MCSA/MCSE Self-Paced Training Kit (Exam 70-299): Implementing and Administering Security in a MicrosoftВ® Windows Server(TM) 2003 Network (Pro-Certification)

Exam Objectives in this Chapter:

• Deploy and manage Internet Protocol Security (IPSec) policies.

  • Deploy IPSec policies by using local policy objects or Group Policy objects (GPOs).

  • Deploy IPSec policies by using commands and scripts. Tools include IPSecPol and Netsh.

  • Deploy IPSec certificates. Considerations include deployment of certificates and renewing certificates on managed and unmanaged client computers.

• Troubleshoot IPSec.

  • Monitor IPSec policies by using IP Security Monitor.

  • Configure IPSec logging. Considerations include Oakley logs and IPSec driver logging.

  • Troubleshoot IPSec across networks. Considerations include network address translation, port filters, protocol filters, firewalls, and routers.

  • Troubleshoot IPSec certificates. Considerations include enterprise trust policies and certificate revocation list (CRL) checking.