1-800-THE-TREE (1-800-843-8733)

Securing Exchange Server 2007: Hands-On

Addressing Compliance Requirements

Course: 981 Type: Hands-On Training Duration: 3 Days

You Will Learn How To

Create a secure Exchange 2007 environment
Assess e-mail vulnerabilities within your organization
Protect your environment from internal threats
Minimize risk to Exchange servers from malicious Internet-based attacks
Implement certificates effectively to safeguard e-mail content
Benefit from the built-in features of Exchange and third-party products to assist in regulatory compliance

Course Benefits

Administrators are under constant demand to safeguard messaging data. Exchange 2007 provides the capability to secure the integrity and availability of e-mail within an organization. In this course, you gain the knowledge and skills to build a secure Exchange 2007 infrastructure and successfully implement its built-in compliance features.

Who Should Attend

Systems and network administrators who need to enhance the security of their Exchange infrastructure. Experience with Exchange at the level of Course 980, "Exchange Server 2007 Administration," is assumed. Experience with the Active Directory is helpful.

Hands-On Training

Extensive hands-on exercises provide you with practical experience securing your Exchange environment and implementing built-in tools to assist in compliance. Exercises include:

Analyzing security threats to an Exchange infrastructure
Auditing administrators in their daily tasks
Exposing mixed environment security issues
Defending against SMTP attacks
Protecting Exchange with an ISA server
Implementing a message hygiene appliance
Integrating the use of RMS with Exchange

Course 981 Content

Introduction to Security and Compliance

Exploiting security vulnerabilities

Common e-mail hacking methodologies
Exploring SMTP fundamentals
Defending against SMTP attacks
Utilizing tarpitting to thwart directory harvest attacks
Logging activities to identify hackers
Analyzing The Trustworthy Computing Initiative from Microsoft and its relationship to Exchange

Meeting your e-mail compliance needs

Investigating regulatory requirements
Selecting the best compliance methods

Hardening your Internal Server Configuration

Reducing vulnerabilities from within your organization

Strengthening Exchange with service packs and security updates
Delegating with the principles of least privilege
Auditing administrative actions with event logging for accountability
Creating security templates with the Security Configuration Wizard
Ensuring consistent security settings across the Exchange organization

Protecting e-mail in transit

Defining Transport Layer Security (TLS) architecture and best practices
Securing your infrastructure in a mixed environment with legacy Exchange servers
Analyzing network traffic for suspicious activity with Intrusion Detection Systems (IDS)
Utilizing transport rules to organize messages

Safeguarding Servers from External Threats

Minimizing SMTP transport risk

Deploying message and connection filtering to reject unwanted e-mail
Utilizing Microsoft Forefront as an anti-virus solution
Implementing non-Microsoft message hygiene solutions

Creating a protective perimeter network

Leveraging firewalls to publish client access servers securely
Shielding Exchange from direct Internet access with Microsoft ISA Server

Maximizing E-Mail Security

Demystifying digital encryption

Fundamentals of Public Key Infrastructure (PKI)
Communicating securely outside your organization with trusted Certification Authorities (CA)

Integrating certificates with Outlook

Implementing certificates for secure messaging in Outlook
Encrypting and signing e-mail with Outlook
Verifying sender identity and message authenticity with digital signatures
Ensuring message confidentiality with digital encryption

Controlling e-mail content

Setting up a Rights Management Server (RMS)
Configuring Rights Management policies to limit the actions of users
Capitalizing on Rights Management features in Outlook
Performing a cross mailbox search

Simplifying E-Mail Compliance

Exchange built-in compliance components

Configuring e-mail journaling
Journaling all messages to meet industry regulations
Fine-tuning managed folders to meet message retention requirements
Controlling e-mail life cycle with managed folders
Exploiting transport rules to categorize and redirect messages
Leveraging the improved search capabilities of Outlook and Exchange

Incorporating external solutions

Integrating SharePoint with Exchange for long-term storage and classification of messaging data
Interoperating with third-party products to simplify compliance administration

Related Courses

Course Description

Save an EXTRA $200 on a 10-Day Training Pass!

Enter online today to win one FREE Course in the U.S. or Canada plus a FREE Course for your Colleague!

Upcoming Dates

Oct 29 - 31, 2008
Los Angeles

Nov 5 - 7, 2008
New York

Nov 12 - 14, 2008
Washington, DC (Alexandria, VA)

Nov 26 - 28, 2008
Toronto

Dec 3 - 5, 2008
Chicago (Schaumburg)

Dec 3 - 5, 2008
Washington, DC (Rockville, MD)

Dec 10 - 12, 2008
Ottawa

Jan 14 - 16, 2009
Washington, DC (Reston, VA)

Feb 11 - 13, 2009
New York

Feb 18 - 20, 2009
Washington, DC (Alexandria, VA)

Course Tuition

$ 2,250	Standard Tuition
Tuition with a Savings Plan
$ 1,580	10-Day Pass
$ 1,665	Training Passport
$ 1,830	Flex-Pass
$ 2,095	Voucher 10-Pack
$ 2,025	Alumni Gold Discount
$ 2,000	Government Discount

Course participants defending against SMTP attacks.

Customer Service or Enroll: 1-800-843-8733