Windows Security Settings

Question 1

Users and groups

Answer 1

Users and groups
• Users

• Administrator
• The Windows super-user
• Guest
• Limited access
• Standard Users

• Groups
• Power Users
• Not much more control
than a regular user

Question 2

NTFS vs. Share permissions

Answer 2

• NTFS permissions apply from local and network connections

• Share permissions only apply to connections
over the network
• A “network share”

• The most restrictive setting wins
• Deny beats allow

• NTFS permissions are inherited from the parent
object
• Unless you move to a different folder on the same
volume

Question 3

Shared files and folders

Answer 3

• Administrative shares
• Hidden shares (i.e., C$) created during installation
• Local shares are created by users
• System files and folders
• C$ - \
• ADMIN$ - \Windows
• PRINT$ - Printers folder
• Computer Management / Shared Folders
• net share

Question 4

Explicit and inherited permissions

Answer 4

• Explicit permissions
• Set default permissions for a share

• Inherited permissions
 • Propagated from the parent object to the child 
    object
 • Set a permission once, it applies
    to everything underneath

• Explicit permissions take precedence
over inherited permissions
• Even inherited deny permissions

Question 5

User authentication

Answer 5

• Authentication
• Prove you are the valid account holder
• Username / Password
• Perhaps additional credentials
• Single sign-on (SSO)
• Windows Domain
• Provide credentials one time
• No additional pop-ups or interruptions
• Managed through Kerberos

Question 6

Run as administrator

Answer 6

• Administrators have special rights and permissions
• Editing system files, installing services

• Use rights and permissions of the administrator
• You don’t get these by default, even if you’re in the
Administrators group

• Right-click the application
• Run as administrator (Or Ctrl-Shift-Enter)

Question 7

BitLocker

Answer 7

• Encrypt an entire volume
• Not just a single file
• Protects all of your data, including the OS
• Lose your laptop?
• Doesn’t matter without the password

• Data is always protected
• Even if the physical drive is moved
to another computer

Question 8

BitLocker To Go

Answer 8

Encrypt removable USB flash drives

Question 9

EFS

Answer 9

• Encrypting File System
• Encrypt at the filesystem level
• On NTFS
• OS support
• 7 Professional, Enterprise and Ultimate
• 8 and 8.1 Pro and Enterprise
• 10 Pro, Enterprise, and Education

• Uses password and username to encrypt the key
• Administrative resets will cause EFS files to be
inaccessible

Question 10

In NTFS, a folder or file copied from one location to another on the same volume retains its original permissions.

Answer 10

False

Question 11

In NTFS, a folder or file moved from one location to another on the same volume inherits the permissions of its new parent folder.

Answer 11

False

Question 12

In NTFS, a folder or file copied or moved from one location to another on a different volume inherits permissions of its new parent folder.

Answer 12

True

Question 13

Which of the following answers lists the correct syntax for applying the read-only attribute to a file?

Answer 13

attrib +R [drive:] [path] [filename]

Question 14

What is the correct hierarchy of precedence for permissions settings in NTFS?

Answer 14

Explicit Deny -> Explicit Allow -> Inherited Deny -> Inherited Allow

Question 15

Which user group in Windows (applies to Windows 7 and earlier versions) had rights and permissions that allowed its members to perform specific administrator-level tasks?

Answer 15

Power Users