Windows 2000 security

Understand core security concepts like cryptography, security protocols, PK1, and Kerberos

Control access to Windows 2000 systems through Kerberos, Encrypting File System, NTFS, local security policies, and Windows 2000-specific security tools

Set up a secure remote access through RRAS, VIN, RADIUS, and Terminal Services

Secure the network using distributed security services such as domain account policies, IPSec, PKI, and Group Policy

Implement a secure installation or upgrade, and maintain and audit your Security Poficy

Configure access policies, restricted group membership, and system services security

Secure a LAN, IRDA connections, Terminal Services, and interoperability services

Windows 2000 Security is the only source you need to create and implement security strategies for Windows 2000 systems and networks. With detailed information on security issues, you'Il have the knowledge, tools, standards, and guidance you need to secure your OS, LAN, Server, remote access, and Web connections. After reading this book, you will come away with the "how," "why," and "when" of Windows 2000 secunty féatures, and know how to take advantage of them.

If you are a Windows NT* adn-tinistrator or engineer who is experienced with NT networks but new to security, you will bc brought up to speed with security issues and concepts. On the other hand, if you are expcrienced with security issues in another OS, and arc migrating to Windows 2000 networks, this book directly addresses what Windows 2000 offers in the way of security and how to assess and implement your security needs.

Contents

• Introduction
  
• Concepts and Definitions
  
• Basic Security Concepts
  
• Cryptology Introduction
  
• New Protocols, Products and APIs
  
• Public Key Infrastructure (PKI)
  
• Kerberos in the RAW
  
• Securing the OS 123
  
• Security from the Get-Go 125
  
• User Authentication 161
  
• Lifecycle Choises 187
  
• Security Tools 215
  
• Securing Windows 2000 Professional 251
  
• Securing Windows 2000 Server 281
  
• III Securing the local Area, Microsoft Network 309
  
• Domain-Level Security
  
• Securiting Legacy Windows Clients
  
• Securing the Distributed File System
  
• Securing Real-World Networks
  
• Secure Remote Access Options
  
• Securing the Network Using Distributed security Services
  
• Entreprise Public Key Infrasructure
  
• Interperability
  
• Web Security
  
• Case Study in Interbuiness Access: Distributed Partners
  
• Ressources
  
• Index