Windows 2000 Security, Audit and Control

	Home > Products & Services

Training & Awareness

Security Awareness

Mission Possible

Standard Courses

Capability-Based Business Continuity Planning

Hacking Inside Out

Windows 2000
Security, Audit & Control

Network Security Overview

Windows 2000
Security, Audit & Control

Objective

This course aims to teach you the strengths and weaknesses of the Windows 2000 network operating system, appropriate audit practice for Windows 2000, how to use the built-in tools for audit and what third-party audit tools are available.

It is a very hands-on course with plenty of opportunity for delegates to get involved.

Target Audience

The course is designed for IT auditors and other security professionals who require a thorough grounding in the basic security features of Microsoft Windows 2000. However, it does not attempt to provide sufficient depth of information for system security design or similar advanced tasks.

Note:
There is, necessarily, a good deal of common material between this course and our Windows 2000 System Administration course. It is not recommended that delegates attend both courses, but that they should choose the most appropriate one depending upon requirements.

Materials Provided

Each delegate will receive a course workbook and a copy of "Windows 2000 Security Handbook" by Tom Sheldon and Phil Cox.

Course Outline

How the Windows Product Line Has Developed

Comparing Editions of:
- Windows 2000 Professional
- Server
- Advanced Server
- Datacenter Server

Active Directory Concepts

- Objects & Object Permissions
- The Schema
- Naming Conventions
- Organisational Units
- Domains, Trees & Forests
- The Global Catalog
- Trust Relationships
- Server Roles
- Sites
- Mixed Vs Native Mode
- Namespace & Dynamic DNS

Client Support

Windows 2000 Public Key Infrastructure

Background on:
- Cryptography & Encryption
- Digital Signatures
- Certificates & Certificate Services

How Kerberos Authentication Works

Smart Card Support

Understanding The Encrypting File System

- EFS Encryption & Decryption
- File Recovery Certificates
- Good Practice

Using The Microsoft Management Console & Snap-Ins

File System Choices

- FAT
- NTFS

Managing Disk Quotas

Managing Resource Sharing

Applying Service Packs & Patches

Understanding Permissions

- Share & NTFS Permissions
- Folder & File Permissions
- Explicit & Inherited Permissions
- Setting Special Access Permissions

Transferring Ownership

Managing User Accounts

- Using Active Directory Users and Computers
- Adding a New OU
- Adding & Configuring a New User
- Disabling & Unlocking User Accounts

Finding an Active Directory Object

Managing User Profiles

- Roaming & Mandatory Profiles

Configuring Home Directories

Understanding Groups

- Group Types & Scope
- Group Nesting
- Adding a New Group
- Built-in Groups

Managing Group Policy

Managing Printers

Using The Event Logging System

- System, Security & Application Logs
- Event Log Settings

Setting Audit Policy

- Auditing Access to Resources & Other User Actions

Using RunAs

Delegating Administrative Control

Using The Security Analysis Tools

A Toad Interactive Site