Chapter 13 Flashcards
Authentication
Process that grants users access to a system through pword/un combo
Authorization
Process that determines access to resources (files/folders) based on NTFS permissions/groups
Local User Account
User account stored directly on machine
Groups
Containers that hold user accounts and set their permissions
Administrator Account
Account with total control of system
Power Users
Like admins but can’t install new devices or access other user files
Standard Account
Also User Group - no registry access, can create groups but only manage self created ones
UAC
User account Control - allows elevated privileges, run as admin, pop ups
Lusrmgr.msc
Local users and groups snap-in, create/move accounts and groups
NTFS Permissions
Rule sets for files and folders, accessible in “security” tab of properties
Ownership
Has all power
Take ownership
Seizes power (admins have this)
Change permission
Allows editing of permissions
Folder permissions
Permissions directly related to folder
File Permissions
Permissions related to specific file
Permission Propogation
All copies inherit permissions. Moving retains unless moved to a separate volume
chown
Change owner (chown [new owner] file name)
Change Owner and/or Group (chown [owner]:[new group] file name)
Linux permissions
3 rwx strings owner|group|everyone
Read, write, execute
File path to locate shares (not console, but within windows OS)
Admin tools > computer management > system tools > shared folders
EFS
Encrypting File System
Ties to username/pword key only on that machine.
Password reset loses file!!
Bit locker
Must have TPM chip (trusted platform module).
Separate recovery key
secpol.msc
Local security policy snap-in
Edit all sorts of things (timing, resets, etc)
gpedit.msc
Group policy editor snap-in
Inherited permissions
From folder, show as faded checks in list. Can be overwritten manually