1. What are the three fundamental elements of an effective access control solution for information systems? Identification, Authentication and Authorization
2. What two access controls can be set up for Windows Server 2003 folder and authentication? Authentication and Access Control
3. If you can browse a file on a Windows network share, but are not able to copy it or modify it, what type of access controls and permissions are probably configured? What type of access control would best describe this access control situation? Folder Contents. The access control best fitting would be security policy.
4. What is the mechanism on a Windows server where you can administer granular policies and permissions on a Windows network using role-based access? Group Policies.
5. What is two-factor authentication and why is it an effective access control technique? It is a two different type of identification process. Like an ID card and a pin code.
6. Relate how Windows Server 2008 R2 Active Directory and the configuration of access controls achieve CIA for departmental LANs departmental folders, and data. The security details are created in the directory domain.
7. It is a good practice to include the account or user name in the password? Why or why not? This is definitely not a good or suggested practice because this is a common starting place for hackers to start when attempting to log in to someone’s account or when trying to use another person’s access.
8. Can a user who is defined in the Active Directory access a shared drive if that user is not part of the domain? No, if a user is not granted specific access to a directory then they are granted access.
9. Does Windows Server 2003 require a user’s logon/password credentials prior to accessing shared drives? Yes, you have to be logged into the system to accessing a shared drive.
10. When granting access to LAN systems for guests (i.e., auditors, consultants, third-party individuals, etc.), what security controls do you recommend be implemented to maximize CIA of production systems and data? The accounts should be set up with limited account access, with read only rights to the specific area’s they need to access.
Lab 3 Screenshots
You May Also Find These Documents Helpful
-
Question 1: What is the name of the computer you are working from? The Name of the computer is W2K8xx…
- 310 Words
- 2 Pages
Satisfactory Essays -
User accounts and passwords are implemented to maintain individual accountability for network resource usage. Any user who obtains an account and password for accessing a Corporation Tech provided resource, is required to keep these credentials confidential. Users of these systems may only use the accounts and passwords for which they have been assigned and authorized to use, and are prohibited from using the network to access these systems through any other means. This plan also prohibits the sharing of personal user accounts or passwords for accessing Corporation Tech or…
- 4134 Words
- 12 Pages
Better Essays -
8. Computers that belong to the same domain can access a common security database of user and computer account information. That type of database on Windows 2003 domain controller servers is also known as a _____ database?…
- 1510 Words
- 7 Pages
Powerful Essays -
(TCO 1) Which one of the following Windows NET commands will allow other computers to access the C:\Data directory under the share nameUserData?…
- 2401 Words
- 33 Pages
Satisfactory Essays -
The user domain contains the employees that will be accessing resources in the network. Users access systems, applications, and data within the rights and privileges defined by the acceptable use policy. The AUP must be followed at all time or the user may be terminated. There are threats ranging from lack of awareness to blackmail and extortion. All employees are responsible for their own actions when using the network. The users will all be expected to read and abide by the acceptable use policy. (Kim & Solomon, 2012)…
- 539 Words
- 3 Pages
Good Essays -
1. You are the network administrator for a new company that has 10 users and that plans to add 5 more users within a year. The files need to be accessed by all 10 users, and each user must have different security rights.…
- 565 Words
- 3 Pages
Satisfactory Essays -
D) Active Directory Rights Management Services can control what a user is allowed to do with data on a server. You can control printing, copying, transferring and so on.…
- 285 Words
- 2 Pages
Satisfactory Essays -
1. During the install, the option to sync with NTP (Network Time Protocol) server was checked. From a security perspective, why is it important for a system to keep accurate time?…
- 822 Words
- 4 Pages
Good Essays -
In this lab, you used the Microsoft® Active Directory Users and Computers utility to create and manage…
- 271 Words
- 3 Pages
Satisfactory Essays -
2. What is an Access Control List (ACL) and how is it useful in a layered security strategy?…
- 928 Words
- 3 Pages
Good Essays -
Answer: Computer Name, OS, Security Settings for Windows Firewall, Drives, Running Programs, and Installed Programs and Versions.…
- 414 Words
- 2 Pages
Satisfactory Essays -
1. You are the network administrator for a new company that has 10 users and plans to add five more users within a year. The files need to be accessed by all 10 users and each user must have different security rights. What kind of network would you install and how would the pieces and components of this network relate to each other? Define each component.…
- 350 Words
- 2 Pages
Satisfactory Essays -
* Explain the types of controls used by the IT division in order to protect the…
- 335 Words
- 2 Pages
Satisfactory Essays -
INTRODUCTION ............................................................................................ 2 CONFIGURE ACTIVE DIRECTORY ON WINDOWS 2003 SERVER AS PRIMARY DOMAIN CONTROLLER................................................................................. 2 INSTALL AND CONFIGURE BUSINESS OBJECTS XI TO AUTHENTICATE AGAINST ACTIVE DIRECTORY ..................................................................................... 5 FINDING MORE INFORMATION ..................................................................... 12…
- 1330 Words
- 6 Pages
Powerful Essays