Deploying and Managing a Public Key Infrastructure

About this Course
This four-day, instructor-led course provides students with the knowledge and skills to design, deploy, and manage a public key infrastructure (PKI) to support applications that require distributed security. Students get hands-on experience implementing solutions to secure PKI-enabled applications and services, such as Microsoft Internet Explorer, Microsoft Exchange Server, Microsoft Internet Information Server, Microsoft Outlook, and remote access services.

At Course Completion
After completing this course, students will be able to:

• Describe PKI and the major components of a PKI.
• Design a certification authority (CA) hierarchy to meet business requirements.
• Install Certificate Services to create a CA hierarchy.
• Perform certificate management tasks, CA management tasks, and plan for disaster recovery of Certificate Services.
• Create and publish a certificate template, and replace an existing certificate template.
• Enroll a certificate manually, auto-enroll a certificate, and enroll a smart card certificate.
• Implement manual and automatic key archival and recovery in a Windows Server 2003 PKI.
• Configure trust between organizations by configuring and implementing qualified subordination.
• Deploy smart cards in a Windows environment.
• Secure a Web environment by implementing SSL security and certificate-based authentication for Web applications.
• Implement secure e-mail messages by using Microsoft Exchange Server in a Windows 2000 or Windows 2003 environment.

Audience Profile
This course is intended for IT systems engineers who are responsible for designing and implementing security solutions. Individuals should have knowledge and experience to install and configure the Active Directory directory service and security mechanisms for computers running Microsoft Windows 2000 Server or Windows Server 2003 family.

Course Outline
A high level overview of the course includes the following modules: