Moyens d'évaluation :
- Quiz pré-formation de vérification des connaissances (si applicable)
- Évaluations formatives pendant la formation, à travers les travaux pratiques réalisés sur les labs à l’issue de chaque module, QCM, mises en situation…
- Complétion par chaque participant d’un questionnaire et/ou questionnaire de positionnement en amont et à l’issue de la formation pour validation de l’acquisition des compétences
Who should attend
This workshop is suitable for network engineers and administrators who want to learn more about certificates and Certification Authorities.
Prerequisites
Basic previous knowledge of the Windows system as well as sound knowledge of Windows Server. Basic prior knowledge in the area of networking and Active Directory is advantageous.
Course Objectives
In this workshop, each participant builds a multi-level Windows Server PKI in a Windows Active Directory environment. In the process, PKI-enabled applications are configured and tested. An overview of the most common encryption and authentication methods and frequently used encryption algorithms serves as an introduction. After a theoretical introduction, an independent root CA and a subordinate organizational CA are set up.
This workshop serves to give participants an initial overview of the complex topic of PKI. It can be delivered in all versions.
Course Content
- Encryption method, digital signature, EFS
- Establishment of a Public Key Infrastructure (PKI)
- Installing the Certificate Services
- Comparison: Independent & Organizational Structure
- Strategies for maximum protection of the certificate hierarchy
- Backing up and restoring a certification authority
- Methods of certificate request offline / online
- Manage & create certificate templates
- Certificate template registration, update with ADS
- Management consoles and other tools for managing the PKI
- Emergency backup, revocation + renewal of certificates- Certificate store management
- Export and import procedures
- Managing certificates via group policies in the ADS
- Secure resource access with SSL, IPSec and smart card authentication
- Secure e-mail communication through encryption and signature
Moyens Pédagogiques :