Windows Server 2025 - Security Features
1h 52mIntermediate2025-07-10
Authors
Seema Rahman
Experienced IT Consultant focusing on Microsoft Cloud solutions
Course details
In this course, Microsoft Cloud solutions expert Seema Rahman helps you master the advanced security features of Windows Server 2025, including implementing security baselines, configuring LDAP/Kerberos enhancements, securing file sharing with SMB over QUIC, managing DMSA accounts, and optimizing secure connectivity solutions. Dive into the implementation, management, and customization of security baselines, along with detailed insights into advancements in authentication such as LDAP over TLS 1.3, improved LAPS, and Kerberos. Explore the configuration and security enhancements of SMB over QUIC and delve into the configuration steps of DMSA. Plus, learn about improvements in connectivity that include securing routing and remote access, changes in IPSec and advancements in secure certificate management.
Learning objectives
Articulate new security features of windows server 2025.
Implement windows server 2025 security baseline.
Define new LDAP and Kerberos features in Windows Server 2025.
Implement secure file share using SMB over QUIC.
Configure secure managed account utilizing DMSA account feature.
Define secure connectivity features of Windows Server 2025.
Learning objectives
Articulate new security features of windows server 2025.
Implement windows server 2025 security baseline.
Define new LDAP and Kerberos features in Windows Server 2025.
Implement secure file share using SMB over QUIC.
Configure secure managed account utilizing DMSA account feature.
Define secure connectivity features of Windows Server 2025.
Skills covered
Windows ServerNetwork SecurityServer AdministrationCybersecurityNetwork and System AdministrationMicrosoftOne-Off
Concepts
0. Introduction
- 01 - Introduction to security features
1. Windows Server 2025 Security - What Is New
- 02 - Security baseline concepts
- 03 - Deploying Windows Server 2025 OSConfig module
- 04 - Applying Windows Server 2025 security baseline
- 05 - Customizing Windows Server 2025 security baseline
2. Improvements in Authentication
- 06 - Overview of improvements in authentication
- 07 - NTLM auditing
- 08 - Improvements in Local Administrator Password Solution (LAPS)
- 09 - Configuring new LAPS features
3. Securing Fileshare using SMB
- 10 - Overview of SMB over QUIC
- 11 - SMB over QUIC configuration
- 12 - Group policies for SMB over QUIC
4. Securing with DMSA Accounts
- 13 - Delegated Managed Service Account (dMSA) features
- 14 - dMSA migration and attributes
- 15 - Configuring dMSA
5. Security Connectivity
- 16 - Windows Server 2025 - Securing connectivity
- 17 - Securing Routing and Remote Access service
- 18 - Changes in IPsec
- 19 - New tools and monitoring
Conclusion
- 20 - Quick recap and conclusion
Related courses
- Windows Server 2025: Advanced Management Features
- Learning PowerShell for Windows Server Administration
- Windows Server 2025: Implementing Group Policy
- Server Administration Essential Training: Manage, Maintain Storage, Networking, Security, and Troubleshooting
- Windows Server 2022: Manage, Monitor, and Maintain Servers
- Complete Guide to Administering Windows Server by Microsoft Press
- Windows Server 2025 Essential Training
- Windows Server 2025: DHCP and DNS
Related learn paths
- The Top Skills IT Professionals Have Right Now
- Getting Started with Windows Server 2022
- Getting Started with Windows Server 2019
- Optimizing Enterprise Security and Productivity Using Microsoft 365
- Networking and Administration Fundamentals
- Succeed as a Remote IT Administrator
- Advance Your MS SQL Server Skills
- Prepare for the CompTIA Server+ (SK0-004) Exam