In this four-day, hands-on seminar you will learn how to centrally manage, configure, lock down, and audit each Windows Server in your organization. You will discover how each security control area of Windows Server 2003 is designed to work. You will use built-in and industry recognized tools to ensure your Windows Servers are in compliance with corporate security policy. You will develop a detailed Windows audit program and learn how to audit and implement it. You will learn how to gather, analyze, research, and report your findings.
Starting with a brief look at Active Directory, you will cover such key concepts as forests, trees, domains, and organizational units, and how they all fit into the security model of Windows. Then, you will go over user and group administration, user rights, and data resource protection with Access Control Lists. In hands-on labs you will perform a combination of both administrative- and audit-related tasks to deepen your grasp of Windows security and how to locate risks and inadequate controls. You will also cover each item in Microsoft’s Baseline Security Checklist for Windows Server as well as many additional risks.
You will explore the differences between Windows 2000, 2003, and 2008, and how they affect security and audit processes. You’ll find out about new security additions to Windows Server 2003 and 2008, allowing you to make internal decisions about which operating system is best for your organization. You will examine the user interface and terminology that have changed significantly between Windows 2000, 2003, and 2008 to pinpoint how these changes can cause confusion and faulty conclusions about security controls.
You will also exercise the different control areas in Windows Server 2003 and 2008, including security logging, account policies, logon controls, permissions, access control lists, user rights, system services and more. You will explore how Windows networks should be centrally secured and controlled using Group Policy. In addition, you’ll1 learn how to take advantage of the growing array of free tools from Microsoft and others for speeding up and performing more effective audits.
Note: If you require more detailed coverage of Active Directory, please see Securing and Auditing Windows Active Directory Domains
Prerequisite: Familiarity with Windows 2000 user interface and control panels.
Advance Preparation: None Learning Level: Intermediate
Delivery Method: Group-Live Field: Computer Science
|
