
Master Microsoft security fundamentals by exploring security layers, operating system security, network security, and security software across Windows 10 and Windows Server 2016, applicable to newer versions.
Explore hands-on security fundamentals through over 5 hours of live demonstrations, building a virtualized lab with VirtualBox to install Windows 10 and Windows Server 2016.
Discover how Active Directory centralizes authentication, authorization, and accounting with single sign-on for Windows domain networks, and how domain controller, LDAP, and organizational units enable centralized administration.
Install and promote Windows Server 2016 to a domain controller by adding the Active Directory Domain Services role, configuring a local domain like alnet.local, and ensuring DNS integration.
Install and configure a dhcp server on Windows to issue ipv4 addresses from a local 192.168.10.0/24 scope, verify leases, and test client connectivity via ipconfig and ping.
Explore authentication, authorization, and accounting as a framework that controls access to data and resources. Verify identities, enforce access control, and audit actions to protect data integrity and mitigate risks.
Explore the types of risks and threats across monetary costs, asset losses, and legal concerns, including data and intellectual property breaches, corporate espionage, and threat categories—natural, unintentional, and intentional.
Explore physical and logical access control within risk management, and the six control types: preventative, detective, corrective, recovery, deterrent, and compensating, with door access and ACL examples.
Apply physical security to computer equipment with cable locks and lockable server racks to add defense in depth, pairing these with logical access controls and in-room safes when traveling.
Explore keyloggers, their physical USB, software, and wireless variants, and learn practical protection methods such as anti-malware, encryption, and hardware security to prevent keystroke capture.
WPA serves as an interim fix to WEP, enabling updates via firmware and using a weaker RC4 cipher with encrypted IV, plus a temporal key integrity protocol to update keys.
Compare WPA personal and enterprise modes: personal uses a pre-shared key for small networks, while enterprise authenticates users against Active Directory via a radius server using 802.1X and EAP.
Watch a live demonstration of using the run as command to perform administrative tasks with elevated privileges. It highlights user account control and least privilege, with examples like check disk.
Explore how NTFS file and folder moves and copies affect permissions and inheritance across and within partitions, showing when actions inherit destination permissions versus retaining originals.
Explore the Windows registry’s hive, key, and value structure, and how registry permissions including read, full control, and advanced options are inherited and managed, with safe editing tips.
Demonstrate basic NTFS permissions in a Windows environment by creating a folder, adding domain users and a specific user, and adjusting read, modify, and deny versus allow settings.
Demonstrate advanced NTFS permissions with a live session, showing how to access advanced settings, add a user, and assign granular permissions beyond basic options, including traversal and read attributes.
See a live demo of creating Active Directory security groups, adding users, and assigning a folder with inherited permissions; verify effective access on Windows Server 2016.
Live demo of creating organizational units in Active Directory, assigning users and computers, delegating control, and configuring Group Policy for password and security settings across West and East offices.
Explore how group policy governs account lockout policies alongside password policies, detailing the threshold, duration, and reset account lockout counter after settings to mitigate failed login attempts and improve security.
LEARN MICROSOFT WINDOWS SECURITY FROM ONE OF UDEMY'S TOP IT INSTRUCTORS
Are you an IT professional who needs to understand how to secure Windows systems and networks? Do you want hands-on experience with BitLocker encryption, AppLocker policies, Active Directory security, and Windows hardening techniques? If so, this comprehensive course is exactly what you need.
Windows remains the dominant operating system in enterprise environments, powering over 70% of business desktops and servers worldwide. Understanding how to properly secure Windows systems, configure encryption, manage permissions, and defend against attacks is essential for anyone working in IT security, system administration, or technical support.
In this 13-hour comprehensive course, I'll teach you Microsoft Windows security fundamentals through 30+ live demonstrations and hands-on labs. You'll build a complete lab environment and learn security skills you can apply in your organization.
WHAT STUDENTS ARE SAYING
"Well structured course, hitting the fundamentals in an easy to understand way." — Steven C ★★★★★
"Great content on security and tools that should be used to infra protection." — Vinicius ★★★★★
"Instructor was very knowledgeable and easy to listen to, with good video slides to reinforce the topics." — Anthony J ★★★★★
"Very easy to follow and packed full of useful information. Would definitely recommend!" — Eirean ★★★★★
HANDS-ON LEARNING WITH 30+ LIVE DEMONSTRATIONS
This isn't a theory-only course. You'll build a complete Windows lab environment and follow along with live demonstrations covering real-world security configurations and hardening techniques. You'll work with Windows 10 Enterprise (same security architecture as Windows 11), Windows Server 2016, Active Directory, and essential security tools.
Built with Windows 10, Fully Applicable to Windows 11: This course uses Windows 10 Enterprise for demonstrations, but the underlying Windows security architecture remains the same for Windows 11. BitLocker encryption, AppLocker policies, NTFS permissions, Active Directory security, Group Policy, Windows Firewall, and all core security concepts work identically across both operating systems. Whether you're securing Windows 10 or Windows 11 environments, you'll gain the same hands-on skills.
WHAT YOU'LL RECEIVE IN THIS COURSE
13 Hours of HD Video Lectures & Live Demonstrations
30+ Hands-On Labs Including BitLocker, AppLocker, Active Directory Security, and Windows Hardening
Complete Lab Setup Guide (VirtualBox, Windows Server 2016, Active Directory Domain Environment)
15 Section Quizzes to Reinforce Your Learning
PDF Lectures of All Course PowerPoint Slides
Downloadable Course Videos for Offline Viewing with Udemy Mobile App
KEY COURSE TOPICS
Core Security Principles & Risk Management
CIA Triad, Defense in Depth, Least Privilege, Risk Management, Attack Surface Analysis
Physical & Wireless Security
Physical site security, removable device security, keyloggers, wireless encryption (WEP, WPA, WPA2, WPA3)
Windows Authentication & User Security
Authentication fundamentals, smart cards, RADIUS server configuration, Run As administrative tasks
Windows Permissions & Access Control
NTFS permissions (basic and advanced), share permissions, inheritance, Active Directory groups and OUs, Registry security, Group Policy management
Password Policies & Account Security
Microsoft password policies, account lockout policies, password attack methods, auditing, and compliance
Encryption & Data Protection
Symmetric and asymmetric encryption, hashing algorithms, digital certificates, Windows EFS (Encrypting File System), BitLocker, and BitLocker To Go, software restriction policies
Malware Defense
Understanding malware types (viruses, worms, trojans, ransomware, rootkits), buffer overflows, and zero-day attacks
Firewall & Network Security
Windows Firewall configuration, hardware vs. software firewalls, stateful vs. stateless filtering
Network Isolation & Segmentation
Perimeter networks, VLANs, honeypots, NAT, VPN, IPSec, server and domain isolation
Protocol Security
Protocol spoofing, network sniffing with Wireshark, and DNSSec implementation
Client & Server Hardening
User Account Control (UAC), AppLocker policies, Windows Defender, software updates, server hardening, separation of services, Read-Only Domain Controllers (RODC)
BY THE END OF THIS COURSE, YOU'LL BE ABLE TO:
Understand how BitLocker encryption works and follow along with demonstrations configuring it in a lab environment
Learn what AppLocker policies are and how they control application execution in Windows environments
Understand Active Directory security fundamentals, including groups, organizational units, delegation, and Group Policy basics
Follow along with demonstrations of NTFS permissions and share permissions to understand Windows file security
Understand how Windows Firewall works and learn basic network isolation techniques
Learn about password policies, account lockout policies, and audit policies for Windows compliance
Understand Windows Encrypting File System (EFS) and encryption fundamentals through hands-on demonstrations
Learn Windows client and server hardening best practices and security configurations
Build and configure a basic Windows security lab environment to practice along with the course
PERFECT FOR IT PROFESSIONALS AT ALL LEVELS
Whether you're a help desk technician advancing into security, a system administrator needing Windows security expertise, or a security analyst working with Windows environments, this course provides the foundation you need. Basic Windows knowledge is helpful but not required—I walk you through everything step-by-step.
ORIGINALLY DESIGNED FOR MTA 98-367, CORE CONCEPTS REMAIN ESSENTIAL
This course was originally created as comprehensive preparation for Microsoft's MTA 98-367 Security Fundamentals certification (retired June 2022). While that certification is no longer available, the fundamental Windows security concepts, hands-on skills, and security architecture covered in this course remain essential for IT professionals working with Windows systems and Active Directory environments.
WHY LEARN WINDOWS SECURITY NOW?
Windows security skills are in constant demand. Organizations need IT professionals who can properly configure encryption, manage permissions, defend against malware, and harden systems. Whether you're protecting on-premises infrastructure or securing hybrid cloud environments, understanding Windows security fundamentals is essential.
PREVIEW OVER 2 HOURS OF THIS COURSE FOR FREE
Scroll down and click the blue "Preview" button on any of my 20 free sample lectures. See my teaching style and hands-on approach before you enroll.
READY TO MASTER WINDOWS SECURITY?
Join over 220,000 students who've taken my IT and cybersecurity courses. Start building your Windows security skills today.
See you inside the course!
Alton