wireless network and how to design a secure wireless LAN.

Objectives

  • Design security for data transmission
  • Use segmented networks
  • Design security for wireless networks
  • Design public and private wireless LANs
  • Design 802.11x authentication for wireless networks
  • Design user authentication for Internet Information Services (IIS)

Topics

  • SSL/TLS,SMIME and SMB
  • Configuring IIS to use SSL
  • Securing switches and segments
  • Wireless network types and threats
  • Wireless history
  • PKI and RADIUS/IAS overview
  • WLAN network infrastructure
  • Creating a wireless network policy
  • Designing authentication for wireless networks
  • Designing and testing wireless access infrastructure


7. Securing Internet Information Services

Time: 2 hours
This course explains how to create a secure IIS deployment for an enterprise network with a focus on user authentication. It also examines common vulnerabilities of Web servers, along with how to secure Web server software with options offered in Windows Server 2003.

Objectives

  • Design user authentication for Internet Information Services (IIS) and a Web site
  • Design security for IIS
  • Design security for Web sites
  • Design a monitoring strategy for IIS
  • Design an IIS baseline based on business requirements
  • Design a content management strategy for updating an IIS server

Topics

  • Designing user authentication for IIS
  • Designing certificate authentication
  • Configuring anonymous and basic authentication
  • Configuring digest and integrated Windows authentication
  • Designing RADIUS authentication
  • Securing IIS installations
  • Hardening IIS
  • New security features in IIS 6.0
  • Designing a monitoring strategy for IIS
  • Configuring IIS logging and monitoring Event Log activities
  • Enabling security auditing and health detection


8. Securing VPNs, Extranets, and Network Clients

Time: 4 hours
This course discusses the use of Windows Server 2003 as a VPN and provides details on the use of two common, standards-based routing protocols: Routing Information Protocol (RIP) and Open Shortest Path First (OSPF). This course also explains how to secure client workstations and remote access services for end users.

Objectives

  • Design security for communication between networks
  • Design security for communication with external organizations
  • Design a client authentication strategy
  • Design a security strategy for client remote access
  • Design a strategy for securing client computers

Topics

  • Using Windows Server 2003 as a router
  • Building routing tables
  • Designing demand dial routing between internal networks
  • Designing VPN connectivity
  • PPTP
  • L2TP
  • Using remote access policies
  • Designing an extranet infrastructure
  • Hardening client operating systems
  • Securing laptop computers
  • Analyzing authentication requirements
  • Choosing authentication protocols
  • Choosing a remote access method
  • Designing remote access policies
  • Creating a remote access policy
  • Using Internet Authentication service


9. Securing Active Directory

Time: 3 hours
This course explains how to secure Active Directory user accounts and use auditing to identify any security incidents to the Active Directory database. This course also discusses best practices in assigning user permissions to network resources and data.

Objectives

  • Design an access control strategy for directory services
  • Establish account and password requirements for security
  • Analyze auditing requirements
  • Create a delegation strategy
  • Design the appropriate group strategy for accessing resources
  • Design a permission structure for directory service objects

Topics

  • Designing an access control strategy for directory services
  • Analyzing risks to directory services
  • Establishing account security policies
  • Using restricted groups
  • Creating a Kerberos policy
  • Establishing password security
  • Creating an account lockout policy
  • Creating an auditing policy
  • Auditing logon events and object access
  • Analyzing auditing data
  • Creating a delegation strategy
  • Designing the appropriate group strategy for accessing resources


10. Designing an Access Control Strategy for Files and Folders

Time: 3 hours
This course examines common risks such as data corruption and security breaches that can affect a network's file shares. This course also explains how to design a permission structure for files and folders, as well as best practices for securing the Windows Registry.

Objectives

  • Design an access control strategy for files and folders
  • Analyze auditing requirements
  • Design an access control strategy for the registry
  • Design a permission structure for registry objects

Topics

  • Analyzing risks to data
  • Reviewing access control and access control lists
  • Access to resources
  • Working with security groups
  • Defining a security group retirement policy
  • Delegating security group maintenance
  • Analyzing auditing requirements
  • Designing an access control strategy for the registry
  • Setting registry access permissions via group policy
  • Designing a permission structure for registry objects


11. Designing an Encrypted File System and Securing Backup/Restore Processes

Time: 3 hours
This course explains how to encrypt files using the Encrypted File System (EFS). The course also discusses how to design a secure backup and recovery strategy for network resources, including securing the backup process.

Objectives

  • Design a strategy for the encryption and decryption of files and folders
  • Design security for a backup and recovery strategy
  • Implement Encrypted File System (EFS)
  • Configure a file recovery agent

Topics

  • Encrypted File System
  • Encrypting files and folders
  • Certificate storage, enrollment, and renewal
  • Creating a strategy for the encryption and decryption of files and folders
  • Configuring file recovery agents
  • Backing up keys
  • Disabling EFS
  • Backup and restore process security basics
  • Designing a secure backup process
  • Designing a secure recovery process
  • Securing EMS
  • Securing the Recovery Console
  • Configuring startup and recovery options


12. Practice Exam

Time: 2 hours
This course provides five practice exams for the Microsoft 70-298 certification exam.

Objectives

  • Practice for the Designing Security for a Microsoft Windows Server 2003 Network MCSE 70-298 exam.

Topics

  • Practice Exam 1
  • Practice Exam 2
  • Practice Exam 3
  • Practice Exam 4
  • Practice Exam 5



Resources for Windows Server 2003 Security MCSE 70-298