ISACA New York Metropolitan Chapter

Ultimate Windows Security -

Course Agenda






 

Day 1 - Windows Host Level Security

Host level security

  • Local users
  • Account Policy
  • Local Groups
  • Rights
  • Services
  • Security Options
  • Auditing and Security Log
  • Software Restrictions
  • Public Key Infrastructure
  • Wireless LAN
  • IP Security

File and registry permissions

  • Specialized permissions
  • Allow vs deny
  • Explicit vs inherited ACEs
  • Permisions inheritance
  • Special subjects
  • Ownership
  • Share permissions
  • Recommended file permissions
  • Recommended registry permissions

Active directory structure

  • Forests
  • Trees
  • Domains
  • OUs
  • Sites

Trust and Authentication

  • Kerberos authentication
  • NTLM authentication

AD Permissions

  • AD permissions compared to file permissions
  • User privacy issues with default permissions

Administrative authority

  • Built-in groups
  • Blocking Enterprise Admins
  • Delegating

Group policy

  • How it works
  • Security group filtering
  • Delegation
  • Security related Group Policy settings
  • Integrating Windows Update Services with group policy
  • Automatic service pack installation with group policy

Day 2 - Active Directory, Group Policy


Windows PKI – Centralized, Integrated, Automatic

  • Computer and user cert deployment
  • Trusted CA publishing
  • CRL
  • Renewal
  • Template based advantages
  • Certificate Services
  • Enterprise vs Stand-alone
  • Multi-level
  • Cross-certification
  • 3rd party CAs
  • Least-privilege admin authority

Deployment

  • Templates
  • Group policy certificate requests
  • Auto enrollment
  • CRLs and Delta CRLs
  • Managing trusted CAs and CTLs

RRAS & Firewalls

  • Basic Firewall
  • ICF
  • Windows Firewall

RRAS VPNs

  • PPTP
  • L2TP
  • Site to Site VPNs
  • Remote Access VPNs
  • Controlling user access
  • Dial-in permission
  • RAPs
  • Certificates
  • Quarantine technology
  • CMAK – Connection Manager Administration Kit

Internet Authentication Server

· RRAS with and without IAS

· RADIUS clients

· RAPs

· Local vs domain authentication

· Shutting out local accounts

· Connection Request Processing Interoperability

 

Day 3 - VPNs, WiFi Security, IPSec, EFS, Patching


VPNs and Wireless

  • Setting up a PPTP remote access VPN
  • Setting up an L2TP remote access VPN
  • Setting up a pure IPSec VPN
  • Wi-Fi security options

IP Security Policies

  • IP Filters
  • Actions
  • Authentication methods
  • Rules
  • IPSec ESP and AH modes
  • Scenarioes for using IP Security

Encrypting File System

  • How EFS works
  • Data recovery
  • Weaknesses
  • Setup
  • User training
  • Ongoing management of EFS

Patching

  • Microsoft Baseline Security Analyzer
  • Software Update Services
  • Windows Update Services

 

Click here to pre-register

  
Copyright © 2002 Information Systems Audit and Control Association (ISACA™). All rights reserved.

Last updated March 1, 2005 11:33 AM