Windows Server 2003 MCSA Security Specialization

Windows Server 2003 MCSA Security Specialization

28 Sessions –
84 Hours of Interactive Training

The Windows Server 2003 MCSA certification with Security Specialization from LearnKey has all the training courses you’ll need to pass Microsoft Certified Systems Administrator exams. The course content meets or exceeds all the latest Microsoft certification objectives covering three core courses and two security electives which are required for the certification. At the conclusion of this series, you’ll be prepared to pass the two required networking system exams (70-290 & 70-291), the client operating system exam (70-270) and the two security electives – Windows Server 2003 Security Implementation (70-299) and CompTIA Security+®.

Benefits

You’ll achieve a recognized industry credential with the added, in-demand value of security specialization.

Gain technical mastery of network environments and increase your IT credibility.

Your IT knowledge and expertise will open doors and maximize earning potential.

About The Authors

Aaron Spurlock is an MCSE+I, MCT, CNE & CNI. He owns Technovation Design in Ogden, Utah.

Tom Carpenter is Microsoft certified & helped found the Certified Technology Services Professional certification.

Cameron Hunt is a technical trainer and author with a diverse background in major computer technologies.

Implementing Network Infrastructure
Session 1

Section A: Network Infrastructure Overview
· Required Skills
· Required Components
· Base Platform
· Network Planning

Section B: Understanding TCP/IP
· TCP/IP History
· TCP/IP Protocol Suite
· OSI Model
· OSI Upper Layers
· OSI Middle Layers
· OSI Lower Layers
· Mapping TCP/IP to OSI
· TCP/IP Communications

Section C: IP Addresses
· MAC Addresses
· IP Addresses
· Subnet Mask
· IP Address Clauses
· Subnet Mathematics

Section D: Addressing Your Network
· Static Addresses
· Dynamic Addresses
· Assigning Addresses
· Assign Static Address
· Alternate Configuration
· Advanced IP Properties
· Configure Advanced Settings

Section E: Dynamic Addressing
· APIPA
· Using APIPA
· DHCP
· DHCP Process
· DHCP Scopes
· DHCP Superscopes

Section F: Implementing DHCP
· DHCP Authorization
· Create Scope
· Configure Client
· Create Reservation

Session 2

Section A: Managing DHCP
· Reconcile Scopes
· Backup DHCP
· DHCP Relay Agent
· Install Relay Agent
· Configure Relay Agent

Section B: IP Address Troubleshooting
· DHCP Problems
· Troubleshooting Tools
· Conflict Detection
· DHCP Authorization
· Client IP Problems

Section C: Name Resolution
· DNS History
· Authority/Delegation
· Zones/Domains
· DNS Namespace
· DNS Servers
· DNS Zone Types

Section D: Install DNS Servers
· Install DNS
· Configure DNS Servers
· Configure DNS Options
· Server Properties
· Configure Forwarding

Section E: Configuring Zones
· Choose Zone Type
· Active Directory Integration
· Create Zone
· Zone Properties
· Create DNS Records
· Delegate Domain

Section F: Monitor & Troubleshoot DNS
· Monitoring DNS
· Event Viewer
· Debug Logging
· Nslookup
· Aging & Scavenging
· Troubleshoot Name Resolution

Session 3

Section A: Remote Access
· Types of Connectivity
· Configure Remote Access
· Configure Modem
· Configure RRAS
· RRAS Properties
· Ports

Section B: Virtual Private Networks
· PPTP
· L2TP/IPSec
· Configure Security
· IP Settings
· Configure Client
· IPSec Settings
· Access Network

Section C: Remote Access Policies
· RRAS User Authentication
· Configure Logging
· User Properties
· Remote Access Policies
· Configure Policies
· Policy Properties
· Verify Policy

Section D: Internet Authentication Service
· RADIUS
· Authentication
· Configure IAS Server
· RADIUS Clients
· IAS Policies
· Authorize Server
· Configure

Section E: Troubleshooting Remote Access
· Common Problems
· VPN Security
· Packet Filters
· Test Filters

Section F: Routing Introduction
· IP Routing
· Routing Protocols
· RIP Routing
· OSPF Routing
· Static Routing

Session 4

Section A: Implementing Routing
· Managing IP Routing
· Routing Protocols
· Routing & Remote Access
· Static Routing
· Verify Static Route
· Dynamic Routing
· Configure Outbound
· Configure Inbound

Section B: Demand-Dial Routing
· Usage
· Configure DDR
· Dial-In Setup
· Dial-Out Setup
· Two-way Connection
· Dynamic Routes
· Configure Remote
· Demand-Dial Interface

Section C: Secure Remote Access
· VPNs
· Corporate VPN
· VPN Credentials
· VPN Properties
· IP Addressing
· Branch VPN
· Verify VPN Connection
· Filtering/Rules

Section D: ICS NAT
· Address Translation
· Connection Sharing
· ICS/ICF Set-Up
· Advanced Setting
· ICS/ICF Services

Section E: RRAS NAT
· Implementation
· Configuring
· ICF/ICS Conflict
· Enable RRAS NAT
· Public/Private
· NAT Properties
· Using NAT

Section F: Troubleshooting Routing
· RRAS
· Demand-Dial
· NAT
· Event Logging
· Trace Log

Session 5

Section A: Security Templates
· Baseline
· Add Security MMC
· Built-in Templates
· Create Template
· Implement Template
· Import Templates
· Applying Templates

Windows Server 2003 MCSA Security Specialization continued

Section B: IPSec
· IPSec Process
· IPSec Protocols
· Transport Mode
· Tunnel Mode
· Integrity/Encryption
· Authentication

Section C: Configure IPSec
· Implementation
· Actions/Rules
· Using IPSec
· IP Filter List
· Filter Actions
· Create Policy
· Assign Policy
· Verify

Section D: Troubleshoot IPSec
· IP Security Monitor
· Tracking IPSec
· Solve/Verify
· View Policy
· Update Policy
· QuickMode

Section E: Monitoring
· Tools
· Network Performance
· Network Diagnostics
· Network Monitor
· Capture VPN Traffic
· Analyze Data
· Troubleshooting Tools

Section F: Troubleshooting Services
· Services
· Failure Actions
· Service Console
· SC Command

Managing a Network Environment
Session 1

Section A: Introduction
· Course Overview
· Windows 2003 Family
· Windows 2003 Editions
· Standard & Enterprise
· Datacenter & Web

Section B: Installation
· Prerequisite Knowledge
· Hardware Requirements
· Clean Installations
· Upgrade Installations
· Upgrading NT 4.0 Domains
· NT 4.0 Upgrade Issues
· NT 4.0 Upgrade Order
· Upgrading to Active Directory

Section C: Upgrading Windows 2000
· Active Directory
· Adprep/forestprep
· Adprep/domainprep
· Set Up Server 2003
· Windows Setup
· Verify Upgrade
· Functional Levels
· Domain/Forest Levels

Section D: Hardware Support
· Server Class Hardware
· Standard/Wireless
· USB Devices
· View Devices
· Optical Drives
· Hardware Installation
· Driver Signing
· Unsigned Drivers

Section E: Troubleshoot Hardware
· Hardware Problems
· Add Hardware Wizard
· Update Drivers
· Audio
· HAL/Computer Driver
· Other Tools

Session 2

Section A: Server 2003
· Hard Drives
· Basic Disks
· Dynamic Disks
· More on Basic Disks
· Basic to Dynamic
· Dynamic Conversion

Section B: Basic Dynamic Volumes
· Volume Types
· Spanned vs. Striped
· Disk Management
· Simple Volume
· Spanned Volume
· Striped Volume

Section C: Fault Tolerant Volumes
· Mirrored Volume
· RAID-5 Volume
· Configure Mirror
· Configure RAID-5

Section D: Managing Volumes
· Disk Management Console
· Mount into Directory
· Storage Commands
· DiskPart Utility
· Defrag Utility
· Schedule Defrag

Section E: File Systems
· FAT/FAT32
· NTFS
· NTFS-Based Features
· Format NTFS
· Format FAT32
· File Permissions

Section F: Computer Accounts
· Access Server Resources
· Join Domains
· Create Accounts
· Log onto Domain
· Computer Management
· Computer Account Issues
· DNS Settings
· Reset Account

Session 3

Section A: User Accounts
· Basic Building Block
· Authentication
· Create Users
· Local User Account
· Active Directory Users
· User Properties
· Verify Resource Access

Section B: Advanced User Accounts
· Create Users Quickly
· Create Template
· Copy Template
· net User Command
· dsadd User Command

Section C: User Account Properties
· Properties
· Account Tab
· Profile Tab
· Account Policies
· Password Policy
· Account Lockout Policy

Section D: User Profiles
· Roaming Profile
· Mandatory Profile
· Add Roaming Profile
· Save Profile
· Add Mandatory Profile

Section E: Groups
· Group Categories
· Group Scope
· Windows 2000 Mixed Mode
· Domain Local Group
· Global & Universal Groups
· Domain Groups
· Forest Groups

Section F: Managing Groups
· Control Access
· Add Users · Create Group
· Change Group Scope
· Move Users or Groups
· AD Automation

Session 4

Section A: NTFS Permissions
· Local File Access
· Permission Inheritance
· Grant Permissions
· Advanced Permissions
· Modify Inheritance
· Effective Permissions

Section B: Share Permissions
· Create Share
· Real World Permissions
· Modify Permissions
· Troubleshooting

Section C: NTFS Features
· Ownership
· View Ownership
· Take Ownership
· Compression
· Quotas
· Apply Compression
· Set Quota
· Test Quota Entries

Section D: Printers
· Permissions
· Print Devices
· Sharing
· Setting Up
· Install on Server
· Share Permissions
· Install on Client
· Manage Printers
· Print Queue
· Print Server Properties

Section E: Windows Licensing
· Site Licensing
· Licensing Tool
· Verify Licensing
· Licensing Server
· Licensing Modes

Section F: Software Update Services
· Install SUS
· Administrative Interface
· Service Packs

Session 5

Section A: Remote Administration
· Remote Tools
· Install Help
· Add Computer Management
· Remote Assistance
· Using Remote Assistance

Section B: Remote Desktop
· Implementing
· Connection
· Enable & Add Users
· Remote Connection
· Options
· Remote Control

Section C: Web Server
· Web Services
· IIS 6.0
· Install IIS
· Manage Server
· Securing IIS

Section D: Monitoring Servers
· Monitoring Tools
· System Monitor
· Remote Monitoring
· Performance Logs
· Log/Schedule Properties
· Create Logs/Alerts
· View Logs
· Performance Guidelines

Section E: Shadow Copies
· Requirements
· Enable Shadow Copies
· Settings
· Restore Shadow Copies

Section F: Backup
· Backup Options
· Removable Storage
· Backup Process
· Advanced Options
· Scheduled Backups
· Restore Options
· Restore Active Directory
· Restore Data

Windows Server 2003 MCSA Security Specialization continued

Section G: Disaster Recovery
· Basic Elements
· Redundancy
· ASR
· Using ASR

Session 6

Section A: Windows Server 2003 R2 Edition
· Windows Server 2003 R2
· R2 Technologies
· 32-bit R2 Editions
· 64-bit R2 Editions
· Getting to R2

Section B: File Server Roles and Quotas
· File Server Management
· Quota Management
· Quota Templates

Section C: Screening and Reporting
· File Screening
· Storage Reporting

Section D: Remote Management
· Branch Office Management
· Distributed File System

Section E: Replicating Data
· DFS Replication
· Using DFS Replication

Section F: Printer Management
· Print Server Management
· Remote Printer Installation

Section G: UNIX Integration
· Interoperability
· Network File System
· Subsystem for UNIX

Section H: Web Update Technology/UNIX
· Web Platform Features
· Hardware Management
· Development and Licensing

Windows XP Professional
Session 1

Section A: Introduction
· Installing & Using Windows XP
· XP Networking
· Hardware Requirements
· Hardware Reality

Section B: Installing Windows XP
· Installation Modifiers
· GUI-Mode Installation
· Dynamic Update
· Product Activation

Section C: Upgrading Windows XP
· Requirements
· Upgrade Issues
· Perform Upgrade
· System Compatibility
· Logging onto Windows XP

Section D: Migrating User Settings
· File & Settings Transfer Wizard
· User Transfer Wizard
· User State Migration Tool

Section E: Unattended Installation
· Setup Manager
· Using Setup Manager
· User Specific Information
· Advanced Settings
· Cloning Windows XP
· Sysprep Options

Section F: Remote Installation Services
· Setting Up RIS
· RIS Permissions
· Installing with RIS
· RIS Limitations

Section G: Installation Troubleshooting
· Install Problems
· Check HCL
· ACPI Problems
· Switch HAL

Session 2

Section A: User Accounts
· Workgroup vs. Domain
· Create & Manage Users
· User Accounts in Workgroup
· Manage Workgroup Accounts
· Domain User Accounts
· Manage Domain Accounts

Section B: Groups
· Local Groups & Permissions
· Built-in Groups
· System Groups
· Working with Groups
· Planning Groups

Section C: Logging On to Windows XP
· Domain Environment
· Workgroup Environment
· Fast User Switching
· Enable Fast User Switching
· Troubleshooting Logon
· Logon Cashing

Section D: User Profiles
· Change User Profiles
· Contents of User Profiles
· Roaming User Profiles
· Enable Roaming Profiles
· Create Profile
· Copy Profile
· Set Roaming Profiles

Section E: Local Security Policy
· Manage Account Policies
· User Rights Assignments
· Security Options
· Use Secpol.msc
· Security Templates
· Add & Remove Console Snap In
· Preconfigured Templates

Section F: Group Policy
· Local & Domain Policy
· Group Policy MMC
· Windows XP Group Policy
· Computer Policy
· User Policy
· Test Group Policy

Session 3

Section A: Auditing
· Edit Audit Policy
· Plan Audit Policy
· Requirements for Auditing
· Establish Auditing
· Event Viewer

Section B: Windows Installer
· Benefits
· Publish vs. Assign
· Troubleshoot Windows Installer

Section C: User Interface
· Configuring the Desktop
· Start Menu
· My Computer
· Display Properties
· Control Panel

Section G: Mobile Computer Hardware
· Power Management
· Configure Power Management
· Wireless Networking

Section H: Storage Devices
· Hard Disk Support
· Dynamic Volumes
· Disk Management
· Create Volume
· Upgrade to Dynamic Disk
· CD, CDR & DVD

Session 4

Section A: File Systems
· NTFS
· Convert to NTFS
· File System Maintenance
· File System Tools

Section B: Simple NTFS
· NTFS Features
· Simple File Sharing
· Limits of Simple File Sharing
· Protecting Folders

Section C: NTFS
· NTFS Permissions
· Planning Permissions
· Add Groups to Permission List
· Effective User Permissions
· NTFS Ownership
· Take Ownership

Section D: NTFS Features
· NTFS Compression
· Compressing Files
· NTFS Encryption
· EFS Features
· Encrypt Files
· Remote Encryption
· Web DAV

Section E: EFS Recovery
· Recover Encrypted Data
· DRA Policy
· Encrypt Files with DRA
· Lost Certificates
· EFS & Backup Program
· Disable EFS

Section F: Networking Setup
· NWLink
· TCP/IP
· NetBEUI
· Network Connections Control Panel
· TCP/IP Configuration
· DNS & Wins
· TCP/IP Options
· Advanced TCP/IP Options

Session 5

Section A: Network Troubleshooting
· Repair Network Connection
· Network Interface
· Protocols
· TCP/IP Troubleshooting
· PING, TRACERT & NBTSTAT
· Base Connectivity
· NETSTAT

Section B: Sharing Resources
· Sharing Folders & Files
· Enable File Sharing
· View Local Security Policy
· Set Share Permissions
· Permission Hierarchy
· Set Permission for Sharing
· Set NTFS Security

Section C: Monitoring Shared Resources
· Computer Management MMC
· Run As Option
· Managing Shares
· Connect to Remote Shares

Section D: Offline Folders
· Configure Offline Folders
· Make Files Available Offline
· Network Connection Lost
· Network Connection Established
· Folder Options
· Synchronization Manager

Section E: Configure Printers
· Sharing Printers
· Install a Printer
· Add Printer Wizard
· Printer Sharing
· Printer Permission
· Internet Printing
· Locate & Connect to Internet Printers

Section F: Managing Printers
· Print Server Properties
· Print Queue
· Printer Properties
· Print Priorities
· Spooler

Section G: Remote Connectivity
· Dial-up Networking
· New Connection Wizard
· VPN
· L2TP Connections
· Setup VPN Connection
· VPN Properties

Session 6

Section A: Internet Connection Utilities
· Internet Connection Sharing
· Options for ICS
· ICS Discovery & Control
· Install ICS
· Network Setup Wizard
· Enable ICS
· Universal PnP
· Internet Connection Firewall
· Log Files & Third Party Firewall
· Enable ICF
· Setup NAT & ICF Security

Section B: Web Services
· Web Server
· Install IIS
· Internet Explorer Security
· Accessing IIS Local Host
· Security Settings
· Manage IIS

Windows Server 2003 MCSA Security Specialization continued

Section C: Remote Desktop
· Terminal Services
· Configure Remote Desktop
· Connect to Remote Desktop
· Web-based Remote Desktop
· Using Remote Desktop on the Web
· Remote Assistance

Section D: System Performance
· Application Performance
· Performance Options
· Program Compatibility
· Performance Monitoring
· Monitor Disk & Network

Section E: Windows Backup
· Backup Permissions
· Using Windows Backup
· Backup Options
· Scheduled Backups
· Automated System Recovery
· Removable Storage

Section F: Disaster Recovery
· Safe Boot Options
· Last Known Good Configuration
· MSCONFIG Utility
· Recovery Console
· Limitations
· Enable Recovery Console
· Access Recovery Console

Security Implementation
Session 1

Section A: Introduction
· Prerequisites
· Foundations
· Threats
· Tools
· Principles

Section B: Security Structures
· Overview
· Users
· Groups
· Organizational Units
· Domains
· Trees
· Forests
· Site Management

Section C: Authentication
· Identity
· Process
· Protocols
· Kerberos

Section D: Implementing Authentication
· Password Policy
· Account Lockout Policy
· Kerberos Policy
· LM Authentication Level

Section E: Web Authentication
· Process
· Anonymous Access
· Authenticated Access
· Delegated Authentication
· Implementing

Section F: Trust Relationship
· Managing
· Types
· Authentication Methods
· SID Filtering
· Creating

Section G: Group Hierarchies
· Understanding Groups
· Types & Scopes
· Local & Domain Level
· Global & Universal
· Relationships
· Group Permissions

Section H: Group Types
· Functional Levels
· Built-in Groups
· Tools for Managing
· Net Group Command
· Restrict Groups

Session 2

Section A: Authorization
· ACLs
· Processes
· Rules
· Permissions

Section B: Managing ACLs
· Security Permissions
· Security Settings
· Verifying Permissions
· Group Permissions
· Explicit Denial

Section C: Permissions
· Registry
· Printers
· AD Objects
· Services

Section D: Security Templates
· Planning
· Adding
· Built-in
· Copy
· New
· Configuration Based

Section E: Role-Based Templates
· Domain Controllers
· Event Log
· Audit Policy
· File Servers
· System Services
· Web Servers

Section F: Deploying Templates
· Create OUs
· Move OUs
· Create GPOs
· Edit GPOs
· Import Settings

Section G: Troubleshooting Templates
· GPUPDATE
· Synchronize Time
· GPO Permissions
· Adv System Info
· Run RSoP
· Resultant Wizard
· Event Viewer

Section H: Policies & Troubleshooting
· System Policies
· Troubleshooting.POL
· Policy Editor

Section D: Interface Options
· Accessibility Services
· Configure Accessibility Services
· Multi-language Support
· Regional Settings Control Panel

Section E: Hardware Installation
· Device Drivers
· Device Manager
· Signed Drivers

Section F: Hardware Support
· Display Devices
· Troubleshooting Video Problems
· Fax Support
· Install & Setup Fax Service
· USB & Firewire Support
· USB Root Hub & Universal Host Controller

Session 3

Section A: Client Security
· Planning
· Determine Needs
· Client Roles
· Group Policy Editor
· Registry Editing
· Network Places
· Display Settings

Section B: Restricting Software
· Determining Restrictions
· Restricting Users
· Restricting Documents
· Restricting Levels
· Additional Rules
· Creating Hash Rule

Section C: Distributing Software
· Steps
· Read Access
· Distributing in AD
· Deployment Methods
· Deployment Methods

Section D: Securing Servers
· Determining Roles
· DNS & DHCP Servers
· Domain Controllers
· Integrating DNS
· Disabling Root Hints
· Securing Registry
· Authorizing DHCP
· Securing Logs & SysKey

Section E: Securing Web Servers
· IIS
· Enabling Web Extensions
· Securing Web Access
· Securing Web Properties

Section F: Securing Exchange Servers
· Precautions
· Exchange Ports
· Securing SQL Servers
· SQL Server Authorization
· SQSL Server Logging
· Securing IAS Servers

Section G: Security Setting Analysis
· MBSA Tool
· Generate MBSA Report
· View MBSA Report
· MBSACLI Report
· View MBSACLI Report
· Sec Config & Analysis Tool
· Compare Security Settings

Session 4

Section A: PKI
· Essentials
· Terminology
· Hierarchies
· Certificate Needs

Section B: Installing Certificate Services
· Steps for Installation
· Configuring Installation
· Configuring Properties

Section C: Certification Templates
· Using Templates
· Default User Templates
· Default Computer Templates
· Default Service Templates
· Managing Templates
· Configuring Templates
· Creating New Certificate
· Requesting New Certificate

Section D: Managing Certificates
· Deploying & Revoking
· CRLs
· Viewing Certificates
· Enrolling in Certificates
· Requesting Certificates
· Requesting in IE
· Revoking Certificates

Section E: Backup & Restoration
· Configuring
· Exporting Keys
· Backing Up CA
· Backing Up System State

Section F: Wireless Security
· Overview
· Networking Threats
· Standards
· Authentication
· Encryption
· Best Practices
· Creating Network Policies
· Configuring Settings

Session 5

Section A: Managing Updates & Patches
· Considerations
· Service Packs & Updates
· Chaining Updates
· Testing Procedures
· Updating Methods
· Tiered SUS Architecture
· Installing Updates
· Configuring Updates

Section B: Understanding IPSec
· Foundations
· Architecture
· Security Associations
· Policies
· Planning Configuring
· Troubleshooting

Section C: Managing IPSec
· Viewing Network Traffic
· Analyzing Network Traffic
· Creating New Filter
· Creating New Policies
· Implementing Policies
· Enabling Client

Section D: Managing SSL
· Deploying SSL
· SSL Ports
· Configuring Prerequisites
· Implementing SSL
· Enabling Certificates

Section E: Securing RRAS
· Fundamentals
· VPN Protocols
· Starting RRAS
· Configuring RRAS

Windows Server 2003 MCSA Security Specialization continued

Security+ 2008
Session 1

Section A: Introduction
· Prerequisites
· Knowledge Domains
· Security Importance
· Applications

Section B: Security Requirements
· Requirements
· Classification
· Due Care
· Due Diligence
· Due Process
· User Education
· HR Security

Section C: Security Threats
· Understanding Threats
· Viruses and Worms
· Trojans, Spyware, and Malware
· Rootkits
· Spam Filtering
· Botnets

Section D: Privilege Escalation
· Initial Entry
· Escalation Methods
· After Escalation
· Performing a Logic Bomb

Section E: Hardware Security Risks
· BIOS
· USB Devices
· Removable Storage
· Cell Phones

Section F: Network Vulnerabilities
· Vulnerable Devices
· Weak Passwords
· Backdoors
· Denial of Service
· Vampire Taps

Section G: Infrastructure Risks
· Old Protocols
· TCP/IP Issues
· Null Sessions
· Spoofing
· Man-in-the-Middle
· Replay Attacks
· DDoS
· DNS Vulnerabilities
· ARP Poisoning

Session 2

Section A: Wireless Vulnerabilities
· Wireless LANs
· Wi-Fi
· Data Emanation
· War Driving
· Default Behaviors
· Rogue APs
· Hijacking

Section B: Wireless Encryption
· Encryption Cracking
· WEP
· Authentication
· Understanding WEP
· WEP Key Problems
· Weak Initialization Vectors

Section C: Personal Device Security
· Portable Devices
· Bluejacking
· Bluesnarfing
· Blackjacking
· Laptops

Section D: Authentication Fundamentals
· Identification
· Authentication
· One Factor
· Multiple Factors
· Single Sign-On

Section E: Authentication Hardware
· Thumb Scanners
· FAR and FRR
· Smart Cards
· RFID

Section F: Authentication Protocols
· Understanding Protocols
· PAP and CHAP
· LAN Manager
· NTLM
· NTLMv2

Section G: Advanced Authentication Protocols
· Kerberos
· Kerberos Tickets
· Kerberos Access
· LDAP
· 802.1X/RADIUS
· TACACS
· RAS

Section H: Users, Groups, and Roles
· Active Directory
· Users
· Groups
· Group Strategy
· Guidelines
· Roles

Section I: Authorization Models
· Group Policy Editor
· Password Policies
· Lockout Policies
· Creating Accounts
· Account Parameters

Session 3

Section A: ACLs
· Managing Folder Access
· Network Resource Permissions

Section B: Access Control Methods
· MAC
· DAC
· RBAC
· Least Privilege
· Implicit Deny
· Duty Separation

Section C: Remote Access Security
· Remote Access
· RA Encryption
· RA Authentication
· Enabling RAS
· RAS Authentication Options

Section D: Physical Security
· Understanding Physical Security
· Affecting Factors
· Access Control
· Facility Access Checklist
· Internal Access Checklist
· Network Access Checklist

Section E: OS Hardening
· Patches
· Service Packs
· Patch Management
· Linux Hardening
· Windows Hardening
· Creating Security Templates
· Security Analysis

Section F: Application Security
· Buffer Overflows
· Dependencies
· Stack-Based Overflows
· Heap-Based Overflows
· After the Attack
· Countermeasures
· Instant Messaging
· P2P Networks

Section G: Web Application Security
· Web Servers
· Communications
· Common Attacks
· Web Applications
· ActiveX and Java
· XSS
· Browser Options
· Cookies
· Input Validation

Section H: E-mail Security
· E-mail Protocols
· E-mail Threats
· E-mail Authentication
· Confidentiality
· SMTP Relay
· Spam Solutions

Session 4

Section A: Client Security Solutions
· avast Software
· Spam Filtering
· Pop-Up Blocking
· Personal Firewalls
· HIDS

Section B: Virtualization and Security
· Virtualization Defined
· Benefits
· Scenarios
· Virtual PC
· Hyper-V
· VMware
· Planning
· Security Issues

Section C: Network Firewalls
· Understanding Firewalls
· Firewall Types
· Firewall Installation
· Well Known Ports
· Port Blocking

Section D: Network Security Design
· Subnetting
· Virtual LANs
· Connecting Networks
· DMZ
· NAT
· NAC

Section E: Telephony Security
· Traditional PBX
· VoIP
· SIP Security
· H.323 Security

Section F: Intrusion Detection and Prevention
· Intrusion Monitoring
· IDS Solutions
· Detection Methods
· IPS Solutions
· IPS Detection States
· Intrusion Indications
· IDS Implementations
· Intrusion Responses
· Honeypots

Section G: Controlling Internet Access
· Proxy Servers
· Internet Filters
· Creating a Firewall Rule

Section H: Protocol Analyzers
· Installing Wireshark
· Capturing E-mail Logon
· Creating HTTP Filter
· Viewing Passwords

Session 5

Section A: Wireless Network Security
· War Driving
· SSID Issues
· Rogue APs
· Weak Encryption
· Configuring WPA

Section B: Monitoring Systems
· Performance Tools
· Task Manager
· Performance Snap-In
· Baselines
· Creating a Baseline
· Creating a Second Baseline
· Comparing Baselines with Excel

Section C: Scanning the Network
· Port Scanning
· Angry IP Scanner
· Scanning Devices
· Service Enumeration
· Configuring Zenmap GUI
· Nmap Scanning

Section D: Vulnerability Scanning
· Sectools.org
· OVAL
· National Vulnerability Database
· Password Cracker
· Pen Testing

Section E: Logging and Auditing
· Importance of Logs
· DNS Logs
· System Logs
· Performance Logs
· Access Logs
· Firewall Logs
· Antivirus Logs
· Auditing

Section F: Cryptography 101
· Encryption
· Simple Encryption
· CIA
· Non-Repudiation
· Whole Disk
· Key Management
· Steganography
· Encryption Testing
· TPM

Section G: Encryption Algorithms
· Encryption Types
· Key Factors
· DES
· 3DES
· RSA
· ECC
· PGP
· AES
· RC4
· Secure Transfer
· One-Time Pad

Session 6

Section A: Encryption Protocols and Hashing
· Hashing
· Hashing Protocols
· Digital Signatures
· SSL/TLS
· TLS Goals
· SSL Operations
· PPTP
· L2TP
· IPSec
· HTTP Solutions
· SSH

Section B: Public Key Cryptography
· Certificates
· PK Cryptography
· PKI Components
· PKI Processes

Section C: Risk Assessments
· Risk Management
· Asset Identification
· Threat Identification
· Risk Assessment
· Risk Tracking

Section D: Redundancy Planning
· Failure Points
· RAID
· Spare Parts
· Redundant Servers
· Redundant ISP
· Power Supply
· Spare Sites

Section E: Incident Response
· Incident Defined
· IR Process
· First Responders
· Computer Forensics
· Chain of Custody
· Reporting
· Damage Control

Section F: Disaster Recovery
· Planning
· Backup Practices
· Backup Methods
· Backup Types
· Media Rotation
· Restoration
· DR Exercises

Section G: Social Engineering
· Definition
· Example Attacks
· Dumpster Diving
· Passive Attacks
· Inside/Outside Attacks
· Reverse
· Phishing Attacks

Section H: Security Policies
· Importance
· General Policies
· Functional Policies
· sans.org