Course code: MOC 2823« Back

Implementing and Administering Security in a Microsoft Windows Server 2003 Network

This five-day instructor-led course addresses the MCSA and MCSE skills path for IT Pro security practitioners, specifically addressing the training needs of those preparing for the 70-299 certification exam. The primary product focus is on Microsoft Windows Server™ 2003 based infrastructure solutions but will include some client focused content where appropriate. This learning product is to provide functional skills in planning and implementing infrastructure security. This course is part of the Security Portfolio and will act as the primary entry point for IT Professionals at the implementation level. Course 2810 will provide an entry point for students to broaden their awareness of security issues. Students will be encouraged to enhance their security design skills by attending Course 2830.

This course has been removed from our portfolio
This section contains overview of retired courses which don’t belong to GOPAS course offer any more or were replaced by new course versions.
For more information about possibility to buy retired courses contact our customer services department ( or business department (

AffiliateDurationCatalogue priceHandbook priceITB
Praha5 27 250 CZK included in course price 50
Brno5 27 250 CZK included in course price 50
Bratislava5 650,00 EUR 268,00 EUR 50

User intensity level

Who is the course for

The course is for a system administrator or system engineer who has the foundation implementation skills and knowledge for the deployment of secure Microsoft Windows Server 2003 based solutions. This course is not intended to provide design skills, but will cover planning skills at a level sufficient to enable decision making for the implementation process.

What we teach you

  • Plan and configure an authorization and authentication strategy in a multi-forest organization.
  • Install, configure, and manage a certification authority (CA).
  • Configure, deploy, and manage certificates.
  • Plan, implement, and troubleshoot smart card certificates.
  • Plan, implement, and troubleshoot Encrypting File System (EFS).
  • Plan, configure, and deploy a secure member server baseline.
  • Plan, configure, and implement secure baselines for server roles.
  • Plan, configure, implement, and deploy a secure client computer baseline.
  • Plan and implement Software Update Services.
  • Plan, implement, and troubleshoot data transmission security.
  • Plan and implement security for wireless networks.
  • Plan and implement perimeter security with Internet Security and Acceleration Server (ISA) 2000.
  • Secure remote access.

    Required skills

  • Completed Course 2810 or equivalent knowledge.
  • Experience implementing a Windows® 2000 or Windows Server 2003 Active Directory® environment. Experience with organizational resources such as Web, FTP and Exchange servers, (not expected to have detailed knowledge) shared resources and network services such as DHCP, DNS and WINS also helpful.

    Teaching methods

    Instructor-led classroom training with self-paced practical exercises in virtual environment

    Teaching materials

    The student kit includes a comprehensive workbook and other necessary materials for this class.

    Course Outline

    Module 1: Planning and Configuring an Authorization and Authentication Strategy
  • Groups and Basic Group Strategy in Windows Server 2003
  • Creating Trusts in Windows Server 2003
  • Planning, Implementing, and Maintaining an Authorization Strategy Using Groups
  • Components of an Authentication Model
  • Planning and Implementing an Authentication Strategy
  • Planning and Implementing a Resource Authorization Strategy
  • Planning and Implementing a Cross-Forest Authentication Strategy
  • Planning and Implementing an Authentication Policy
  • Determine the necessary group structure for a multi-domain or multi-forest environment.
  • Create trusts in a Microsoft Windows Server 2003 environment.
  • Plan, implement, and maintain an authorization strategy in a multi-forest organization.
  • Describe the components, tools, and protocols that support authentication.
  • Plan and implement an authentication strategy in a multi-forest organization.
  • Describe supplemental authentication strategies.

    Module 2: Installing, Configuring, and Managing Certification Authorities

  • Introduction to PKI and Certification Authorities
  • Installing a Certification Authority
  • Managing a Certification Authority
  • Backing Up and Restoring a Certification Authority
  • Installing an Enterprise Subordinate Certification Authority
  • Publishing Authority Information Access and CRL Distribution Point Extensions
  • Describe PKI.
  • Describe the applications and components that are used in a PKI.
  • Install a certification authority (CA).
  • Create and publish Certificate Revocation Lists and Authority Information Access (AIA) distribution points.
  • Back up and restore a certification authority.

    Module 3: Configuring, Deploying, and Managing Certificates

  • Configuring Certificate Templates
  • Deploying and Revoking User and Computer Certificates
  • Managing Certificates
  • Configuring Multipurpose Certificate Templates Configuring Certificate Autoenrollment
  • Configuring Autoenrollment of a Single Purpose Certificate
  • Updating a Certificate Template
  • Revoking a Certificate
  • Configure certificate templates in a Microsoft Windows Server 2003 PKI environment.
  • Deploy, enroll, and revoke certificates in a Microsoft Windows Server 2003 PKI environment.
  • Describe the applications and components that are used in a PKI.
  • Export, import, and archive certificates and keys in a Windows Server 2003 PKI environment.

    Module 4: Planning, Implementing, and Troubleshooting Smart Card Certificates

  • Introduction to Multifactor Authentication
  • Planning and Implementing a Smart Card Infrastructure
  • Managing and Troubleshooting a Smart Card Infrastructure
  • Configuring Certificate Templates for Smart Card Enrollment and Smart Card Logon
  • Configuring a Smart Card Enrollment Station
  • Simulation: Enrolling Users for Smart Cards
  • Configuring User Accounts for Smart Cards
  • Understand the concepts of and applications for multifactor authentication.
  • Plan, implement, manage, and troubleshoot a smart card infrastructure.

    Module 5: Planning, Implementing, and Troubleshooting Encrypting File System

  • Introduction to EFS
  • Implementing EFS in a Standalone Microsoft Windows XP Environment
  • Planning and Implementing EFS in a Domain Environment with a PKI
  • Implementing EFS File Sharing
  • Troubleshooting EFS
  • Implement Certificates to Support EFS
  • Configure Group Policy to Support EFS
  • Implement EFS for Roaming User Profiles
  • Describe EFS and how it works.
  • Describe the applications and components that are used in a public key infrastructure (PKI).
  • Implement EFS in a standalone Microsoft Windows XP environment.
  • Plan and implement EFS in a domain environment that has a PKI.
  • Implement EFS file sharing.
  • Troubleshoot EFS problems.

    Module 6: Planning, Configuring, and Deploying a Secure Member Server Baseline

  • Overview of a Member Server Baseline
  • Planning a Secure Member Server
  • Previous courses

    no preceding courses

    Next courses

    no following course
    Tištěná příručka MOC 2823

    6950 CZK
    Elektronická příručka MOC2823

    6750 CZK
    Tištěná příručka MOC 2823

    268 EUR
    Elektronická příručka MOC2823

    The prices are without VAT.