Sharing Resources & Wrights Management (Chapter 5)

Question 1

User & Group account

Answer 1

User Account
- The logon ID that identifies each user
Security Group
- a collection of user accounts that can be assigned permission

Computer management\ local User and Group
- allows for managing groups

Question 2

Group account windows Home

Answer 2

Only allowed creation of two group types
- Standard User
- Administrative User

Question 3

Group account windows professional

Answer 3

Allows the creation of multiple groups
- Administrative User
- Guest User
- Power User

Local & Group user management console

Question 4

Group User Command Prompt

Answer 4

• net user ‘username password’ /add

Question 5

Group User Command Prompt

Answer 5

• net user ‘username password’ /add
  Commands used to add users to a group

Question 6

Local Security Policy

Answer 6

Policy
- a subset of a security profile, and a document that outlined the specific requirements and rules that everyone must meet

Administrative Tools\ Local Security Policy

Question 7

SSO

Answer 7

Single Sign-On
An authentication technology that allows a user to authenticate once and be authorised for multiple services

Question 8

Credential Manager

Answer 8

Is a cache that stores password for website/windows

Question 9

Peer-to-peer Network

Answer 9

A network with no dedicated server and each computer acts as both a sever and a client

Question 10

Workgroup

Answer 10

A small group of computers on a network that shares resources in a peer-to-peer fashioned

Question 11

Homegroup

Answer 11

A windows networking feature designed to allow window 7 & 8 home network to share files and printers easily through a simple password protection mechanism

Question 12

Share

Answer 12

The ability to share a resource over a network,
- share folder are open and cant have any share permission assigned to it, folders within the share can have permissions assigned
- requires a Share Name & Maximum number of user allowed to connect at once

Question 13

Share Permission

Answer 13

Full Control
- read, edit, create, delete and assign permissions
Change
- read, edit, create and delete
**Read*
- read

NTFS manages the permissions

Question 14

Network Drive

Answer 14

A local share that has been assigned a drive letter, such as on a Network attached Storage devices

Question 15

NTFS Folder Premission

Answer 15

A drive format that gives added security to the drive in the form of permission.
- sub folders and all files of a folder with set permissions also inherit same permission
- Read
- Write
- List ( view names of files & subfolder)
- Read & Execute
- Modify
- Full control

Question 16

2 Level Permission

Answer 16

1) Application folders
- read/execute permission
2) Data storage
- Modify or read permission.
3) Home directories
- full control given to a relevant user

Question 17

Permission types

Answer 17

Share Permission
- permission assigned to a shared resources on a network
-only works when trying to access the share over the network
NTFS
- permission assigned to folders and files that is applied each time the folder/file is being accessed

Question 18

Share / NTFS Permission best practices

Answer 18

• subfolder and files that have a permission set on their present folder also inherit the same permission
• Share and NTFS permission can be applied to a folder/file but the most restrictive permission will be applied
• if a user is in two different NTFS groups with different permissions for each set, then the least effective applies

Question 19

Effective Access

Answer 19

Allows you view the permissions that a user/ group will have to a folder/file

Question 20

Accounts Directory

Answer 20

Local Accounts
- an account that is only associated with the computer it was created one
Local Security Accounts database
- a local database where local system account information is stored
Security Accounts Manager
- where all the security information for the local Account is stored
Windows Sever Domain Controller
- windows based server that provides domain authentication services

Question 21

Active Directory Domain Services

Answer 21

The database that contains the user,groups and computer accounts in a window server domain

Question 22

Member Server

Answer 22

Any server-based system that have been configured into the domain, but do not maintain a copy of the Active Directory Database

Question 23

Organizational Unit

Answer 23

a way of dividing the domain up into different administrative realms (Containers) in a Window Active Directory

Question 24

Windows Domain

Answer 24

A form of network in which all computers, printers, security protocol are registered to a central database that centralizes settings
- Domain security
- configuration
- Policy Settings

Question 25

Organizational Units

Answer 25

A server that has been has been configured differently to the Active directory Database to act as different administrative role **Group Policy Objects (GPO)** - means of applying security settings and other administrative settings across a range of computers and users **Administrative Templates** - GPO files for registry-based policy management (.ADM extension) **Security Templates** - settings for services and policy configuration for a server operating in a particular application role **RSoP** - a group of policy report showing all of the GPO settings and how they affect the network

Question 26

Folder Redirection

Answer 26

A Microsoft technology that allows an administrator user to redirect the path of a local folder to a folder on a network share, making the data available to the user when they log into any computer on the network where the network share is located.

Question 27

Roaming Profiles

Answer 27

A Microsoft Technology that redirects user profiles to a network share so that the information is available when the user logs into any computer on the network

Question 28

Offline files

Answer 28

Files/folders from a network share that are cached locally