M2811 – Applying Microsoft Security Guidance
Enquire/Book this course
![](https://elitetc.co.uk/wp-content/themes/di2016-child/assets/images/hat.png)
Trained over 60000 delegates
![](https://elitetc.co.uk/wp-content/themes/di2016-child/assets/images/certificate.png)
Course delivered by industry expert instructors
![](https://elitetc.co.uk/wp-content/themes/di2016-child/assets/images/tag.png)
Highly competitive pricing
Course Description
Prerequisites: Before The target audience must have good baseline IT skills because the concepts presented in these labs will build on the students' current experience.
- Scan computers for missing security updates.
- Distribute and install security updates by using Windows Server Update Services (WSUS) and Automatic Updates.
- Scan computers by using Systems Management Server (SMS) 2003.
- Manage security update distribution by using SMS 2003.
- Implement security for member servers and domain controllers by using Group Policy.
- Implement security for member servers and domain controllers by using security templates.
- Implement security for computers running Windows Server 2003 SP1 by using the Security Configuration Wizard.
- Prevent certain applications from running by using software restrictions policies.
- Protect Microsoft Windows XP clients by using Windows Firewall.
- Protect data by using Encrypting File System (EFS).
- Lock down Internet Information Services (IIS) 5.0 Web servers.
- Configure security for IIS 6.0 Web servers.
- Implement security for Microsoft Exchange Server 2003 servers by using security templates.
- (If time permits) Use Data Recovery Agent to recover encrypted data.
- Scanning computers for security vulnerabilities with MBSA
- Examining the update database version
- Examining the update database file
- Examining the scan results
- Examining the security reports
- Examining the WSUS Administration Web site
- Configuring the WSUS server
- Synchronizing the WSUS server with available security updates
- Approving a list of updates for client computers
- Configuring Automatic Updates by using Group Policy
- Verifying the SMS Management Point
- Installing the Security Update Inventory Tool
- Examining the collections, packages, programs, and advertisements created
- Running the scanner program on the client
- Collecting security update information from the client
- Running the Distribute Software Update Wizard
- Forcing client computers to install an advertised update
- Verifying the installation of the security updates
- Examining the current organizational unit (OU) structure
- Creating a new OU
- Creating a new administrative group
- Delegating administrative control
- Creating new Group Policy Objects (GPO) and linking them to Active Directory objects
- Examining pre-defined security templates
- Importing security templates
- Modifying security templates
- Using the Resultant Set of Policy Wizard
- Creating a new GPO for software restriction
- Changing software restriction policy rules
- Verifying the software restriction policies
- Using Event Viewer to identify software restriction policies in force
- Using the Resultant Set of Policy console to examine software restriction policies
- Examining the status of TCP ports
- Enabling ICF
- Verifying that ICF is blocking access to TCP ports
- Using Group Policy to enable ICF
- Encrypting files and folders by using EFS
- Examining EFS certificates
- Exporting and importing EFS certificates
- Examining the EFS data recovery agent certificate
- Creating and configuring a new EFS data recovery agent certificate
- Restoring access to encrypted files
- Examining the default configuration of IIS 5.0
- Running the IIS Lockdown Wizard
- Examining the locked-down configuration of IIS 5.0
- Installing URLScan
- Examining IIS log files
- Examining the default configuration of IIS 6.0
- Creating and configuring application pools
- Listing current worker processes
- Examining the automatic recycling options for an application pool
- Using the Log Parser tool to examine IIS log files
- Examining and implementing Exchange Server 2003 security templates
- Configure OWA security by using the Outlook Web Access Administration tool.