M20744 Securing Windows Server 2016 -
Seminar / Kurs
von brainymotion AG
This course teaches IT professionals how they can enhance the security of the IT infrastructure that they administer.
1 - ATTACKS, BREACH DETECTION, AND SYSINTERNALS TOOLSUnderstanding attacksDetecting breachesExamining activity with the Sysinternals toolLab : Basic breach detection and incident response strategies2 - PROTECTING CREDENTIALS AND PRIVILEGED ACCESSUnderstanding user rightsComputer and service accountsProtecting credentialsPrivileged-Access Workstations and jump serversLocal administrator-password solutionLab : User rights, security options, and group-managed service accountsLab : Configuring and deploying LAPs3 - LIMITING ADMINISTRATOR RIGHTS WITH JUST ENOUGH ADMINISTRATIONUnderstanding JEAVerifying and deploying JEALab : Limiting administrator privileges by using JEA4 - PRIVILEGED ACCESS MANAGEMENT AND ADMINISTRATIVE FORESTSESAE forests Overview of Microsoft Identity ManagerOverview of JIT administration and PAM Lab : Limiting administrator privileges with PAM5 - MITIGATING MALWARE AND THREATSConfiguring and managing Windows DefenderRestricting softwareConfiguring and using the Device Guard featureDeploying and using the EMETLab : Securing applications by using AppLocker, Windows Defender, Device Guard Rules, and the EMET.6 - ANALYZING ACTIVITY WITH ADVANCED AUDITING AND LOG ANALYTICSOverview of auditingAdvanced auditingWindows PowerShell auditing and loggingLab : Configuring advanced auditing7 - DEPLOYING AND CONFIGURING ADVANCED THREAT ANALYTICS AND MICROSOFT OPERATIONS MANAGEMENT SUITEDeploying and configuring ATADeploying and configuring Microsoft Operations Management SuiteLab : Deploying ATA and Microsoft Operations Management Suite8 - SECURE VIRTUALIZATION INFRASTRUCTUREGuarded FabricShielded and encryption-supported virtual machinesLab : Guarded Fabric with administrator-trusted attestation and shielded VMs9 - SECURING APPLICATION DEVELOPMENT AND SERVER-WORKLOAD INFRASTRUCTUREUsing Security Compliance ManagerIntroduction to Nano ServerUnderstanding containersLab : Using Security Compliance ManagerLab: Deploying and Configuring Nano Server10 - PLANNING AND PROTECTING DATAPlanning and implementing encryption Planning and implementing BitLockerLab : Protecting data by using encryption and BitLocker11 - OPTIMIZING AND SECURING FILE SERVICESFile Server Resource ManagerImplementing classification management and file-management tasksDynamic Access ControlLab : Quotas and file screeningLab : Implementing Dynamic Access Control12 - SECURING NETWORK TRAFFIC WITH FIREWALLS AND ENCRYPTIONUnderstanding network-related security threatsUnderstanding Windows Firewall with Advanced SecurityConfiguring IPsecDatacenter FirewallLab : Configuring Windows Firewall with Advanced Security13 - SECURING NETWORK TRAFFICNetwork-related security threats and connection-security rulesConfiguring advanced DNS settingsExamining network traffic with Microsoft Message AnalyzerSecuring SMB traffic, and analyzing SMB trafficLab : Securing DNSLab : Microsoft Message Analyzer and SMB encryption14 - UPDATING WINDOWS SERVEROverview of WSUSDeploying updates by using WSUSLab : Implementing update management