O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Windows Server 2016 Security, Certificates, and Remote Access Cookbook

Book Description

This book contains more than 25 hands-on recipes that will equip you to build a PKI and roll out remote access capabilities via Microsoft DirectAccess and VPN. This book also contains tips and tricks for increasing the security footprint of your Windows Server infrastructure.

About This Book
  • Identify and mitigate security risks in your Windows Server 2016 infrastructure
  • Learn how to build a PKI and use it to issue certificates within your network
  • In-depth information for setting up Microsoft DirectAccess
Who This Book Is For

If you are a Windows Server administrator interested in learning the key security and networking functions available in Windows Server 2016, keep this book close at hand. If you are a server administrator setting up certificate services for the first time you will also benefit from the step-by-step instructions on implementation of a PKI.

What You Will Learn
  • Implement solid networking and security practices into your Windows Server environment
  • Design your own PKI and start issuing certificates today
  • Connect your remote laptops back to the corporate network using Microsoft's own remote access technologies, including DirectAccess
  • Learn to use commands that will help you with monitoring network traffic.
  • Build and explore your first Server Core instance today!
In Detail

Windows Server 2016 is an operating system designed to run on today's highly performant servers, both on-premise and in the cloud. It supports enterprise-level data storage, communications, management, and applications. This book builds off a basic knowledge of the Windows Server operating system, and assists administrators with taking the security of their systems one step further.

You will learn tips for configuring proper networking, especially on multi-homed systems, and tricks for locking down access to your servers.

Then you will move onto one of the hottest security topics of the year - certificates. You will learn how to build your own PKI, or how to better administer one that you already have. You will publish templates, issue certificates, and even configure autoenrollment in your network.

When we say "networking" we don't only mean inside the LAN. To deal safely with mobile devices, you will learn about the capabilities of Windows Server 2016 for connecting these assets securely back into the corporate network, with information about DirectAccess and VPN.

The material in the book has been selected from the content of Packt's Windows Server 2016 Cookbook by Jordan Krause to provide a specific focus on these key Windows Server tasks.

Style and approach

This book is a quick recipe-based guide on Windows Server 2016. The book starts with an introduction to securing servers and properly configuring network settings, then moves on to establishing certificate services using Windows Server 2016. Finally we explore the connection of remote laptops to the corporate network using DirectAccess and VPN.

Downloading the example code for this book You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.

Table of Contents

  1. Title Page
  2. Copyright and Credits
    1. Windows Server 2016 Security, Certificates, and Remote Access Cookbook
  3. Packt Upsell
    1. Why subscribe?
    2. PacktPub.com
  4. Contributors
    1. About the author
    2. About the reviewer
    3. Packt is searching for authors like you
  5. Preface
    1. Who this book is for
    2. What this book covers
    3. To get the most out of this book
      1. Download the color images
      2. Conventions used
    4. Get in touch
      1. Reviews
  6. Security and Networking
    1. Introduction
    2. Requiring complex passwords in your network
      1. Getting ready
      2. How to do it...
      3. How it works...
    3. Using Windows Firewall with Advanced Security to block unnecessary traffic
      1. Getting ready
      2. How to do it...
      3. How it works...
    4. Changing the RDP port on your server to hide access
      1. Getting ready
      2. How to do it...
      3. How it works...
    5. Multi-homing your Windows Server 2016
      1. Getting ready
      2. How to do it...
      3. How it works...
      4. See also
    6. Adding a static route into the Windows routing table
      1. Getting ready
      2. How to do it...
      3. How it works...
    7. Using Telnet to test a connection and network flow
      1. Getting ready
      2. How to do it...
      3. How it works...
    8. Using the Pathping command to trace network traffic
      1. Getting ready
      2. How to do it...
      3. How it works...
    9. Setting up NIC Teaming
      1. Getting ready
      2. How to do it...
      3. How it works...
    10. Renaming and domain joining via PowerShell
      1. Getting ready
      2. How to do it...
      3. How it works...
      4. See also
    11. Building your first Server Core
      1. Getting ready
      2. How to do it...
      3. How it works...
  7. Working with Certificates
    1. Introduction
    2. Setting up the first certification authority server in a network
      1. Getting ready
      2. How to do it...
      3. How it works...
      4. See also
    3. Building a Subordinate certification authority server
      1. Getting ready
      2. How to do it...
      3. How it works...
      4. See also
    4. Creating a certificate template to prepare for issuing machine certificates to your clients
      1. Getting ready
      2. How to do it...
      3. How it works...
    5. Publishing a certificate template to allow enrollment
      1. Getting ready
      2. How to do it...
      3. How it works...
    6. Using MMC to request a new certificate
      1. Getting ready
      2. How to do it...
      3. How it works...
    7. Using the web interface to request a new certificate
      1. Getting ready
      2. How to do it...
      3. How it works...
    8. Configuring Autoenrollment to issue certificates to all domain joined systems
      1. Getting ready
      2. How to do it...
      3. How it works...
    9. Renewing your root certificate
      1. Getting ready
      2. How to do it...
      3. How it works...
  8. Remote Access
    1. Introduction
    2. DirectAccess planning question and answers
    3. Configuring DirectAccess, VPN, or a combination of the two
      1. Getting ready
      2. How to do it...
      3. How it works...
    4. Pre-staging Group Policy Objects to be used by DirectAccess
      1. Getting ready
      2. How to do it...
      3. How it works...
    5. Enhancing the security of DirectAccess by requiring certificate authentication
      1. Getting ready
      2. How to do it...
      3. How it works...
    6. Building your Network Location Server on its own system
      1. Getting ready
      2. How to do it...
      3. How it works...
    7. Enabling Network Load Balancing on your DirectAccess servers
      1. Getting ready
      2. How to do it...
      3. How it works...
    8. Adding VPN to your existing DirectAccess server
      1. Getting ready
      2. How to do it...
      3. How it works...
    9. Replacing your expiring IP-HTTPS certificate
      1. Getting ready
      2. How to do it...
      3. How it works...
    10. Reporting on DirectAccess and VPN connections
      1. Getting ready
      2. How to do it...
      3. How it works...
  9. Other Books You May Enjoy
    1. Leave a review - let other readers know what you think