About Course
Course Objectives
-
Understand the fundamentals of Public Key Infrastructure (PKI) and cryptography concepts.
-
Design and implement a secure PKI architecture in Microsoft environments.
-
Configure and manage Certification Authorities (CA) and certificate services.
-
Implement certificate templates, enrollment, and key recovery.
-
Secure PKI infrastructure and manage certificate validation and revocation.
-
Deploy PKI-based security solutions such as SSL, VPN, email security, and smart cards.
-
Plan disaster recovery and maintain a secure PKI environment.
Course Outline
Module 1: Foundations of PKI
-
Cryptography basics
-
Certificate types (X.509)
-
Certification Authorities
-
Certificate Revocation Lists (CRL)
Module 2: Policies and PKI
-
Security Policy
-
Certificate Policy
-
Certification Practice Statements (CPS)
Module 3: PKI in Windows Domain
-
Managing PKI
-
Configuring Certificate Templates
-
Configuring Certificate Enrollment
-
Configuring Key Archival and Recovery
-
Configuring Trust Between Organizations
-
Deploying Smart Cards
Module 4: Designing and Implementing CA Hierarchy
-
Planning PKI infrastructure
-
Preparing Active Directory environment
-
Implementing Certification Authority hierarchy
Module 5: Upgrading PKI Infrastructure
-
Supported upgrade scenarios
-
Upgrading certificate templates
Module 6: PKI Security
-
Deploying certificates to Domain Controllers
-
Securing CA hierarchy
-
Certificate revocation and validation
-
Role separation
-
Disaster recovery planning and implementation
-
Archiving encryption keys
Module 7: Deploying Application-Specific Solutions
-
Securing web traffic using SSL
-
Configuring email security
-
Encrypting File System (EFS)
-
VPN security
-
Wireless network security
-
Document and code signing
-
Active Directory Rights Management Services (AD RMS)
