Designing A Secure Client System

By Author: Jasmine
Total Articles: 286
Comment this article

A network is only as secure as its weakest point. Client computer systems microsoft exams are often that weakest point. If client systems are compromised, an attacker might be able to elevate his privileges on the client system to attack other computers in the network. If client controls are weak, intruders and authorized computer and network users might obtain access to resources that they should not have access to. When client computer system security is not a part of security, there is no security.
This chapter presents the skills and concepts related to creating a security design framework. This training kit presumes that you have a minimum of 1 year of experience implementing and administering desktop operating systems and network operating system in environments that have the following characteristics:
At least 250 supported users
Three or more physical locations
Typical network services such as messaging, database, file and print, proxy server or firewall, Internet and intranet, remote access, and client computer management Three or more domain controllers ...
... Connectivity needs that include connecting branch offices and individual users in remote locations to the corporate network, and connecting corporate networks to the Internet.
In addition, you should have experience designing a network infrastructure.
Many design Free A+ exam questions exercises are paper-based; however, to understand the technical capabilities that a design can incorporate, you should have some hands-on experience with products. Where specific hands-on instruction is given, you must have at least two computers configured as specified in the "Getting Started" section at the beginning of this book.
Figure 10-15 shows the integration of an ISP's remote access infrastructure. The ISP's access server sends connection requests to an IAS proxy, which forwards the connection to an IAS server on the Wingtip Toys network.
To design a comprehensive secure remote access strategy for clients, security designers follow a process that looks like this:
1.Analyze the authentication requirements of the clients and security policy. Lesson1 explained how to do this task.
2.Design client access to internal resources. This process includes remote access via dial-up and VPNs across the Internet. Web-based access through an Internet application should be considered and is discussed in Chapter 13.
3.Design remote access policies. Remote access policies include the written security policies of the organization and the remote access policies that can be established using Microsoft Remote Access Services MCITP certification and Internet Authentication Service.The design of an organization's security policies is beyond the scope of this book.