The Security Certified Program::Advanced, Vendor-Neutral IT Security Certifications

	Security Certified Network Professional
		Hardening the Infrastructure (HTI) SC0-411
	HTI Exam Domains Domain 5.0 – TCP/IP Packet Structure and Security – 25 % 5.1 – Examine the Core Concepts of TCP/IP 5.1.1 – Create a VLSM 5.1.2 – Identify Protocols and their corresponding OSI Layer 5.1.3 – Describe Multi, Broad, and Uni-Casting 5.1.4 – Examine Packet Capture and Analysis Tools 5.1.5 – Analyze packet Fragmentation 5.2 – Identify and Describe Packet Headers 5.2.1 – Describe the Structure of a Packet 5.2.2 – Identify and Describe the IP Header 5.2.3 – Identify and Describe the ICMP Header 5.2.4 – Identify and Describe the TCP Header 5.2.5 – Identify and Describe the UDP Header 5.3 – Examine the Session Setup and Teardown 5.3.1 – Describe the TCP Lifecycle 5.3.2 – Identify the concepts of the 3-Way Handshake 5.3.3 – Describe the Session Establishment Process 5.3.4 – Describe the Session Teardown Process 5.4 – Identify and Implement IPv6 5.4.1 – Describe Benefits of IPv6 over IPv4 5.4.2 – Identify IPv6 Addressing Schemes 5.4.3 – Implementation of IPv6 on a Windows client 5.4.4 – Configuration and Use of IPv6 Utilities Domain 6.0 – Operating System Security – 35 % 6.1 – Windows 2000 Infrastructure Security 6.1.1 – Describe Active Directory Components 6.1.2 – Describe Group Policy 6.1.3 – Creation of a GPO 6.2 – Examine Windows 2000 Authentication 6.2.1 – Describe LM Authentication 6.2.2 – Describe NTLM Authentication 6.2.3 – Describe and Configure NTLMv2 Authentication 6.2.4 – Describe Kerberos in Windows 2000 6.3 – Implement Windows 2000 Security Configuration Tools 6.3.1 – Securing the Administrator Account 6.3.2 – Configuring the Security Configuration and Analysis Tool 6.3.3 – Implementing Security Templates 6.3.4 – Creation of Security Templates 6.3.5 – Using Secedit.exe 6.4 – Configure Windows 2000 Resource Security 6.4.1 – File and Folder Permissions in Windows 2000 6.4.2 – Implement Windows 2000 Registry Security 6.4.3 – Implement Windows 2000 Printer Security 6.4.4 – Manage Services and SubSystems 6.4.5 – Implement EF 6.5 – Windows 2000 Auditing and Logging 6.5.1 – Enable Auditing in Windows 2000 6.5.2 – Manage Event Logs 6.5.3 – Security related Event IDs 6.5.4 – Audit Authentication Access 6.6 – Windows 2000 Network Security 6.6.1 – Examine NAT and Internet Connection Sharing 6.6.2 – Describe the Routing and remote Access Service 6.6.3 – Examine the Internet Authentication Services 6.6.4 – Implement a RADIUS system 6.7 – Fundamental Linux Security 6.7.1 – Configure File Permissions 6.7.2 – Configure Directory Permissions 6.7.3 – Managing the Password File 6.7.4 – Managing the Shadow Password File 6.8 – Securing SAMBA 6.8.1 – Configuring SAMBA Key Files 6.8.2 – Configuring the SAMBA Server 6.8.3 – Configuring the SAMBA Client 6.8.4 – Securing the SAMBA Connections 6.9 – Network Configuration Security 6.9.1 – Configuring NFS Servers 6.9.2 – Configuring NFS Clients 6.9.3 – Securing NFS 6.9.4 – Configuring NIS 6.9.5 – Securing NIS 6.10 – Securing Linux 6.10.1 – Remove unused Services 6.10.2 – Implement and Configure TCPWrappers 6.10.3 – Implement and Configure Tripwire 6.10.4 – Auditing and Logging on Linux 6.10.5 – Implement and Configure Bastille Important Note: All percentages are approximate and subject to change at any time. The HTI Exam will be updated every year to ensure that candidate’s knowledge remains current and updated. In the event that significant changes are to be made at the yearly update, The SCP website will announce those modifications.

Locate a Training Partner

The SCP Recommends
that candidates attend
classes delivered only
by an organization that
is an Authorized
Training Partner (ATP).

SCP Global Training Map