1. Home
  2. Microsoft
  3. 98-367 Exam Syllabus

Microsoft 98-367 Exam Syllabus

Microsoft 98-367 Exam

MTA Security Fundamentals

Total Questions: 123

What is Included in the Microsoft 98-367 Exam?

Authentic information about the syllabus and an effective study guide is essential to go through the Microsoft 98-367 exam in the first attempt. The study guide of Study4Exam provides you with comprehensive information about the syllabus of the Microsoft 98-367 exam. You should get this information at the start of your preparation because it helps you make an effective study plan. We have designed this Microsoft Technology Associate certification exam preparation guide to give the exam overview, practice questions, practice test, prerequisites, and information about exam topics that help to go through the Microsoft MTA Security Fundamentals (2022) exam. We recommend you to the preparation material mentioned in this study guide to cover the entire Microsoft 98-367 syllabus. Study4Exam offers 3 formats of Microsoft 98-367 exam preparation material. Each format provides new practice questions in PDF format, web-based and desktop practice exams to get passing marks in the first attempt.

Microsoft 98-367 Exam Overview :

Exam Name MTA Security Fundamentals
Exam Code 98-367
Actual Exam Duration 45 minutes
Expected no. of Questions in Actual Exam 60
Exam Registration Price $127
Official Information https://www.microsoft.com/en-us/learning/exam-98-367.aspx
See Expected Questions Microsoft 98-367 Expected Questions in Actual Exam
Take Self-Assessment Use Microsoft 98-367 Practice Test to Assess your preparation - Save Time and Reduce Chances of Failure

Microsoft 98-367 Exam Topics :

Section Weight Objectives
Understand security layers 25-30%

Understand core security principles
- Confidentiality; integrity; availability; how threat and risk impact principles; principle of least privilege; social engineering; attack surface analysis; threat modelling

Understand physical security
- Site security; computer security; removable devices and drives; access control; mobile device security; keyloggers

Understand Internet security
- Browser security settings; secure websites

Understand wireless security
- Advantages and disadvantages of specific security types; keys; service set identifiers (SSIDs); MAC filters

Understand operating system security 35-40%

Understand user authentication
- Multifactor authentication; physical and virtual smart cards; Remote Authentication Dial-In User Service (RADIUS); biometrics; use Run As to perform administrative tasks

Understand permissions
- File system permissions; share permissions; registry; Active Directory; enable or disable inheritance; behavior when moving or copying files within the same disk or on another disk; multiple groups with different permissions; basic permissions and advanced permissions; take ownership; delegation; inheritance

Understand password policies
- Password complexity; account lockout; password length; password history; time between password changes; enforce by using Group Policies; common attack methods; password reset procedures; protect domain user account passwords

Understand audit policies
- Types of auditing; what can be audited; enable auditing; what to audit for specific purposes; where to save audit information; how to secure audit information

Understand encryption
- Encrypting file system (EFS); how EFS-encrypted folders impact moving/copying files; BitLocker (To Go); TPM; software-based encryption; MAIL encryption and signing and other uses; virtual private network (VPN); public key/private key; encryption algorithms; certificate properties; certificate services; PKI/certificate services infrastructure; token devices; lock down devices to run only trusted applications

Understand malware
- Buffer overflow; viruses, polymorphic viruses; worms; Trojan horses; spyware; ransomware; adware; rootkits; backdoors; zero day attacks

Understand network security 20-25%

Understand dedicated firewalls
- Types of hardware firewalls and their characteristics; when to use a hardware firewall instead of a software firewall; stateful versus stateless firewall inspection; Security Compliance Manager; security baselines

Understand network isolation
- Routing; honeypot; perimeter networks; network address translation (NAT); VPN; IPsec; server and domain isolation

Understand protocol security
- Protocol spoofing; IPsec; tunneling; DNSsec; network sniffing; denial-of-service (DoS) attacks; common attack methods

Understand security software 15-20%

Understand client protection
- Antivirus; protect against unwanted software installations; User Account Control (UAC); keep client operating system and software updated; encrypt offline folders, software restriction policies; principle of least privilege

Understand email protection
- Antispam, antivirus, spoofing, phishing, and pharming; client versus server protection; Sender Policy Framework (SPF) records; PTR records

Understand server protection
- Separation of services; hardening; keep server updated; secure dynamic Domain Name System (DNS) updates; disable unsecure authentication protocols; Read-Only Domain Controllers (RODC)

Updates in the Microsoft 98-367 Exam Syllabus:

Microsoft 98-367 exam questions and practice test are the best ways to get fully prepared. Study4exam's trusted preparation material consists of both practice questions and practice test. To pass the actual Microsoft Technology Associate 98-367 exam on the first attempt, you need to put in hard work on these Microsoft 98-367 questions that provide updated information about the entire exam syllabus. Besides studying actual questions, you should take the Microsoft 98-367 practice test for self-assessment and actual exam simulation. Revise actual exam questions and remove your mistakes with the MTA Security Fundamentals 98-367 exam practice test. Online and windows-based formats of the 98-367 exam practice test are available for self-assessment.