MOC20744: Securing Windows Server 2016

In this course, you will learn how to improve the security of the IT infrastructure you manage. This course begins by emphasizing the importance of assuming that network violations have already occurred, and shows you how to protect the credentials and rights of administrators to ensure that administrators can only perform the tasks they need whenever they need them.

This course will also cover how to mitigate malware threats, identify security issues using Windows Server 2016 Enhanced Threat Assessment monitoring and functionality, secure your virtualization platform, and use new deployment options such as Nano Servers and Containers for added security. You will also learn how to protect file access using encryption and dynamic access control, and how to improve the security of your network.

The seminar can be used to prepare for certification as a Microsoft Certified Solutions Expert (MCSE): Core Infrastructure.

Please note: Exam 70/744 is not part of the seminar and is not included in the seminar price.

• Attack, detect vulnerabilities, and use the Sysinternals tools
• Protection of privileges and privileged access
  
  • user rights
  • Computer and service accounts
  • Protection of permissions
  • Privileged workstations and jump servers
  • Provision of a solution with local administrator passwords
• Management of privileged access and administrative forests
  
• Enhanced Security Administrative Environment (ESAE)
  • Microsoft Identity Manager (MIM)
  • Administration of Just In Time (JIT) and Privileged Access Management (PAM)
  • Restricting Admin Rights with Just Enough Administration (JEA)
    
• Minimize threats and malware
  • Windows Defender
  • Limitation of software
  • AppLocker
  • Device Guard
  • Enhanced Mitigation Experience Toolkit (EMET)
• Activity analysis using advanced auditing and log analytics
  • Overview of auditing
  • Extended auditing
  • Auditing and Logging by PowerShell
• Deployment and configuration of Microsoft Advanced Threat Analytics (ATA) and Operations Management Suite (OMS)
• Securing the virtualization infrastructure
  
  • Guarded Fabric VMs
  • Shielded and encrypted VMs
• Secure application development and server workload infrastructure
  
  • Security Compliance Manager (SCM)
  • Introduction to Nano-Server
  • Introduction to containers
• Planning and protection of data
  
  • Encryption with Encrypting File System (EFS)
  • BitLocker
• Optimization and protection of file services
  
  • Introduction to File Server Resource Manager (FSRM) and Distributed File System (DFS)
  • Classification and file management
  • Dynamic Access Control (DAC)
• Securing network traffic with firewalls and encryption
  
  • Network-related security threats
  • Windows Firewall with Advanced Security
  • Configuration of IPSec
  • Data Center firewall
• Securing network traffic
  
  • Network-related security threats and connection security rules
  • Configure advanced DNS settings
  • Examine network traffic with Microsoft Message Analyzer
  • Securing and analyzing server message block (-SMB) traffic
  • Domain Name System Security Extensions (DNSSEC)
• Update from Windows Server
  
  • Upgrading with Windows Server Update Services (WSUS)

You should have at least two years of IT experience and the following:

• Completed courses 740, 741 and 742 or the equivalent.
• A solid, hands-on understanding of network fundamentals, including TCP / IP, User Datagram Protocol (UDP), and Domain Name System (DNS).
• A solid, hands-on understanding of AD DS (Active Directory Domain Services) principles.
• A solid, hands-on understanding of the basics of Microsoft Hyper-V virtualization.
• Knowledge of Windows Server security principles.