Microsoft Security Guidance Training I

2801: Microsoft Security Guidance Training I (1 Day)

About This Clinic

This one-day instructor-led clinic provides students with introductory knowledge and skills essential for the design and implementation of a more secure computing environment. It also provides students with prescriptive guidance on security update management and best practices for implementing security on Microsoft Windows Server and client computers.About Microsoft ClinicsMicrosoft Official Clinic learning products provide students with technical information on Microsoft products or technologies while discussing real-world considerations for their implementation. Clinics highlight features and functionality through product demonstrations.

Audience Profile

Attendees will be current IT professionals with experience using Microsoft Windows 2000 Server or Microsoft Windows Server 2003 and with knowledge of Active Directory concepts. The students will be in an environment where they are responsible for aspects of security management and deployment associated with their internal network infrastructure and Internet or intranet services.

At Clinic Completion

After completing this clinic, students will be able to:

• Establish the business case for security.
• Apply Security Risk Management principles to ensure that security practices reflect real business needs.
• Use multiple layers of defense to minimize the possibility of successful attacks against an organization.
• Respond effectively to security incidents.
• Describe specific attack scenarios and implement measures to combat them.
• Implement best practices for maximizing security in a networked environment.
• Discuss the 10 immutable laws of security.
• Understand the processes that Microsoft has developed to respond to system attacks and how to apply a successful patch strategy.
• Use patch management tools and processes to implement patch management in their organizations.
• Describe the Microsoft strategy for continuing to deliver improved patch management tools, technologies, and information to customers.
• Understand the importance of server security.
• Apply the Windows 2003 Security Guide templates for server hardening.
• Understand the additional security features included with Windows Server 2003 Service Pack 1.
• Use the Security Configuration Wizard to increase security for computers running Windows Server 2003 SP1.
• Manage domain controller policy settings.
• Understand the requirements for securing client computers in environments where Windows Server 2003, Windows 2000, and Microsoft Windows NT 4.0 servers are present.
• Increase security for stand-alone clients.
• Use Software Restriction Policy to manage application security for computers in an organization.
• Understand antivirus strategies and best practices for deploying antivirus software.
• Understand firewall technologies and best practices for implementing a firewall.
• Understand new security features included in Microsoft Windows XP SP2.

Clinic Outline

Module 1: Essentials of Security

This session provides information essential for the design and implementation of a more secure computing environment. The session covers important security concepts and discusses the need for establishing a process for security within an organization. Also included is an overview of Windows Server 2003 SP1 and Windows XP SP2 security features.

Lessons

• Business Case for Security
• Security Risk Management
• Defense in Depth
• Security Incident Response
• 10 Immutable Laws of Security
• Best Practices

Module 2: Implementing Security Update Management

This session provides security best practices and available tools and technologies to implement a security update management process and strategy within an organization. The session covers the update management lifecycle and demonstrates how tools such as Microsoft Baseline Security Analyzer and Windows Server Update Services can be used to quickly and effectively respond to published security bulletins and establish update compliance across an infrastructure.

Lessons

• Update Management Overview
• Update Management Process
• Update Management Tools

Module 3: Implementing Server Security on Windows 2000 and Windows Server 2003

This session provides prescriptive host hardening guidance for securing servers used in enterprise environments. The session discusses configuring the domain infrastructure through Active Directory and applying security templates to establish security baselines for domain controllers and member servers operating in various roles. The session also describes how to use the new security features included with Windows Server 2003 SP1.

Lessons

• Introduction to Securing Servers
• Core Server Security
• Active Directory Security
• Hardening Member Servers
• Hardening Domain Controllers
• Hardening Servers for Specific Roles
• Hardening Stand-Alone Servers

Module 4: Implementing Client Security on Windows 2000 and Windows XP

This session describes the requirements for securing client computers in environments where Windows servers are present. The session covers the use of Group Policy and Administrative Templates to secure Windows 2000 and Windows XP installations and provides guidance on software restriction policies, antivirus strategies, and firewall technologies including new firewall features in Windows XP SP2. This session also covers configuring Microsoft Office products and Internet Explorer to help achieve a more secure client environment.

Lessons

• Core Client Security
• Defense Against Malicious Software
• Client Firewalls
• Securing Clients with Active Directory
• Using Group Policy to Secure Clients
• Securing Applications
• Local Group Policy Settings for Stand-Alone Client

Before attending this course, students should have:

• Hands-on experience with Windows 2000 or Windows Server 2003 management tools.
• Experience with Active Directory and Group Policy.