PRESENTED BY
Windows Security, Auditing, & Compliance
Windows Security, Auditing, & Compliance will contain sessions and topics that help and guide administrators secure their Windows environment. Security entails configuration, validation, and assurance that the security remains intact. These sessions will help ensure that security can be obtained and maintained to meet even strict compliance and auditing guidelines.
Tuesday, October 14
TLT5Configuring the Top 10 Windows and Active Directory Security Settings
Derek Melber
Tuesday, October 14 - 9:30 a.m.
This might come as a shock, but did you know that by default neither Microsoft Servers nor Active Directory is completely secured? This session will give you the top 10 security settings that you absolutely must know about, consider, and implement! This session will not go into obscure security settings that you probably don’t care about. Rather, we’ll discuss the specific configurations that every network must set up. Come to this session to protect yourself and your Active Directory from potential hacks!
TLT10Securing Domain Controller Communication using Windows Server 2008 RODCs
Kurt Hudson
Tuesday, October 14 - 11:00 a.m.
There’s more to RODCs than DCPROMO. When deploying RODCs to limit your Active Directory exposure, you’ll likely be configuring other devices as well, like firewalls, monitoring systems, and intrusion detection systems. When doing so, it is important to know what type of network ports, protocols, sources, and destinations to expect from the RODCs on the network. In this session, we’ll look at the network communications and Event Viewer events specific to RODCs. You’ll leave this advanced session with an understanding of what RODCs do, how they do it, and what to expect from them on the network.
TLT15Tips & Tricks for Fearlessly Using the Windows XP & Vista Firewall
Greg Shields
Tuesday, October 14 - 4:00 p.m.
When Microsoft released the Windows Firewall in XP Service Pack 2, what did you do with it? Turn it off? Admittedly, that first attempt at forcing a firewall down our throats wasn’t the greatest, but the Windows Firewall has gotten a lot better over the years. Fear no more! Learn about how to manage it locally and with Group Policy, easily protecting your laptops when off the domain while not causing problems while on the domain. If you wish you had the Windows Firewall’s added security without the added hassle, you won’t want to miss this key session. When it comes to the Windows Firewall, you can turn it back on now.
Wednesday, October 15
TLW7Real World Issues with Security & Auditing *INTERACTIVE
Derek Melber
Wednesday, October 15 - 11:00 a.m.
Have you ever heard the question “Is our Windows network secure?” or “The security auditor will be coming in tomorrow morning, are you ready?” If these questions make you a bit queasy, come and get them answered in this INTERACTIVE session with Derek Melber, author of Auditing Windows Security. This will be a highly-interactive group discussion, where Derek will expose some key security areas, then open up the floor to your questions and comments about best practices in configuring and auditing these security settings.
TLW17Best Practices in Hardening Windows Server 2008 & Windows Vista
Derek Melber
Wednesday, October 15 - 4:45 p.m.
When you hear about hardening Windows security, what comes to mind? How about this session? Here we’ll go over some of the most important, most effective, and easy to configure security settings to help you lock down your Windows computers. Using all of the built in tools, such as Group Policy, templates, wizards, and more, we will look into important security areas such as passwords, services, “standard users”, privilege elevation, Windows firewall, and much more. You’ll leave this session with a full list of items that you can immediately take back to the office and implement.
Thursday, October 16
TLTH5Repel the Crackers: Creating Good Microsoft Passwords
Derek Melber
Thursday, October 16 - 9:45 a.m.
Hey you! Yea, you! You have horrible password policies for your company! Yes, I am making a statement, but hope is not lost. With options both old and new in Windows, you have more control over passwords than ever before. You can beat the pathetic LM hashes, you can beat Rainbow tables, and you can even configure different password policies for different groups of people with Windows Server 2008 domains. Come see where you are insecure and what you can do to immediately fix it!
TLTH8IIS 7.0 Management & Permissions: Take Back Your Web Server!
Wendy Henry
Thursday, October 16 - 11:15 a.m.
Web servers have been around for awhile, so what’s “new” about IIS 7.0? Where do you start?! Before jumping into the deep end of the IIS pool, attend this session for an overview of IIS 7.0’s new configuration architecture, new management interfaces, and new permission structures. Microsoft has broken the IIS product down into manageable compartments that, with a little planning, you can easily use to delegate site administration to the folks who need it most – all without losing complete control of the web server. Use the knowledge you gain in this session to prepare yourself for Microsoft’s most ambitious web server yet!
TLTH15What You Absolutely Must Know to Successfully Implement a Windows Certificate Authority
James Conrad
Thursday, October 16 - 3:15 p.m.
Certificates are one of the most secure and effective ways to secure data and confirm identity. They’re useful for everything from authenticating systems, to encrypting data, to validating clients, to proving who your users and computers really are. In this session, you’ll learn how to deploy a Certificate Authority in your organization and the tips and tricks to safeguard it over the long-haul. Plus, you’ll find out easy and effective ways to deploy certificates to your users and computers.
TLTH20Understanding Forefront Client Security
Rod Trent
Thursday, October 16 - 4:45 p.m.
Microsoft Forefront is a comprehensive solution that provides protection for the client operating system, application servers, and the network. Forefront integrates security capabilities across the Microsoft product line, integrating with server applications and your existing IT infrastructure. In this session you’ll learn about Forefront and where it fits best in your IT shop. You’ll leave with the knowledge you need to achieve greater efficiency and control over the security of your network.
*Introducing TechMentor’s new INTERACTIVE sessions
After hearing the lecture and working through the new Hands-On Labs, where do you go if you still have questions? With TechMentor we’ve heard your requests and designed a few new special sessions we call INTERACTIVE. More than just group discussion, TechMentor’s INTERACTIVE sessions focus on a topic-specific, two-way conversation between attendees and instructor. You’ll get the opportunity to ask questions you need to know while learning from your fellow attendee. These special INTERACTIVE sessions are unique to TechMentor and something you won’t want to miss. Come to TechMentor, learn about new and existing technologies, get your hands on them, and your questions answered.
