| |
|
MCSE 2003 : 70-299
|
| |
|
Module 1 Planning and Configuring an Authorization and Authentication Strategy
|
|
| 1.Groups and Basic Group Strategy in Windows Server 2003 |
| |
|
|
 |
Types of Groups in Windows Server 2003
|
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Compares the differences of group types in a demonstration
- Discusses the basic operations of a DC
|
- Briefly introduces different types of groups in Windows Server 2003
|
|
|
| |
|
|
|
Security Groups
|
|
| |
|
|
|
Distribution groups
|
|
| |
|
|
|
Group Scopes
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates different group scopes using examples and pictures
|
- Introduces different group scopes in plain text only
- No pictures or examples are provided
|
|
|
| |
|
|
|
Global groups
|
|
| |
|
|
|
Domain Local groups
|
|
| |
|
|
|
Universal group
|
|
| |
|
|
|
Built-in Groups
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates various built-in groups using examples and actual screen shots
|
- Introduces different types of built-in groups in plain text only
- No pictures or examples are provided
|
|
|
| |
|
|
|
Pre-Windows 2000 Compatible Access
|
|
| |
|
|
|
Remote Desktop Users
|
|
| |
|
|
|
Special Groups
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates special groups using actual screen shots
|
- Describes special groups in plain text only
- No pictures are provided
|
|
|
| |
|
|
|
Authenticated Users
|
|
| |
|
|
|
Tools for Administering Security Groups
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses various tools for administering security groups using actual screen shots and demonstration
|
- Introduces different tools for administering security groups in plain text only
- No pictures and demonstrations are provided
|
|
|
| |
|
|
|
AD Users and Computers
|
|
| |
|
|
|
ACL Editor
|
|
| |
|
|
|
Who am i
|
|
| |
|
|
|
Ds Add
|
|
| |
|
|
|
If Member
|
|
| |
|
|
|
Get SID
|
|
| |
|
|
|
What Is a Restricted Group Policy?
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses restricted group policy using pictures and demonstrations
|
- Generally describes restricted group
- No pictures or demonstrations are provided
|
|
|
|
2.Creating Trusts in Windows Server 2003
|
| |
|
|
|
Trusts in Windows Server 2003
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses trusts and the reasons for creating trust relationships
- Demonstrates the differences of having trust relationship in a domain
|
- Briefly describes trust relationships in plain text only
- No demonstrations are provided
|
|
|
| |
|
|
|
Shortcut Trust
|
|
| |
|
|
|
External Trust
|
|
| |
|
|
|
Realm Trust
|
|
| |
|
|
|
Trust Types Associated with Server Operating Systems
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses the different trust type associations using actual screen shots
- Illustrates the differences of various functional levels using actual screen shots
|
- Briefly introduces different trust types
- No pictures are provided
|
|
|
| |
|
|
|
Windows 2000 Mixed
|
|
| |
|
|
|
Windows 2000 Native
|
|
| |
|
|
|
Windows 2003
|
|
| |
|
|
|
How to Create Trusts
|
|
| 3.Planning, Implementing, and Maintaining an Authorization Strategy Using Groups |
| |
|
|
|
Authentication, Authorization, and Least privilege
|
|
| |
|
|
|
User/ACL Method
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Introduces User/ACL using a series of picture
|
- Describes User/ACL in plain text only
- No pictures are provided
|
|
|
| |
|
|
|
Account Group/ACL Authorization Method
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Introduces Group/ACL using a series of pictures
- Discusses the benefits for using Group/ACL to delegate user privileges
|
- Briefly introduces Group/ACL
- No pictures are provided
|
|
|
| |
|
|
|
Account Group/Resource Group Authorization Method
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Introduces Group/Resource using a series of pictures
- Discusses the benefits for using Group/Resource to delegate user privileges
|
- Briefly introduces Group/Resource
- No pictures are provided
|
|
|
| 4.Planning and Implementing an Authentication Strategy |
| |
|
|
|
Considerations for Evaluating Your Environment
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses how to evaluate the corporate network environment using graphical examples
- Illustrates the issue when multiple branches use a single CA Server through realistic examples
|
- Provides a list of considerations for evaluating the corporate network environment
- No pictures and examples are provided
|
|
|
| |
|
|
|
Domain controllers
|
|
| |
|
|
|
Network connectivity
|
|
| |
|
|
|
Certification Authorities
|
|
| |
|
|
|
Group Policy Setting to Control Authorization to Computers
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses how to delegate authorization using group policy
- Illustrates different group policy settings using a demonstration
|
- Introduces how to delegate authorization using group policy
- No demonstrations are provided
|
|
|
| |
|
|
|
Access this Computer from the Network
|
|
| |
|
|
|
Deny access to this Computer form the Network
|
|
| |
|
|
|
Log on locally
|
|
| |
|
|
|
Deny logon locally
|
|
| |
|
|
|
Guidelines for Creating a Strong Password Policy
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses the fundamentals for creating a strong password policy using actual screen shots and examples
- Illustrates what password history is and how to reset a user password using a series of pictures
|
- Describes the guidelines for creating a strong password policy
- No pictures or examples are provided
|
|
|
| |
|
|
|
Password length
|
|
| |
|
|
|
Maximum password age
|
|
| |
|
|
|
Minimum password age
|
|
| |
|
|
|
Password history
|
|
| |
|
|
|
Options for Account Lockout Policies and Logon Restrictions
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates the relationship between different account lockout policies using actual screen shots
|
- Describes account lockout policies briefly
- No pictures are provided
|
|
|
| |
|
|
|
Account lockout threshold
|
|
| |
|
|
|
Account lockout duration
|
|
| |
|
|
|
Reset account lockout counter after
|
|
| |
|
|
|
Windows Server 2003 Authentication Methods for Earlier Operating Systems
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses authentication methods for older versions of operating systems using actual screen shots
|
- Briefly introduces authentication methods for earlier operating systems
- No pictures are provided
|
|
|
| |
|
|
|
How to Enable Secure Authentication
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Demonstrates how to enable secure authentication and how to ensure the compatibility of different operating systems
|
- Provides a procedure on how to enable secure authentication
- No demonstrations are provided
|
|
|
| |
| Module 2 Installing, Configuring, and Managing Certification Authorities |
| |
| 1.Introducing PKI and Certification Authorities |
| |
|
|
|
Basics of PKI
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses PKI using graphical examples
- Introduces the Availability feature in the CA infrastructure using graphical examples
|
- Introduces PKI and features briefly
- No pictures or examples are provided
|
|
|
| |
|
|
|
Confidentiality
|
|
| |
|
|
|
Integrity
|
|
| |
|
|
|
Non-repudiation
|
|
| |
|
|
|
Availability
|
|
| |
|
|
|
Components of a PKI
|
|
| |
|
|
|
CA Management Tools
|
|
| |
|
|
|
Certificate Template
|
|
| |
|
|
|
Digital Certificate
|
|
| |
|
|
|
Certificate Revocation List
|
|
| |
|
|
|
Applications that use PKI
|
|
| |
|
|
|
Introduction of Certification Authorities
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses CA using a series of pictures
|
|
|
|
| |
|
|
|
Differences Between the Types of Certification Authorities
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses the differences of various types of CA¡¦s using a series of pictures
|
- Introduces the differences between the types of CA¡¦s in general
- No pictures are provided
|
|
|
| 2.Installing a Certification Authority |
| |
|
|
|
How to Install an Enterprise Root CA
|
|
| |
|
|
|
How to Install an Enterprise Subordinate CA
|
|
| 3 Managing a Certification Authority |
| |
|
|
|
Reason Codes for Revoking Certificates
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses reason codes for revoking certificates using actual screen shots
|
- Briefly introduces the reasons for revoking certificates
- No pictures are provided
|
|
|
| |
|
|
|
How Certificate Services Publish CRLs
|
|
| |
|
|
|
Base CRL
|
|
| |
|
|
|
Delta CRL
|
|
| |
|
|
|
Criteria for Planning CRL Publication Intervals
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses the publication intervals of CRL using demonstration
|
- Describes the CRL publication intervals in plain text only
- No demonstrations are provided
|
|
|
| |
|
|
|
Where to Publish CRL Publication Points
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Demonstrates how to download a CRL publication
|
- Introduces different methods to download CRL publication
- No demonstrations are provided
|
|
|
| 4.Backing Up and Restoring a Certification Authority |
| |
|
|
|
Methods for Backing Up a CA
|
|
| |
|
|
|
System State backup
|
|
| |
|
|
|
Manual backup
|
|
| |
|
|
|
How to Backup Certificate Services
|
|
| |
|
|
|
Manual backup
|
|
| |
|
|
|
System State backup
|
|
| |
|
|
|
How to Restore Certificate Services
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates how to restore certificate services in a step-by-step approach
- Discusses how to restore certificate services on a DC
|
- Provides a procedure on restoring certificate services
|
|
|
| |
|
|
|
Manual backup
|
|
| |
|
|
|
System State backup
|
|
| |
| Module 3 Configuring, Deploying, & Managing Certificates |
| |
| 1.Configuring Certificate Templates |
| |
|
|
|
Digital Certificate Life Cycle
|
|
| |
|
|
|
Basics of Certificate Templates
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses certificate templates using actual screen shots
- Illustrates the relationship between certificate templates and user privileges using a demonstration
|
- Introduces certificate templates in general
- No pictures or demonstrations are provided
|
|
|
| |
|
|
|
Format and content of a certificate based on the certificate ¡¦ s intended usage
|
|
| |
|
|
|
Permission to read , enroll , autoenroll , or modify certificate templates by using DACLs
|
|
| |
|
|
|
Types of Certificate Templates
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses different types of certificate templates using actual screen shots
|
- Introduces various types of certificate templates with a brief description
- No pictures are provided
|
|
|
| |
|
|
|
Certificate Template Categories
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses certificate template categories using pictures
- Students can clearly distinguish the differences amongst the different categories
|
- Briefly describes various certificate template categories
- No pictures are provided
|
|
|
| |
|
|
|
Single function
|
|
| |
|
|
|
Multiple functions
|
|
| |
|
|
|
Modification and Superseding of a Certificate Template
|
|
| 2.Deploying and Revoking User and Computer Certificates |
| |
|
|
|
Certificate Enrollment Methods
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses each certificate enrollment method using examples and actual screen shots
- Introduces Certificates Console using pictures
|
- Introduces different certificate enrollment methods in plain text only
- No pictures are provided
|
|
|
| |
|
|
|
Web-based
|
|
| |
|
|
|
Certificates console
|
|
| |
|
|
|
Enrollment agent
|
|
| |
|
|
|
Enrollment for Certificates Using a Web-based Interface
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates how to enroll a certificate using a web-based interface in a step-by-step approach
- Discusses how to configure the certificate permission to allow users to apply for certificates
|
- Provides a procedure for enrolling a certificate using web-based interface
- No illustrations are provided
|
|
|
| |
|
|
|
Request for Certificates Using the Certificate Request Wizard
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses how to make a request for a certificate using the Certificate Request Wizard
- Discusses what the best time is to use the Certificate Request Wizard when making a request for a certificate
|
- Briefly introduces how to use Certificate Request Wizard
|
|
|
| |
|
|
|
Revoking Certificates
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates each step for revoking a certificate
- Discusses how to retrieve a revoked certificate
|
- Provides only a procedure on revoking a certificates
- Does not mention that a revoked certificate can be retrieved
|
|
|
| 3.Managing Certificates |
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses key recovery using actual screen shots and examples
- Introduces User Profile using actual screen shots
|
- Introduces the concepts for key recovery briefly
- No pictures are provided
|
|
|
| |
|
|
|
The user profile is deleted
|
|
| |
|
|
|
The operating system is reinstalled
|
|
| |
|
|
|
The disk is corrupted
|
|
| |
|
|
|
The computer is stolen
|
|
| |
|
|
|
File Formats Used for Exporting Keys and Certificates
|
|
| |
|
|
|
PKCS # 7
|
|
| |
|
|
|
PKCS # 12
|
|
| |
|
|
|
Exporting Keys
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates how to export PKCS #12 and PKCS #7
- Demonstrates how to recover a deleted certificate using the backup certificate
|
- Provides a procedure on exporting PKCS #12
- No demonstrations are provided
|
|
|
| |
|
|
|
PKCS # 7
|
|
| |
|
|
|
PKCS # 12
|
|
| |
| Module 4Planning , Implementing , and Troubleshooting Encrypting File System |
| |
| 1.Introduction to EFS |
| |
|
|
|
What is a EFS ?
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses EFS using actual screen shots and examples
|
- Briefly describes EFS in plain text only
- No pictures or examples are provided
|
|
|
| |
|
|
|
Ensures that sensitive or confidential data is more secure and cannot be easily read or decrypted by another user
|
|
| |
|
|
|
How EFS Works
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Illustrates how EFS woks in a step-by-step approach
|
- Provides a list of steps describing how EFS works
- No illustrations are provided
|
|
|
| 2.Implementing EFS in a Standalone Microsoft Windows XP Environment |
| |
|
|
|
Encrypting and Decrypting Files Using Windows Explorer
|
|
| Pviva Training CDs |
Reference Textbooks |
Boot Camps |
- Discusses how to encrypt and decrypt files using Windows Explorer
- Discusses whether a user has an EFS certificate before a file is encrypted
- Discusses whether a user can access EFS with an EFS certificate
|
- Provides a brief procedure on encrypting and decrypting files using Windows Explorer
| |
