Mastering Public Key Infrastructure (PKI)

MS1000 3 days 590

This three-day instructor-led training provides in-depth training on designing, configuring and troubleshooting Active Directory Certificate Services (PKI) in Windows Server OS.

Overview

Public Key Infrastructure (PKI) becomes a critical component of every enterprise IT infrastructure when it comes to confidentiality, data integrity and security in general.  Every single organization today is using more or less PKI components – it might be only for Web Servers (HTTPS), data encryption (SQL encryption) or it might be even for user’s authentication (Smart Cards) and encryption (EFS, S/MIME). 

PKI is sometimes difficult to understand since it relates to different areas of knowledge – IT infrastructure, security and legal policies, hardware devices (smart cards, hardware security modules).  

This three-day instructor-led training provides in-depth training on designing, configuring and troubleshooting Active Directory Certificate Services (PKI) in Windows Server OS (current version is based on Windows Server 2012 R2). 


Accreditation 

ITCE is a Certified Microsoft Learning Partner.  


What you’ll learn

STRUCTURE:

The training is based on Microsoft Official Curriculum and further developed by the security consultants at ITCE including all the experience from real PKI projects. Students will be able to hear best practices, real project challenges and PKI solutions that work in the real life.

COURSE MODULES:

Module 01 – Introduction to Public Key Infrastructure

  • Describe Symmetric and Asymmetric Encryption
  • Describe PKI and its components
  • Describe Microsoft AD Certificate Cervices in Windows Server 2012

Module 02: Designing a Certification Authority Hierarchy

  • Identifying CA Hierarchy Design Requirements
  • Common CA Hierarchy Designs
  • Documenting Legal Requirements
  • Analyzing Design Requirements
  • Designing a CA Hierarchy Structure

Lab02 – Design a two-tier PKI solution

Module 03 – Implementing and Managing Certification Authorities

  • Options for implementing CA hierarchies
  • Deploy a root CA and subordinate CA
  • Configure CA properties
  • Plan and Configure CRLs
  • Planning for High Availability of PKI
  • Backup and Restore a CA

Lab03 – Deploy and configure a two-tier PKI solution

Module 04 – Deploying and Configuring Certificates

  • Describe certificates and certificate templates
  • Configure certificate template settings in Windows Server 2012
  • Modify and enable a certificate template
  • Key Archival and recovery

Lab04 – Deploy Certificate Templates

Module 05: Configuring Certificate Enrollment

  • Introduction to Certificate Enrollment
  • Enrolling Certificates Manually
  • Creating and managing custom CSRs
  • Auto-enrolling Certificates

Lab05 – Enrolling Certificates

Module 06 – Certificates Usage

  • Using Certificates for SSL
  • Using Certificates in Email Security – S/MIME
  • Using Certificates for Digital Signatures
  • Using Certificates for Content Encryption
  • Using Certificates for Authentication
  • Using Certificates for Smart Cards

Lab06 – Practical digital certificate usage

Module 07 – Integration with Hardware Cryptography Service providers

  • Using Smart Cards for Authentication
  • Using Hardware Security Modules for storing server certificates

Instructor

Dimitar Georgiev ITCE

Dimitar Georgiev

Senior Consultant & Training Manager

Dimitar is a Senior Consultant and Trainer with more than 15 years of experience in consulting some of the region’s largest enterprises in the field of Orchestration & Automation of IT Services, Cloud Solutions, IT Security. He is Training Manager at ITCE, responsible for ensuring the continuous improvement of the training experience.

Calendar

  1. 13-15 Nov

    Wed – Fri 590

Frequently Asked Questions

Who should attend?

This course is intended for Information Technology (IT) Professionals, Developers and Security Officers interested in Public Key Infrastructure

Are there any prerequisites for the training?

Basic understanding of Microsoft Windows Server and Active Directory Services.

Related Courses

Register






Once you submit your registration, we will get in touch with you to confirm your interest and attendance.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close