Microsoft Windows 2000 Network Infrastructure Administration Part 4: Security

Course Code NGE72424

Contents

1. Contents
2. Description
3. Audience
4. Prerequisites
5. Objectives
6. Topics Include
7. Duration
8. Minimum Requirements
9. Media

Screenshot

Description

This is the fourth course in a five-part series that will provide IT professionals with the knowledge and skills necessary to install, manage, monitor, configure, and troubleshoot DNS, DHCP, Remote Access, Network Protocols, IP Routing, and WINS in a Windows 2000 network infrastructure. At the completion of this course, students will learn to encrypt a file; add and remove a recovery agent; identify the benefits and protocols of Internet Protocol Security (IPSec); enable and configure IPSec; and manage, monitor, and troubleshoot IPSec.

Audience

This series is designed for IT Professionals who are responsible for managing a Microsoft Windows 2000 network. Participants should have completed Microsoft Windows 2000 Installation, Configuration, & Administration (Course Series 72413 - 72420) and the first three courses in this series.

Prerequisites

(Currently no course prerequisite information)

Objective

• Manage Public Key Infrastructure (PKI), Certification Authority (CA), and certificates.
• Identify the uses of Encrypting File System.
• Encrypt a file.
• Add and remove a recovery agent.
• Identify the benefits and protocols of Internet Protocol Security (IPSec).
• Enable and configure IPSec.
• Create and customize IPSec policies and rules and add, edit IPSec filter lists and filter actions.
• Manage, monitor and troubleshoot IPSec.

Topics Include

Unit 1: Certificate Services

• Identify the advantages of Windows 2000 PKI.
• Match the components of Windows 2000 PKI with their functions.
• Match the types of CAs with the situations in which they are used.
• Install a CA by using the Windows Components Wizard.
• Configure a CA by using the Certification Authority snap-in.
• Renew a CA by using the Certification Authority snap-in.
• Specify access permissions to a specific user by using the Certification Authority snap-in.
• Make a backup of a CA by using the Certification Authority snap-in.
• Create a certificate request based on a specific template by using the Certificates snap-in.
• Issue an advanced certificate template.
• Renew a certificate by using the Certificate Renewal Wizard.
• Revoke a certificate by using the Certificates snap-in.
• Identify the steps to detect a problem encountered while accessing a CA.
• Match the problems encountered while accessing a CA with their solutions.

Unit 2: Encrypting File System (EFS)

• Identify the uses of EFS.
• Encrypt a file by using the Advanced Attributes dialog box.
• Add a recovery agent to Group Policy by using the Add Recovery Agents Wizard.
• Delete a recovery agent from the local computer by using the Group Policy snap-in.

Unit 3: Internet Protocol Security (IPSec)

• Identify the benefits of IPSec.
• Identify the functions of IPSec protocols.
• Enable IPSec by using the Internet Protocol (TCP/IP) Properties dialog box.
• Configure an IPSec policy by using the Add/Remove Snap-in command.
• Identify the situation in which a specified IPSec configuration mode will be used.
• Create an IPSec policy by using the IP Security Policy Wizard.
• Add an IPSec rule to an IPSec policy by using the Security Rule Wizard.
• Identify the tab that is used to edit the property of an IPSec rule in a specified situation.
• Manage an IPSec policy by using the Action menu.
• Add an IP filter list to an IPSec rule by using the IP Filter Wizard.
• Edit an IP filter list by using the Manage IP filter lists and filter actions dialog box.
• Add a filter action to an IPSec rule by using the Filter Action Wizard.
• Edit a filter action by using the Manage IP filter lists and filter actions dialog box.
• Monitor IPSec statistics by using the ipsecmon command.
• Identify the steps to detect a problem encountered while using IPSec.
• Match the problems encountered while using IPSec with their solutions.

Duration

8

Minimum Requirements

The CDROM version of this course requires:

• At least a 486DX 33Mhz CPU.
• Microsoft Windows 3.1 or higher and a Microsoft compatible mouse.
• At least 8MB RAM.
• At least VGA graphics capability with a minimum 512K video RAM (1MB video RAM recommended).
• At least a double speed CDROM drive.
• An MPC compliant sound card with attached speakers or headphones is recommended (Currently, only the CDROM version supports audio).

• At least a 486DX 33Mhz CPU.
• Microsoft Windows 3.1 or higher and a Microsoft compatible mouse.
• At least 8MB RAM and 22MB available hard disk space or file server space.
• At least VGA graphics capability with a minimum 512K video RAM (1MB video RAM recommended).

Media

CDROM
Web Based Training