Lab #3
50
Lab #3 | Enable Windows Active Directory and User Access Controls
Lab #3 – Assessment Worksheet
Enable Windows Active Directory and User Access Controls
Course Name and Number:
Student Name:
Instructor Name:
Lab Due Date:
Overview
This lab provides students with the hands-on skills needed to create a new Active Directory domain in
Windows Server 2003 and demonstrates how to configure a centralized authentication and policy definition for access controls. The Active Directory users and workstation plug-ins will be used to create users, groups, and configure role-based access permissions and controls on objects and folders in a Windows Server 2003
Active Directory system.
Lab Assessment Questions & Answers 1. What two access controls can be set up for Windows Server 2003 folders and authentication?
Authentication and Access Control
2. you can browse a file on a Windows network share, but are not able to copy it or modify it, what type of
If
access controls and permissions are probably configured?
Role-based access controls with the following permissions: Read & Execute, List Folder Contents,
Read, and Write
3.
What is the Windows tool that allows you to administer granular policies and permissions on a Windows
network using role-based access?
Group Policy Object Editor
37609_LB03_Pass5.indd 50
23/04/13 10:39 AM
Assessment Worksheet
51
4.
Relate how Windows Server 2008 R2 Active Directory and the configuration of access controls achieve
CIA for departmental LANs, departmental folders, and data.
Confidentiality - by creating specific user accounts, requiring passwords, and putting users in appropriate groups to enable authorized users the ability to access the data
Integrity - by implementing role-based access controls and specific folder and file permissions to restrict who can modify or even view the data
Availability - by being able to give permission to those who need it
Lab #3 | Enable Windows Active Directory and User Access Controls
Lab #3 – Assessment Worksheet
Enable Windows Active Directory and User Access Controls
Course Name and Number:
Student Name:
Instructor Name:
Lab Due Date:
Overview
This lab provides students with the hands-on skills needed to create a new Active Directory domain in
Windows Server 2003 and demonstrates how to configure a centralized authentication and policy definition for access controls. The Active Directory users and workstation plug-ins will be used to create users, groups, and configure role-based access permissions and controls on objects and folders in a Windows Server 2003
Active Directory system.
Lab Assessment Questions & Answers 1. What two access controls can be set up for Windows Server 2003 folders and authentication?
Authentication and Access Control
2. you can browse a file on a Windows network share, but are not able to copy it or modify it, what type of
If
access controls and permissions are probably configured?
Role-based access controls with the following permissions: Read & Execute, List Folder Contents,
Read, and Write
3.
What is the Windows tool that allows you to administer granular policies and permissions on a Windows
network using role-based access?
Group Policy Object Editor
37609_LB03_Pass5.indd 50
23/04/13 10:39 AM
Assessment Worksheet
51
4.
Relate how Windows Server 2008 R2 Active Directory and the configuration of access controls achieve
CIA for departmental LANs, departmental folders, and data.
Confidentiality - by creating specific user accounts, requiring passwords, and putting users in appropriate groups to enable authorized users the ability to access the data
Integrity - by implementing role-based access controls and specific folder and file permissions to restrict who can modify or even view the data
Availability - by being able to give permission to those who need it