The most trusted source for computer security training, certification and research.

select a course
Virginia Beach, VA - August 26 - September 1, 2006
Global Information Assurance Certification

It was, overall, the most in-depth training on securing Windows I've attended!
-Matt Hurst, Madison City Schools

SECURITY 505

Securing Windows

Sunday, August 27, 2006 - Friday, September 1, 2006
Jason Fossen, SANS Faculty Fellow
6 CPE Credits per day

You cannot claim to be a Windows 2000/XP/2003 security expert without mastering the information and skills presented in this course.

The Securing Windows Track is a comprehensive curriculum for securing Windows 2000/XP/2003 networks. This program brings the confusing complexity of Windows 2000/XP/2003 security into clear focus by starting with foundational security services, such as Active Directory and Group Policy, and advancing in a logical progression to particular products or features which rely on these foundations, such as IIS and IPSec. This Track provides best practices for security, hands-on exercises, extensive documentation/screenshots, a CD-ROM of security scripts, and an objective account of Windows security (neither bashing Microsoft nor toeing the party line).

*** The new security features of Windows Vista will also be covered. ***

This Track will also prepare you for the GIAC Certified Windows Security Administrator (GCWN) certification exams.

You are encouraged to bring a Windows 2000/2003 Server or higher laptop with you, but this is not required. The instructor will demonstrate the skills discussed in the course and the manuals include numerous screenshots.

Is Security 505, Securing Windows, the correct course for me?

  • Who Should Attend:
    • Anyone who manages a Windows network
    • Anyone whose IIS web server was compromised or infected with CodeRed
    • Anyone who is planning to deploy Active Directory, Group Policy, IPSec or a PKI
    • Anyone who would like to learn how to automate and script their work
    • NT, Unix and NetWare administrators new to Windows 2000/XP/2003
    • Anyone interested in the security aspects of Active Directory
  • A Sampling of Topics
    • Active Directory Design
    • Delegation of Authority
    • Dynamic DNS
    • Group Policy Design
    • Security Templates
    • PKI Installation and Management
    • Encrypting File System
    • Smart Cards and Tokens
    • IPSec and VPNs
    • RRAS and RADIUS
    • 802.1X Wireless Security
    • Making An IIS Bastion Host
    • IIS Authentication and Authorization
    • IIS ISAPI Extensions and Filters
    • Windows Scripting Skills
    • Scripting Interfaces: ADSI, CDO, WMI

SANS delivers the best training I have seen in the industry.
-Brian Hughes, Idaho State University

Author Statement

Microsoft might be faulted for many things, but lack of ambition is definitely not one of them. Active Directory, PKI, Group Policy, XML Web Services, the .NET Framework, ISA Server and VPNs, etc. all make for a completely new Windows landscape that is vastly more interesting (and complex) than the old Windows 98/NT world. You can do some incredible things with Windows 2000/XP/2003, and in Track 5 that's what we're going to do. We'll see how to set it all up and secure it against malicious insiders and Internet hackers. We'll also talk a lot about how to automate as much of the work as possible (with scripting and Group Policy) so that you won't have to spend endless hours each week doing repetitive tasks. I'm constantly updating the courseware and adding new tools to the CD-ROM so that we can cover everything important in just six days. I promise you, those six days will go by fast!
- Jason Fossen