Kursarrangør:
Sun Microsystems
|
|
Sted: På forespørsel i hele landet. (Dette kurset kan holdes de fleste steder på forespørsel. Men i de fleste tilfeller vil det kreve et visst antall deltakere for at kurset kan holdes på ditt hjemsted.) Ta kontakt for mer informasjon
|
|
Type:
Åpent kurs / gruppeundervisning
|
|
Undervisningstid:
Ta kontakt for avtale
|
The Enterprise Security Using Kerberos course provides students with the knowledge and skills necessary to deploy Kerberos in the enterprise and to secure enterprise deployments of Lightweight Directory Access Protocol (LDAP).
|
Upon completion of this course, students should be able to:
• Understand Cryptography
• Use NTP
• Understand and implement Kerberos
• Administer Kerberos
• Implement Cross-Realm Authentication
• Integrate Kerberos Implementations
• Understand and Integrate LDAP
• Configure LDAP security
Content:
Introducing Cryptography
• Describe common terms and techniques used in cryptography
• Understand the role and usage of cryptography in securing computer networks
• Discuss the architecture of the Secured Sockets Layer (SSH) protocol
Reviewing NTP
• Discuss the need for time synchronization in a networked environment
• Configure client system to synchronize time with a network server
• Deploy a Network Time Protocol (NTP) server which client systems can query
• Configure access restrictions on NTP clients and servers
Introducing Kerberos
• Discuss typical security and convenience limitations
• Describe the benefits afforded by the use of Kerberos in the enterprise
• Explain the conceptual operation of Kerberos
Examining Kerberos
• Describe the configuration files and applications that comprise Kerberos
• Discuss the Kerberos daemons needed on Kerberos server systems
• Describe the Kerberos applications used on Kerberos client systems
• Discuss the differences between master and slave Key Distribution Center (KDC)
Implementing Kerberos
• Deploy Kerberos master KDCs
• Configure slave Kerberos KDCs to provide redundancy and load-balancing
• Configure client systems to authenticate using Kerberos
Using Kerberos
• Describe the process which users authenticate as Kerberos principals
• Discuss the tools available to change passwords for Kerberos principals
• Explain how Kerberos principals can grant password-less accounts
Administering Kerberos
• Configure Kerberos keytabs
• Establish Kerberos principal password policies
• Configure PAM to provide Solaris users with single sign-on access
Implementing Cross-Realm Authentication
• Discuss reasons for using one Kerberos realm, or multiple Kerberos realms
• Describe the cross-realm authentication trust arrangements
• Configure direct and hierarchical cross-realm authentication relationships
Integrating Kerberos Implementations
• Discuss interoperability concerns between standards-compliant and nonstandard Kerberos implementations
• Describe Kerberos topologies used when integrating Microsoft Kerberos
• Configure Microsoft Kerberos as a hierarchical sub-realm
Reviewing LDAP
• Describe the structure of a Lightweight Directory Access Protocol
• Discuss common uses of LDAP
• Understand common LDAP terminology
Configuring LDAP Security
• Discuss methods of authenticating access to LDAP directories
• Describe tools used to secure LDAP transactions
• Describe tools used to secure access to specific entries within the LDAP directory
Integrating Kerberos and LDAP
• Contrast the benefits afforded by use of Kerberos with those of LDAP
• Describe methods in which Kerberos and LDAP can be used simultaneously
• Detail the security advantages and disadvantages of using LDAP with Kerberos
• Detail the security advantages and disadvantages using Kerberos on top of LDAP
|
Målgruppe for kurset
Students who can benefit from this course are individuals who want to deploy the Kerberos security, who want to deploy a secure single-sign-on solutions, and those who need secure authentication and encryption for NFS.
To succeed in this course, students must fully understand the material in the following courses: SA-299: Advanced System Administration for the Solaris 9 Operating System and SA-399: Network Administration for the Solaris 9 Operating System.
|
|
|
|
|
Ønsker du mer informasjon om dette kurset?
|
Sun Microsystems
Sun ble grunnlagt med én eneste visjon som drivkraft. En visjon om datamaskiner som kommuniserte med hverandre uansett hvem som hadde laget dem. En visjon om teknikk som arbeider for deg, ikke motarbeider deg. Mens andre utviklet varemerkebeskyttede og proprietære løsninger, fokuserte vi på å hjelpe bedrifter inn i nettverksæraen. Som et resultat av dette er vi blitt dotten i .com. Vi leverer systemer og programvare som oppfyller kravene til skalerbarhet og påliteligheten som er nødvendig for å drive den elektroniske markedsplassen.
|
|
|
|
|
Tips en venn
|
|
