BN.com Gift Guide

Configuring Windows 2000 Server Security

Overview

Network security has become an increasing problem, with stories about sometimes significant security breaches a common feature of the nightly news. The premier network platform, Windows NT, has many important security features but they are difficult to configure and manage. With the launch of its successor, Windows 2000 Server, Microsoft has announced new security features that must be quickly grasped by network administrators.

This book addresses this new technology in depth. ...

See more details below
Available through our Marketplace sellers.
Other sellers (Paperback)
  • All (11) from $1.99   
  • New (4) from $2.99   
  • Used (7) from $1.99   
Close
Sort by
Page 1 of 1
Showing All
Note: Marketplace items are not eligible for any BN.com coupons and promotions
$2.99
Seller since 2009

Feedback rating:

(0)

Condition:

New — never opened or used in original packaging.

Like New — packaging may have been opened. A "Like New" item is suitable to give as a gift.

Very Good — may have minor signs of wear on packaging but item works perfectly and has no damage.

Good — item is in good condition but packaging may have signs of shelf wear/aging or torn packaging. All specific defects should be noted in the Comments section associated with each item.

Acceptable — item is in working order but may show signs of wear such as scratches or torn packaging. All specific defects should be noted in the Comments section associated with each item.

Used — An item that has been opened and may show signs of wear. All specific defects should be noted in the Comments section associated with each item.

Refurbished — A used item that has been renewed or updated and verified to be in proper working condition. Not necessarily completed by the original manufacturer.

New
1999 Trade paperback Illustrated. New. No dust jacket as issued. Brand NEW-Perfect Condition Glued binding. 394 p. Contains: Illustrations. Audience: General/trade.

Ships from: Brookfield, CT

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$32.32
Seller since 2011

Feedback rating:

(4)

Condition: New
1999 Trade paperback New. Trade paperback (US). Glued binding. 394 p. Contains: Illustrations. *****PLEASE NOTE: This item is shipping from an authorized seller in Europe. In ... the event that a return is necessary, you will be able to return your item within the US. To learn more about our European sellers and policies see the BookQuest FAQ section***** Read more Show Less

Ships from: LIVERPOOL, United Kingdom

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
$33.49
Seller since 2014

Feedback rating:

(320)

Condition: New
Brand New Item.

Ships from: Chatham, NJ

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$37.89
Seller since 2011

Feedback rating:

(4)

Condition: New
1999 Trade paperback New. Trade paperback (US). Glued binding. 394 p. Contains: Illustrations. *****PLEASE NOTE: This item is shipping from an authorized seller in Europe. In ... the event that a return is necessary, you will be able to return your item within the US. To learn more about our European sellers and policies see the BookQuest FAQ section***** Read more Show Less

Ships from: LIVERPOOL, United Kingdom

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
Page 1 of 1
Showing All
Close
Sort by
Sending request ...

Overview

Network security has become an increasing problem, with stories about sometimes significant security breaches a common feature of the nightly news. The premier network platform, Windows NT, has many important security features but they are difficult to configure and manage. With the launch of its successor, Windows 2000 Server, Microsoft has announced new security features that must be quickly grasped by network administrators.

This book addresses this new technology in depth. Written in the practical, results-oriented style for which Syngress Media books are noted, it provides detailed analysis and nuts-and-bolts information about 2000's operating system security services, including the Microsoft Security Configuration Tool Set, support for IP security, the Encrypting File System, Public Key Infrastructure, smart cards, and Kerberos.

Read More Show Less

Editorial Reviews

Booknews
Explains how to implement the new security measures within the Windows 2000 server to protect information within an organization's network. The book starts with chapters on the security migration path for the server and the default access control settings. The bulk of the book deals with specific portions of the new security features present in the operating system, such as Kerberos server authentication, the encrypting file system, and active directory permissions. A final chapter suggests a basic security framework. Annotation c. Book News, Inc., Portland, OR (booknews.com)
Read More Show Less

Product Details

  • ISBN-13: 9781928994022
  • Publisher: Syngress Publishing
  • Publication date: 10/28/1999
  • Pages: 608
  • Product dimensions: 7.40 (w) x 9.28 (h) x 1.00 (d)

Table of Contents

Preface
Chapter 1: The Windows 2000 Server Security Migration Path
Brief Overview of Windows 2000 Server Security
Windows 2000 Server Security White Paper
Why the Change?
Differences in Windows 2000 Server Security
Problems with and Limitations
What Is the Same?
Upgrading/Migrating Considerations
Network Security Plan
How to Begin the Process
Getting Started
Issues to Present to Your Manager
Proper Analysis
Timing
Cost
Resources
Summary
FAQs
Chapter 2: Default Access Control Settings
Introduction
Administrators Group
Users Group
Power Users Group
Configuring Security During Windows 2000 Setup
Default File System and Registry Permissions
Default User Rights
Default Group Membership
Summary
FAQs
Chapter 3: Kerberos Server Authentication
Introduction
Authentication in Windows 2000
Benefits of Kerberos Authentication
Standards for Kerberos Authentication
Extensions to the Kerberos Protocol
Overview of the Kerberos Protocol
Basic Concepts
Authenticators
Key Distribution Center
Session Tickets
Ticket-Granting Tickets
Services Provided by the Key Distribution Center
Subprotocols
AS Exchange
TGS Exchange
CS Exchange
Option Flags for KRB_AS_REQ and KRB_TGS_REQ Messages
Tickets
Proxy Tickets and Forwarded Tickets
Kerberos and Windows 2000
Key Distribution Center
Kerberos Policy
Contents of a Microsoft Kerberos Ticket
Delegation of Authentication
Preauthentication
Security Support Providers
Credentials Cache
DNS Name Resolution
UDP and TCP Ports
Authorization Data
KDC and Authorization Data
Services and Authorization Data
Summary
FAQs
Chapter 4: Secure Networking Using Windows 2000 Distributed Security Services
Introduction
The Way We Were: Security in NT
A Whole New World: Distributed Security in Windows 2000
Distributed Services
Open Standards
Windows 2000 Distributed Security Services
Active Directory and Security
Advantages of Active Directory Account Management
Managing Security via Object Properties
Managing Security via Group Memberships
Active Directory Object Permissions
Relationship between Directory and Security Services
Domain Trust Relationships
Delegation of Administration
Fine-Grain Access Rights
Inheritance of Access Rights
Multiple Security Protocols
NTLM Credentials
Kerberos Credentials
Getting a Ticket to Ride
Private/Public Key Pairs and Certificates
Other Supported Protocols
Enterprise and Internet Single Sign-on
Security Support Provider Interface
Internet Security for Windows 2000
Client Authentication with SSL 3.0
Authentication of External Users
Microsoft Certificate Services
CryptoAPI
Interbusiness Access: Distributed Partners
Summary
FAQs
Chapter 5: Security Configuration Tool Set
Introduction
Security Configuration Tool Set Overview
Security Configuration Tool Set Components
Security Configuration and Analysis Snap-in
Security Setting Extensions to Group Policy
Security Templates
The secedit.exe Command Line Tool
Security Configurations
Security Configuration and Analysis Database
Security Configuration and Analysis Areas
Account Policies
Local Policies
Event Log
Restricted Groups
System Services
Registry
File System
Security Configuration Tool Set User Interfaces
Security Configuration and Analysis Snap-in
The Security Settings Extension to the Group Policy Editor
The secedit.exe Command Line Tool
Configuring Security
Account Policies
Local Policies and Event Log
Event Log
Restricted Groups
Registry Security
File System Security
System Services Security
Analyzing Security
Account and Local Policies
Restricted Group Management
Registry Security
File System Security
System Services Security
Group Policy Integration
Security Configuration in Group Policy Objects
Additional Security Policies
Using the Tools
Using the Security Configuration and Analysis Snap-in
Using Security Settings Extension to Group Policy Editor
Summary
FAQs
Chapter 6: Encrypting File System for Windows 2000
Introduction
Using an Encrypting File System
Encryption Fundamentals
How EFS Works
User Operations
File Encryption
Assessing an Encrypted File
Copying an Encrypted File
COPY Command
Moving or Renaming an Encrypted File
Decrypting a File
Cipher Utility
Directory Encryption
Recovery Operations
EFS Architecture
EFS Components
The Encryption Process
The EFS File Information
The Decryption Process
Summary
FAQs
Chapter 7: IP Security for Microsoft Windows 2000 Server
Introduction
Network Encroachment Methodologies
Snooping
Spoofing
TCP/IP Sequence Number Attack
Password Compromise
Denial of Service Attacks
TCP SYN Attack
SMURF Attack
Teardrop Attack
Ping of Death
Man-in-the-Middle Attacks
Application-Directed Attacks
Compromised Key Attacks
IPSec Architecture
Overview of IPSec Cryptographic Services
Message Integrity
Message Authentication
Confidentiality
IPSec Security Services
Authentication Header (AH)
Encapsulating Security Payload (ESP)
Security Associations and IPSec Key Management Procedure
IPSec Key Management
Deploying Windows IP Security
Evaluating Information
Evaluating the "Enemy"
Determining Required Security Levels
Building Security Policies with Customized
Building an IPSec MMC
Flexible Security Policies
Rules
Flexible Negotiation Policies
Filters
Creating a Security Policy
Making the Rule
Compatibility Notes
Summary
FAQs
Chapter 8: Smart Cards
Introduction
Interoperability
ISO , EMV, and GSM
PC/SC Workgroup
The Microsoft Approach
A Standard Model for Interfacing Smart Card readers and Cards with PCs
Device-Independent APIs for Enabling Smart-Card-Aware Applications
Integration with Various Microsoft Platforms
Smart Card Base Components
Service Providers
Cryptographic Service Providers
Smart Card Service Providers
Cards
Resource Manager
Enhanced Solutions
Client Authentication
Public-Key Interactive Logon
Smart Card Reader Installation
Smart Card Certificate Enrollment
Smart Card Logon
Secure E-Mail
Summary
FAQs
Chapter 9: Microsoft Windows 2000 Public Key Infrastructure
Introduction
Concepts
Public Key Cryptography
Public Key Functionality
Digital Signatures
Authentication
Secret Key Agreement via Public Key
Bulk Data Encryption without
Protecting and Trusting Cryptographic Keys
Certificates
Certificate Authorities
Certificate Types
Trust and Validation
Windows 2000 PKI Components
Certificate Authorities
Certificate Hierarchies
Deploying an Enterprise CA Trust in Multiple CA Hierarchies
Enabling Domain Clients
Generating Keys
Key Recovery
Certificate Enrollment
Renewal
Using Keys and Certificates
Roaming
Revocation
Trust
PK Security Policy in Windows 2000
Trusted CA Roots
Certificate Enrollment and Renewal
Smart Card Logon
Applications Overview
Web Security
Secure E-mail
Digitally-Signed Content
Encrypting File System
SmartCard Logon
IP Security (IPSec)
Preparing for Windows 2000 PKI
Summary
FAQs
Chapter 10: Windows 2000 Server Security Fast Track
Introduction
What Is Windows 2000 Server Security, and Why Do You Need to Know About It?
How Do You Spell "Security"?
Authentication
Authorization
Privacy
Integrity
Auditability
Important Features or Design Changes
Industries and Companies Affected by Windows 2000 Security
Advantages and Disadvantages
Advantages of Windows 2000 Server Security
Problems with Windows 2000 Server Security
Windows 2000 and Security
FAQs
Index
Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star

(0)

4 Star

(0)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Your Name: Create a Pen Name or

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

 
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)