“Very satisfied. Appreciate the inclusion of specific audit steps and how to carry them out.”
-Mark Johnston, Sr. Staff Auditor, Burlington Resources
In this four-day, hands-on seminar you will gain the skills you need to evaluate, configure, manage, optimize, audit, and secure all aspects of a Windows Active Directory enterprise. You will learn how Windows Server 2008 R2/2008 differs from Windows 2003 and 2000. You will find out how to secure Active Directory and all of the essential components of the related network services. You’ll learn how to evaluate which security controls to focus on; how to collect information using built-in tools and industry recognized tools; how to select which computers to audit, as well as how to audit them efficiently; and how to gather, analyze, research, and report all of your security audit findings.
You will work first hand with security controls, and then audit them directly. You will discover secrets for quickly extracting the evidence you need without wearing out your computer’s print-screen button or monopolizing your administrator’s time. You’ll determine which controls are important to review at each level, including forests, Domain Administrators group, domain controllers, organizational units, AD security delegation, Group Policy, password policies, and more. You’ll cover such time-saving tips as evaluating trust relationships and deciding which evidence you need to extract for each domain controller vs. just one domain controller. You’ll learn how to use resource kit utilities, and shareware programs, and how to analyze results and identify risks. You’ll master techniques for assessing administrative authority in AD and determining who has delegated privileges in the domain and over Group Policy.
You will gain an understanding of how Active Directory leverages Group Policy technology making it possible to centrally control all Windows Servers and desktops. You will learn how to determine whether crucial best practice techniques were followed in the design of your organization’s Active Directory installation. You'll discover features of Active Directory’s monitoring capabilities that facilitate compliance with nearly any regulatory compliance requirements, and how to configure, manage, optimize and efficiently review security logs. At the conclusion of the course you will perform an audit of a network and write up all of your security findings and risks.
Finally, you will learn how to audit Active Directory continuously! You will discover which tools can collect security information… in most cases without having to bother the network administrator. You will learn to script and automate this collection, and create events that will trigger when some security controls change.
Prerequisite: Securing and Auditing Windows® Server 2003 and Server 2008 or equivalent knowledge.
Advance Preparation: None Learning Level: Advanced
Delivery Method: Group-Live Field: Computer Science