| < Day Day Up > |
|
/n update parameter, 6-28
name resolution (DNS)
dynamic updates (DDNS), 4-23—4-24, 4-26, 4-28
preventing attacks with SSL certificates, 11-11
server security, 4-26—4-29
names of updates (patches), 5-3
naming groups, strategy for, 2-41—2-43, 2-44
NAT (Network Address Translation), 4-19
IPSec traffic, 8-5
L2TP configuration, 12-7
PPTP configuration, 12-6
troubleshooting, 9-43—9-44
NAT-T (NAT Traversal), 12-7
negotiating IPSec connections, 8-10—8-13
Negotiation Failures parameter, 9-21
nesting groups, 2-20, 2-44
.NET Passport authentication, 1-33
Netcap utility, 9-31
Netdiag utility, 9-33
Netsh utility, 8-32, 15-26
IPSec policy scripts, 9-7—9-8, 9-15—9-16
monitoring IPSec, 9-29
Network Access Quarantine Control, 4-41
Network Address Translation (NAT), 4-19
IPSec traffic, 8-5
L2TP configuration, 12-7
NAT-T (NAT Traversal), 12-7
PPTP configuration, 12-6
troubleshooting, 9-43—9-44
network authentication, 1-3, 1-7
anonymous, 1-6, 1-25—1-26, 1-32—1-33, 1-36—1-39, 2-29
authorization vs., 1-6, 2-38
centralized vs. decentralized, 1-8
certificate troubleshooting (IPSec), 9-42—9-43
components of, 1-6—1-17
components of network systems, 1-7
configuring for external users, 1-32—1-40
delegated, 1-34—1-35
EAP (Extensible Authentication Protocol), 10-7
EAP-TLS, 10-10, 10-20, 12-12
IAS (Internet Authentication Service), 1-21—1-22, 4-39—4-43, 10-21—10-24, 10-31, 12-10, 13-10
IEEE 802.1X standard, 10-7—10-9, 15-41—15-44
IPSec infrastructure planning, 8-18—8-21, 15-20
IPSec vs. SSL, 11-4
MS-CHAP v1, 12-8—12-10, 12-12
MS-CHAP v2, 10-9, 12-8—12-10, 12-13
multifactor, 1-7, 1-27—1-28
open system, 10-6
PEAP (Protected EAP), 10-9—10-10, 10-20, 12-12
protocols, 1-9—1-15, 1-24, 1-26, 1-33, 8-19, 15-20
RADIUS message authenticators, 4-40
RADIUS service, 10-8, 10-10
remote access users, 15-51—15-54
remote networking, 12-7—12-15, 12-17—12-19, 12-23—12-24, 12-30—12-32
shared secret, 10-4—10-6
SQL Server security, 4-47—4-48
strategy, planning and implementing, 1-18—1-31, 3-10, 16-6—16-12
Web authentication, 1-33
Windows Server 2003 features, 1-9
WPA (Wi-Fi Protected Access), 10-11—10-13
Network Configuration Operators group, 2-25
network connectivity, 1-18
CMAK (Connection Manager Administration Kit), 12-30
CMAK wizard, 12-32—12-41
installing operating system with, 6-15—6-18
IPSec protocol. See IPSec protocol suite
network encryption, 7-1, 7-3
asymmetric key encryption, 7-4
certificate archives and recovery, 7-47—7-52, 7-54
certificate management, 7-6, 7-8—7-13, 7-24, 7-31—7-38, 7-61—7-70, 11-23, 16-29—16-36
Certificate Services, 7-8—7-13, 8-20, 9-10—9-15, 10-20—10-21, 15-46, 16-29—16-36
certificate template management, 7-19—7-30, 7-64, 7-65
cryptography, 7-3, 7-31, 7-47, 10-4
IPSec vs. SSL, 11-4
LDAP queries, 11-26—11-27, 11-34—11-37
LLTP protocol, 12-6
mail servers, 11-31—11-33
Microsoft Outlook, 11-33—11-34
passwords, 1-19, 7-3. See also passwords
port numbers for protocols, 11-7
PPTP protocol, 12-6
private keys, exporting, 7-48
public key infrastructure (PKI), 7-3—7-18, 7-46—7-47, 8-19—8-20, 12-7, 15-20
SQL Server, 11-27—11-31
SSL with IIS, 4-37—4-38, 11-10—11-25, 15-50
TSL network encryption, Exchange Server, 4-44—4-45
WEP (Wired Equivalent Privacy), 10-4—10-11, 10-20, 12-12, 15-42
WPA, options for, 10-12
network encryption, Exchange Server, 4-44—4-45
network firewalls, 4-16—4-19
advanced features, 4-18—4-19
DNS servers, 4-29
domain controllers, protecting with, 4-30—4-31
Exchange Server, 4-45—4-46
IAS servers, 4-42
packet filtering, 4-17—4-18
protecting IIS with, 4-39
SQL Server security, 4-50
SSL certificates with, 11-7
troubleshooting (IPSec), 9-43
Network group, 2-30
network installation of service packs, 5-32
Network Monitor, 9-30, 9-35
Network Service account, 2-30
networking remotely, 12-1—12-46
authentication methods, 12-8—12-15, 12-18
client configuration, 12-30—12-41
dial-up networking, 12-3—12-5, 12-19—12-21
IPSec for, 8-6—8-8, 15-51—15-54
policies for, 10-22—10-24, 12-10, 12-21—12-23
RADIUS services, 10-8, 10-10
server configuration, 12-17—12-24
VPN protocols, 12-5—12-8, 12-32
wireless network security, 10-1—10-40, 12-12, 15-40—15-49
networks, assessing patch levels on, 6-3—6-14
MBSA console for, 6-3—6-6, 6-11—6-12
MBSACLI utility for, 6-6—6-11, 6-12—6-13
network-to-network communications, IPSec with, 8-8—8-10
New Connection Wizard, 12-30
NNTP service, 4-34
encrypting with SSL, 11-32
port numbers for, 11-7
No Override check box, 3-21
NoAutoRebootWithLoggedOnUsers registry value, 6-35
NoAutoUpdate registry value, 6-35
/norestart update parameter, 6-28
NTLM authentication, 1-10, 1-12—1-13
| < Day Day Up > |
|