Overview
Learning Outcomes:
In this module, you will complete the following exercises:
- Exercise 1 – Working with Domain Name System Security Extensions (DNSSEC)
- Exercise 2 - Configuring IPSec
- Exercise 3 - Knowing the Security Protocols
After completing this module, you should be able to:
- Create a zone, sample resource records, and a nonauthoritative DNS Server.
- Sign the zone using default settings.
- Distribute the TA to a nonauthoritative DNS Server.
- Verify DNSKEY trust anchors.
- Query a signed zone without DNSSEC validation required.
- Configure support for DNSSEC in GPO.
- Query a signed zone with DNSSEC validation required.
- Create connection security rule on PLABWIN10 and on PLABDC01.
- Verify the security association.
- Run network monitor to observe traffic pattern.
- Find network conversation signed with ESP.
- Disable the connection security rules on PLABWIN10 and PLABDC01.
- Run network monitor to collect new data.
After Completing this module, you should have further knowledge of:
- Secure/Multipurpose Internet Mail Exchanger (S/MIME)
- Secure Real-Time Protocol (SRTP)
- Lightweight Directory Access Protocol (LDAP) over SSL (LDAPS)
- File Transfer Protocol, Secure (FTPS) and Secure File Transfer Protocol (SFTP)
- Simple Network Management Protocol, Version 3 (SNMPv3)
- Hypertext Transfer Protocol Over SSL/TLS (HTTPS)
- Secure Post Office Protocol (POP)/ Internet Message Access Protocol (IMAP)
- Use cases
Exam Objectives:
The following exam objectives are covered in this lab:
- Protocols
- Use cases
Note: Our main focus is to cover the practical, hands-on aspects of the exam objectives. We recommend referring to course material or a search engine to research theoretical topics in more detail.