Chapter and Appendix Overview

Chapter and Appendix Overview

This self-paced training course combines notes, hands-on procedures, and review questions to teach you about security issues in a Windows 2000 network. It is designed to be completed from beginning to end, but you can choose a customized track and complete only the sections that interest you. If you choose the customized track option, see the "Before You Begin" section in each chapter. Any hands-on procedures that require preliminary work from preceding chapters refer to the appropriate chapters.

The book is divided into the following sections and chapters:

• The "About This Book" section contains a self-paced training overview and introduces the components of this training kit. Read this section thoroughly to get the greatest educational value from this self-paced training and to plan which lessons you will complete.

• Chapter 1, "Group Policy," describes Windows 2000 tools for managing Group Policy and introduces basic security concepts.

• Chapter 2, "User Accounts and Security Groups," looks at how users and groups can be used to manage security on local computers and domains.

• Chapter 3, "Restricting Accounts, Users, and Groups," introduces the permission system used on the NTFS file system and for registry objects, and describes how to manage permissions, auditing, and Active Directory security.

• Chapter 4, "Account-Based Security," covers the security template features of Active directory and how to manage, deploy, and troubleshoot templates.

• Chapter 5, "Certificate Authorities," introduces Certificate Services and describes how to install and maintain a certificate authority.

• Chapter 6, "Managing a Public Key Infrastructure," describes how to issue, renew, and revoke certificates, deploy and publish certificates, and troubleshoot certificate issues.

• Chapter 7, "Increasing Authentication Security," covers Windows 2000 methods of authenticating clients running diverse operating systems, the Kerberos authentication system, and configuring trusts between networks.

• Chapter 8, "IP Security," describes how to configure IP Security (IPSec) authentication and encryption, deploy IPSec certificates, and troubleshoot IP Security.

• Chapter 9, "Remote Access and VPN," covers the Windows 2000 Routing and Remote Access Service. It describes how to configure basic RRAS security, manage authentication and client settings, and configure virtual private network (VPN) protocols.

• Chapter 10, "Wireless Security," describes how to configure and secure wireless networks using the WEP and 802.1x standards and how to configure wireless clients for maximum security.

• Chapter 11, "Public Application Server Security," describes Microsoft ISA server and how it can be used to secure public servers, and specific security considerations for Microsoft SQL Server and Microsoft Exchange servers.

• Chapter 12, "Web Service Security," covers IIS (Internet Information Services), the Web server component of Windows 2000. It describes how to configure IIS authentication methods and SSL encryption for secure sites.

• Chapter 13, "Event Monitoring and Intrusion Detection," looks at how auditing and event logs can help you detect intruders and provide a chain of evidence, along with methods of recovering from and preventing network intrusion.

• Chapter 14, "Software Maintenance," describes the Windows 2000 mechanisms for incremental updates, including service packs and hotfixes, and introduces tools for deploying updates across the enterprise.

• Appendix A, "Questions and Answers," lists all of the review questions from the book, showing the page number for each question and the suggested answer.

• The glossary provides definitions for many of the terms and concepts presented in this training kit.