Microsoft Exam 70-298: Designing Security for a Windows Server 2003 Network
- Credits for this certification:
When you pass Microsoft exam 70-298 you became Microsoft Certified Professional (MCP)
Microsoft exam 70-298 is also one of the exams requiring achieve following group certifications
Certificate MCSE on win server 2003... = core exam
Certificate MCSE Security on win server 2003... = core exam
You will need to acquire a solid understanding of Windows 2003 Security concepts... & some business concepts that will allow you to configure security to enhance your company’s business objectives. & importantly need to focus on various components of Windows 2000 security, like the different types of protocols and their implementations.
- Analyze business requirements for designing security.
Study about:
existing security policies and procedures
requirements for securing data, sensitivity of data
flaws in current administration structure and security practices
cost & risks in implementing new strategies
- Design a framework for designing and implementing security
Study about:
detection of threats to your network from internal and external sources
segmented networks
process for recovering services
- Technical constraints for security
Study about:
capabilities of the existing infrastructure
technology availability
Analyze interoperability constraints
- Network Infrastructure Security
Study about:
public key infrastructure (PKI)
certification authority (CA) hierarchy implementation
enrollment and distribution processes
security for CA servers
- logical authentication strategy
study about:
certificate distribution
forest and domain trust models
account and password requirements for security
- security for network management
study about:
risk of managing networks
Microsoft Management Console (MMC)
Terminal Server
Remote Desktop for Administration
Remote Assistance
Telnet
Emergency Management Services
- Security update infrastructure
Study about:
Software Update Services (SUS)
Deploy software updates by Group Policies
Strategy for identifying computers those are not at the current patch level
- Physical Design for Network Infrastructure Security
Study about:
IP filtering
IPSec policy
DNS implementation
Security for data transmission
- security for wireless networks
study about:
public and private wireless LANs
802.1x authentication for wireless networks
- authentication for Internet Information Services (IIS)
study about:
user authentication for a Web site by using IIS authentication
RADIUS for IIS authentication
strategy for IIS
strategy for updating an IIS server
- security for communication between networks
study about:
protocols for VPN access
VPN connectivity
demand-dial routing between internal networks
- communication with external organizations
study about:
extranet infrastructure
cross-certification of Certificate Services
- Assigning server roles
study about:
domain controller
network infrastructure server
file server
IIS server
terminal server
POP3 mail server
security template for systems
- access control for directory services
study about:
auditing
group permission to resources
permission structure for directory service objects
- security for files & folders
study about:
encryption and decryption of files and folders
permission for files and folders
backup and recovery of files and folders
- permission for registry objects
- client authentication strategy
study about:
account and password of clients
remote access policies
access to internal resources
authentication by using Internet Authentication Service (IAS) for remote users
- securing client computers
study about:
desktop and portable computers
hardening client operating systems
restricting user access to operating system features
these all point must be covered before giving Microsoft exam 70-298
Microsoft warns that preparation guide can be change at any time without any notice... well they change exam structure suddenly... so prepare for all concepts that related to security of win 2003 server & you don’t have to worry about Microsoft exam 70-298.
No comments:
Post a Comment