Perpetual Solutions
Tuition House
27-37 St Georges Road, London
SW19 4DS

+44 (0)20 7620 0033
+44 (0)20 7620 0055

Training Course Outline

IT Vendor Courses Microsoft Windows 2000 Training Courses

M2150: Designing a Secure Microsoft Windows 2000 Network

Course Duration: 5 days

Course Code: M2150

Course Description:

This course provides students with the knowledge and skills necessary to design a security framework for small, medium, and enterprise networks by using Microsoft Windows 2000 technologies. This course is intended for senior support professionals, architects, and consultants responsible for developing a network security plan based on an organisation's business needs. It is also appropriate for those who are on the Microsoft Certified Systems Engineer Windows 2000 track and wish to acquire the skills necessary for network security design.

Prerequisites:

Students should have:

-Attended course MS1560: Updating Support Skills from Microsoft Windows NT 4.0 to Microsoft Windows 2000, or,
- Attended course MS2154: Implementing and Administering Microsoft Windows 2000 Directory Services, or,
- Have equivalent skills and knowledge

Prerequisite courses:

M1560: Updating Support Skills from MS Windows NT 4.0 to Wind 2000

M2154: Implementing and Administering Microsoft Windows 2000 Directory Services

Relevant Certifications:

MCSA: on Microsoft Windows 2000

MCSA: Security on Microsoft Windows 2000

MCSE: on Microsoft Windows 2000

MCSE: Messaging on Microsoft Windows 2000

MCSE: Security on Microsoft Windows 2000

This course includes the following modules:

Assessing Security Risks

Identifying Risks to Data
Identifying Risks to Services
Identifying Potential Threats
Introducing Common Security Standards
Planning Network Security

Introducing Windows 2000 Security

Introducing Security Features in Active Directory
Authenticating User Accounts
Securing Access to Resources
Introducing Encryption Technologies
Encrypting Stored and Transmitted Data
Introducing Public Key Infrastructure Technology

Planning Administrative Access

Determining the Appropriate Administrative Model
Designing Administrative Group Strategies
Planning Local Administrative Access
Planning Remote Administrative Access
Lab
Planning Secure Administrative Access

Planning User Accounts

Designing Account Policies and Group Policy
Planning Account Creation and Location
Planning Delegation of Authority
Auditing User Account Actions
Lab
Planning a Security-based OU Structure

Securing Windows 2000–Based Computers

Planning Physical Security for Windows 2000–based Computers
Evaluating Security Requirements
Designing Security Configuration Templates
Evaluating Security Configuration
Deploying Security Configuration Templates
Labs
Analysing a Security Template
Designing Customised Security Templates

Securing File and Print Resources

Examining Windows 2000 File System Security
Protecting Resources Using DACLs
Encrypting Data Using EFS
Auditing Resource Access
Securing Backup and Restore Procedures
Protecting Data from Viruses
Labs
Managing EFS Recovery Keys
Planning Data Security

Securing Communication Channels

Assessing Network Data Visibility Risks
Designing Application-Layer Security
Designing IP-Layer Security
Deploying Network Traffic Encryption
Lab
Planning Transmission Security

Providing Secure Access to Non-Microsoft Clients

Providing Secure Network Access to UNIX Clients
Providing Secure Network Access to NetWare Clients
Providing Secure Access to Macintosh Clients
Securing Network Services in a Heterogeneous Network
Monitoring for Security Breaches
Lab
Securing Telnet Transmissions

Providing Secure Access to Remote Users

Identifying the Risks of Providing Remote Access
Designing Security for Dial-Up Connections
Designing Security for VPN Connections
Centralising Remote Access Security Settings
Lab
Using RADIUS Authentication

Providing Secure Access to Remote Offices

Defining Private and Public Networks
Securing Connections Using Routers
Securing VPN Connections Between Remote Offices
Identifying Security Requirements
Labs
Planning Secure Connections for Remote Offices

Providing Secure Network Access to Internet Users

Identifying Potential Risks from the Internet
Using Firewalls to Protect Network Resources
Using Screened Subnets to Protect Network Resources
Securing Public Access to a Screened Subnet
Lab
Designing a Screened Subnet

Providing Secure Internet Access to Network Users

Protecting Internal Network Resources
Planning Internet Usage Policies
Managing Internet Access Through Proxy Server Configuration
Managing Internet Access Through Client-Side Configuration
Lab
Securing the Internal Network When Accessing the Internet

Extending the Network to Partner Organizations

Providing Access to Partner Organizations
Securing Applications Used by Partners
Securing Connections Used by Remote Partners
Structuring Active Directory to Manage Partner Accounts
Authenticating Partners from Trusted Domains
Lab
Planning Partner Connectivity

Designing a Public Key Infrastructure

Introducing a Public Key Infrastructure
Using Certificates
Examining the Certificate Life Cycle
Choosing a Certification Authority
Planning a Certification Authority Hierarchy
Mapping Certificates to User Accounts
Managing CA Maintenance Strategies
Lab
Using Certificate-based Authentication

Developing a Security Plan

Designing a Security Plan
Defining Security Requirements
Maintaining the Security Plan
Lab
Developing a Security Plan

To make an enquiry for this course to be run ONSITE at your location, click here or call Sales on +44 (0) 20 7620 0033.

Perpetual Solutions are a global provider of onsite training solutions throughout London, UK and the rest of the world. For scheduled training our UK partner network provides an unrivalled choice of courses.

Save as PDF

Print Print this course