M2821: Designing & Managing a Windows Public Key Infrastructure

4 Day Course
Hands On
Official Microsoft Curriculum
Code M2821

This course has been retired. Please view currently available Microsoft MTA Training Courses.

Modules

Hide all

Overview of Public Key Infrastructure (3 topics)

  • Introduction to PKI
  • Introduction to Cryptography
  • Certificates and Certification Authorities

Designing a Certification Authority Hierarchy (5 topics)

  • Identifying CA Hierarchy Design Requirements
  • Common CA Hierarchy Designs
  • Documenting Legal Requirements
  • Analyzing Design Requirements
  • Designing a CA Hierarchy Structure

Creating a Certification Authority Hierarchy (4 topics)

  • Creating an Offline CA
  • Validating Certificates
  • Planning CRL Publication
  • Installing a Subordinate CA

Managing a Public Key Infrastructure (4 topics)

  • Introduction to PKI Management
  • Managing Certificates
  • Managing Certification Authorities
  • Planning for Disaster Recovery

Configuring Certificate Templates (4 topics)

  • Introduction to Certificate Templates
  • Designing and Creating a Certificate Template
  • Publishing a Certificate Template
  • Managing Changes in a Certificate Template

Configuring Certificate Enrollment (3 topics)

  • Introduction to Certificate Enrollment
  • Enrolling Certificates Manually
  • Autoenrolling Certificates

Configuring Key Archival and Recovery (3 topics)

  • Introduction to Key Archival and Recovery
  • Implementing Manual Key Archival and Recovery
  • Implementing Automatic Key Archival and Recovery

Configuring Trust Between Organizations (4 topics)

  • Introduction to Advanced PKI Hierarchies
  • Qualified Subordination Concepts
  • Configuring Constraints in a Policy.inf File
  • Implementing Qualified Subordination

Deploying Smart Cards (3 topics)

  • Introduction to Smart Cards
  • Enrolling Smart Card Certificates
  • Deploying Smart Cards

Securing Web Traffic by Using SSL (3 topics)

  • Introduction to SSL Security
  • Enabling SSL on a Web Server
  • Implementing Certificate-based Authentication

Configuring E-mail Security (4 topics)

  • Introduction to E-mail Security
  • Configuring Secure E-mail Messages
  • Recovering E-mail Private Keys
  • Migrating a KMS Database to a CA Running Windows Server 2003

Prerequisites

Before attending this course, students must have:

  • Familiarity with Windows 2000 or Windows Server 2003 core technologies, such as those described in the following Microsoft Official Curriculum (MOC) courses
  • Course 2274: Managing a Microsoft Windows Server 2003 Environment
  • Course 2275: Maintaining a Microsoft Windows Server 2003 Environment
  • Course 2152: Implementing Microsoft Windows 2000 Professional and Server
  • Familiarity with Windows 2000 or Windows 2003 networking technologies, such as those described in the following MOC courses:
  • Course 2277: Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure: Network Services
  • Course 2153: Implementing a Microsoft Windows 2000 Network Infrastructure
  • Familiarity with Windows 2000 or Windows 2003 directory services technologies, such as those described in the following MOC courses:
  • Course 2279: Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure
  • Course 2154: Implementing and Administering Microsoft Windows 2000 Directory Services

Sections