PGP UNIVERSAL SERVER 3.2 AND PGP DESKTOP 10.2: ADMINISTRATION
The PGP Universal Ser ver 3.2 and Desktop 10.2 Administration course for PGP Universal Server 3.2 and PGP Desktop 10.2 is designed to provide you with the fundamental knowledge a nd hands-on lab experience to install, administer, and troubleshoot the PGP Universal Management Server and primary client product. The hands-on labs include exercises for installation and configuration of the PGP Universal Server and PGP Desktop products, including policy-based messaging security, manual and directory-style user and group management, and PGP Desktop policy and usage, including for the PGP Whole Disk Encryption product. The course also covers troubleshooting of PGP Desktop, including installation and enrollment problems, PGP Whole Disk Encryption, and common files and services that may need to be manipulated or repaired. Additionally, you are introduced to the following PGP encryption products: Key Management Services, PGP Support Package for BlackBerry, PGP Mobile, PGP iOS Viewer and Endpoint Device Control.
Prerequisites
- An understanding of information security concepts and terminology helps you succeed in this course. Also, this course requires familiarity with networking and computing concepts. Symantec recommends that students taking this course have at least one year of information technology experience.
Course Content:
Cryptography Essentials
- Cryptography defined
- Caesar cipher
- Symmetric-Key Cryptography
- Public-Key Cryptography
- PGP Public-Key Cryptography
- Digital Signatures
- Trust Models
- Keys, Key Signatures and Key properties
- Verifying keys with key fingerprints
- Passphrases
- Certificates
PGP Product Information
- PGP Universal Server
- PGP Desktop
- PGP Command Line
- PGP Support Package for BlackBerry
- PGP Mobile
- PGP iOS Viewer
Installing PGP Un iversal Server
- PGP Universal Server overview
- Installation tasks and options
- Completing the PGP Universal Server Setup Assistant
Administrative Keys
- A review of trust and verification
- The Organization Key
- The Organization Certificate
- Configuration and usage of the Additional Decryption Key
- Other certificates used for trust on PGP Universal Server
- Ignition key types and features
Consumers and Groups
- Consumers and Groups
- PGP product user definition
- Consumer groups
- Introduction to consumer policy
- How users, groups, and policy work together
Server Messaging
- Learn Mode
- In-depth look at Mail Proxy configuration
- Description of server mail flow and typical configurations
Monitoring and Reporting
- Server monitoring and logging
- Updates, backups, and restoring
Mail Policy
- Definition of policy chains and rules
- Rule conditions, actions, and key searches
- Default mail flow and message policy
- Adding custom chains to mail flow
- Overview of various types of policy chains
- Demonstration and detailed explanation of adding a rule
- Special messaging actions and dictionaries
Key Not Found
- Problems that require a Key Not Found policy
- Introduction to Key Not Found configuration
Web Messenger
- Definition of Web Messenger
- Description of functionality
- Demonstration of end-user inbox creation
- Inbox and service administration
- Inbox replication and backup
- Customization templates
Web Messenger Con't
- Regular Email option for Web Messenger
- PDF Messenger statement and certified delivery
- How the Out of Mail Stream Consumer Policy option functions
- PGP public key directories
- Smart Trailer invitation option overview
- PGP Desktop / S/MIME option overview
- PGP Universal Satellite overview
- Preparing Universal Server for PGP Desktop Clients
- Introduction to directory synchronization
- High-level overview of LDA P
- How the server uses a directory to add and assign users to groups
- Configuring PGP Universal Server Directory Synchronization
Keys
- Managed key configuration
- Key modes
- Subkeys
- Key usage flags
- Smart card
- Introduction to key management services
Installing PGP Desktop
- System requirements
- Citrix and TS compatibility
- Downloading a custom PGP Desktop installer
- Modifying installed components
Configuring Client Enrollment
- Definition of enrollment
- Email, LDA P, and Silent enrollment type overview
General PGP Desktop Policy
- General PGP Desktop Policy
- Options on the General Card of the PGP Desktop settings of a consumer policy
- Licensing managed PGP Desktop clients
- Updating settings for managed installations
- PGP Desktop Messaging
- How PGP Desktop affects messaging infrastructure
- Options on the Messaging Card of the PGP Desktop settings of a consumer policy
- MAPI encrypt and sign buttons and offline mail processing
Configuring PGP Whole Disk Encryption
- What is Whole Dis k Encryption
- Configuring WDE
- PGP Whole Disk Encryption for Windows
- PGP Whole Disk Encryption for Mac OSX
- PGP w hole Disk Encryption for Linux
PGP Whole Disk Encryption Management and Recover
- The pgpwd command-line tool
- Logon failure and reporting
- The WDE-ADMIN group for large-scale administration
- PGP Whole Disk Encryption in the PGP Desktop settings of a consumer policy, including
- authentication methods and user per missions
- Recovery options
PGP NetShare
- Defining PGP NetShare
- Encrypted folder creation
- Configuration of the PGP Universal Server Consumer
- Policy options for NetShare, including automated folder protection and application-based file protection
- Client-side administration features for PGP NetShare
- Miscellaneous compatibility and feature information about PGP NetShare
- Active Directory Group integration and PGP NetShare usage demonstrations
Other PGP Desktop Utilities
- PGP Zip file and folder protection
- Securely erasing information using PGP Shredder and the Shred Free Space features
- PGP Virtual Disk secure volumes
- Usage cases and PGP Portable definition
Clustering
- How PGP Universal Server Clustering w orks
- Using the DMZ Clustering Zone
- Cluster failover
- Web Messenger inbox replication
- Demonstration of cluster creation
PGP Support Tools
- Introduction to the PGP Support Know ledgebase
- The quick reference document
- Using product documentation
PGP Desktop Commands and Services
- Common PGP Desktop services
- Policy, preference, logging, and other file locations
- PGP Desktop debug logging
PGP Desktop Installation and Enrollment
- Installation of PGP Desktop Fails
- If PGP Desktop does not enroll
- Enrollment error messages
- Credentials problems
PGP Whole Disk Encryption
- Boot record and user record information
- If PGP Whole Disk Encryption does not start
- Using the recovery ISO and Window s PE
- Authentication problems
- Policy and single-sign-on issues
- Disk errors
- Enrollment problems
- PGP Universal Server Overview
- Architecture and services of the server
- VMWare tools
- Custom reporting
- File and folder locations
- Expanded logging, including debug information
PGP Universal Server Installation
- PGP Universal Server Installation
- Server hardware
- Installation failure troubleshooting
- Installation disk error
- Licensing issues
PGP Universal Server General Troubleshooting
- PGP Universal Server General Troubleshooting
- Ignition Key errors
- If the server is not functioning (the datalayer is down)
PGP Universal Server Messaging
- If messages are not being encrypted
- Mail queuing
- Open relay
- Mail routes
- Certificate expiring
Web Messenger
- Web Messenger login issues
- Web Messenger non-delivery
- Certificate problems
Clustering
- Architecture
- Common problems