M2812 – Applying Microsoft Security Guidance II
Enquire/Book this course
Trained over 60000 delegates
Course delivered by industry expert instructors
Highly competitive pricing
Course Description
Prerequisites: The target audience must have good baseline IT skills, because the concepts presented in these labs will build on their current experience.
- Implement secure access to Internet resources.
- Implement secure Internet client access to an organization™s internal servers.
- Implement secure VPN access to an organization™s internal network.
- Monitor ISA Server 2004.
- Analyze an Exchange server by using the Microsoft Baseline Security Analyzer (MBSA) and Exchange Best Practices Analyzer, and update the security configuration based on the analysis.
- Configure Exchange Server to secure SMTP messages by using Secure Sockets Layer/Transport Layer Security (SSL/TLS).
- Configure Exchange Server 2003 to reduce the amount of unwanted e-mail by using Real Time Block List.
- Implement Exchange Intelligent Message Filter.
- Implement certificate authentication on an OWA Web site.
- Configure ISA Server to secure client connections to Exchange Server.
- Configure ISA Server to secure SMTP messages.
- Encrypt communication between network clients by using IPSec.
- Configure MIIS 2003 to provide identity integration and provisioning.
- Implement identity integration by using MIIS.
- Implement user account provisioning with MIIS.
- Implement identity changes and deprovisioning by using MIIS.
- Manage passwords by using MIIS.
Course Content
- Create a new access rule
- Test for connectivity under a new access rule
- Create a new Computer Set rule element
- Deny access to restricted computers
- Create a new Web listener
- Test the configuration of a new Web listener
- Configure link translation
- Enable VPN client access
- Configure VPN connection settings
- Configure user account settings to allow remote access
- Create an access rule to allow VPN connections
- Examine alert definitions
- Create a connectivity verifier
- Start a new online mode log query
- Create a filter definition for online mode logging
- Examine Exchange Server security using MBSA
- Examine Exchange Server security using Best Practices Analyzer Tool
- Disable SMTP relaying
- Disable Network News Transfer Protocol (NNTP) and Microsoft Exchange MTA Stacks service
- View captured network packets by using Network Monitor
- Create a new SMTP virtual server to support SSL and TLS
- Configure the POP3 virtual server to require SSL
- Configure an SMTP connector
- Configure the default SMTP virtual server by using Internet Information Services (IIS) Manager
- Configure the Domain Name System to simulate a Real-Time Block List (RBL) provider
- Add a new RBL provider
- Enable the SMTP connection filter
- Set minimum Intelligent Message Filter (IMF) blocking standards
- Configure Performance Monitor to identify Spam Confidence Level (SCL) ratings
- Configure the IMF SCL threshold
- Configure the IMF Gateway Blocking Configuration threshold
- Configure IIS to require SSL on virtual directories
- Create a new URL set
- Request a certificate
- Configure a Web listener to accept client certificates
- Create an OWA mail server publishing rule
- Create a mail server publishing rule
- Install the RPC over HTTP proxy network service
- Configure the RPC virtual directory
- Configure an RPC back-end server
- Configure the SSL Web listener
- Create a secure Web publishing rule
- Configure Outlook to use RPC over HTTP
- Configure the SMTP firewall policy
- Configure the SMTP message screener
- Configure the Exchange IMF
- Verify that ICF is blocking access to TCP ports
- Use Group Policy to enable ICF
- Configure a Microsoft Active Directory Organizational Unit (OU) to request IP security
- Configure client computers to respond to IPSec requests
- View IPSec Active Policy details by using the IP Security Monitor
- Create a management agent by using Identity Manager
- Create direct import attribute flow mappings
- Create advanced attribute mappings
- Import a management agent to connect Active Directory to the MIIS Connector space
- Configure a Full Import run profile
- Configure a Delta Synchronization run profile
- Configure an Export run profile
- Configure a Metaverse object deletion rule
- Stage objects from Microsoft SQL Server database into MIIS connector space
- Investigate staged operations using Search Connector Space and Preview
- Project user objects from connector space to the Metaverse
- Verify attribute sources using Metaverse Search
- Configure extensions to enable Metaverse rules extension
- Provision accounts into the Active Directory connector space
- Implement Run profiles to synchronize modifications with the Metaverse
- Implement Run profiles to synchronize modifications with Active Directory
- Import a management agent to connect to an extranet domain
- Execute the Full Import and Synchronization run profiles
- Configure MIIS management agents for password management