Security - Security Policies Flashcards
Describe the Principle of Least Privilege.
– Users only have access to the resources they need to do their job
– Do not grant users local administrator access
– Configure network share permissions to only give a user access to what they need.
– Use file and folder permissions
– Remove unnecessary software from workstations.
– Use delegated administrative access. If they need higher level access then assign them to a group that most closely matches what they need.
What are some server groups that a user could be assigned to?
– Backup operators: backup or restore files, regardless of permissions assigned to those files.
– Cryptographic operators: perform cryptographic operations.
– Network configuration operators: manage the system’s IP configuration.
– Performance log users: manage performance logs and alerts.
– Performance monitor users: manage performance counters.
– Remote desktop users: remotely access a workstation’s desktop.
What two default accounts should be disabled in Windows?
– Guest user: it allows too much system access. It’s no longer included in Windows 10 and newer.
– Default administrator account. Create a unique administrator account and use it instead.
What other security procedures can be implemented to further secure user workstations and accounts?
– Restrict login times
– User a screen saver lock/time out lock
– Set failed attempts lockout
– Disable autorun (prevents malware from being installed)
