1. What are the three fundamental elements of an effective access control solution for information systems? Identification, Authentication and Authorization
2. What two access controls can be set up for Windows Server 2003 folder and authentication? Authentication and Access Control
3. If you can browse a file on a Windows network share, but are not able to copy it or modify it, what type of access controls and permissions are probably configured? What type of access control would best describe this access control situation? Folder Contents. The access control best fitting would be security policy.
4. What is the mechanism on a Windows server where you can administer granular policies and permissions on a Windows network using role-based access? Group Policies.
5. What is two-factor authentication and why is it an effective access control technique? It is a two different type of identification process. Like an ID card and a pin code.
6. Relate how Windows Server 2008 R2 Active Directory and the configuration of access controls achieve CIA for departmental LANs departmental folders, and data. The security details are created in the directory domain.
7. It is a good practice to include the account or user name in the password? Why or why not? This is definitely not a good or suggested practice because this is a common starting place for hackers to start when attempting to log in to someone’s account or when trying to use another person’s access.
8. Can a user who is defined in the Active Directory access a shared drive if that user is not part of the domain? No, if a user is not granted specific access to a directory then they are granted access.
9. Does Windows Server 2003 require a user’s logon/password credentials prior to accessing shared drives? Yes, you have to be logged into the system to accessing a shared drive.
10. When granting access to LAN systems for guests (i.e., auditors, consultants, third-party individuals, etc.), what security controls do you recommend be implemented to maximize CIA of production systems and data? The accounts should be set up with limited account access, with read only rights to the specific area’s they need to access.
Lab 3 Screenshots
You May Also Find These Documents Helpful
-
When configuring windows networking, two major approaches are valid to secure all the network resources, the workgroup approach and the Domain approach. The workgroup approach is simply to create a windows peer-to-peer network with a decentralized security system. This workgroup security approach…
- 825 Words
- 4 Pages
Good Essays -
Question 1: What is the name of the computer you are working from? The Name of the computer is W2K8xx…
- 310 Words
- 2 Pages
Satisfactory Essays -
8. Computers that belong to the same domain can access a common security database of user and computer account information. That type of database on Windows 2003 domain controller servers is also known as a _____ database?…
- 1510 Words
- 7 Pages
Powerful Essays -
(TCO 1) Which one of the following Windows NET commands will allow other computers to access the C:\Data directory under the share nameUserData?…
- 2401 Words
- 33 Pages
Satisfactory Essays -
It’s imperative that proper user/groups structures are established. Every user will be a member of the group however; every user won’t be an owner of a group. The owner can change attributes and grant access to files within the group they own.…
- 689 Words
- 3 Pages
Good Essays -
Employees will be also using the workstation domain is where they will connect to the company’s network. Tight security and access controls will be enforced on company equipment and users must have proper access rights…
- 539 Words
- 3 Pages
Good Essays -
1. During the install, the option to sync with NTP (Network Time Protocol) server was checked. From a security perspective, why is it important for a system to keep accurate time?…
- 822 Words
- 4 Pages
Good Essays -
The type of access controls and permissions that are probably configured are Modify , Read or Full control.…
- 503 Words
- 2 Pages
Good Essays -
In this lab, you used the Microsoft® Active Directory Users and Computers utility to create and manage…
- 271 Words
- 3 Pages
Satisfactory Essays -
2. What is an Access Control List (ACL) and how is it useful in a layered security strategy?…
- 928 Words
- 3 Pages
Good Essays -
Answer: Computer Name, OS, Security Settings for Windows Firewall, Drives, Running Programs, and Installed Programs and Versions.…
- 414 Words
- 2 Pages
Satisfactory Essays -
1. You are the network administrator for a new company that has 10 users and plans to add five more users within a year. The files need to be accessed by all 10 users and each user must have different security rights. What kind of network would you install and how would the pieces and components of this network relate to each other? Define each component.…
- 350 Words
- 2 Pages
Satisfactory Essays -
* Explain the types of controls used by the IT division in order to protect the…
- 335 Words
- 2 Pages
Satisfactory Essays -
INTRODUCTION ............................................................................................ 2 CONFIGURE ACTIVE DIRECTORY ON WINDOWS 2003 SERVER AS PRIMARY DOMAIN CONTROLLER................................................................................. 2 INSTALL AND CONFIGURE BUSINESS OBJECTS XI TO AUTHENTICATE AGAINST ACTIVE DIRECTORY ..................................................................................... 5 FINDING MORE INFORMATION ..................................................................... 12…
- 1330 Words
- 6 Pages
Powerful Essays