Masterclass: Windows Server 2019 – Public Key Infrastructure Management with Mike Jankowski-Lorek, Ph.D.

Open Virtual Class – Super Intensive Remote Training with Labs!
August 24th – 28th, 2020 (9:00am – 4:00pm CEST Monday to Friday)

Registration is Closed

OPEN VIRTUAL CLASS

This is an international Open Virtual Class, which means you will share the learning experience in a group of IT pros from around the world! The class is taught in English by Dr. Mike Jankowski-Lorek, who is one of the core CQURE’s Cybersecurity Experts, and also CQURE’s Director of Consulting! Please Remember that this course is limited to 12 participants total to ensure the highest quality and unique learning experience! During this course you will have an opportunity to interact with the instructor and get Mike’s help with any problems you might encounter, just as if it was a regular class.

About the course:
This 5-day course is considered essential for anyone who would like to expand knowledge about Public Key Infrastructure (PKI) in Microsoft technologies. During the course PKI is covered in depth, starting from the best practices for implementing secure and reliable PKI and ending up with most common scenarios of certificates usage in the enterprise environment.

At the end of the course you will be able to:

  • Understand the core essence of PKI and cryptography.
  • Evaluate and select appropriate PKI technologies.
  • Install and configure PKI environments according to the best practices taken from practical experience.
  • Secure existing PKI infrastructure.
  • Choose appropriate types and manage the certificate lifecycle.
  • Understand the benefits of certificates used in the infrastructure.
  • Adjust PKI to your business needs.
  • Become familiar with enterprise solutions that uses PKI and certificates for security.
  • Configure and use certificates in: IIS, VPN, Wi-Fi, file encryption, e-mail security and many more.

Unique Approach and Exercises:
To be a security expert you just need to know how certificates work. This subject is literally everywhere, even when implementing simple services certificates at least they can be used somewhere within the solution. You will learn how to implement your PKI and use it to increase security of your organization!

All exercises are based on newest Windows Server 2019, Windows 10 with additional Linux and virtual network appliances that covers common scenarios. Please note that you will get three extra weeks of access to the lab environment to practice even more!

Target audience:
Network administrators, infrastructure architects, security professionals, systems engineers, network administrators, IT professionals, security consultants and other people responsible for implementing network and perimeter security, Chief Security Officers. What do you need to know? PKI basics, being advanced in administering Windows system. So typical experience in administering Windows systems and server platform.

Materials:
After the workshop, you receive demo transcript, PowerPoint slides, PowerShell scripts, tools and lab instructions.

Platform and Technical Requirements:
To participate in the course you need a Stable internet connection. For best learning experience we also need you to have a webcam, headphones and a microphone. Open RDP port 3391 for the connection to the Lab environment is needed as well. We will setup a secure Zoom classroom for every day of the course – we will send you a safe link to join the conference by e-mail.

Certification:
After finishing the course, you will be granted a CQURE Certificate of Completion. Please note that after completing the course you will also be eligible to claim CPE points!

COURSE SYLLABUS

Module 1

Module 1: Essence of PKI

  • a) Cryptography basics
  • b) Fundamentals of PKI
  • c) Certificate types (X.509)
  • d) Certification authorities
  • e) Certificate Revocation Lists

Module 2

Module 2: Designing and implementing CA Hierarchy

  • a) Planning
  • b) Preparing AD Environment
  • c) Implementing CA Hierarchy
  • d) Securing CA Hierarchy
  • e) Role separation
  • f) Security Policy

Module 3

Module 3: PKI in Windows domain

  • a) Managing PKI
  • b) Configuring Certificate Templates
  • c) Configuring Certificate Enrollment
  • d) Configuring Key Archival and Recovery
  • e) Configuring Trust Between Organizations

Module 4

Module 4: Upgrading PKI Infrastructure

  • a) Supported scenarios
  • b) Upgrading certificate templates
  • c) Migration scenarios

Module 5

Module 5: PKI Security

  • a) Deploying certificates to Domain Controllers
  • b) Certificate Revocation
  • c) Certificate Validation
  • d) CDP, AIA and OCSP
  • e) Planning and implementing disaster recovery
  • f) Deploying Smart Cards
  • g) TPM Virtual Smartcard
  • h) Private key security with HSM

Module 6

Module 6: Securing applications with PKI

  • a) Secure IIS Traffic with SSL
  • b) IIS certificate store security
  • c) IIS users authentication
  • d) Windows logon with Smart Cards
  • e) E-mail security
  • f) Encrypting file system
  • g) EDocument and code signing

Module 7

Module 7: PKI for network security

  • a) VPN
  • b) Wireless Networking
  • c) 802.1X and NPS
  • d) Radius server
  • e) Ipsec
  • f)
    Mobile devices certificates with MDM, SCEP and NDE
Registration is Closed

Click here to browse the modules:

YOUR TEACHER

Mike Jankowski-Lorek, Ph.d.

Cybersecurity Expert, CQURE's Director of Consulting

Mike Jankowski-Lorek is a solution architect, developer, data scientist and security expert with more than 12-years’ experience in the field. He designs and implements solutions for Databases, Network & Management area, mainly for Microsoft platform for medium to enterprise level organizations. Mike holds multiple certifications, especially security, database and software development related. He is one of core Experts at CQURE and holds a PhD in Computer Science.

×