ebook img

MCSA/MCSE Self-Paced Training Kit (Exam 70-299): Implementing and Administering Security in a Microsoft Windows Server 2003 Network: Implementing and Administering ... Server (tm) 2003 Network (Pro-Certification) PDF

931 Pages·2004·13.89 MB·English
Save to my drive
Quick download
Download
Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.

Preview MCSA/MCSE Self-Paced Training Kit (Exam 70-299): Implementing and Administering Security in a Microsoft Windows Server 2003 Network: Implementing and Administering ... Server (tm) 2003 Network (Pro-Certification)

< Day Day Up > MCSA/MCSE Self-Paced Training Kit (Exam 70-299): Implementing and Administering Security in a Microsoft Windows Server 2003 Network by Tony Northrup and Orin ISBN:073562061x Thomas Microsoft Press © 2004 (894 pages) Focusing on implementing and administering network security in a Windows Server 2003 environment, this guide covers implementing, managing, and troubleshooting security policies, patch management infrastructure, security features, and much more. CD Content Table of Contents Microsoft MCSA/MCSE Self-Paced Training Kit (Exam 70-299)—Implementing and Administering Security in a Microsoft Windows Server 2003 Network About This Book Part I - Learn at Your Own Pace Ch apt - Planning and Configuring an Authentication Strategy er 1 Ch apt - Planning and Configuring an Authorization Strategy er 2 Ch apt - Deploying and Troubleshooting Security Templates er 3 Ch apt - Hardening Computers for Specific Roles er 4 Ch apt - Planning an Update Management Infrastructure er 5 Ch apt - Assessing and Deploying a Patch Management Infrastructure er 6 Ch apt - Installing, Configuring, and Managing Certification Services er 7 Ch apt - Planning and Configuring IPSec er 8 Ch apt - Deploying and Troubleshooting IPSec er 9 Ch apt - Planning and Implementing Security for Wireless Networks er 10 Ch apt - Deploying, Configuring, and Managing SSL Certificates er 11 Ch apt - Securing Remote Access er 12 Part II - Prepare for the Exam Ch apt Implementing, Managing, and Troubleshooting Security Policies - er (1.0) 13 Ch apt Implementing, Managing, and Troubleshooting Patch Management - er Infrastructure (2.0) 14 Ch apt Implementing, Managing, and Troubleshooting Security for - er Network Communications (3.0) 15 Ch apt Planning, Configuring, and Troubleshooting Authentication, - er Authorization, and PKI (4.0) 16 Glossary Index List of Figures List of Tables List of Sidebars CD Content < Day Day Up > < Day Day Up > Back Cover Ace your preparation for the skills measured by MCP Exam 70-299—and on the job—with this official Microsoft study guide. Work at your own pace through a system of lessons, hands-on exercises, troubleshooting labs, and review questions. The Readiness Review provides 300 challenging question for in-depth self-assessment and practice. Maximize your performance on the exam by learning how to:  Configure security templates  Harden computers by role using security policies, settings, templates, and zones  Plan and configure authentication, authorization, and certificate services  Plan the deployment of service packs and hot fixes  Configure, deploy, and troubleshoot IPSec for network communications  Implement security services, including SSL, for wireless networks and remote access About the Authors Tony Northrup, MCSE, CISSP, is a professional consultant and writer with dozens of books to his credit. He is former principal systems engineer for BBN/Genuity, responsible for the reliability and security of hundreds of Microsoft Windows-based servers. Orin Thomas is a writer, editor, and systems administrator for Certutor.net, an online resource for certification candidates. He is MCSE, CCNA, CCDA, and Linux+ certified and was a contributor to The Insider’s Guide to IT Certification. < Day Day Up > < Day Day Up > Microsoft MCSA/MCSE Self-Paced Training Kit (Exam 70-299)-Implementing and Administering Security in a Microsoft Windows Server 2003 Network Tony Northrup and Orin Thomas PUBLISHED BY Microsoft Press A Division of Microsoft Corporation One Microsoft Way Redmond, Washington 98052-6399 Copyright © 2004 by Microsoft Corporation All rights reserved. No part of the contents of this book may be reproduced or transmitted in any form or by any means without the written permission of the publisher. Library of Congress Cataloging-in-Publication Data pending. Printed and bound in the United States of America. 1 2 3 4 5 6 7 8 9 QWE 8 7 6 5 4 3 Distributed in Canada by H.B. Fenn and Company Ltd. A CIP catalogue record for this book is available from the British Library. Microsoft Press books are available through booksellers and distributors worldwide. For further information about international editions, contact your local Microsoft Corporation office or contact Microsoft Press International directly at fax (425) 936-7329. Visit our Web site at www.microsoft.com/learning/. Send comments to [email protected]. Active Directory, Brute Force, DirectShow, DirectX, FrontPage, Microsoft, Microsoft Press, MS-DOS, Outlook, PowerPoint, Visio, Visual Basic, Visual Studio, Windows, Windows Media, Windows Mobile, Windows NT, and Windows Server are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Other product and company names mentioned herein may be the trademarks of their respective owners. The example companies, organizations, products, domain names, e-mail addresses, logos, people, places, and events depicted herein are fictitious. No association with any real company, organization, product, domain name, e-mail address, logo, person, place, or event is intended or should be inferred. This book expresses the author's views and opinions. The information contained in this book is provided without any express, statutory, or implied warranties. Neither the authors, Microsoft Corporation, nor its resellers or distributors will be held liable for any damages caused or alleged to be caused either directly or indirectly by this book. Acquisitions Editor: Kathy Harding Content Development Manager: Marzena Makuta Project Manager: Rebecca Davis (Volt) Technical Editors: Randall Galloway and Eli Lazich Copyeditor: Mick Alberts Indexer: Seth Maislin Body Part No. X10-42153 Acknowledgments The author's name appears on the cover of a book, but the author is only one member of a large team. This particular book started with a call from Neil Salkind of Studio B- a respected author himself, with far more credits to his name than I ever hope to achieve. Neil, and a team at Studio B that included Jackie Coder, David Rogelberg, and Stacey Barone, worked closely with Rajni Gulati at Microsoft to put together the team that would create this book. I have to thank Marzena Makuta, my editor, for being remarkably patient while I learned the correct style for a Microsoft Press training kit. Rebecca Davis did a great job of keeping me (and probably everyone else!) on schedule, even when the schedule needed to be adjusted. I was fortunate enough to have two technical reviewers for this book: Jim Fuchs and Randall Galloway. The technical accuracy of this book is a result of their incredible attention to detail. Mick Alberts, my copyeditor, helped me get the terminology straight and educated me on the difference between patches and updates. The composition team, led by Dan Latimer, handled the layout of the book. Bill Teel processed the (many, many) screenshots, and Joel Panchot created the artwork from my drawings and diagrams. The proofing team, led by Sandi Resnick, helped to make this book readable by fixing many errors that I never even knew I made. Many people helped with this book even though they weren't formally part of the team. Kurt Dillard, one of the top security experts at Microsoft and a close friend of mine, lent his expertise many times and helped to ensure that my recommendations were consistent with those of Microsoft. My friends, especially Tara Banks, Kristin Cavour, Eric and Alyssa Faulkner, Chris and Diane Geggis, Bob Hogan, Samuel Jackson, Khristina Jones, Tom Keegan, and Eric Parucki, helped me enjoy my time away from the keyboard. More than anyone, I have to thank my wife Erica for being so patient during many long days of writing. Erica's family, Mike, Michelle, Sandi, and Raymond Edson, as always, kept me in good spirits during the holidays (and by 'spirits,' I mean liquor). It makes a huge difference when you consider the people you work with to be friends. Having a great team not only improves the quality of the book; it makes it a more enjoyable experience. Writing this book was my most enjoyable project yet, and I hope I get the chance to work with everyone in the future. Tony Northrup I would like to thank my wonderful wife Oksana for her support during the writing process. I would also like to thank our son Rooslan for making fatherhood so easy and fun. Finally, I want to thank the entire Certtutor.net tutor team, who offer great free advice to people who want to get certified. Orin Thomas About the Authors Tony Northrup, MCSE and CISSP, is a consultant and author living in the Boston, Massachusetts, area. During his seven years as Principal Systems Architect at BBN/Genuity, he was ultimately responsible for the reliability and security of hundreds of Windows- based servers and dozens of Windows domains-all connected directly to the Internet. Needless to say, Tony learned the hard way how to keep Windows systems safe in a hostile environment. Tony has authored and co-authored many books on Windows and networking, from NT Network Plumbing in 1998 to the Windows Server 2003 Resource Kit Performance and Troubleshooting Guide. Tony has also written several papers for Microsoft TechNet, covering firewalls, ASP.NET, and other security topics. Orin Thomas is a writer, editor, and systems administrator who works for the certification advice Web site Certtutor.net. His work in IT has been varied: he's done everything from providing first-level networking support to acting in the role of systems administrator for one of Australia's largest companies. He was co-author of the MCSA/MCSE self-paced training kit for Exam 70-290 and co-editor of the MCSA/MCSE self-paced training kits for exams 70-292 and 70-296, both by Microsoft Press. He holds the MCSE, CCNA, CCDA, and Linux+ certifications. He holds a bachelor's degree in Science with honors from the University of Melbourne and is currently working toward the completion of a PhD in Philosophy of Science. Hardware Requirements Each computer must have the following minimum configuration. All hardware should be on the Microsoft Windows Server 2003 Hardware Compatibility List.  Computer with 550 MHz or higher processor recommended; 133 MHz minimum required in the Intel Pentium/Celeron family or the AMD K6/Athlon/Duron family  256 MB RAM or higher recommended; 128 MB minimum required memory  1.25 to 2 GB free hard disk space  CD-ROM drive or DVD-ROM drive  Super VGA (800x600) or higher-resolution monitor recommended; VGA or hardware that supports console redirection required  Keyboard and Microsoft Mouse or compatible pointing device or hardware that supports console redirection Additionally, one of the chapters requires you to have a wireless access point available. Software Requirements  Microsoft Windows Server 2003 For some exercises, you will need the following:  Microsoft Windows XP to simulate a network client operating system  Microsoft Exchange Server 2000 or later  Microsoft SQL Server 2000 or later < Day Day Up > < Day Day Up > About This Book Overview Welcome to MCSE Self-Paced Training Kit (Exam 70-299): Implementing and Administering Security in a Microsoft Windows Server 2003 Network. Today's networks are constantly under attack by a variety of sources. Worms and viruses are the most common sources of attacks, and because they are constantly evolving, protecting your network against them requires implementing and administering an update management infrastructure. More dangerous attacks are launched by malicious, skilled individuals and require more complex countermeasures. Microsoft Windows Server 2003 provides a variety of methods to protect your network against these threats, including Active Directory directory services, Certificate Services, and IP Security (IPSec). Implementing and administering each of these requires specialized skills that will be taught in this book. The skills you acquire will also enable you to complete the exam 70-299. Each chapter addresses an important aspect of network security management and a range of exam objectives. The goal of both the objectives and the chapter orientation is to provide a complete guide to Microsoft Windows-based network security management. The book focuses primarily on the skills necessary to implement and administer a network security infrastructure and only briefly covers concepts related to designing network security. Note For more information about becoming a Microsoft Certified Professional, see the section titled 'The Microsoft Certified Professional Program' later in this introduction. < Day Day Up > < Day Day Up > Intended Audience This book was developed for information technology (IT) professionals who plan to take the related Microsoft Certified Professional Exam 70-299, Implementing and Administering Security in a Microsoft Windows Server 2003 Network, and for IT professionals who implement and manage software solutions for Windows-based environments using Microsoft tools and technologies. Note Exam skills are subject to change without prior notice and at the sole discretion of Microsoft. < Day Day Up > < Day Day Up > Prerequisites This training kit requires that students meet the following prerequisites:  Have a solid understanding of networking fundamentals.  Have at least one year of experience implementing and administering a Windows- based network operating system.  For some chapters and labs, have a basic understanding of Microsoft SQL Server 2000 and Microsoft Exchange Server 2000 or later.  Have a basic understanding of wireless technology. < Day Day Up >

Description:
Announcing an all-new MCSA/MCSE Training Kit designed to help maximize your performance on Exam 70-299, one of two core exams for the MCSE: Security specialization and an elective for MCSA and MCSE. This kit packs the tools and features exam candidates want most—including in-depth, self-paced trai
See more

The list of books you might like

Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.