Course details

Securing a Virtualization Infrastructure

Securing a Virtualization Infrastructure


Overview/Description
Target Audience
Prerequisites
Expected Duration
Lesson Objectives
Course Number
Expertise Level



Overview/Description
With the popularity of virtual machines, their adminstration is of utmost importance. This course explores the protection services for Windows Server 2016 VM infrastructure with hosted datacenters and enterprise SMB services. During the course, you will learn how to implement Microsoft's Guarded Fabric Solution, and it's three components: the HSG (Host Guardian Service), guarded hosts (Hyper-V boxes) and a set of shielded virtual machines. Next, you will learn how to configure Admin and TPM Trusted Attestation, aswell as the key protection service with HGS. Progressing through the course, you will explore how to migrate the VM to a guarded host, and troubleshoot with the Guarded Fabric Diagnostic Tool and BitLocker. Conclude by observing how to determine requirements for implementing encryption-supported and shielded VMs.

Target Audience
IT professionals, Microsoft Server 2016 administrators, and MCSE candidates

Prerequisites
None

Expected Duration (hours)
1.0

Lesson Objectives

Securing a Virtualization Infrastructure

  • start the course
  • recognize virtualization infrastructure
  • implement a guarded fabric solution
  • install and configure the Host Guardian Service (HGS)
  • configure admin-trusted attestation and configure TPM-trusted attestation
  • configure the Key Protection Service (KPS) For HGS
  • migrate VMs to guarded hosts
  • troubleshoot guarded hosts
  • implement shielded and encryption-supported VMs
  • understand BitLocker's role in the Guarded Fabric solution
  • determine requirements and scenarios for implementing shielded VMs and create a shielded VM using only a Hyper-V environment
  • enable and configure vTPM to allow an operating system and data disk encryption within a VM
  • determine requirements and scenarios for implementing encryption-supported and shielded VMs
  • Course Number:
    os_swns_a06_it_enus

    Expertise Level
    Intermediate