Planning Guide For Exam 70-299

By Author: jack jone
Total Articles: 82
Comment this article

Applying and Administering Security within a Microsoft Windows Server 2003 Network Expertise measured by 70-299 Exam .

Implementing, Controlling, and Troubleshooting Security Policies
Program safety templates according to personal computer function. Computer system roles incorporate SQL Server personal computer, Microsoft Exchange Server pc, domain controller, World-wide-web Authentication Services (IAS) server, and Web Information and facts Providers (IIS) server.
*Configure security templates.
*Configure registry and file technique permissions.
*Configure account insurance policies.
*Configure .pol files.
*Configure audit procedures.
*Configure consumer rights assignment.
*Configure security solutions.
*Configure system providers.
*Configure restricted groups.
*Configure event logs.

Deploy safety templates.
*Plan the deployment of safety templates.
*Deploy security templates by employing Active Directory-based Group Policy objects (GPOs).
*Deploy safety templates by making use of command-line tools and scripting.
...
...
Troubleshoot safety template challenges.
*Troubleshoot security templates in a combined working program environment.
*Troubleshoot safety plan inheritance.
*Troubleshoot elimination of safety template configurations.

Configure extra security according to pc roles. Server pc roles contain SQL Server personal computer, Trade Server personal computer, domain controller, Net Authentication Service (IAS) server, and World wide web Data Providers (IIS) server. Consumer computer roles involve desktop, portable, and kiosk.
*Plan and configure safety settings.
*Plan network zones for computer roles.
*Plan and configure computer software restriction insurance policies.
*Plan security for infrastructure companies. Providers include DHCP and DNS.
*Plan and configure auditing and mcitp certificate logging to get a personal computer role. Concerns include things like Windows Occasions, Internet Information Providers (IIS), firewall log documents, Netlog, and RAS log documents.
*Analyze security configuration. Tools contain Microsoft Baseline Safety Analyzer (MBSA), the MBSA command-line tool, and Security Configuration and Evaluation.

Utilizing, Handling, and Troubleshooting Patch Conduite Infrastructure
Plan the deployment of service packs and hotfixes.
*Evaluate the applicability of service packs and hotfixes.
*Test the compatibility of service packs and hotfixes for current purposes.
*Plan patch deployment environments for both the pilot and manufacturing phases.
*Plan the batch deployment of multiple hotfixes.
*Plan rollback tactic.

Assess the existing status of service packs and hotfixes. Resources consist of MBSA as well as the MBSA command-line instrument.
*Assess existing patch levels by working with the MBSA GUI tool.
*Assess existing patch levels by making use of the MBSA command-line tool with scripted options.

Deploy services packs and hotfixes.
*Deploy services packs and hotfixes on new servers and client personal computers. Considerations include things like slipstreaming, custom scripts, and isolated set up or test networks.
*Deploy services packs and hotfixes on current servers and client personal computers.

Utilizing, Taking care of, and Troubleshooting Safety for Community Communications
Strategy IPSec deployment.
*Decide which IPSec mode to work with.
*Plan authentication methods for IPSec.
*Test the performance of existing apps and services.

Configure IPSec procedures to secure communication among networks and hosts. Hosts include domain controllers, World-wide-web Internet servers, databases, e-mail servers, and client computers.
*Configure IPSec authentication.
*Configure proper encryption ranges. Concerns include the selection of fantastic forward secrecy (PFS) and essential lifetimes.
*Configure the suitable IPSec protocol. Protocols contain Authentication Header (AH) and Encapsulating Safety Payload (ESP).
*Configure IPSec inbound and outbound filters and filter actions.

Deploy and handle IPSec insurance policies.
*Deploy IPSec policies by working with Neighborhood plan objects or Team Policy objects (GPOs).
*Deploy IPSec insurance policies by applying commands and scripts. Resources involve IPSecPol and NetSh.
*Deploy IPSec certificates. Considerations incorporate deployment of certificates and renewing certificates on managed and unmanaged consumer personal computers.

Troubleshoot IPSec.
*Monitor IPSec policies by mcitp certifications applying IP Safety Keep track of.
*Configure IPSec logging. Concerns consist of Oakley logs and IPSec driver logging.
*Troubleshoot IPSec throughout networks. Considerations include things like community tackle translation, port filters, protocol filters, firewalls, and routers.
*Troubleshoot IPSec certificates. Concerns contain enterprise have faith in insurance policies and certificate revocation checklist (CRL) checking out.

Program and implement safety for wireless networks.
*Plan the authentication methods for a wireless community.
*Plan the encryption techniques to get a wireless community.
*Plan wireless entry procedures.
*Configure wireless encryption.
*Install and configure wireless support for consumer computer systems.

Deploy, manage, and configure SSL certificates, like uses for HTTPS, LDAPS, and wireless networks. Concerns include renewing certificates and obtaining self-issued certificates instead of publicly issued certificates.
*Obtain self-issued certificates and publicly issued certificates.
*Install certificates for SSL.
*Renew certificates.
*Configure SSL to secure communication channels. Conversation channels include client pc to Web server, Web server to SQL Server computer system, consumer pc to Energetic Directory domain controller, and e-mail server to consumer laptop or computer.

Configure safety for remote access users.
*Configure authentication for safe remote access. Authentication sorts consist of PAP, CHAP, MS-CHAP, MS-CHAP v2, EAP-MD5, EAP-TLS, and multifactor authentication that mixes intelligent cards and EAP.
*Configure and troubleshoot virtual non-public community (VPN) protocols. Considerations incorporate Net services provider (ISP), client running technique, community handle translation devices, Routing and Remote Access servers, firewall servers, free apply exam questions and so on.
*Manage client configuration for remote accessibility safety. Tools include remote accessibility coverage along with the Link Supervisor Administration Kit.

Arranging, Configuring, and Troubleshooting Authentication, Authorization, and PKI
*Plan and configure authentication.
*Plan, configure, and troubleshoot have faith in relationships.
*Plan and configure authentication protocols.
*Plan and configure multifactor authentication.
*Plan and configure authentication for Net customers.
*Plan and configure delegated authentication.

Program team structure.
*Decide which kinds of groups to utilize.
*Plan security team scope.
*Plan nested group framework.

Plan and configure authorization.
*Configure accessibility handle lists (ACLs).
*Plan and troubleshoot the assignment of consumer legal rights.
*Plan requirements for electronic signatures.

*Install, handle, and configure Certificate Solutions.
*Install and configure root, intermediate, and issuing certification authorities (CAs). *Considerations include things like renewals and hierarchy.
*Configure certificate templates.
*Configure, manage, and troubleshoot the publication of certificate revocation lists (CRLs).
*Configure archival and recovery of keys.
*Deploy and revoke certificates to customers, personal computers, and CAs.
*Backup and restore the CA.
For those who could do far more totally free exam papers , you can possess a bteer comprehending on this location.