Designing a Secure Microsoft Windows 2000 Network(Microsoft Training Course: 2150) - Microsoft Training Courses London South West UK

Exchange Server

Office (inc Access)

SQL Server

Visual Studio .NET

Windows

Web Development

Visual FoxPro

Programming

Business

Knowledge Management

Certification

Learning Options

Reserve a Place
12 May London
19 May Bath
02 Jun London
16 Jun Bath
07 Jul London
21 Jul Bath
04 Aug London
18 Aug Bath
01 Sep London
15 Sep Bath
06 Oct London
13 Oct Bath
03 Nov London
10 Nov Bath
01 Dec London
08 Dec Bath
05 Jan London
05 Jan Bath
02 Feb London
02 Feb Bath
02 Feb London
02 Feb Bath
02 Feb London
02 Feb Bath

View Other Courses in Same Category

Designing a Secure Microsoft Windows 2000 Network - (Microsoft Training Course: 2150) - 5 days

Target Audience		Pre-requisites
Purpose		Print 2 Page Flyer
Exams		Price Options

COURSE OUTLINE

Assessing Security Risks		Introducing the Windows 2000 Security Model
Providing Secure Access to Local Network Users		Planning User Accounts
Securing Windows 2000-Based Computers		Securing File and Print Resources
Securing Communication Channels on the Local Network		Providing Secure Access to Non-Microsoft Clients
Providing Secure Access to Remote Users and Offices		Providing Secure Access to Remote Offices
Providing Secure Access Between Private and Public Networks		Maintaining Security When Accessing Public Networks from Your Network
Providing Secure Access to Partners		Providing Secure Resource Access to Trusted Partners
Providing Business to Business and E-Commerce Security		Security

Target Audience: This course provides students with the knowledge and skills necessary to design a security framework for small, medium, and enterprise networks using Microsoft Windows 2000 technologies. It contains four units that describe security in specific areas of the network Pre-requisites: This course requires that students meet the following prerequisites: A working knowledge of Windows 2000 Directory Services Successful completion of course 1560, Upgrading Support Skills from Windows NT 4 to Windows 2000 or course 2154, Implementing and Administering Windows 2000 Directory Services or equivalent skills and knowledge Purpose: At the end of the course, students will be able to identify the security risks associated with managing resource access and data, describe how key technologies are used to secure a network, plan a Windows 2000 administrative structure, plan an Active Directory™ directory service, define minimum security requirements, design a strategy for securing local storage of data, design end-to-end security for the transmission of data, design a strategy for securing access for non-Microsoft clients within a Windows 2000-based network, design a strategy for securing local resources accessed by remote users using Virtual Private Network (VPN), design a strategy for securing local resources accessed by remote offices within a wide area network (WAN), protect private network resources from public network users, design a strategy for securing private network user access to public networks, design a strategy for authenticating trusted users over public networks, plan for an e-commerce implementation, design a structured methodology for securing a Windows 2000 network

Module 1: Assessing Security Risks

What is at Risk?
What are the Potential Threats to the Network?
Describing Common Security Standards
Planning Enterprise Security

Skills

Determine what is at risk if security is compromised on a network.
Determine common threats against network security.
Review common standards against which security is measured.
Discuss a methodology for securing enterprise networks.

Module 2: Introducing the Windows 2000 Security Model

The role of Directory Services in the Security Framework
Identifying Authentication Methods Available Within Windows 2000 Networks
Controlling Access to Resources on Windows 2000 Networks
Introducing Encryption Technology
Encrypting Stored and Transmitted Data in Windows 2000 Networks
Introducing Public Key Infrastructure Technology

Skills

Analyze the role of Windows 2000 Active Directory in the Windows 2000 security framework.
Describe the authentication protocols used by Windows 2000.
Describe how objects and resources are secured in Windows 2000.
Examine common methods of encrypting and validating data.
Describe how Windows 2000 supports the encryption of both stored data and transmitted data.
Describe how a public key infrastructure can be used to implement certificate-based identification and authentication.
Plan security for local resources and access on a local network

Module 3: Providing Secure Access to Local Network Users

Planning Administrative Access
Defining the Administrative Structure
Assigning Administrative Roles
Providing Administrative Access

Skills

Define the network administrative roles that exist in an organization.
Plan memberships in the Windows 2000 administrative groups.
Plan secure administrative access to the network.

Module 4: Planning User Accounts

Designing a Domain and Organizational Unit Structure
Planning Account Creation and Location
Planning Delegation of Authority
Designing an Audit Policy for Tracking Account Changes

Skills

Design a Windows 2000 domain and organizational unit (OU) structure that will support your account and group policy configuration.
Plan for the creation of accounts within the OU structure using both batch methodology and the Active Directory Users and Computers console.
Plan a delegation of authority strategy for OUs.
Design an audit strategy that will track changes made to the Active Directory contents.

Module 5: Securing Windows 2000-Based Computers

Evaluating the Security Requirements of Windows 2000-Based Systems
Securing Physical Access to Windows 2000-Based Systems
Designing Security Configuration Policies
Analysis of Security Configuration

Skills

Evaluate the security requirements for Windows 2000-based systems with respect to their role in the enterprise network.
Plan physical and hardware configuration measures to secure Windows 2000-based systems.
Design security configuration templates that can be used to enforce security settings.
Plan the use of security baseline templates to evaluate the current security configuration of a Windows 2000-based system.

Module 6: Securing File and Print Resources

Comparing the Security of Windows 2000 File Systems
Protecting Data Using Access Control Lists
Encrypting Data Using EFS
Auditing Resource Access
Securing Backup and Restore Procedures
Protecting Data From Viruses

Skills

Describe the security provided in the file systems supported by Windows 2000.
Design a security strategy for protecting the registry, files resources, and print resources by using Access Control Lists.
Design a strategy for the protection and recovery of file resources using EFS.
Design an auditing strategy to determine file and print resource access.
Design a secure backup and restore procedure that allows for disaster recovery.
Plan for virus protection in your network security design.

Module 7: Securing Communication Channels on the Local Network

Demonstration: Investigating Web Access
Assessing Network Data Visibility Risks
Evaluating Network Authentication Methods
Protecting Network Data Transmission from Packet-Level Impersonation
Encrypting Network Data Transmissions with Internet Protocol Security (IPSec)

Skills

Assess potential risks to data risks to data when it is transported between clients on the Local Area Network.
Compare and contrast the network authentication methods that can be used by Windows 2000 clients and down-level clients.
Design a strategy for protecting data transmissions on the private network from packet-level impersonation.
Design an IPSec strategy for encrypting private network data transmissions.

Module 8: Providing Secure Access to Non-Microsoft Clients

Demonstration: Investigating a TelNet Connection
Providing Secure Access to IP-Based Clients
Providing Secure Access to NetWare Clients
Providing Secure Access to Macintosh Clients

Skills

Describe the inherent risks and the management strategy involved when deploying standard IP client/server sockets-based applications.
Describe the additional security measures that must be taken when integrating NetWare clients on your network.
Describe the additional security measures that must be taken when integrating Macintosh clients on your network.

Module 9: Providing Secure Access to Remote Users and Offices

Providing Secure Access to Remote Users
Planning Remote Access Security
Authentication and Accounting Providers
Planning Server-side Security for Remote Connectivity
Planning Client-side Security for Remote Connectivity

Skills

Compare and contrast the common methods that may be used by remote users to connect to the private network.
Compare and contrast the server configuration options available to allow secure remote connectivity to your network by individual users.
Compare and contrast the client configuration options available to allow secure connectivity to a remote private network.
Create a distributed authentication framework for remote clients.

Module 10: Providing Secure Access to Remote Offices

Comparing Private and Public Networks
Securing WAN Links Over a Private Network
Securing WAN Links Over a Public Network

Skills

Introduce how public and private networks interact and describe the common physical technologies that are used to provide connectivity.
Plan secure WAN links to branch offices using dedicated network connections.
Plan secure WAN links to branch offices using tunneling technologies over public networks.

Module 11: Providing Secure Access Between Private and Public Networks

Maintaining Security When Allowing Public Access to Your Private Network
Potential Risks
Protecting Networks using Firewalls
Demonstration: Port Mapping Example
Protecting Resources Exposed on the Internet
Planning Placement of Servers in a Firewall Configuration

Skills

Analyze the common threats that are introduced when your private network is connected to a public network.
Design a firewall strategy for protecting your private network.
Design a secure method for exposing private network resources to the public network.
Plan secure placement of servers when working with interconnected private and public networks.

Module 12: Maintaining Security When Accessing Public Networks from Your Network

Analyzing Threats Introduced by an Internet Connection
Protecting Internet Network Addressing Schemes
Using Server-Side Configuration to Control Content Accessed by Network Users
Using Client-Side Configuration to Control Content Accessed by Network Users

Skills

Analyze the various threats that are introduced to the network when users are allowed to access the Internet.
Design a strategy for protecting the private network IP addressing scheme from the public network.
Design the server side requirements for maintaining security when authenticated users access public networks.
Design the client-side requirements for maintaining security when authenticated users access public networks.
Plan security when trusted individuals and organizations access private network data and resources over a public network.

Module 13: Providing Secure Access to Partners

Authenticating Trusted Partners
Authenticating Partners Using Windows 2000 User Accounts
Authenticating Partners Using Trusted Domains
Authenticating Partners Using Internet Technologies
Planning Certificate-Based Authentication

Skills

Design a secure framework for partner access using Windows 2000 user accounts.
Design a secure framework for trusted partners to access the private network by using trust relationships.
Compare and contrast the methods available for authenticating clients by using Internet technologies.
Design a certificate-based authentication framework for a Windows 2000 network.

Module 14: Providing Secure Resource Access to Trusted Partners

Providing Secure Access Using Resource Permissions
Securing Access for Remote Partners
Providing Secure Partner Access to Data Using Terminal Services
Providing Secure Partner Access to Data Using Web Technologies
Providing Secure Partner Access to Data Using Messaging

Skills

Design secure resource access for trusted partners by using access control lists.
Plan which resources will be exposed to trusted partners and where those resources will be placed on the network.
Design secure resource access to trusted partners by using terminal services.
Design secure access to resources using Web technologies.
Design secure resource sharing using a messaging solution.

Module 15: Providing Business to Business and E-Commerce Security

Planning for Business-to-Business Applications
Planning for Secure Business Communication Between Partners

Skills

Describe the various technologies commonly used when implementing secure business-to-business applications.
Plan knowledge management and business communications between business partners.

Module 16: Security

Developing a Security Team
Defining the Scope of Security
Analyzing the Current Network Configuration
Designing a Security Baseline for Your Network
Developing and Implementing a Project Plan
Maintaining Security
Maintaining Awareness of Current Security Issues

Skills

Plan the composition of a security team that will develop your organization's security plan.
Determine the security needs for your network based on your local network, remote networks, public networks and associations with trusted partners.
Analyze the current security configuration of your network.
Design the security baseline for your network based on your organization's security goals.
Design a security plan rollout.
Design a strategy to maintain your network's current level of security as the security landscape changes.

Microsoft recommends this course in preparation for the following exams:

ementing and Managing Security in a Windows 2000 Network Infrastructure

Designing Security for a Microsoft Windows 2000 Network

Managing a Microsoft Windows 2000 Network Environment

Price Options ex VAT:

Classroom Training ?	Distance Learning ?	eLearning Options ?	Book Learning ?
£ 1550 (€2202)	£ 995.00 (€1413)	£495.00 (€703)	MCSE Training Kit (Exam 70-220): Designing Microsoft Windows 2000 Network Security
	Call Free on 0800 169 1890 Print 2 Page Flyer Last Modified 01 May 2008