Course Title: Plan, configure and test advanced server-based security
Part B: Course Detail
Teaching Period: Term1 2021
Course Code: EEET7392C
Course Title: Plan, configure and test advanced server-based security
School: 174T School of VE Engineering, Health & Science
Campus: City Campus
Program: C5394 - Diploma of Information Technology Networking
Course Contact: Program Manager
Course Contact Phone: +61 3 9925 4468
Course Contact Email: vehs@rmit.edu.au
Name and Contact Details of All Other Relevant Staff
Nominal Hours: 80
Regardless of the mode of delivery, represent a guide to the relative teaching time and student effort required to successfully achieve a particular competency/module. This may include not only scheduled classes or workplace visits but also the amount of effort required to undertake, evaluate and complete all assessment requirements, including any non-classroom activities.
Pre-requisites and Co-requisites
Nil
Course Description
This unit describes the skills and knowledge required to design and implement a network authentication model that allows users to log in using the same user credentials between multiple operating system platforms to provide a secure method of sharing files on the same network. It applies to individuals employed in network or systems engineering roles where they are required to support multiple operating systems in a complex computing environment of medium-to-large organisations.
National Codes, Titles, Elements and Performance Criteria
National Element Code & Title: |
ICTNWK602 Plan, configure and test advanced server-based security |
Element: |
1. Plan advanced network server security according to business needs |
Performance Criteria: |
1.1 Consult with client and key stakeholders to identify security requirements in an advanced network server environment 1.2 Analyse and review existing client security documentation and predict network service vulnerabilities 1.3 Research network authentication and network service configuration options and implications to produce network security solutions 1.4 Ensure features and capabilities of network service security options meet the business needs 1.5 Produce or update server security design documentation to include new solutions 1.6 Obtain sign-off for the security design from the appropriate person |
Element: |
2. Prepare for Network server security implementation |
Performance Criteria: |
2.1 Prepare for work in line with site-specific safety requirements and enterprise occupational health and safety (OHS) processes and procedures 2.2 Identify safety hazards and implement risk control measures in consultation with appropriate personnel 2.3 Consult appropriate person to ensure the task is coordinated effectively with others involved at the worksite 2.4 Back up server before implementing configuration changes |
Element: |
3. Configure the advanced network server security according to design |
Performance Criteria: |
3.1 Configure update services to provide automatic updates to ensure maximum security and reliability 3.2 Configure network authentication, authorisation and accounting services to log and prevent unauthorised access to the server 3.3 Configure basic service security and access control lists to limit access to authorised users, groups or networks 3.4 Implement encryption as required by the design 3.5 Configure advanced network service security options for services and remote access 3.6 Configure the operating system or third-party firewall to filter traffic in line with security requirements 3.7 Ensure security of server logs and log servers are appropriately implemented for system integrity 3.8 Implement backup and recovery methods to enable restoration capability in the event of a disaster |
Element: |
4. Monitor and test network server security |
Performance Criteria: |
4.1 Test server to assess the effectiveness of network service security according to agreed design plan 4.2 Monitor server logs, network traffic and open ports to detect possible intrusions 4.3 Monitor important files to detect unauthorised modifications 4.4 Investigate and verify alleged violations of server or data security and privacy breaches 4.5 Recover from, report and document security breaches according to security policies and procedures 4.6 Evaluate monitored results and reports to implement and test improvement actions required to maintain the required level of network service security |
Learning Outcomes
Refer to Elements
Details of Learning Activities
You will be involved in the following learning activities to meet requirements for the two clustered competencies (ICTNWK602 and ICTNWK504). Both learning activities will incorporate
• Lectures
• Tutorials
• Individual work on assignments, practical labs and knowledge based assessments.
Cluster Information:
This course is delivered in a cluster referred to as Network Servers. This cluster consists of two units of competencies from the 50418 National Unit Code. They are ICTNWK504 (EEET7390C) and ICTNWK602 (EEET7392C).
You must enrol in all two courses delivered in this cluster. All the learning and assessment activities will include the components of all competencies ICTNWK504 and ICTNWK602.
Elements and Performance Criteria of ICTNWK602 (EEET7392C)
ELEMENT |
PERFORMANCE CRITERIA |
Elements describe the essential outcomes. |
Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Plan advanced network server security according to business needs |
1.1 Consult with client and key stakeholders to identify security requirements in an advanced network server environment 1.2 Analyse and review existing client security documentation and predict network service vulnerabilities 1.3 Research network authentication and network service configuration options and implications to produce network security solutions 1.4 Ensure features and capabilities of network service security options meet the business needs 1.5 Produce or update server security design documentation to include new solutions 1.6 Obtain sign-off for the security design from the appropriate person |
2. Prepare for Network server security implementation |
2.1 Prepare for work in line with site-specific safety requirements and enterprise occupational health and safety (OHS) processes and procedures 2.2 Identify safety hazards and implement risk control measures in consultation with appropriate personnel 2.3 Consult appropriate person to ensure the task is coordinated effectively with others involved at the worksite 2.4 Back up server before implementing configuration changes |
3. Configure the advanced network server security according to design |
3.1 Configure update services to provide automatic updates to ensure maximum security and reliability 3.2 Configure network authentication, authorisation and accounting services to log and prevent unauthorised access to the server 3.3 Configure basic service security and access control lists to limit access to authorised users, groups or networks 3.4 Implement encryption as required by the design 3.5 Configure advanced network service security options for services and remote access 3.6 Configure the operating system or third-party firewall to filter traffic in line with security requirements 3.7 Ensure security of server logs and log servers are appropriately implemented for system integrity 3.8 Implement backup and recovery methods to enable restoration capability in the event of a disaster |
4. Monitor and test network server security |
4.1 Test server to assess the effectiveness of network service security according to agreed design plan 4.2 Monitor server logs, network traffic and open ports to detect possible intrusions 4.3 Monitor important files to detect unauthorised modifications 4.4 Investigate and verify alleged violations of server or data security and privacy breaches 4.5 Recover from, report and document security breaches according to security policies and procedures 4.6 Evaluate monitored results and reports to implement and test improvement actions required to maintain the required level of network service security |
Elements and Performance Criteria of ICTNWK504 (EEET7390C)
ELEMENT |
PERFORMANCE CRITERIA |
Elements describe the essential outcomes. |
Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Prepare for the design and installation of an integrated server solution |
1.1 Consult with client and key stakeholders to identify server integration requirements 1.2 Prepare for work, according to site specific safety requirements and enterprise occupational health and safety (OHS) processes and procedures 1.3 Arrange access to site and advise client of deployment and potential down times 1.4 Consult appropriate personnel to ensure the task is coordinated effectively with others involved at the worksite |
2. Plan and design integrated server solution |
2.1 Research and review authentication methods available for integration of network operating systems 2.2 Select appropriate authentication methods and protocols 2.3 Research redundancy and replication requirements for selected authentication model 2.4 Produce the integrated server design, including authentication, file sharing and security |
3. Install and configure the integrated server solution |
3.1 Implement integrated authentication solution 3.2 Implement integrated file sharing solution 3.3 Configure workstations for integrated environment 3.4 Implement security for the integrated server environment |
4. Test and reconfigure network servers |
4.1 Test server for benchmarking against client specification and requirements according to test plan, and record outcomes 4.2 Analyse error report and make changes as required 4.3 Use troubleshooting tools and techniques to diagnose and correct integration problems 4.4 Test required changes or additions 4.5 Validate changes or additions against specifications |
5. Complete and document network design and installation |
5.1 Make and document server configuration and operational changes 5.2 Complete client report and notification of server status 5.3 Clean up and restore worksite to client’s satisfaction 5.4 Secure sign-off from appropriate person |
Teaching Schedule
The proposed teaching schedule for the two clustered competencies (ICTNWK602 & ICTNWK504) is detailed below:
Week |
Topics |
Assessment |
Week 1
|
Introduction to Windows Server Security |
|
Week 2
|
Installation of Windows Server 2019 and Windows 10 Operating system using Oracle VM Virtual Box |
|
Week 3
|
Introduction to Active Directory and DNS Lab 2:Installing and Configuring Active Directory, DNS Server on Windows Server 2019 |
|
Week 4
|
Introduction to Dynamic Host Configuration Protocol Server Lab 3: Install and Configure DHCP, IIS, Web Server and FTP on Windows Server 2019 |
Knowledge Assessment - 1 Due Assessment 2 - Project Released |
Week 5 | Introduction to Remote Access Services on Windows Server 2019 |
|
Week 6
|
SSTP VPN |
|
Week 7
|
Introduction to Trust Relationship between domains Knowledge Assessment - 2 |
Knowledge Assessment - 2 Released Assessment 1 - Practical Assessment Released |
Week 8 |
Implementation of Trust Relationship between domains |
Knowledge Assessment - 2 Due |
Week 9
|
Introduction to Linux and its commands |
|
Week 10 |
Network Time Protocol & SMB NTP and SAMBA server on Linux Mint |
|
Week 11 |
Introduction to Integrated File Sharing on Windows Server 2019
|
|
Week 12
|
Integrated File Sharing Continued Knowledge Assessment - 3 Released |
Knowledge Assessment - 3 Released |
Week 13
|
Client Reports, Technical Documentation and Benchmarking |
Knowledge Assessment - 3 Due |
Week 14
|
Performance Monitoring, Backup and Testing |
|
Week 15 |
Work on Practical Assessment |
Assessment 2 - Project Due |
Week 16 |
Practical Assessment |
Assessment 1 - Practical Assessment Due |
Week 17 |
Resubmission and Resit |
|
Week 18 |
Resubmission and Resit |
Learning Resources
Prescribed Texts
References
Other Resources
None
Overview of Assessment
The assessment is conducted in both theoretical and practical aspects of the course according to the performance criteria set in the National Training Package. Assessment may incorporate a variety of methods including written/oral activities and demonstration of practical skills to the relevant industry standards. Participants are advised that they are likely to be asked to personally demonstrate their assessment activities to their teacher/assessor. Feedback will be provided throughout the course. To successfully complete this course you will be required to demonstrate competency in each assessment task detailed under Assessment Tasks:
Assessment Tasks
Assessment 1: Practical Assessment
Assessment 2: Product Assessment (Project)
Assessment 3: Knowledge Assessment
These tasks assesses the following Course Learning Outcomes (CLOs):
Assessment Mapping Matrix
Element/Performance Criteria Covered |
Assessment 1 |
Assessment 2 |
Assessment 3 |
1.1 |
X |
X |
|
1.2 |
X |
X |
|
1.3 |
|
X |
|
1.4 |
|
X |
|
1.5 |
|
X |
|
1.6 |
X |
X |
|
2.1 |
X |
X |
X |
2.2 |
X |
X |
|
2.3 |
X |
X |
|
2.4 |
|
X |
|
3.1 |
|
X |
|
3.2 |
|
X |
|
3.3 |
X |
X |
|
3.4 |
|
X |
|
3.5 |
|
X |
|
3.6 |
|
X |
|
3.7 |
|
X |
|
3.8 |
|
X |
|
4.1 |
|
X |
|
4.2 |
|
X |
|
4.3 |
|
X |
|
4.4 |
|
X |
|
4.5 |
|
X |
|
4.6 |
|
X |
|
Assessment Tasks
Assessments
To be deemed competent students must demonstrate an understanding of all aspects required of this course and must achieve a satisfactory standard in each assessment. Assessment methods have been designed to measure student's competency in each course over multiple tasks.
Resubmissions
For each assessment submitted by the due date in this course students will be given feedback within 2 weeks of the assessment submission. If you do not submit your assessment by the due date or if your first attempt is not satisfactory you will be allowed a single resubmission attempt for each assessment in this course. You will be provided with a new due date by your teacher for your resubmission attempt if a resubmission is required.
Due dates
All assessment tasks will have a due date provided and published in Canvas. Assessments submitted after the due date will not be accepted unless an extension has been provided or special consideration has been granted.
Extensions
If you will not be able to meet the due date for an assessment you may apply to your teacher for an extension of up to seven days by completing the Application of Time to Submit Assessment Work Form at https://www.rmit.edu.au/content/dam/rmit/documents/Students/Student_forms/Application-for-extension-of-time-to-submit-work.pdf Applications for an extension of time must be received before the due date for an assessment.
Special Consideration
If unforeseen circumstances beyond your control prevent you from submitting your work on time you may be eligible to apply for special consideration. For further information regarding special consideration, please refer to the RMIT Special Consideration page at https://www.rmit.edu.au/students/student-essentials/assessment-and-results/special-consideration
Assessment Matrix
Assessment Mapping Matrix for ICTNWK602 (EEET7392C):
These tasks assess the following Course Learning Outcomes (CLOs):
Element/Performance Criteria Covered |
Assessment 1 |
Assessment 2 |
Assessment 3 |
1.1 |
X |
X |
|
1.2 |
X |
X |
|
1.3 |
|
X |
|
1.4 |
|
X |
|
1.5 |
|
X |
|
1.6 |
X |
X |
|
2.1 |
X |
X |
X |
2.2 |
X |
X |
|
2.3 |
X |
X |
|
2.4 |
|
X |
|
3.1 |
|
X |
|
3.2 |
|
X |
|
3.3 |
X |
X |
|
3.4 |
|
X |
|
3.5 |
|
X |
|
3.6 |
|
X |
|
3.7 |
|
X |
|
3.8 |
|
X |
|
4.1 |
|
X |
|
4.2 |
|
X |
|
4.3 |
|
X |
|
4.4 |
|
X |
|
4.5 |
|
X |
|
4.6 |
|
X |
|
Assessment Mapping Matrix for ICTNWK504 (EEET7390C):
These tasks assess the following Course Learning Outcomes (CLOs):
Element/Performance Criteria Covered |
Assessment 1 |
Assessment 2 |
Assessment 3 |
1.1 |
X |
X |
|
1.2 |
X |
X |
X |
1.3 |
X |
X |
|
1.4 |
X |
X |
|
2.1 |
X |
|
X |
2.2 |
X |
|
|
2.3 |
X |
|
|
2.4 |
X |
|
|
3.1 |
X |
|
|
3.2 |
X |
|
|
3.3 |
X |
|
|
3.4 |
X |
|
|
4.1 |
X |
|
|
4.2 |
X |
X |
|
4.3 |
X |
X |
|
4.4 |
X |
X |
|
4.5 |
X |
X |
|
5.1 |
X |
|
|
5.2 |
X |
|
|
5.3 |
X |
|
|
5.4 |
X |
X |
|
Other Information
Credit Transfer and/or Recognition of Prior Learning (RPL):
You may be eligible for credit towards courses in your program if you have already met the learning/competency outcomes through previous learning and/or industry experience. To be eligible for credit towards a course, you must demonstrate that you have already completed learning and/or gained industry experience that is:
- Relevant
- Current
- Satisfies the learning/competency outcomes of the course
Please refer to http://www.rmit.edu.au/students/enrolment/credit to find more information about credit transfer and RPL
Study and learning Support:
Study and Learning Centre (SLC) provides free learning and academic development advice to you.
Services offered by SLC to support your numeracy and literacy skills are:
- assignment writing, thesis writing and study skills advice
- maths and science developmental support and advice
- English language development
Please Refer http://www.rmit.edu.au/studyandlearningcentre to find more information about Study and learning Support
Equitable Learning Services (ELS):
If you are suffering from long-term medical condition or disability, you should contact Equitable Learning Services (ELS) to seek advice and support to complete your studies.
Please refer to https://www.rmit.edu.au/students/support-and-facilities/student-support/equitable-learning-services to find more information about services offered by Equitable Learning Services (ELS).
Late submission:
If you require an Extension of Submittable Work (assignments, reports or project work etc.) for 7 calendar days or less (from the original due date) and have valid reasons, you must complete and lodge an Application for Extension of Submittable Work (7 Calendar Days or less) form and lodge it with the Senior Educator/ Program Manager.
The application must be lodged no later than one working day before the official due date. You will be notified within no more than 2 working days of the date of lodgment as to whether the extension has been granted.
If you seek an Extension of Submittable Work for more than 7 calendar days (from the original due date) must lodge an Application for Special Consideration form under the provisions of the Special Consideration Policy, preferably prior to, but no later than 2 working days after the official due date.
Submittable Work (assignments, reports or project work etc.) submitted late without approval of an extension will not be accepted or marked.
Special consideration:
Please Refer http://www.rmit.edu.au/students/specialconsideration to find more information about special consideration
Plagiarism:
Plagiarism is a form of cheating and it is very serious academic offence that may lead to expulsion from the University.
Please Refer: www.rmit.edu.au/academicintegrity to find more information about plagiarism.
Other Information:
All email communications will be sent to your RMIT email address and you must regularly check your RMIT emails.
Course Overview: Access Course Overview