Chapter 7: Network Services - 12 Questions Flashcards

1
Q

What is the relationship between clients and servers as it relates to network service access?

A

Client software accesses network services provided by server software. The connection is established using a common network protocol known by both the client and server software. Thus, the client and server software can be from different sources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the relationship between a network service and a network port?

A

Network services are established with a common network protocol. The protocol specifies which TCP or UDP port number to use for communications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What two dynamic network service discovery protocols does Lion support?

A

Lion supports Bonjour and Server Message Block (SMB), including support for legacy Network Basic Input/Output and Windows Internet Naming Service (NetBIOS and WINS) dynamic network service discovery protocols.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How does Lion use dynamic network service discovery protocols to access network services?

A

Devices providing a network service advertise their availability via a dynamic network service discovery protocol. Clients that are looking for services request and receive this information to provide the user with a list of available network service choices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What five network file services can you connect to from the Finder’s “Connect to Server” dialog?

A

From the Finder’s “Connect to Server” dialog, you can connect to Apple File Protocol (AFP), Server Message Blocks/Common Internet File System (SMB), Network File System (NFS), Web- based Distributed Authoring and Versioning (WebDAV), and File Transfer Protocol (FTP) network file services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How are items inside the Finder’s Network folder populated?

A

The Finder uses information provided by the dynamic network services discovery protocols to populate the
Network folder. Computers providing services appear as resources inside the Network folder, and service discovery zones or workgroups appear as folders. Any currently connected servers also appear in the Network folder.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is AirDrop, and how do you know whether a specific
Mac supports it?

A

AirDrop provides a quick and easy way to share files locally over Wi-Fi. AirDrop creates a secure peer-to-peer network between local Mac computers. You can verify that a Mac supports AirDrop from the Go menu in the Finder.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How do you provide Lion file-sharing services to other computers?

A

To provide services to other network clients, you first set the computer’s network identification, then enable the desired network file service, and finally define access to file system resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How is authentication handled to a client Mac providing SMB service?

A

To support SMB authentication to a Mac client providing file- sharing services, users’ passwords must be stored in a special format that’s enabled in Sharing preferences.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What shared items are accessible to an administrative user who connects over AFP or SMB? What about a standard user?

A

Administrators who connect to your Mac over AFP or SMB have access to any locally mounted volume. By default, standard users can access only their home folder and other users’ Public folders.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What items are shared by default by all users?

A

By default, the items shared by all users are the local users’ Public folders inside their home folders.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What client sharing services can Lion provide?

A

The OS X client sharing services include screen sharing, remote login, remote management, remote Apple Events, and Xgrid sharing.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the security risk of enabling client sharing services?

A

If a client sharing service is compromised, an unauthorized user can control your Mac and execute unwanted applications or processes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How does Lion’s built-in firewall work? What advanced firewall settings are available?

A

Lion’s built-in firewall inspects each incoming network connection to determine whether it’s allowed. Connections are allowed or denied on a per-application basis. The advanced firewall settings let you control whether signed applications are automatically allowed through the firewall, control the list of allowed (or denied) applications, and enable stealth mode (which means your Mac won’t respond to any unsolicited connections).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What are some known issues that arise when connecting to network file services?

A

Files with metadata may cause problems for NFS or WebDAV network file systems. Also, avoid AFP 2 services when they’re provided by Windows file servers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are three common troubleshooting techniques for issues involving failure to connect to network services?

A

Review the Network preferences, review the Network Utility statistics, and attempt to connect to different network services.

17
Q

What is a directory as it relates to directory services?

A

A directory is a database of information that in some cases can be shared over the network. The most commonly accessed directory resource is account information.

18
Q

What are six common types of resources that Lion can access from a directory service?

A

Common directory resources that Lion can access include user accounts, user groups, computer accounts, computer groups, network file mounts, and management settings.

19
Q

What are the primary differences between local, network, and mobile accounts?

A

Local accounts are available only to a single Mac; network accounts are available to Mac computers connected to a network directory service; and mobile accounts are network accounts that are cached to the local Mac for offline use.

20
Q

What are four advantages of using network directory services to store account information?

A

Four advantages of using network directory services to store account information are: 1) user accounts are no longer tied to individual Mac computers; 2) the same user account information can be used for multiple network services; 3) you can use Kerberos to provide secure single-sign-on authentication; and 4) you can define user and computer settings from a centralized location.

21
Q

What four directory service types can be used in Lion?

A

The directory service types that can be used in Lion are Local, Network Information Systems (NIS), Lightweight Directory Access Protocol version 3 (LDAPv3), and Active Directory (AD).

22
Q

What is authentication? What is authorization?

A

Authentication is the process of proving your identity to the computer; authorization defines which items or services you can access.

23
Q

What are three common authentication methods?

A

Three common authentication methods are basic or clear-text passwords, encrypted passwords, and Kerberos ticket–based authentication.

24
Q

What is a Kerberos ticket? What is a Key Distribution Center (KDC)?

A

Kerberos tickets validate an account’s identity. Kerberos uses ticket-granting tickets (TGTs) and service tickets. Kerberos requires a special trusted service known as the KDC. In most cases, the KDC service is running alongside the network directory service.

25
Q

How do Kerberos and the keychain system differ for managing authentication services?

A

Kerberos can only be used to authenticate Kerberized services and is often managed on a network-wide scale. The keychain system can be used to save a wide variety of authentication information, but only the local Mac can access saved keychain information.

26
Q

What are five common directory services and authentication services troubleshooting techniques?

A

Common troubleshooting techniques for directory services and authentication services are: 1) attempting to authenticate with another user account; 2) resetting the account password; 3) verifying network directory service connectivity and configuration; 4) verifying Kerberos authentication and configuration; and 5) checking the directory service log files.