Managing Security Policies Using Microsoft Group Policies Objects

Slides:



Advertisements
Similar presentations
Lesson 17: Configuring Security Policies
Advertisements

Understanding Group Policy on Windows Server 2003.
Khan Rashid Lesson 11-The Best Policy: Managing Computers and Users Through Group Policy.
Managing User Settings with Group Policy
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Hands-On Microsoft Windows Server 2003 Administration Chapter 4 Managing Group Policy.
9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
MIS Chapter 91 Ch. 9 – Implement and Use Group Policy MIS 431 – created Spring 2006.
11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
Lesson 16: Creating Group Policy Objects
5.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 5: Working with File Systems.
7.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 7: Introducing Group Accounts.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
Module 8: Implementing Administrative Templates and Audit Policy.
(ITI310) SESSIONS : Active Directory By Eng. BASSEM ALSAID.
9.1 © 2004 Pearson Education, Inc. Lesson 9: Implementing Group Policy in Windows 2000 Server Exam Microsoft® Windows® 2000 Directory Services Infrastructure.
9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
MCTS Guide to Configuring Microsoft Windows Server 2008 Active Directory Chapter 3: Introducing Active Directory.
Corso referenti S.I.R.A. – Modulo 2 07 – Group Policy 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano.
Introduction to Group Policy
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Using Group Policy to Manage User Environments. Overview Introduction to Managing User Environments Introduction to Administrative Templates Assigning.
11 SECURITY TEMPLATES AND PLANNING Chapter 7. Chapter 7: SECURITY TEMPLATES AND PLANNING2 OVERVIEW  Understand the uses of security templates  Explain.
Hands-On Microsoft Windows Server 2008
Designing Active Directory for Security
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
Managing User Desktops with Group Policy
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
September 18, 2002 Windows 2000 Server Active Directory By Jerry Haggard.
Module 6: Implementing Group Policy. Overview Implementing Group Policy Objects Implementing GPOs in a Domain Managing the Deployment of Group Policy.
Introduction to Microsoft Management Console (MMC) MMC is a common console framework for management applications. MMC provides a common environment for.
11.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 11: Planning.
Implementing Group Policy. Overview What is Group Policy Introduction to Group Policy Group Policy Structure How Group Policy Settings Are Applied in.
Active Directory Overview n Course: Operating System n Professor: Mort Anvari n Student: Lina Si n Date: 09/07/02.
Section 11: Implementing Software Restriction Policies and AppLocker What Is a Software Restriction Policy? Creating a Software Restriction Policy Using.
Page 1 System and Group Policies Lecture 7 Hassan Shuja 11/02/2004.
Module 4 Planning for Group Policy. Module Overview Planning Group Policy Application Planning Group Policy Processing Planning the Management of Group.
1 Group Policies (Week 11, Monday 3/19/2007) © Abdou Illia, Spring 2007.
1 Chapter Overview Managing Object and Container Permissions Locating and Moving Active Directory Objects Delegating Control Troubleshooting Active Directory.
Deploying Software with Group Policy Chapter Twelve.
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Module 10: Implementing Administrative Templates and Audit Policy.
Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.
Introduction to Active Directory
Configuring, Managing and Maintaining Windows Server® 2008 Servers Course 6419A.
1 Active Directory Service in Windows 2000 Li Yang SID: November 2000.
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
GROUP POLICY. Group Policy is a hierarchical infrastructure which allows systems administrators to configure computer and user settings from a central.
Microsoft Installing & Configuring Windows Server Exam Questions Answers Powered By:
1.1 Microsoft® Windows® 2003 Server Group Policy Management Prof. Abdul Hameed.
Module 8: Implementing Group Policy. Overview Multimedia: Introduction to Group Policy Implementing Group Policy Objects Implementing GPOs on a Domain.
Introduction to Group Policy Lesson 7. Group Policy Group Policy is a method of controlling settings across your network. – Group Policy consists of user.
SmartCenter for Pointsec - MI
Implementing Active Directory Domain Services
(ITI310) SESSIONS 6-7-8: Active Directory.
Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.
Enterprise Systems Management – ESM821S
Unit 8 NT1330 Client-Server Networking II Date: 8/2/2016
NTC 324 RANK Education for Service-- ntc324rank.com.
Chapter 9 MANAGING SOFTWARE.
Windows Server 2008 Administration
System Management in a Windows based Control Environment
Introduction to Group Policy
ACTIVE DIRECTORY An Overview.. By Karan Oberoi.
Module 8: Implementing Group Policy
Introducing NTFS Reliability Security Long file names Efficiency
Presentation transcript:

Managing Security Policies Using Microsoft Group Policies Objects Ken Estes

Overview TCO and why it is important Standardized Desktop Background on Policies Objects and Active Directory Group Policy Objects Properties of GPOs Examples Conclusion

TCO and why it is important TCO is a life cycle model -- that is, it considers the total costs of acquiring, owning, operating, and maintaining equipment over its entire useful life. Furthermore, TCO includes not only costs associated with owning and operating the equipment, but also the costs associated with using the equipment to its fullest potential. Thus, items like user training, performing regular maintenance and audits, testing and deploying software updates, and handling systems management tasks are also part and parcel of the TCO model. http://www.hp.com/sbso/productivity/howto/standardizehardware/understandit.html

TCO Continued The Gartner Group data indicates that the capital cost of acquiring personal computers for a networked environment is only 21% of the Total Cost of Ownership (TCO) over the three to five year life cycle of the computers. The other 79% includes the ongoing costs of ownership such software updates, technical support, user downtime, user training, and losses from system failures.

Still more on TCO The most significant contributing factors to the rising TCO are: Inability to establish and maintain standard desktop configurations throughout the company. Software conflicts and incompatibilities between applications resulting from non-standard PC configurations. Unauthorized changes to PC desktops by end users Increasingly complex nature of PC applications and their inter-dependencies with other applications and with the operating system itself. Attempts to solve the problems of distributed systems with centralized management methods. http://www.dontworry.com/wp/win98.html

Standardized Desktop Simplifies troubleshooting Simplifies training Simplifies deployment Easier to replace crashed computer

Background on Policies Poledit.exe config.pol and ntconfig.pol Allowed for standardizing desktops Several drawbacks altered client registry single file

Objects and Active Directory In Active Directory every item is an object A unit of data storage in the directory service... Directory service objects consist only of data. A directory service object is defined by a Class-Schema object and a group of Attribute-Schema objects referenced by the Class-Schema object. http://msdn.microsoft.com/library/default.asp?url=/library/en-us/adschema/ adschema/active_ directory_ schema_site.asp

Group Policy Objects Group Policy Objects (GPOs) are held in a repository in the AD and then linked to a site, domain or Organizational Unit One GPO can be linked to different objects An AD can have hundreds of GPOs Can control just about any aspect of Windows using templates

Properties of GPOs

Conclusion Standardized computers are more secure and have a lower TCO GPOs allow for the controlling of almost any aspect of Windows 2000 and newer Multiple GPOs can be applied to an object Group Policy Management Console has better control