Windows 2000 Security
Design MCSE 70-220 Series
|
Windows 2000 Security Design MCSE 70-220: Analyzing Business
Requirements shows users how to identify business considerations that will
affect the structure and implementation of proposed network security
designs.
- Business Models
- Organization and Management
- Company Strategies
|
- Physical and Information Security Models
- Risk Analysis
- End User Requirements
|
|
|
Windows 2000 Security Design MCSE 70-220: Analyzing Technical
Requirements shows users how to evaluate an existing IT infrastructure in
preparation for developing a security design.
- Network Connectivity and Topology
- Network Bandwidth and Performance
- Data and Systems Access
|
- Roles and Responsibilities
- Analyzing the Existing Security Design
|
|
|
Windows 2000 Security Design MCSE 70-220: Establishing a
Security Baseline introduces users to the security provided by Active
Directory and shows users how to implement security for domain controllers,
servers, and workstations using security templates provided by Windows 2000.
- Active Directory
- Domain Controllers
|
- Servers, Desktop Computers, and Kiosks
- Policies and Templates
|
|
|
Windows 2000 Security Design MCSE 70-220: Planning Security
for System Resources shows users how to plan and implement security for
system resources including printers, files, shares, registry keys, Internet
access, and dial-in access.
- File and Folder Security
- Default Settings for Files and Folders
|
- Registry Keys
- Security for Other Resources
|
|
|
Windows 2000 Security Design MCSE 70-220: Designing a Security
Group Strategy shows users how to plan membership in security groups and how
to use group structure to assign permissions.
- Understanding Groups in Windows 2000
- Default Groups and Users
|
- Managing Security Groups
- Delegation of Authority
|
|
|
Windows 2000 Security Design MCSE 70-220: Designing Security
Policy Inheritance shows users how to design the placement and inheritance
of security policies for sites, domains, and organizational units.
- Understanding Group Policies
- Implementing Group Policies
- Group Policy Inheritance
|
- Group Policies in Mixed Mode
- Designing Group Policy Strategies
|
|
|
Windows 2000 Security Design MCSE 70-220: Protecting Resources
with Auditing and Encryption shows users how to design and implement an
audit policy and how to design a strategy for using the Encrypting File
System (EFS).
- Designing an Audit Policy
- Implementing an Audit Policy
- Using the Encrypting File System (EFS)
|
- File Recovery and Management with EFS
- Designing an EFS Strategy
|
|
|
Windows 2000 Security Design MCSE 70-220: Using Native Windows
2000 Authentication explains the Kerberos authentication model and shows
users how to implement security with Kerberos in Windows 2000 networks and
mixed networks.
- Kerberos Authentication
- Kerberos Tickets
|
- Kerberos Client/Server Exchange
- Kerberos and Interoperability
|
|
|
Windows 2000 Security Design MCSE 70-220: Using Alternate
Authentication Strategies explains authentication models other than Kerberos
that are available under Windows 2000 and shows users how to implement
security with these methods in Windows 2000 networks and in mixed networks.
- NTLM and Digest Authentication
- Certificate-Based Authentication and SSL
- Smart Cards
|
- RADIUS
-
- Authentication and Interoperability
|
|
|
Windows 2000 Security Design MCSE 70-220: Designing a Public
Key Infrastructure explains strategies and procedures for using Certificate
Services in Windows 2000 networks and in mixed networks.
- Understanding Certificate Services
- Installing Certificate Services
- Configuring Certificate Services
|
- Managing Certificates
- Interoperability and Third-Party PKI
|
|
|
Windows 2000 Security Design MCSE 70-220: Designing Security
for Network Services explains strategies for securing Windows 2000 network
services, including Domain Name Service, Remote Installation Services, and
the Simple Network Management Protocol.
- Understanding DNS
- The Dynamic Update Process
- DNS Security
|
- RIS Security
- SNMP Security
|
|
|
Windows 2000 Security Design MCSE 70-220: Designing Security
for Access between Networks explains how to provide secure access from a
private network to the Internet, how to provide partners and other external
users with secure access to private networks, and how to provide secure
access between multiple local or wide area networks (LANs or WANs).
- Secure Access to Public Networks
- Secure Access for External and Remote Users
|
- Secure Access between Private Networks
- Secure Access across Public Networks
|
|
|
Windows 2000 Security Design MCSE 70-220: Designing Security
for Communications Channels explains how to use SMB signing and the IPSec
protocol to secure traffic within private networks and across public
networks and how to enable and enforce the use of SMB signing and IPSec
through Windows 2000 Group Policy.
- SMB Signing
- IPSec Architecture
- IPSec Negotiation and Encryption
|
- IPSec Management
- IPSec Policies
|
|
|
