- August 2, 2010
- English, Chinese (Simplified), Chinese (Traditional), French, German, Italian, Japanese, Korean, Portuguese (Brazil), Russian, Spanish, Spanish (Latin America)
- Academic
- Windows 10
- MTA
Security Fundamentals
Microsoft Certified Professional exams are provided by third-party vendors.
- Are you attending school, or are you an instructor? Register for your exam with Certiport.
- No longer in school but still interested in technology? Register with Pearson VUE.
* Pricing does not reflect any promotional offers or reduced pricing for Microsoft Imagine Academy program members, Microsoft Certified Trainers, and Microsoft Partner Network program members. Pricing is subject to change without notice. Pricing does not include applicable taxes. Please confirm exact pricing with the exam provider before registering to take an exam.
Effective May 1, 2017, the existing cancellation policy will be replaced in its entirety with the following policy: Cancelling or rescheduling your exam within 5 business days of your registered exam time is subject to a fee. Failing to show up for your exam appointment or not rescheduling or cancelling your appointment at least 24 hours prior to your scheduled appointment forfeits your entire exam fee.
Effective May 1, 2017, the existing cancellation policy will be replaced in its entirety with the following policy: Cancelling or rescheduling your exam within 5 business days of your registered exam time is subject to a fee. Failing to show up for your exam appointment or not rescheduling or cancelling your appointment at least 24 hours prior to your scheduled appointment forfeits your entire exam fee.
This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam. View video tutorials about the variety of question types on Microsoft exams.
40367A: Security Fundamentals: MTA Exam 98-367 (three days) This three-day MTA training course helps you to prepare for MTA exam 98-367 and to build an understanding of security layers, operating system security, network security, and security software. Examination Essential Alasdair K. Ruthven Step-by-step guides to clinical examination scenarios with practical tips and key facts for OSCEs 9 703 ISBN 978-1-907904-10-3 Essential Examination 3rd edition Essential Examination has been comprehensively revised and new sections added. N eonatal – the “baby check”. F oot and ankle. F.
Please note that the questions may test on, but will not be limited to, the topics described in the bulleted text.
Do you have feedback about the relevance of the skills measured on this exam? Please send Microsoft your comments. All feedback will be reviewed and incorporated as appropriate while still maintaining the validity and reliability of the certification process. Note that Microsoft will not respond directly to your feedback. We appreciate your input in ensuring the quality of the Microsoft Certification program.
If you have concerns about specific questions on this exam, please submit an exam challenge.
If you have other questions or feedback about Microsoft Certification exams or about the certification program, registration, or promotions, please contact your Regional Service Center.
As of June 23, 2016, this exam includes updates for Windows 10, in addition to updates to security and threat terms. To learn more about these changes and how they affect the skills measured, please download and review the Exam 98-367 change document.
- Understand core security principles
- Confidentiality; integrity; availability; how threat and risk impact principles; principle of least privilege; social engineering; attack surface analysis; threat modelling
- Understand physical security
- Site security; computer security; removable devices and drives; access control; mobile device security; keyloggers
- Understand Internet security
- Browser security settings; secure websites
- Understand wireless security
- Advantages and disadvantages of specific security types; keys; service set identifiers (SSIDs); MAC filters
Preparation resources
- Understand user authentication
- Multifactor authentication; physical and virtual smart cards; Remote Authentication Dial-In User Service (RADIUS); biometrics; use Run As to perform administrative tasks
- Understand permissions
- File system permissions; share permissions; registry; Active Directory; enable or disable inheritance; behavior when moving or copying files within the same disk or on another disk; multiple groups with different permissions; basic permissions and advanced permissions; take ownership; delegation; inheritance
- Understand password policies
- Password complexity; account lockout; password length; password history; time between password changes; enforce by using Group Policies; common attack methods; password reset procedures; protect domain user account passwords
- Understand audit policies
- Types of auditing; what can be audited; enable auditing; what to audit for specific purposes; where to save audit information; how to secure audit information
- Understand encryption
- Encrypting file system (EFS); how EFS-encrypted folders impact moving/copying files; BitLocker (To Go); TPM; software-based encryption; MAIL encryption and signing and other uses; virtual private network (VPN); public key/private key; encryption algorithms; certificate properties; certificate services; PKI/certificate services infrastructure; token devices; lock down devices to run only trusted applications
- Understand malware
- Buffer overflow; viruses, polymorphic viruses; worms; Trojan horses; spyware; ransomware; adware; rootkits; backdoors; zero day attacks
Preparation resources
- Understand dedicated firewalls
- Types of hardware firewalls and their characteristics; when to use a hardware firewall instead of a software firewall; stateful versus stateless firewall inspection; Security Compliance Manager; security baselines
- Understand network isolation
- Routing; honeypot; perimeter networks; network address translation (NAT); VPN; IPsec; server and domain isolation
- Understand protocol security
- Protocol spoofing; IPsec; tunneling; DNSsec; network sniffing; denial-of-service (DoS) attacks; common attack methods
Preparation resources
- Understand client protection
- Antivirus; protect against unwanted software installations; User Account Control (UAC); keep client operating system and software updated; encrypt offline folders, software restriction policies; principle of least privilege
- Understand email protection
- Antispam, antivirus, spoofing, phishing, and pharming; client versus server protection; Sender Policy Framework (SPF) records; PTR records
- Understand server protection
- Separation of services; hardening; keep server updated; secure dynamic Domain Name System (DNS) updates; disable unsecure authentication protocols; Read-Only Domain Controllers (RODC)
Preparation resources
- 40032A: Networking and Security Fundamentals: Training two-pack for MTA Exams 98-366 and 98-367 (five days)This five-day training two-pack helps you to prepare for MTA exams 98-366 and 98-367 and to build an understanding of network infrastructures, network hardware, protocols and services, security layers, operating system security, network security, and security software. These courses leverage the same content as found in the Microsoft Official Academic Courses (MOACs) for these exams.
- 40367A: Security Fundamentals: MTA Exam 98-367 (three days)This three-day MTA training course helps you to prepare for MTA exam 98-367 and to build an understanding of security layers, operating system security, network security, and security software. This course leverages the same content as found in the MOAC for this exam.
This exam validates that a candidate has fundamental security knowledge and skills. It can serve as a stepping stone to the Microsoft Certified Solutions Associate (MCSA) exams. It is recommended that candidates become familiar with the concepts and the technologies described here by taking relevant training courses. Candidates are expected to have some hands-on experience with Windows Server, Windows-based networking, Active Directory, anti-malware products, firewalls, network topologies and devices, and network ports.
More information about exams
We recommend that you review this exam preparation guide in its entirety and familiarize yourself with the resources on this website before you schedule your exam. See the Microsoft Certification exam overview for information about registration, videos of typical exam question formats, and other preparation resources. For information on exam policies and scoring, see the Microsoft Certification exam policies and FAQs.
This preparation guide is subject to change at any time without prior notice and at the sole discretion of Microsoft. Microsoft exams might include adaptive testing technology and simulation items. Microsoft does not identify the format in which exams are presented. Please use this preparation guide to prepare for the exam, regardless of its format. To help you prepare for this exam, Microsoft recommends that you have hands-on experience with the product and that you use the specified training resources. These training resources do not necessarily cover all topics listed in the 'Skills measured' section.