Difference between revisions of "Cybersecurity Resilience Workshop -Track 1: Securing institutional e-mail, websites and identity systems"

From KENET Training
Jump to: navigation, search
(Trainers)
Line 1: Line 1:
KENET is pleased to invite you to the Cybersecurity Resilience Workshop - Track 1. This track focuses on fortifying the institutional digital perimeter by mastering the core protocols of DNS, Email, and Identity. Participants will transition from managing local services to building a "Circle of Trust" through the deployment of DNSSEC, DMARC/SPF/DKIM email protections, and eduroam infrastructure. The training will be held from January 25th-January 30th, 2026, at the Boma Inn Eldoret.
+
KENET is pleased to invite you to the Cybersecurity Resilience Workshop - Track 1. This track focuses on fortifying the institutional digital perimeter by mastering the core protocols of DNS, Email, and Identity. Participants will transition from managing local services to building a "Circle of Trust" through the deployment of DNSSEC, DMARC/SPF/DKIM email protections, and eduroam infrastructure. The training will be held from February 23rd to February 27th, 2026, at the Abai Lodges and Spa in Kirinyaga.
  
  
  
The training will be held from January 19th-January 23rd, 2026.
+
The training will be held from February 23rd to February 27th, 2026
  
 
=Objective=
 
=Objective=
  
By the end of the program, attendees will be capable of architecting a full-lifecycle Identity Management (IdM) system, configuring an Identity Provider (IdP) for global federation, and ensuring all services meet international compliance and security standards. The ultimate objective is to provide seamless, secure access to resources while protecting the institution's brand and data integrity from modern cyber threats.
+
By the end of the program, attendees will be able to architect a full-lifecycle Identity Management (IdM) system, configure an Identity Provider (IdP) for global federation, and ensure all services meet international compliance and security standards. The ultimate objective is to provide seamless, secure access to resources while protecting the institution's brand and data integrity from modern cyber threats.
  
 
=Who Should Attend?=
 
=Who Should Attend?=
Line 15: Line 15:
 
=Prerequisites=
 
=Prerequisites=
  
1.Laptop for the sessions with Wi-Fi capability
+
1. Laptop for the sessions with Wi-Fi capability
2.Intermediate to expert knowledge of Linux and the command line operations.
+
2. Intermediate to expert knowledge of Linux and the command line operations.
  
 
=Course content=
 
=Course content=
'''Note''': All lab manuals, and slides can be found in the [Workshop Resource Folder] at the bottom of this page.
+
'''Note''': All lab manuals and slides can be found in the [Workshop Resource Folder] at the bottom of this page.
  
  
Line 90: Line 90:
  
 
==Participants==
 
==Participants==
{| class="wikitable sortable"
 
! No.
 
! Full Name
 
! Institution
 
! Designation
 
|-
 
| 1
 
| Mrs DORCAS CHITAI
 
| HEAD OF ICT
 
| EREGI TTC
 
|-
 
| 2
 
| Mr Joseph Gitonga
 
| Network Administration
 
| Meru University of Science & Technology
 
|-
 
| 3
 
| Ms SUZZANNE KALUME
 
| webmaster
 
| Moi University
 
|-
 
| 4
 
| Mr Anthony Kang'ara
 
| Lead Data Centre & Networks
 
| Mount Kenya University
 
|-
 
| 5
 
| Mr Wycliffe Kerich
 
| ICT OFFICER (PROGRAMMER)
 
| Moi Teaching and Referral Hospital
 
|-
 
| 6
 
| Dr Alex Kibet
 
| Director ICT
 
| Laikipia University
 
|-
 
| 7
 
| Mr Luke Kibitok Rotich
 
| Database/Systems Administrator
 
| Moi University
 
|-
 
| 8
 
| Mr Richard Kimanzi
 
| Network Administrator
 
| Dedan Kimathi University of Technology
 
|-
 
| 9
 
| Mr Enock Kimutai
 
| Ict Technologist II
 
| Bomet university College
 
|-
 
| 10
 
| Mr Rogers Koech
 
| Systems Administrator
 
| University of Eldoret
 
|-
 
| 11
 
| Mr Godfrey Ambeyi Machanje
 
| Senior ICT Officer / System Administrator
 
| Bukura Agricultural College
 
|-
 
| 12
 
| Ms Sharifa Mambo
 
| Webmaster
 
| University of Kabianga
 
|-
 
| 13
 
| Ms JEPNG'ENO MERCY
 
| MIS Officer
 
| KITALE NATIONAL POLYTECHNIC
 
|-
 
| 14
 
| Mr James Muchiri
 
| ICT Officer
 
| University of Embu
 
|-
 
| 15
 
| Ms Adeline Mukanda
 
| ICT Officer I
 
| Kibabii University
 
|-
 
| 16
 
| Mr Daudi Munema
 
| Ag. I.T.S. Manager & Systems Administrator
 
| University of Eastern Africa Baraton
 
|-
 
| 17
 
| Mr peter Murunga
 
| ict Technologist
 
| Egerton University
 
|-
 
| 18
 
| Mr Samuel Ndung'u
 
| Senior ICT Officer
 
| Kenya Veterinary Vaccines Production Institute
 
|-
 
| 19
 
| Mr Ian Nyaga
 
| ICT OFFICER III
 
| Kirinyaga University
 
|-
 
| 20
 
| Mr Stephen Nyaga
 
| ICT Officer II
 
| Kirinyaga University
 
|-
 
| 21
 
| Mr Peter Odhiambo
 
| ICT Technologist
 
| Egerton University
 
|-
 
| 22
 
| Mr ISAIAH OKIAMBE
 
| ICT TEACHER
 
| ST. AUGUSTINE TTC EREGI
 
|-
 
| 23
 
| Mr Boris Olilo
 
| System Administrator
 
| Kaimosi Friends University
 
|-
 
| 24
 
| Mr Rodgers Otieno
 
| ICT Officer
 
| Mount Kenya University, Thika Campus
 
|-
 
| 25
 
| Mr Donald Owuor
 
| ICT Systems Administrator
 
| AMPATH
 
|-
 
| 26
 
| Mr Timon Simam
 
| ICT Officer
 
| Bomet University College
 
|-
 
| 27
 
| Mrs Betty Soi
 
| Webmaster
 
| Kenya Highlands Universiy
 
|-
 
| 28
 
| Mr Gabriel Wainaina
 
| Systems Administrator
 
| East African School of Aviation
 
|-
 
| 29
 
| Mr Morris Wambua
 
| Systems Administrator
 
| Machakos University
 
|-
 
| 30
 
| Ms Harriet Wangui
 
| Webmaster
 
| Turkana University College
 
|-
 
| 31
 
| Mr Amos Wanyoike
 
| Project leader
 
| Open University of Kenya
 
|-
 
| 32
 
| Mr Eric Yullu
 
| Web/System administrator
 
| Laikipia University
 
 
  
|}
 
  
 
==TimeTable==
 
==TimeTable==
Line 278: Line 111:
 
| style="background:#eef;" | **10:00** || colspan="5" style="background:#eef; text-align:center;" | '''Tea break (10:00 – 10:30)'''
 
| style="background:#eef;" | **10:00** || colspan="5" style="background:#eef; text-align:center;" | '''Tea break (10:00 – 10:30)'''
 
|-
 
|-
| **10:30** || **Module 1 on DNS and its roles (JOINT)** (Akoech) [https://training.kenet.or.ke/images/1/16/01_Track_1_A_Module_1_Introduction_to_DNS_%26_its_Role_in_Network_Security.pdf [2]] || **Module 14:** LDAP Identity Management Lab (AK) || **Module 8:** Secure Wi-Fi Authentication (eduroam & RADIUS) (AI) [https://training.kenet.or.ke/images/1/12/Implementing_Secure_Wi-Fi_Authentication_Using_FreeRADIUS.pdf [3]] || **Module 5:** Common Web Vulnerabilities& Security Assessment Lab. (Akoech/KK) || **Module 12:**Best Practices for Wi-Fi Security, eduROAM, and Federation** (AK/AI)
+
| **10:30** || **Lab Environment & Topology Walkthrough (Lab Support)** (KC) || **Module 14:** LDAP Identity Management Lab (AK) || **Module 8:** Secure Wi-Fi Authentication (eduroam & RADIUS) (AI) [https://training.kenet.or.ke/images/1/12/Implementing_Secure_Wi-Fi_Authentication_Using_FreeRADIUS.pdf [3]] || **Module 5:** Common Web Vulnerabilities& Security Assessment Lab. (Akoech/KK) || **Module 12:**Best Practices for Wi-Fi Security, eduROAM, and Federation** (AK/AI)
 
|-
 
|-
 
| **11:30** || **Module 1 on Intro to IP addressing and Routing (JOINT)** (KK) || **Module 3:** Email Security Basics (AKoech) || **Module 8:** Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab (AI) [https://training.kenet.or.ke/images/7/76/Track1_Implementing_Secure_Wi-Fi_Authentication_Using_FreeRADIUS_-_Lab.txt [3.1]] || **Module 9:** IdP-Identity Provider as a Service (AK/AI) & Installing and Configuring a SimpleSAML IdP (AK/AI) || **MCQs Assessments** (ZM) & Recap of labs (All)
 
| **11:30** || **Module 1 on Intro to IP addressing and Routing (JOINT)** (KK) || **Module 3:** Email Security Basics (AKoech) || **Module 8:** Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab (AI) [https://training.kenet.or.ke/images/7/76/Track1_Implementing_Secure_Wi-Fi_Authentication_Using_FreeRADIUS_-_Lab.txt [3.1]] || **Module 9:** IdP-Identity Provider as a Service (AK/AI) & Installing and Configuring a SimpleSAML IdP (AK/AI) || **MCQs Assessments** (ZM) & Recap of labs (All)

Revision as of 05:29, 19 February 2026

KENET is pleased to invite you to the Cybersecurity Resilience Workshop - Track 1. This track focuses on fortifying the institutional digital perimeter by mastering the core protocols of DNS, Email, and Identity. Participants will transition from managing local services to building a "Circle of Trust" through the deployment of DNSSEC, DMARC/SPF/DKIM email protections, and eduroam infrastructure. The training will be held from February 23rd to February 27th, 2026, at the Abai Lodges and Spa in Kirinyaga.


The training will be held from February 23rd to February 27th, 2026

Objective

By the end of the program, attendees will be able to architect a full-lifecycle Identity Management (IdM) system, configure an Identity Provider (IdP) for global federation, and ensure all services meet international compliance and security standards. The ultimate objective is to provide seamless, secure access to resources while protecting the institution's brand and data integrity from modern cyber threats.

Who Should Attend?

This course is designed for Cybersecurity specialists, Systems administrators and webmasters.

Prerequisites

1. Laptop for the sessions with Wi-Fi capability 2. Intermediate to expert knowledge of Linux and the command line operations.

Course content

Note: All lab manuals and slides can be found in the [Workshop Resource Folder] at the bottom of this page.


Trainers

List of Training Team Members
Full Name Initials (Inst.) Role Organization
Nyanjau Kimani NK Program Manager KENET
Alfred Kipruto AKip Quality Assurance KENET
Zeinab Mzungu ZM Logistics & Support KENET
Caroline Gachuhi CG Registration & Support KENET
Amos Koech AKoech Trainer KENET
Anne Inapat AI Trainer KENET
Anthony Kimani AK Trainer KENET
Kevin Chege KC Trainer/Labs ISOC
Kelvin Kariuki KK Trainer MMU
Lilian Maina LM Trainer KENET
Samuel Macharia SK Trainer KENET

Participants

TimeTable

Master Schedule: Track 1: Securing Institutional Emails, Websites and Identity Systems
Time Day 1 (Joint & Room -Asis) Day 2 (Room -Asis) Day 3 (Room -Asis) Day 4 (Room -Asis) Day 5 (Room -Asis)
**07:00** **Welcome and registrations** Sessions start at 08:00
**08:00** **Introductions & Objectives (JOINT)** (AKip) Recap Recap Recap Recap
**08:20** **Housekeeping (JOINT)** (ZM/Akip) **Module 13:** Intro to IAM in Education (AK) **Module 15:** Federated Identity & Trust (AK) Module 8: Labs contd. (AI) [5] **Module 10:** Federation Membership Testing (AK)
**08:35** (08:35 - 09:00 Joint Session) (Contd) (Contd) (Contd) (Contd)
**09:00** **ICANN Grant Funded Training Project - an overview (JOINT)** (AKip/NK/BO)

[1] [1.2]

**Module 14:** AuthN/AuthZ (MFA/LDAP) (AK) **Module 17:** Future of Identity (AK) **Module 6:** Best Practices for Securing Managed Email Services (KK) **Module 11:** Federation Monitoring & Troubleshooting Lab (eduroam & SimpleSAML) (AI/AK)
**10:00** Tea break (10:00 – 10:30)
**10:30** **Lab Environment & Topology Walkthrough (Lab Support)** (KC) **Module 14:** LDAP Identity Management Lab (AK) **Module 8:** Secure Wi-Fi Authentication (eduroam & RADIUS) (AI) [3] **Module 5:** Common Web Vulnerabilities& Security Assessment Lab. (Akoech/KK) **Module 12:**Best Practices for Wi-Fi Security, eduROAM, and Federation** (AK/AI)
**11:30** **Module 1 on Intro to IP addressing and Routing (JOINT)** (KK) **Module 3:** Email Security Basics (AKoech) **Module 8:** Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab (AI) [3.1] **Module 9:** IdP-Identity Provider as a Service (AK/AI) & Installing and Configuring a SimpleSAML IdP (AK/AI) **MCQs Assessments** (ZM) & Recap of labs (All)
**12:30** **Lab Environment & Topology Walkthrough (Lab Support)** (KC) (Contd) (Contd) (Contd) (Contd)
**13:00** Lunch break - Break into respective rooms after lunch Lunch break
**14:00** **Module 2: DNS Security & DNS Security Lab** (AKoech) [3] **Module 4:** Securing Email (DKIM, SPF, DMARC) (AKoech/KK) & **Module 5:** Common Web Vulnerabilities& Security Assessment Lab (KK/Akoech) **Implementing Secure Wi-Fi Authentication Using FreeRADIUS - Lab Contd** (AI) **Module 9:** Installing and Configuring a SimpleSAML Identity Provider contd (AI/AK) **Compliance and DPA** (LM/BO); **Certificate Award** (NK); **Vote of Thanks & Closing Ceremony** (Akip)
**16:00** **Recap** (All) **Recap** (All) **Recap** (All) **Recap** (All) (16:00 - 16:30 Final Wrap)
**16:30** **Tea break and Day End** **Tea break and Day End** **Tea break and Day End** **Tea break and Day End** **Tea break & End of Training!**

Feedback Survey

Link to Feedback Survey

Workshop Resources

Track 1: Securing Domains, Email, Web & Identity and Federation Services

JOINT Sessions

Additional Resources from NSRC -a KENET Training Partner

Session Photos

Retrieved from "http://training.kenet.or.ke/index.php?title=Cybersecurity_Resilience_Workshop_-Track_1:_Securing_institutional_e-mail,_websites_and_identity_systems&oldid=1631"