Microsoft Products Technical Audit Workshop

Course Description

How can I verify that the Microsoft products we use are correctly installed, that their security and reliability settings are correctly made, and that they have the security level to meet the needs?
Which software should I use to check the security settings of a Microsoft server?

Who Should Attend

IT auditors, IT security experts, information security experts, Microsoft system administrators


Ability to conduct systems audit through hands-on practices and laboratory works for Microsoft products audit.

Training Structure

  • Physical security
  • Redundant user accounts
  • Administrator account name
  • Password security
  • Basic security applications check
  • Blocking modems and similar devices
  • Redundant services
  • Auditing
  • Missing patches
  • Sharing controls
  • Swap file security controls
  • USB device restriction controls
  • Installation files
  • Controls specific to portable devices
  • DNS zone transfer and configuration
  • EFS certificate distribution
  • Lost certificate solution
  • EFS “recovery agent” security
  • Windows AD security
  • Windows AD reliability
  • File access controls
  • Web access controls
  • Centralization of audit trails
  • Audit trail reports
  • Web IP/DNS restrictions
  • Certificate management process Windows Basic DNS
  • PKI
  • EFS
  • Windows Active Directory
  • Windows Vista & Windows 2003
  • Web Servers

Training Duration

2 Days