Planning A Microsoft Windows Server 2003 Network Chapter 13

Planning A Microsoft Windows Server 2003 Network Chapter 13...

Info iconThis preview shows pages 1–12. Sign up to view the full content.

View Full Document Right Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
This is the end of the preview. Sign up to access the rest of the document.

Unformatted text preview: 70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 NetworkChapter 13: Planning Server and Network Security70-293: MCSE Guide to Planning a Microsoft W2ObjectivesDescribe three types of securityPlan security configurations for server rolesPlan network protocol securityPlan wireless network securityDefine the default security settings used by Windows Server 2003Plan a secure baseline for client computers and serversCreate a plan for software updatesEnsure secure administrative access70-293: MCSE Guide to Planning a Microsoft W3Types of SecurityThree commonly used categories are:Physical securityNetwork securityData security70-293: MCSE Guide to Planning a Microsoft W4Physical SecurityPhysical security is controlling physical access to the computing devices on your network Who has a key to the server room?Prevents users and hackers from physically accessing network resources that they have no legitimate need to touchAfter physical security is in place, software-based security is more effective70-293: MCSE Guide to Planning a Microsoft W5Network SecurityNetwork security refers to accessing network-based resources through a computer networkTools available for enforcing network security are: Authentication, IPSec and FirewallsAuthentication verifies the identity of users before giving them access to resources IPSec encrypts data packets in transit on the network Firewalls control data movement based on IP addresses and port numbers For enhanced security, most organizations use a demilitarized zone (DMZ)70-293: MCSE Guide to Planning a Microsoft W6Network Security (continued)70-293: MCSE Guide to Planning a Microsoft W7Network Security (continued)70-293: MCSE Guide to Planning a Microsoft W8Data SecurityData security: mechanisms to ensure only authorized users access sensitive dataTools for enforcing data security include:NTFS permissions: used to control access to files and folders stored on network serversShare permissions: used to control access to a particular network shareAuditing: allows you to track which users have performed, or attempted to perform, certain actionsEFS: encrypts files that are stored on NTFS partitions70-293: MCSE Guide to Planning a Microsoft W9Encrypting File SystemEFS (encrypting file system) encrypts files that are stored on NTFS partitionsWhen files are stored encrypted, only the user who encrypted them, other designated users, or a designated recovery agent can decrypt and read themCertificates used by EFS can be created automatically, through an internal CA or a third party CA70-293: MCSE Guide to Planning a Microsoft W10Activity 13-1: Using EFS to Protect FilesThe purpose of this activity is to use EFS to protect files70-293: MCSE Guide to Planning a Microsoft W11Planning Security Configuration for Server RolesGeneral rules for server security are:Disable unnecessary servicesLimit access to the minimum required for users to perform...
View Full Document

This note was uploaded on 01/18/2010 for the course CET 2792 taught by Professor Georgewaynerausch during the Spring '09 term at Valencia.

Page1 / 46

Planning A Microsoft Windows Server 2003 Network Chapter 13...

This preview shows document pages 1 - 12. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online