Chapter 7 labs
7.4.8 Configure BitLocker with a TPM
Complete this lab as follows: (Optional) Try to enable BitLocker.From the search field on the Windows taskbar, type Control.From Best match, select Control Panel.Select System and Security.From the right pane, select BitLocker Drive Encryption.Under Operating system drive, select Turn on BitLocker.An error message at the bottom of the screen indicates that a TPM security device was not found.Select Cancel. Access the BIOS settings.Right-click the Start menu and then select Shut down or sign out > Restart to reboot your computer.When the TestOut logo appears, press Delete to enter the BIOS. Turn on and activate the TPM.From the left pane, expand and select Security > TPM Security.From the right pane, select TPM Security and then select Apply.Select Activate and then select Apply.Select Exit.Your computer will automatically reboot. Turn BitLocker on.From the search field on the Windows taskbar, type Control.From Best match, select Control Panel.Select System and Security.Select BitLocker Drive Encryption.Under Operating system drive, select Turn on BitLocker. Windows begins the Drive Encryption setup. Back up a BitLocker recovery key.Select Save to a file.In the left pane, expand and select Network > CorpServer > BU-Office1.Select Save.Select Next. Configure BitLocker encryption.Select Encrypt entire drive and then select Next.Make sure that New encryption mode is selected and then select Next.Select Run BitLocker system check and then select Continue.Select Restart now.The computer will reboot, and the encryption process will run automatically.When the encryption process is complete, select Close. Verify that encryption is enabled.From the Windows taskbar, select File Explorer.From the left pane, select This PC.From the right pane, verify that the System (C:) drive shows the encryption lock icon.
7.5.6 Manage Certificates
Complete this lab as follows: Access Certification Authority on the CORPSERVER2 server.From Hyper-V Manager, select CORPSERVER2.Maximize the window for easier viewing.From the Virtual Machines pane, double-click CorpCA.From Server Manager's menu bar, select Tools > Certification Authority.Maximize the window for easier viewing.From the left pane, expand CorpCA-CA. Approve the pending certificate request for tsutton and mmallory.Select Pending Requests.From the right pane, scroll to the Request Common Name column.Right-click tsutton and select All Tasks > Issue to approve the certificate.Right-click mmallory and select All Tasks > Issue. Deny the pending request for CorpSrv12.Right-click CorpSrv12.CorpNet.com and select All Tasks > Deny.Select Yes. Revoke bchan's certificates.From the left pane, select Issued Certificates.From the right pane, right-click bchan.CorpNet.com and select All Tasks > Revoke Certificate.Using the Reason code drop-down menu list, select Key Compromise.Select Yes. Unrevoke the CorpDev3 certificate.From the left pane, select Revoked Certificates.From the right pane, right-click CorpDev3.CorpNet.com and select All Tasks > Unrevoke Certificate.
7.1.11 Hide Files with OpenStego
Complete this lab as follows: Encrypt the user data into the file to be shared.In the search field on the taskbar, type OpenStego.Under Best match, select OpenStego. Select the Message, Cover, and Output Stego files.For Message File field, select the ellipses [...] button at the end of the field.Double-click John.txt to select the file.For Cover File field, select the ellipses [...] button at the end of the field.Double-click gear.png to select the file.For the Output Stego File field, select the ellipses [...] button at the end of the field.In the File name field, enter send.png and then select Open. Password protect the file.In the Password field, enter NoMor3L3@ks!In the Confirm Password field, enter NoMor3L3@ks!Select Hide Data.Select OK. Extract the data.Under Data Hiding, select Extract Data.For the Input Stego File field, select the ellipses [...] button.Double-click send.png to select the file with the encryption.For the Output Folder for Message File field, select the ellipses [...] button.Double-click Export to set it as the destination of the file output.Click Select Folder.In the Password field, enter NoMor3L3@ks! as the password.Select Extract Data.Select OK. Verify that the decryption process was successful.From the taskbar, select File Explorer.Double-click Documents to navigate to the folder.Double-click Export to navigate to the folder.Double-click John.txt.
7.3.5 Compare an MD5 Hash
Complete this lab as follows: View the files in the C:\Downloads folder.Right-click Start and select Windows PowerShell (Admin).At the prompt, type cd C:\downloads and press Enter to navigate to the directory that contains the files.Type dir and press Enter to view the available files. Confirm that the Release.zip file is unaltered.Type get-filehash Release.zip -a md5 and press Enter to view the MD5 hash.Type get-content release821hash.txt and press Enter to view the known hash contained in the .txt file.Type "new hash" -eq "known hash" and press Enter to determine whether the file hashes match.Answer the question.In the top right, select Answer Questions.Answer the question.Select Score Lab. Q1Do the file hashes match? No