|
DACL (discretionary access control list)
defined, 43
Exchange modifications to, 48–49
overview of, 6–7
Data Encryption Algorithm (DEA), 18
Data Encryption Standard (DES), 18
data integrity, 4, 7
Data Selection Criteria dialog box, Exmerge Wizard, 173–74
Data tab, Exmerge Wizard, 173
date range, certificates, 22
Dates tab, Exmerge Wizard, 173
DDoS (Distributed Denial of Service) attacks, 63
DEA (Data Encryption Algorithm), 18
Default Domain check box, SMTP Authentication dialog box, 147
Delegate Control dialog box, Exchange Administration Delegation Wizard, 130
delegation, 126–35
access to individual properties, 134–35
account management, 126–27
delegation, continued
defined, 126
direct model of, 126
mailbox, 129–31
by property set, 131–34
Users container control, 128–29
Delegation of Control Wizard, 126–29, 131–34
demilitarized zone (DMZ), 284, 307
Denial of Service (DOS) attacks, 63
DES (Data Encryption Standard), 18
desktops
cable-type locks securing, 77
virus scanners for, 182
destination sets, OWA, 315–17
Destination Sets page, New Web Publishing Rule Wizard, 317–18
digital certificates, 232–36. See also CAs (certificate authorities); Certificate Services; KMS (Key Management Service)
enrollment options, 236–38
key length/complexity, 232–33
lifetime, 233–34
overview of, 21–24
PKI-Exchange combination and, 221–22
POP and IMAP and, 327
private key protection, 235–36
rekeying vs. renewal, 234–35
revocation, 238–40
server performance guide for, 240–41
S/MIME management, 273–76
S/MIME options, 276–78
S/MIME RFCs, 265
SSL, enabling for OWA, 298
SSL request process, 192–99
Web enrollment for, 244–46
X.509 for IPsec, 202
digital IDs. See digital certificates
Digital Signature Algorithm (DSA), 29, 234
Digital Signature Standard (DSS), 29
digital signatures
algorithms, 28–29
Outlook security and, 278–79
overview of, 26–28
PKI planning for, 223–24
S/MIME options for, 276–78
directories, Exchange permissions, 50–52
DisableAutoUpdate value, Windows Messenger, 341
DisableCollaborationApps, Windows Messenger, 341
Disabled value, IM client, 340
DisableFileTransfer value, Windows Messenger, 340
DisablePassword command, 301
DisablePC2PCAudio value, Windows Messenger, 340
DisablePC2Phone value, Windows Messenger, 341
disaster recovery, 120
disclaimers, 162–64
DisclaimIt, 163–64
discretionary access control list. See DACL (discretionary access control list)
Distributed Denial of Service (DDoS) attacks, 63
distribution groups, 44
DMZ (demilitarized zone), 284, 307
DNS (Domain Name System)
firewall ports opened for, 308
ISA configuration/installation, 216
SMTP routed environment and, 139–40
Domain Admins group, 119, 348
domain controllers
auditing account logon events, 359
Exchange installed on, 119–20
firewall ports opened for, 307
domain local groups, 44
Domain Name System. See DNS (Domain Name System)
/domainprep switch, 123–24
domains
Active Directory for Exchange installation, 118–20
audit options for, 350–51
spam control and, 154–58
DoS (Denial of Service) attacks, 63
drivers, IPsec, 204
ds2mb process, 289
DSA (Digital Signature Algorithm), 29, 234
DSAccess RPC queries, 308
DSACLS command, 134–35
DSS (Digital Signature Standard), 29
dual authentication, 288
DumpEl, 357
DumpEvt, 357
dumpster-diving, 79
DVD drives, protecting, 78
|