This is the first of two books serving as an expanded and up-dated version of Windows Server 2003 Security Infrastructures for Windows 2003 Server R2 and SP1 & SP2. The authors choose to encompass this material within two books in order to illustrate the intricacies of the different paths used to secure MS Windows server networks.
Since its release in 2003 the Microsoft Exchange server has had two important updates, SP1 and SP2. SP1, allows users to increase their security, reliability and simplify the administration of the program. Within SP1, Microsoft has implemented R2 which improves identity and access management across security-related boundaries. R2 also improves branch office server management and increases the efficiency of storage setup and management. The second update, SP2 minimizes spam, pop-ups and unwanted downloads. These two updated have added an enormous amount of programming security to the server software.
* Covers all SP1 and SP2 updates
* Details strategies for patch management
* Provides key techniques to maintain security application upgrades and updates

Jan De Clercq is one of HP's lead consultants in the space of Microsoft security. As a Senior Consultant, he is involved in many Windows implementations around the world and is a frequent speaker on the subject at Microsoft and general security conferences. In his HP Security Office member role he focuses on identity management. Jan is based in Belgium. He is co-author of Mission-Critical Active Directory (Digital Press, 2001).Guido Grillenmeier works as a Senior Consultant within the Enterprise Microsoft Services Organization at Hewlett Packard. Based in Germany, Guido joined HP in 1996 and has been working with directories since the early days of Windows NT. Today, he deals primarily with global Windows 2000 deployments and migrations, designing and implementing efficient Active Directory security and delegation models for HP's customers. Guido has been a speaker at Microsoft Exchange and IT-Forum conferences as well as the Directory Experts conferences hosted by NetPro

ForewordPrefaceChapter 1: The Challenge of Trusted Security Infrastructures Chapter 2: Windows Security Authorities and PrincipalsChapter 3: Trust Relationships2 AuthenticationChapter 4: Introducing Windows AuthenticationChapter 5: KerberosChapter 6: IIS AuthenticationChapter 7: Unix Authentication IntegrationChapter 8: Single Sign-onChapter 9: Introducing Windows AuthorizationChapter 10: Active Directory AuthorizationChapter 11: Active Directory DelegationChapter 12: Malicious Mobile Code ProtectionChapter 13: Rights Management ServicesChapter 14: Introducing Microsoft Identity ManagementChapter 15: Identity Management RepositoriesChapter 16: AD Federation ServicesChapter 17: Introducing Windows Public Key InfrastructureChapter 18: Windows PKI TrustChapter 19: The Certificate LifecycleChapter 20: Building a Windows Server 2003 Public Key Infrastructure Chapter 21: PKI-enabled applicationsChapter 22: Security Policy ManagementChapter 23: Security Patch ManagementChapter 24: Security-related AuditingChapter 25: Active Directory Disaster Recovery