M2821: Designing & Managing a Windows Public Key Infrastructure

4 Day Course
Hands On
Official Microsoft Curriculum
Code M2821

Book Now - 1 Delivery Method Available:

Scheduled Online Onsite

Overview

This four-day, instructor-led course provides students with the knowledge and skills to design, deploy, and manage a public key infrastructure (PKI) to support applications that require distributed security. Students get hands-on experience implementing solutions to secure PKI-enabled applications and services, such as Microsoft Internet Explorer, Microsoft Exchange Server, Microsoft Internet Information Server, Microsoft Outlook®, and remote access services.

Target Audience

This course is intended for IT systems engineers who are responsible for designing and implementing security solutions. Individuals should have knowledge and experience to install and configure the Active Directory® directory service and security mechanisms for computers running Microsoft Windows® 2000 Server or Windows Server™ 2003 family.

Training Partners

We work with the following best of breed training partners using our bulk buying power to bring you a wider range of dates, locations and prices.

Modules

Hide all

Overview of Public Key Infrastructure (3 topics)

  • Introduction to PKI
  • Introduction to Cryptography
  • Certificates and Certification Authorities

Designing a Certification Authority Hierarchy (5 topics)

  • Identifying CA Hierarchy Design Requirements
  • Common CA Hierarchy Designs
  • Documenting Legal Requirements
  • Analyzing Design Requirements
  • Designing a CA Hierarchy Structure

Creating a Certification Authority Hierarchy (4 topics)

  • Creating an Offline CA
  • Validating Certificates
  • Planning CRL Publication
  • Installing a Subordinate CA

Managing a Public Key Infrastructure (4 topics)

  • Introduction to PKI Management
  • Managing Certificates
  • Managing Certification Authorities
  • Planning for Disaster Recovery

Configuring Certificate Templates (4 topics)

  • Introduction to Certificate Templates
  • Designing and Creating a Certificate Template
  • Publishing a Certificate Template
  • Managing Changes in a Certificate Template

Configuring Certificate Enrollment (3 topics)

  • Introduction to Certificate Enrollment
  • Enrolling Certificates Manually
  • Autoenrolling Certificates

Configuring Key Archival and Recovery (3 topics)

  • Introduction to Key Archival and Recovery
  • Implementing Manual Key Archival and Recovery
  • Implementing Automatic Key Archival and Recovery

Configuring Trust Between Organizations (4 topics)

  • Introduction to Advanced PKI Hierarchies
  • Qualified Subordination Concepts
  • Configuring Constraints in a Policy.inf File
  • Implementing Qualified Subordination

Deploying Smart Cards (3 topics)

  • Introduction to Smart Cards
  • Enrolling Smart Card Certificates
  • Deploying Smart Cards

Securing Web Traffic by Using SSL (3 topics)

  • Introduction to SSL Security
  • Enabling SSL on a Web Server
  • Implementing Certificate-based Authentication

Configuring E-mail Security (4 topics)

  • Introduction to E-mail Security
  • Configuring Secure E-mail Messages
  • Recovering E-mail Private Keys
  • Migrating a KMS Database to a CA Running Windows Server 2003

Prerequisites

Before attending this course, students must have:

  • Familiarity with Windows 2000 or Windows Server 2003 core technologies, such as those described in the following Microsoft Official Curriculum (MOC) courses
  • Course 2274: Managing a Microsoft Windows Server 2003 Environment
  • Course 2275: Maintaining a Microsoft Windows Server 2003 Environment
  • Course 2152: Implementing Microsoft Windows 2000 Professional and Server
  • Familiarity with Windows 2000 or Windows 2003 networking technologies, such as those described in the following MOC courses:
  • Course 2277: Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure: Network Services
  • Course 2153: Implementing a Microsoft Windows 2000 Network Infrastructure
  • Familiarity with Windows 2000 or Windows 2003 directory services technologies, such as those described in the following MOC courses:
  • Course 2279: Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure
  • Course 2154: Implementing and Administering Microsoft Windows 2000 Directory Services

Additional Learning

The courses below may help you meet the knowledge level required to take this course. If you are unsure please ask a training advisor .

or call:408-759-5074

Course PDF

Print

Share this Course

+1
Share

Recommend this Course

Sections