Hack Proofing Windows 2000 Server

Chapter 1 The Windows 2000 Server Security Migration Path Introduction Windows 2000 Server Security Why the Change Differences in Windows 2000 Server Security Authentication Limitations What Is the Same in Windows 2000 Server Upgrading and Migrating Considerations How to Begin the Process Getting Started Proper Analysis Summary Solutions Fast Track Frequently Asked Questions Chapter 2 Default Access Control Settings Introduction The Administrators Group The Users Group The Power Users Group Configuring Security during Windows 2000 Setup Default File System and Registry Permissions Default User Rights Exercise 2.1 Checking User Rights through the Microsoft Management Console Default Group Membership Pre-Windows 2000 Security Summary Solutions Fast Track Frequently Asked Questions Chapter 3 Kerberos Server Authentication Introduction Authentication in Windows 2000 Benefits of Kerberos Authentication Standards for Kerberos Authentication Extensions to the Kerberos Protocol Overview of the Kerberos Protocol Basic Concepts Subprotocols Tickets Kerberos and Windows 2000 Key Distribution Center Kerberos Policy Contents of a Microsoft Kerberos Ticket Delegation of Authentication Preauthentication Security Support Providers Credentials Cache DNS Name Resolution UDP and TCP Ports Authorization Data Kerberos Tools Summary Solutions Fast Track Frequently Asked Questions Chapter 4 Secure NetworkingUsing Windows 2000 Distributed Security Services Introduction The Way We Were: Security in NT A Whole New World: Distributed Security in Windows 2000 Windows 2000 Distributed Security Services Active Directory and Security Advantages of Active Directory Account Management Relationship between Directory and Security Services Security Protocols NTLM Credentials Kerberos Credentials Private and Public Key Pairs and Certificates Other Supported Protocols Internet Single Sign-On Internet Security for Windows 2000 Client Authentication with SSL 3.