Courses
> Studying at the ESI
> Departments
> Specialisation
> Course schedules
> ECTS
> Staff
> Optional courses

Practical details

Services

Les cours > Windows administration and security

---

50 h.

Coordinator : MWI

Teacher : MWI

4 ECTS

General course description

The implementation and administration of security in an OS Microsoft Windows Server network helps implement (manage, maintain and troubleshoot) the various concepts studied beforehand and the security mechanisms in a real infrastructure.

Prerequisite

• Administration of an Active Directory Windows domain
• TCP/IP model
• Security basics (authentication, access control, auditing, IPSec, Kerberos, SSL, PKI infrastructure)

Course Aims/Learning Outcomes

Implement security in a Windows OS-based network via the configuration of the authentication, the authorizations, a certification body, and MS Windows security patches EFS, IPSec, SSL and VPN implementation. The student will discover practical solutions about network security applied to a Windows environment.

Assessment

See the table of assessments for the specialisation year.

Course Outline

1.Deployment of a Windows-based C/S infrastructure (8h)

2. Authentication configuration (4h)

• NTLM
• Kerberos
• smart card
• account policies
• authentication audit

3.Permissions management(6h)

• Share and NTFS permissions
• Access-Base Enumeration (ABE)
• Encrypting File System (EFS) implementation
• File and registry virtualization
• Windows Integrity Control (WIC)
• Registry Permission
• access resources audit

4. Securing AD (4h)

• securing AD objects
• RODC
• AD backup
• securing DNS
• AD auditing

5. Distributed security services (4h)

• Use of security models for account policies
• Software restriction policy
• Single Sign-On

6.Securing computers (8h)

• Security patch management
• Securing AD passwords
• Security configuration models and GPO
• BitLocker Drive Encryption
• File Screen Policies
• attack surface reduction tool : Security Configuration Wizard (SCW)

Bibliography

• Mark Minasi Mastering Windows 2008 R2 Sybex
• Benoît Lanlard Windows Server 2003 : implémentation de la sécurité [70-299] ENI-editions
• Mathieu Chateau Windows Server 2008 R2 : Administration avancée ENI-editions
• Knaser MCSE Guide to Designing Security in W2K3 Network [70-298] Thomson
• Mark Ciampa Security+ Guide to network security (3d edition) CompTia Cengage int. Edition
• Microsoft Official Academic Course W2K8 Active Directory Configuration [70-640] Wiley
• Webographie multiple