1.3 Given a scenario, use features and tools of the Microsoft Windows 10 operating system (OS).

Question 1

Enables an administrator to track and log event logins, security actions, crashes, and other events that have happened in the computer.

Answer 1

Event Viewer (eventvwr.msc)

Question 2

snap-in of the MMC is a GUI-based application for analyzing and configuring hard drives. Try some of the configurations listed in the following sections on a test computer with one or two drives of unpartitioned space.

Answer 2

Disk Management (diskmgmt.msc)

Question 3

run a task on a specified schedule.

Answer 3

Task Scheduler (taskschd.msc)

Question 4

used to display installed device categories and specific installed devices, as well as to troubleshoot problems with devices.

Answer 4

Device Manager (devmgmt.msc)

Question 5

is an MMC snap-in that enables administrators to manage group policy settings on a Windows computer. It is a powerful way to configure and control various aspects of the operating system and user environment in a centralized manner.

Answer 5

Group Policy Editor (gpedit.msc):

Question 6

With this tool , you can set policies related to security settings, user rights, software deployment, network configuration, and more. Is especially useful in enterprise environments to enforce specific rules and configurations across multiple computers.

Answer 6

Group Policy Editor (gpedit.msc):

Question 7

is an MMC snap-in that allows you to monitor and analyze the performance of various system resources and components in real-time on a Windows machine.

Answer 7

Performance Monitor/ perfmon.msc,

Question 8

It provides detailed performance data, such as CPU usage, memory usage, disk activity, network activity, and other performance counters._____ is commonly used by system administrators and IT professionals to diagnose performance issues, identify bottlenecks, and monitor system health over time.

Answer 8

Performance Monitor/ perfmon.msc,

Question 9

is an MMC snap-in in Windows that allows administrators to manage local user accounts and groups on the system. It provides a centralized interface for creating, modifying, and deleting user accounts and groups. With this tool you can change user properties, set passwords, manage group memberships, and assign user rights and permissions on a local computer.

Answer 9

Local Users and Groups (lusrmgr.msc)

Question 10

provides a graphical user interface for managing digital certificates on a Windows system. Digital certificates are used to establish trust between entities, such as websites and applications, in a secure manner. Certmgr.msc allows you to view, install, and manage certificates in various certificate stores on the local machine and user accounts. It also enables you to import, export, and delete certificates, as well as view certificate details, certificate chains, and certificate revocation lists (CRLs).

Answer 10

Certificate Manager (certmgr.msc):

Question 11

a built-in utility in Windows that provides detailed information about the hardware, software, and system components of a computer. It offers a comprehensive view of the system’s configuration, including the processor, memory, storage devices, installed drivers, running processes, and more. System Information is useful for troubleshooting hardware and software issues, checking system specifications, and generating reports for technical support.

Answer 11

System Information (msinfo32.exe)

Question 12

a Windows utility that allows users to monitor and analyze system resources in real-time. It provides detailed insights into CPU usage, memory usage, disk activity, network activity, and other performance metrics. Resource Monitor is particularly helpful for identifying resource-intensive processes or applications and diagnosing performance-related issues on a Windows system.

Answer 12

Resource Monitor (resmon.exe)

Question 13

a utility that enables users to manage startup programs and services on a Windows computer. It provides a simple interface to control what programs and services start automatically when the system boots. By using msconfig.exe, users can troubleshoot startup problems, reduce boot times, and optimize system performance by selectively enabling or disabling startup items.

Answer 13

System Configuration (msconfig.exe)

Question 14

a built-in Windows utility that helps users free up disk space by removing temporary files, system files, and other unnecessary files from the computer. It scans various system folders and presents a list of files that can be safely deleted to reclaim disk space. Disk Cleanup is useful for keeping the system tidy and maintaining optimal disk performance.

Answer 14

Disk Cleanup (cleanmgr.exe)

Question 15

a utility that helps optimize the layout of files on a hard disk drive to improve read and write performance. Over time, files on a disk may become fragmented, meaning they are scattered in non-contiguous sectors. Disk Defragment reorganizes these fragmented files to enhance disk efficiency and reduce access times.

Answer 15

Disk Defragment (dfrgui.exe)

Question 16

a powerful tool that allows users to view and edit the Windows Registry. It should should be used with caution, as incorrect changes to the Registry can cause system instability. It is primarily intended for advanced users and IT professionals for specific troubleshooting and configuration tasks.

Answer 16

Registry Editor (regedit.exe)

Question 17

The ___is a centralized database that stores configuration settings, system settings, and application settings for the Windows operating system.

Answer 17

Registry

Question 18

____ is the most common way to attack an organization because its employees might fall for phishing attacks (described in the section, “Social Engineering Threats and Vulnerabilities”). Filtering can automatically organize ____ into folders, but from a security standpoint, its most important function is to block spam and potentially dangerous messages. ____ filtering can be performed at the point of entry to a network with a specialized ____ filtering server or appliance, as well as by enabling the spam- and threat-detection features that are built into ____ clients or security software.

Answer 18

Email

Question 19

Users can discard or quarantine spam or suspicious ____s, as well as retrieve false positives that are actually legitimate messages from the spam folder and place them back into the normal inbox.

Answer 19

Email

Question 20

____ protocols should be secured to ensure that ____ is encrypted. For example, by default, POP and IMAP ____ protocols are not secure. Using secure protocols such as POP3S (port 995) or IMAPS (port 993) allows the incoming data from the client to be encrypted because they use an SSL/TLS session.

Answer 20

Email

Question 21

As with key fobs, mentioned in the previous section on physical security, software tokens (or ____) are part of a multifactor authentication process. The difference is that software tokens exist in software and are commonly stored on devices. For example, logging into a secure system might require sending a soft token via SMS message to a smartphone for code authentication. Both hard tokens and soft tokens can be used in multifactor authentication, as described earlier in this section.

Answer 21

Soft Tokens

Question 22

A ____ is any physical device that a user must carry to gain access to a specific system. Examples are smart cards, RFID cards, USB tokens, and key fobs. (Key fob hardware tokens are explained earlier in this section.) ____

Answer 22

hard token

Question 23

____ is the standard format of text messaging between devices. Products might have their own message formats (for example, Apple uses iMessage on its devices), but ____ is a standard. ____ is usually used for multifactor soft tokens, described earlier.

Answer 23

Short Message Service (SMS)

Question 24

Soft tokens can be authenticated with a voice callback. When a user logs in to a site, they might have to authenticate with a ____and pressing a key provided by the service app on the phone. This is similar to the SMS login just described.

Answer 24

voice call

Question 25

Multifactor authentication services provide apps that are downloadable to phones and other devices. This is an easy way to provide second-factor authentications after login. When logging into a restricted site, the service pushes a token to the user’s registered device. Simply touching a confirmation button suffices for a fast and secure login.

Answer 25

Authentication Application

Question 26

Organizations that have many ____s need to administer them so that all devices and users comply with the security practices and policies in place. This is usually done with a suite of software known as ____ ____ . The ____ marketplace is quite competitive, and several solutions are available from companies such as VMware (AirWatch), Citrix (XenMobile), and SOTI MobiControl. These products push updates and allow an administrator to configure many ____s from a central location. Good ____ software secures, monitors, manages, and supports multiple different ____s across the enterprise.

Answer 26

Mobile Device Management /mdm

Question 27

____is a Microsoft solution for managing users, computers, and information access in a network. It is based on a database of all resources and users that will be managed within the network. The information in the database determines what people can see and do within the network. A complete understanding of ____is beyond the scope of this book, but every IT support person should know the basics of what it is and how it works.

Answer 27

Active Directory

Question 28

____: When a user logs onto the network, Active Directory knows who that user is and runs a ____ to make the assigned resources available. Examples of login tasks include virus updates, drive mappings, and printer assignments.

Answer 28

Login script

Question 29

The ___ is a computer network or group of computer networks under one administration. Users log into the Active Directory ___ to access network resources within the __.

Answer 29

domain

Question 30

This is a set of rules and instructions defining what a user or group of users can or cannot do when logged into the domain.

Answer 30

Group Policy:

Question 31

is a set of instructions assigned to a group of users or to certain machines on the network.

Answer 31

Group Policy Object (GPO)

Question 32

For example,

a team of accountants might be assigned to an OU, and their GPO might give them special access to financial records.

Answer 32

Organizational Unit (OU):

Question 33

are logical groups that help organize users and computers so that GPOs can be assigned to them.

Answer 33

Organizational Unit (OU):

Question 34

This folder, which is accessible to the network administrator, is where the user’s data and files are kept locally.

Answer 34

Home folder:

Question 35

These provide an efficient way to assign user rights and permissions to approved users who are accessing resources on the network. Group Policy (earlier in the list) can be used to assign rights to ____. Permissions can be assigned to a security group for shared resources at specific levels of access.

Answer 35

Security Groups:

Question 36

This allows for the work done by an OU to be saved on a common folder in the domain, as directed by the administrator instead of the user.

Answer 36

Folder redirection:

Question 37

For example:
a policy might dictate that all work be kept in a common folder so that all members of a team can see the latest work and updates.

Answer 37

Folder redirection: