Some overlap exists between the settings of the MMC and the settings of the registry. The MMC is extensible. Policies and properties can be edited via.

Slides:

Advertisements

Similar presentations

Chapter Five Users, Groups, Profiles, and Policies.

Advertisements

Guide to MCSE , Enhanced 1 Activity 14-1: Browsing Security Templates Objective: To become familiar with built-in security templates Start  Run.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 7: Troubleshoot Security Settings and Local Security.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Lesson 17: Configuring Security Policies

Khan Rashid Lesson 11-The Best Policy: Managing Computers and Users Through Group Policy.

Chapter 13 Securing Windows Server 2008

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

Chapter 8 Chapter 8: Managing Accounts and Client Connectivity.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 14: Windows Server 2003 Security Features.

Hands-On Microsoft Windows Server 2003 Administration Chapter 4 Managing Group Policy.

12.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

MIS Chapter 91 Ch. 9 – Implement and Use Group Policy MIS 431 – created Spring 2006.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 14: Windows Server 2003 Security Features.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.

Chapter 3: Configuring the Windows Vista Environment.

Chapter 6: Configuring Security. Group Policy and LGPO Setting Options Software Installation not available with LGPOs Remote Installation Services Scripts.

Chapter 5: Configuring Users and Groups. Windows Vista User Accounts User accounts are the primary means of authentication Built-in Accounts –Administrator:

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

Guide to MCSE , Enhanced 1 Activity 9-1: Creating a Group Policy Object Using the MMC Objective: To create a GPO using the Group Policy Object Editor.

Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.

9.1 © 2004 Pearson Education, Inc. Lesson 9: Implementing Group Policy in Windows 2000 Server Exam Microsoft® Windows® 2000 Directory Services Infrastructure.

70-270: MCSE Guide to Microsoft Windows XP Professional Chapter 5: Users, Groups, Profiles, and Policies.

9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

Securing Windows Servers Using Group Policy Objects

Hands-On Microsoft Windows Server 2008 Chapter 10 Securing Windows Server 2008.

Windows Server 2008 Chapter 10 Last Update

1 Chapter Overview Understanding Group Policies Implementing Group Policies Using Security Policies Troubleshooting Group Policy Problems.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

Using Group Policy to Manage User Environments. Overview Introduction to Managing User Environments Introduction to Administrative Templates Assigning.

September 18, 2002 Introduction to Windows 2000 Server Components Ryan Larson David Greer.

CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+

Hands-On Microsoft Windows Server 2008

Guide to Operating System Security Chapter 4 Account-based Security.

Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.

Section 7: Implementing Security Using Group Policy Exploring the Windows Security Architecture Securing User Accounts Exploring Security Policies Hardening.

Fall 2011 Nassau Community College ITE153 – Operating Systems Session 22 Local Security Polcies 1.

Module 14: Configuring Server Security Compliance

Module 7: Fundamentals of Administering Windows Server 2008.

11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 UNDERSTANDING USER ACCOUNTS  Local user accounts  stored in the Security.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

Chapter 13 Users, Groups Profiles and Policies. Learning Objectives Understand Windows XP Professional user accounts Understand the different types of.

September 18, 2002 Windows 2000 Server Active Directory By Jerry Haggard.

Module 6: Implementing Group Policy. Overview Implementing Group Policy Objects Implementing GPOs in a Domain Managing the Deployment of Group Policy.

Understanding Group Policy James Michael Stewart CISSP, TICSA, CIW SA, CCNA, MCSE NT & W2K, iNet+

Introduction to Microsoft Management Console (MMC) MMC is a common console framework for management applications. MMC provides a common environment for.

Module 3 Configuring File Access and Printers on Windows ® 7 Clients.

Configuring the User and Computer Environment Using Group Policy Lesson 8.

Module 3 Configuring File Access and Printers on Windows 7 Clients.

Guide to MCSE , Second Edition, Enhanced1 The Windows XP Security Model User must logon with: Valid user ID Password User receives access token Access.

Module 3: Configuring File Access and Printers on Windows 7 Clients

Active Directory Group Policy. Group Policy Overview  Successor to NT policies Much more flexible  Only applies to 2000 workstations Use old style policies.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 14: Windows Server 2003 Security Features.

70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 11: Group Policy for Corporate Policy.

Module 4 Planning for Group Policy. Module Overview Planning Group Policy Application Planning Group Policy Processing Planning the Management of Group.

Guide to MCSE , Enhanced1 Activity 1-1: Determining the Windows Server 2003 Edition Installed on a Server Objective is to determine the edition of.

1 Group Policies (Week 11, Monday 3/19/2007) © Abdou Illia, Spring 2007.

Fall 2011 Nassau Community College ITE153 – Operating Systems Session 21 Administering User Accounts and Groups 1.

Administering Group Policy Chapter Eleven. Exam Objectives in this Chapter  Plan a Group Policy strategy using Resultant Set of Policy Planning mode.

Module 7: Implementing Security Using Group Policy.

NetTech Solutions Security and Security Permissions Lesson Nine.

1 Overview of Microsoft Windows 2000 Multipurpose OS Reduces total cost of ownership (TCO)

4.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 12: Implementing Security.

Unit 8 NT1330 Client-Server Networking II Date: 2?10/2016

Configuring the User and Computer Environment Using Group Policy Lesson 8.

11 CONFIGURING THE USER AND COMPUTER ENVIRONMENT USING GROUP POLICY Chapter 8.

Configuring Windows Firewall with Advanced Security

CONFIGURING THE USER AND COMPUTER ENVIRONMENT USING GROUP POLICY

Security Templates Lecture 7.

Presentation transcript:

Some overlap exists between the settings of the MMC and the settings of the registry. The MMC is extensible. Policies and properties can be edited via the Microsoft Management Console (MMC).

general security controls audit user rights password policies accounts lockout digital certificate management Kerberos public-key policies IPSec policies both local and Active-X user policies device management etc. etc. etc.

The MMC is a framework. Using the MMC requires snap-ins. File > Add/Remove Snap-ins

ActiveX Control  manage domain users Certificates  manage digital certificates for users, computers, and/or services Computer Management  manage local/remote computers  includes elements of other snap-ins (event logs, shared folders local users & groups, performance logs Local Users & Groups  create/modify local accounts  disable local accounts  set password expiration parameters  create/modify/delete local groups  assign local user(s) to groups

Device Manager Disk Defragmenter  analyze/defragment secondary storage volumes (a utility) Disk Management  view/configure partitions  format drives and assign drive letters Event Viewer  view application, security and/or system logs  troubleshoot local hardware  install/update device drivers  view/configure various hardware parameters Group Policy  apply policy settings to computers, users and/or groups

IP Security Policy Management  manage various policies associated with IP (e.g. authenticated protocols) Local Users and Groups  create/modify/delete local users and/or groups  create/modify user/group profiles Performance Monitor  view/manage performance logs Resultant Set of Policy  view policies set by selected other snap-ins Security Templates  create/modify security templates that can be applied to users Services  edit services (terminal services, telnet, smart card, RPC, net login, ICF)

 A policy is a centralized collection of operational/security controls.  Policy application is accomplished via group policy objects (GPO).  GPOs can be applied to local, site, domain, organizational unit  The last applicable GPO that is applied takes precedent.  GPOs are inherited by default.  GPO settings include no override, enable, disable, allow/deny.  Limitation: user that is a member of more than 70 to 80 groups.  EXAMPLE POLICIES  password age, complexity, size  account lockout duration  auditing of logon, directory access, processes, policy changes  user/group privileges  IPSec