Lesson 8: Managing Local Users Flashcards
Understand authentication and authorization; Create and configure local user accounts; Create and configure local group accounts; Import local accounts; Manage service access authorization
Describe the difference between authentication and authorization, and give an example of each.
Authentication is the process by which the system requires you to provide information before it allows you to access a specific account. An example is entering a name and password while connecting to a the Apple Filing Protocol service.
Authorization refers to the process by which permissions are used to regulate a user’s access to specific resources, such as files and shared folders, once the user has been successfully authenticated.
What is the difference between user and administrator accounts on OS X Server?
User accounts provide basic access to a computer or server, whereas administrator accounts allow a person to administer the computer. On OS X Server, an administrator account is typically used for changing settings on the server computer itself, usually through the Server app.
Which applications can you use to configure OS X Server local user and group settings?
You can use the Users & Groups preferences and the Server app to create and configure local users and groups.
What tool can you use to import and export user accounts?
You can use the Server app to import user accounts. Additionally, as you will see in the next lesson, you can use the Server app to import network users after you authenticate as a directory administrator.
Which two formats of files can you use to import users with the Server app?
You can use the Server app to import a character-delimited text file with user information, but you need a header line to define the characteristics of the information contained in the file. You can also import a text file that has a header line at the beginning of the file that defines the contents of the file.
If you decide to manually manage access to services, what are some services included in the list?
Services include Calendar, Contacts, File Sharing, FTP, Mail, Messages, Profile Manager, Time Machine, and VPN.
When you select the checkbox to grant authorization for a user to access File Sharing services, what file sharing protocols does this enable for the user?
Authorization to use File Sharing includes AFP and SMB protocols.
When you click the Manage Service Access button, does this prevent users that you create in the future from being able to access your OS X Server services?
No, even after you choose to manage service access manually, new users that you create automatically get authorization to access services. Of course, you can edit a user and remove authorization for that user to access a service.
