subject: Managing Certificates For Ipsec Policies [print this page] If you want to be certified on newer Microsoft technologies, such as Exchange Server 2010, Windows Server 2008, or SQL Server 2008, you should pursue the Microsoft Certified IT Professional MCITP Certification. And if you have the MCSE on Windows Server 2003 certification, you can upgrade to the Microsoft Certified Technology Specialist (MCTS) and Microsoft Certified IT Professional (MCITP) on Windows Server 2008 certifications.
The Microsoft Certified Systems Engineer (MCSE) certification shows clients and employers that you are skilled in designing, implementing, and administering infrastructures for business solutions based on Windows Server 2003 and Microsoft Windows 2000 Server. Implementation responsibilities include installing, configuring, and troubleshooting network systems.
access control list (ACL) The mechanism for limiting access to certain items of information or to certain controls based on users' identity and their membership in various predefined groups. An ACL is typically used by system administrators for controlling user access to network resources such as servers, directories, and files and is typically implemented by granting permissions to users and groups for access to specific objects.
nested OUs The creation of organizational units (OUs) within OUs.organizational unit (OU) An Active Directory container object used within a domain. An OU is a logical container into which you can place users, groups, computers, and other OUs. It can contain objects only from its parent domain. An OU is the smallest scope to which you can apply a Group Policy or delegate authority. 70-680 Exam
Figure 3-7 shows just such a scenario. In the figure, two computers one from tailspintoys.com and one from wingtiptoys.com are attempting to negotiate an IPSec connection. Computerl.tailspintoys.com has an IPSec certificate from an enterprise CA in tailspintoys, and computera.wingtiptoys.com has an IPSec certificate from the enterprise CA in its domain. For each computer to authenticate to the other, each must have a root CA certificate from the other's root CA as well as their own. Arrows from the respective CAs point to each computer, showing that this is so.
