Exam 98-367

Security fundamentals

Microsoft Certified Professional exams are provided by third-party vendors.Attending school or an instructor? Schedule your exam at Certiport's website.

Schedule now

No longer in school and interested in technology? Register for an exam at Prometric's website.

Schedule now

* Pricing does not include any promotional offers or reduced pricing for Microsoft IT Academy program members, Microsoft Certified Trainers, and Microsoft Partner Network program members. Price is subject to change without notice. Price does not include applicable taxes. Please confirm exact pricing with the exam provider before registering to take an exam.
Microsoft Windows Server logo
  • Published: August 2, 2010
  • Languages: English
  • Audiences: Academic
  • Technology: Windows Server 2008
  • Credit toward certification: MTA

Convince your boss email

Copy the following content into an email message to your boss and update [the bracketed text] with the appropriate content.

Dear [your boss's name]:

I'd like to expand and prove my technical skills by earning a Microsoft Certification. My next step is taking Exam 98-367. The registration fee is {GET PRICE FROM EXAM PROVIDER}.

When I pass this certification, you'll have proof of my ability to work with Windows Server 2008. Microsoft has training and online resources to help me prepare for the exam. I believe I'll be more effective and productive after achieving this valuable technical certification.

Let me know if you have any questions. In the meantime, you can find out more about this exam at https://www.microsoft.com/learning/en-us/exam-98-367.aspx. As you can see, the exam validates skills that are crucial to our team's success.

Thank you for your support,

[your name]

Skills measured

This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam.

Please note that the questions may test on, but will not be limited to, the topics described in the bulleted text.

  • Understand core security principles

    • Confidentiality; integrity; availability; how threat and risk impact principles; principle of least privilege; social engineering; attack surface

  • Understand physical security

    • Site security; computer security; removable devices and drives; access control; mobile device security; disable Log On Locally; keyloggers

  • Understand Internet security

    • Browser settings; zones; secure websites

  • Understand wireless security

    • Advantages and disadvantages of specific security types; keys; service set identifiers (SSIDs); MAC filters

  • Understand user authentication

    • Multifactor; smart cards; Remote Authentication Dial-In User Service (RADIUS); Public Key Infrastructure (PKI); understand the certificate chain; biometrics; Kerberos and time skew; use Run As to perform administrative tasks; password reset procedures

  • Understand permissions

    • File; share; registry; Active Directory; NT file system (NTFS) versus file allocation table (FAT); enable or disable inheritance; behavior when moving or copying files within the same disk or on another disk; multiple groups with different permissions; basic permissions and advanced permissions; take ownership; delegation

  • Understand password policies

    • Password complexity; account lockout; password length; password history; time between password changes; enforce by using Group Policies; common attack methods

  • Understand audit policies

    • Types of auditing; what can be audited; enable auditing; what to audit for specific purposes; where to save audit information; how to secure audit information

  • Understand encryption

    • Encrypting file system (EFS); how EFS-encrypted folders impact moving/copying files; BitLocker (To Go); TPM; software-based encryption; MAIL encryption and signing and other uses; virtual private network (VPN); public key/private key; encryption algorithms; certificate properties; certificate services; PKI/certificate services infrastructure; token devices

  • Understand malware

    • Buffer overflow; worms; Trojans; spyware

  • Understand dedicated firewalls

    • Types of hardware firewalls and their characteristics; why to use a hardware firewall instead of a software firewall; SCMs and UTMs; stateful versus stateless inspection

  • Understand Network Access Protection (NAP)

    • Purpose of NAP; requirements for NAP

  • Understand network isolation

    • Virtual local area networks (VLANs); routing; honeypot; perimeter networks; network address translation (NAT); VPN; IPsec; server and domain isolation

  • Understand protocol security

    • Protocol spoofing; IPsec; tunneling; DNSsec; network sniffing; common attack methods

  • Understand client protection

    • Antivirus; User Account Control (UAC); keep client operating system and software updated; encrypt offline folders, software restriction policies

  • Understand email protection

    • Antispam, antivirus, spoofing, phishing, and pharming; client versus server protection; Sender Policy Framework (SPF) records; PTR records

  • Understand server protection

    • Separation of services; hardening; keep server updated; secure dynamic Domain Name System (DNS) updates; disable unsecure authentication protocols; Read-Only Domain Controllers (RODC); separate management VLAN; Microsoft Baseline Security Analyzer (MBSA)

Preparation options

Find training near you

Who should take this exam?

This exam validates that a candidate has fundamental security knowledge and skills. It can serve as a stepping stone to the Microsoft Certified Solutions Associate (MCSA) exams. It is recommended that candidates become familiar with the concepts and the technologies described here by taking relevant training courses. Candidates are expected to have some hands-on experience with Windows Server, Windows-based networking, Active Directory, anti-malware products, firewalls, network topologies and devices, and network ports.

More information about exams

We recommend that you review this exam preparation guide in its entirety and familiarize yourself with the resources on this website before you schedule your exam. See the Microsoft Certification exam overview for information about registration, videos of typical exam question formats, and other preparation resources. For information on exam policies and scoring, see the Microsoft Certification exam policies and FAQs.

This preparation guide is subject to change at any time without prior notice and at the sole discretion of Microsoft. Microsoft exams might include adaptive testing technology and simulation items. Microsoft does not identify the format in which exams are presented. Please use this preparation guide to prepare for the exam, regardless of its format. To help you prepare for this exam, Microsoft recommends that you have hands-on experience with the product and that you use the specified training resources. These training resources do not necessarily cover all of the topics listed in the "Skills measured" section.