Fall 2011 Nassau Community College ITE153 – Operating Systems Session 22 Local Security Polcies 1.

Slides:



Advertisements
Similar presentations
Chapter Five Users, Groups, Profiles, and Policies.
Advertisements

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 7: Troubleshoot Security Settings and Local Security.
Lesson 17: Configuring Security Policies
Khan Rashid Lesson 11-The Best Policy: Managing Computers and Users Through Group Policy.
Module 4: Implementing User, Group, and Computer Accounts
Chapter 13 Securing Windows Server 2008
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Chapter 8 Chapter 8: Managing Accounts and Client Connectivity.
Hands-On Microsoft Windows Server 2003 Administration Chapter 4 Managing Group Policy.
9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
12.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Chapter 6: Configuring Security. Options for Managing Security Configurations LGPO (Local Group Policy Object) –Used if Computer is not part of a domain.
11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.
10.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
Chapter 6: Configuring Security. Group Policy and LGPO Setting Options Software Installation not available with LGPOs Remote Installation Services Scripts.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Module 8: Implementing Administrative Templates and Audit Policy.
Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.
Guide to MCSE , Enhanced 1 Activity 10-1: Restarting Windows Server 2003 Objective: to restart Windows Server 2003 Start  Shut Down  Restart Configure.
9.1 © 2004 Pearson Education, Inc. Lesson 9: Implementing Group Policy in Windows 2000 Server Exam Microsoft® Windows® 2000 Directory Services Infrastructure.
70-270: MCSE Guide to Microsoft Windows XP Professional Chapter 5: Users, Groups, Profiles, and Policies.
9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Working with Workgroups and Domains
Securing Windows Servers Using Group Policy Objects
CH 12 Securing Windows Server Objectives Understand the security enhancements included in Windows Server 2008 Understand how Windows Server 2008.
1 Chapter Overview Understanding Group Policies Implementing Group Policies Using Security Policies Troubleshooting Group Policy Problems.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Using Group Policy to Manage User Environments. Overview Introduction to Managing User Environments Introduction to Administrative Templates Assigning.
September 18, 2002 Introduction to Windows 2000 Server Components Ryan Larson David Greer.
Hands-On Microsoft Windows Server 2008
Guide to Operating System Security Chapter 4 Account-based Security.
Managing User Accounts, Passwords and Logon Chapter 5 powered by dj.
Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.
Managing Network Security ref: Overview Using Group Policy to Secure the User Environment Using Group Policy to Configure Account Policies.
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
C HAPTER 6 NTFS PERMISSIONS & SECURITY SETTING. INTRODUCTION NTFS provides performance, security, reliability & advanced features that are not found in.
Designing Active Directory for Security
Managing User and Service Accounts
Windows Server 2003 Overview 1 Windows 2003 Server Overview Ayaz
Module 14: Configuring Server Security Compliance
Securing AD DS Module A 3: Securing AD DS
Module 7: Fundamentals of Administering Windows Server 2008.
Microsoft ® Virtual Academy Module 3 Understanding Security Policies Christopher Chapman | Content PM, Microsoft Thomas Willingham | Content Developer,
1 Chapter Overview Configuring Account Policies Configuring User Rights Configuring Security Options Configuring Internet Options.
8.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 8: Planning.
Chapter 13 Users, Groups Profiles and Policies. Learning Objectives Understand Windows XP Professional user accounts Understand the different types of.
September 18, 2002 Windows 2000 Server Active Directory By Jerry Haggard.
Understanding Group Policy James Michael Stewart CISSP, TICSA, CIW SA, CCNA, MCSE NT & W2K, iNet+
1 Chapter Overview Understanding User Accounts Planning New User Accounts Creating, Modifying, and Deleting User Accounts Setting Properties for User Accounts.
Some overlap exists between the settings of the MMC and the settings of the registry. The MMC is extensible. Policies and properties can be edited via.
Working with Users and Groups Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Introducing User Account Control Configure and troubleshoot.
Fall 2011 Nassau Community College ITE153 – Operating Systems Session 21 Administering User Accounts and Groups 1.
Administering Group Policy Chapter Eleven. Exam Objectives in this Chapter  Plan a Group Policy strategy using Resultant Set of Policy Planning mode.
Module 7: Implementing Security Using Group Policy.
NetTech Solutions Security and Security Permissions Lesson Nine.
Module 10: Implementing Administrative Templates and Audit Policy.
Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.
Working with Users and Groups Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Introducing User Account Control Configure and troubleshoot.
Chapter 7 Server Management Policies –User accounts –Groups Rights and permissions Examples.
4.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 12: Implementing Security.
Understanding Security Policies Lesson 3. Objectives.
Configuring the User and Computer Environment Using Group Policy Lesson 8.
Understanding Security Policies
Nassau Community College
Managing User and Service Accounts
Configuring Windows Firewall with Advanced Security
Greta Mameniskyte IV course 3rd group
Understanding Security Policies
Chapter 8: Managing Accounts and Client Connectivity
Presentation transcript:

Fall 2011 Nassau Community College ITE153 – Operating Systems Session 22 Local Security Polcies 1

Overview Introducing Local Security Policies Four Categories Configuring Password Policy Account Lockout Policy Security Options IP Security Policies Fall Nassau Community College ITE153 – Operating Systems

Fall 2011 Nassau Community College ITE153 – Operating Systems Session 22 Windows 7 Professional Local Security Policies 3

Local Security Policies A Group Policy object contains an extensive profile of security permissions that apply primarily to the security settings of a domain or a computer (rather than to users) Group policies for local computers that do not use the Active Directory are set using Local Security Policies Because a computer can have more than one policy setting applied to it, security policy settings can conflict with each other. The order of precedence from highest to lowest is: OU => domain => local computer Fall 2011 Nassau Community College ITE153 – Operating Systems 4

Local Security Policies Local Security Policies apply to a computer and contain these subsets: Audit policy. Determines whether security events are written to the security log in Event Viewer on the computer. Also determines whether to log successful attempts, failed attempts, or both User rights assignment. Determines which users or groups have logon rights or privileges on the computer Security options. Enables or disables security policy settings for the computer, such as digital signing of data, Administrator and Guest account names, floppy disk drive and CD drive access, driver installation, and logon prompts Fall 2011 Nassau Community College ITE153 – Operating Systems 5

Local Security Policies There are four categories of local security policies: Account Policies Local Policies Public Key Policies IP Security Policies Fall 2011 Nassau Community College ITE153 – Operating Systems 6

Local Security Policies Two ways to get to it: Control Panel => Systems and Security =>Administrative Tools => Local Security Policy mmc secpol.msc Fall 2011 Nassau Community College ITE153 – Operating Systems 7

Account Policies Password and account lockout policies Set number of invalid logon attempts Lock account indefinitely Fall 2011 Nassau Community College ITE153 – Operating Systems 8

Local Policies Fall 2011 Nassau Community College ITE153 – Operating Systems 9 Prevents last user name logged on from appearing Shutdown without being logged on Lock account indefinitely Force logoffs

Public Key Policies Fall 2011 Nassau Community College ITE153 – Operating Systems 10 Deals mainly with recovery and encryption

IP Security Policies Fall 2011 Nassau Community College ITE153 – Operating Systems 11 Network security rules IP Filtering

… And More Policies Fall 2011 Nassau Community College ITE153 – Operating Systems 12

Lab A: Local Security Policies Fall Nassau Community College ITE153 – Operating Systems

Configuring Password Policy Enforce password history – how many old passwords Maximum password age – days to keep a particular password Minimum password age – prevents changing the password back Minimum password length - # of characters Password complexity requirements – disabled by default Fall 2011 Nassau Community College ITE153 – Operating Systems 14

Lab B: Configuring Password Policy Fall Nassau Community College ITE153 – Operating Systems

Account Lockout Policy Prevents users from guessing passwords Account lockout duration – minutes account is locked out Account lockout threshold – number of invalid logons Reset account lockout counter after – number of minutes that must elapse after a failed logon attempt Fall 2011 Nassau Community College ITE153 – Operating Systems 16

Lab C: Account Lockout Policy Fall Nassau Community College ITE153 – Operating Systems

Security Options Fall 2011 Nassau Community College ITE153 – Operating Systems 18

Security Options Interactive logon: Do not display last user name This security setting determines whether the name of the last user to log on to the computer is displayed in the Windows logon screen. Fall 2011 Nassau Community College ITE153 – Operating Systems 19

User Rights Assignment Change the Time Zone This user right determines which users and groups can change the time zone used by the computer for displaying the local time, which is the computer's system time plus the time zone offset. Fall 2011 Nassau Community College ITE153 – Operating Systems 20

Lab D: Security Options Fall Nassau Community College ITE153 – Operating Systems

IP Security Policies Used for building firewalls Uses a wizard and IP filters Fall 2011 Nassau Community College ITE153 – Operating Systems 22

Important URLS Local Users and Groups - use Local Users and Groups to create and manage users and groups that are stored locally on a computerLocal Users and Groups Local Users and Groups - similar to link above but for Windows 7, Windows Server 2008, Windows Server 2008 R2Local Users and Groups Local Users and Groups best practices - excellent tipsLocal Users and Groups best practices Microsoft Security Administrators Guide - security administrators guide. Also available in PDF format.Microsoft Security Administrators GuidePDF Microsoft Security TechCenter - links to technical bulletins, advisories, updates, tools, and prescriptive guidance. This is a very good site to visit frequentlyMicrosoft Security TechCenter Fall 2011 Nassau Community College ITE153 – Operating Systems 23

Homework Review the Slides Review Lesson 12 In The Text Fall 2011 Nassau Community College ITE153 – Operating Systems 24

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.