Talk to a Training Advisor
Request availability by clicking a date.
|
About this class In this course, you gain the knowledge and skills to build a secure Exchange 2007 infrastructure and successfully implement its built-in compliance features. Who will the lesson benefit? This course is valuable for systems and network administrators who need to enhance the security of their Exchange infrastructure. Course 980, " Exchange Server 2007 Administration ", or equivalent knowledge is assumed. Experience with the Active Directory is helpful. What delegates will learn - Create a secure Exchange 2007 environment
- Assess e-mail vulnerabilities within your organisation
- Protect your environment from internal threats
- Minimise risk to Exchange servers from malicious Internet-based attacks
- Implement certificates effectively to safeguard e-mail content
- Benefit from the built-in features of Exchange and third-party products to assist in regulatory compliance
Contents of this class Introduction to Security and Compliance Exploiting security vulnerabilities - Common e-mail hacking methodologies
- Analysing The Trustworthy Computing Initiative from Microsoft and its relationship to Exchange
Meeting your e-mail compliance needs - Investigating regulatory requirements
- Selecting the best compliance methods
Hardening your Internal Server Configuration Reducing vulnerabilities from within your organisation - Strengthening Exchange with service packs and security updates
- Delegating with the principles of least privilege
- Auditing administrative actions with event logging for accountability
Protecting e-mail in transit - Defining Transport Layer Security (TLS) architecture and best practices
- Securing your infrastructure in a mixed environment with legacy Exchange servers
- Analysing network traffic for suspicious activity with Intrusion Detection Systems (IDS)
Safeguarding Servers from External Threats Minimising SMTP transport risk - Defending against malicious SMTP attacks
- Utilising tarpitting to thwart directory harvest attacks
- Logging activities to identify hackers
- Implementing message and connection filtering to reject unwanted e-mail
Creating a protective perimeter network - Leveraging firewalls to publish internal resources
- Filtering messages with Edge Transport servers
- Employing Microsoft Forefront as an anti-virus solution
Maximising E-Mail Security Demystifying digital encryption - Fundamentals of Public Key Infrastructure (PKI)
- Implementing certificates for secure messaging in Outlook and Outlook Web Access (OWA)
- Verifying sender identity with digital signatures
- Ensuring message confidentiality with digital encryption
- Communicating securely outside your organisation with trusted Certification Authorities (CA)
Controlling e-mail content - Setting up a Rights Management Server (RMS)
- Configuring Rights Management policies to limit the actions of users
- Capitalising on Rights Management features in Outlook
Simplifying E-Mail Compliance Exchange built-in compliance components - Journaling all messages to meet industry regulations
- Controlling e-mail life cycle with managed folders
- Exploiting transport rules to categorize and redirect messages
- Leveraging the improved search capabilities of Outlook and Exchange
Incorporating external solutions - Integrating SharePoint with Exchange for long-term storage and classification of messaging data
- Interoperating with third party products to simplify compliance administration
|
