Lab 2 Questions Answears Benson kungu
Lab #2 - Assessment Worksheet
Using Access Control Lists to Modify File System Permissions on Windows Systems
Course Name and Number: ISSC342 Student Name: Benson K kungu Instructor Name: Peter Mylonakos Lab Due Date: June 14, 2015
Overview
In this lab, you used the Windows command-line utility, icacls.exe, to establish file level permissions following a set of access control requirements. You tested those permissions by remotely accessing the Windows server and attempting to modify files in the secured folders. You used screen captures to document the access control changes you made in this lab were properly applied.
Lab Assessment Questions & Answers
1. What is the principle of least privilege?
1. What is the principle of least privilege? The least privilege principle is when it’s provided the just the necessary access required to carry out a task.
2. What does ACL stand for and how it is used?
The ACL is the Access Control List. Can be used to allow or deny access to objects by user or groups
3. Why would you add permissions to a group instead of the individual?
When working with group you can keep it organized and if there are for example 100+ users and they need basically the same permissions, it’s time consuming if it’s done one by one. Windows Server have the option to create and manage groups permissions for better organization and less time consuming.
4. List at least three different types of access control permissions you can enable for a file using icacls.exe.
RX- Read and Execute Access M- Modify Access
F-Full Access
5. Which access control permissions allow you to change files and/or folders?
The Full access allows you to change files and/or folders.
6. If you don't remember the syntax when using icacls.exe, what command do you type to see the options?
The command is:
icacls /?
7. Without using the icacls.exe tool, how could you view and modify the privileges of the files or folders
Using Access Control Lists to Modify File System Permissions on Windows Systems
Course Name and Number: ISSC342 Student Name: Benson K kungu Instructor Name: Peter Mylonakos Lab Due Date: June 14, 2015
Overview
In this lab, you used the Windows command-line utility, icacls.exe, to establish file level permissions following a set of access control requirements. You tested those permissions by remotely accessing the Windows server and attempting to modify files in the secured folders. You used screen captures to document the access control changes you made in this lab were properly applied.
Lab Assessment Questions & Answers
1. What is the principle of least privilege?
1. What is the principle of least privilege? The least privilege principle is when it’s provided the just the necessary access required to carry out a task.
2. What does ACL stand for and how it is used?
The ACL is the Access Control List. Can be used to allow or deny access to objects by user or groups
3. Why would you add permissions to a group instead of the individual?
When working with group you can keep it organized and if there are for example 100+ users and they need basically the same permissions, it’s time consuming if it’s done one by one. Windows Server have the option to create and manage groups permissions for better organization and less time consuming.
4. List at least three different types of access control permissions you can enable for a file using icacls.exe.
RX- Read and Execute Access M- Modify Access
F-Full Access
5. Which access control permissions allow you to change files and/or folders?
The Full access allows you to change files and/or folders.
6. If you don't remember the syntax when using icacls.exe, what command do you type to see the options?
The command is:
icacls /?
7. Without using the icacls.exe tool, how could you view and modify the privileges of the files or folders