Module 3: Planning Administrative Access. Overview Determining the Appropriate Administrative Model Designing Administrative Group Strategies Planning.

Slides:



Advertisements
Similar presentations
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
Advertisements

Lesson 17: Configuring Security Policies
Module 3: Planning Administrative Access
Module 5: Creating and Configuring Group Policy
Chapter 5: Configuring Users and Groups. Windows Vista User Accounts User accounts are the primary means of authentication Built-in Accounts –Administrator:
7.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 7: Introducing Group Accounts.
Module 11: Supporting Remote Users. Overview Establishing Remote Access Connections Connecting to Virtual Private Networks Configuring Authentication.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Corso referenti S.I.R.A. – Modulo 2 Local Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano.
Module 8: Implementing Administrative Templates and Audit Policy.
11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.
HalFILE 3.0 Active Directory Integration. halFILE 3.0 AD – What is it? Centralized organization of network objects and security – servers, computers,
Guide to MCSE , Enhanced 1 Activity 10-1: Restarting Windows Server 2003 Objective: to restart Windows Server 2003 Start  Shut Down  Restart Configure.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Module 2: Managing User and Computer Accounts
Active Directory Administration Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Creating Users, Computers, and Groups Automate creation.
Module 1 Introduction to Managing Microsoft® Windows Server® 2008 Environment.
Module 1: Introduction to Administering Accounts and Resources
Working with Workgroups and Domains
Using Group Policy to Manage User Environments. Overview Introduction to Managing User Environments Introduction to Administrative Templates Assigning.
September 18, 2002 Introduction to Windows 2000 Server Components Ryan Larson David Greer.
Module 9: Planning Network Access. Overview Introducing Network Access Selecting Network Access Connection Methods Selecting a Remote Access Policy Strategy.
1 Group Account Administration Introduction to Groups Planning a Group Strategy Creating Groups Understanding Default Groups Groups for Administrators.
Securing Microsoft® Exchange Server 2010
CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
8.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 8: Introducing Computer Accounts.
Managing Active Directory Domain Services Objects
5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam Microsoft® Windows® 2000 Directory Services Infrastructure Goals 
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
Designing Active Directory for Security
Securing AD DS Module A 3: Securing AD DS
Module 7: Fundamentals of Administering Windows Server 2008.
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
1 Chapter 12: VPN Connectivity in Remote Access Designs Designs That Include VPN Remote Access Essential VPN Remote Access Design Concepts Data Protection.
Module 1: Installing and Configuring Servers. Module Overview Installing Windows Server 2008 Managing Server Roles and Features Overview of the Server.
Module 11: Remote Access Fundamentals
Module 2: Installing and Maintaining ISA Server. Overview Installing ISA Server 2004 Choosing ISA Server Clients Installing and Configuring Firewall Clients.
Module 9: Preparing to Administer a Server. Overview Introduction to Administering a Server Configuring Remote Desktop to Administer a Server Managing.
Module 6: Implementing Group Policy. Overview Implementing Group Policy Objects Implementing GPOs in a Domain Managing the Deployment of Group Policy.
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Microsoft ® Official Course Module 3 Managing Active Directory Domain Services Objects.
Introduction to Microsoft Management Console (MMC) MMC is a common console framework for management applications. MMC provides a common environment for.
1 Introduction to Microsoft Windows 2000 Windows 2000 Overview Windows 2000 Architecture Overview Windows 2000 Directory Services Overview Logging On to.
Planning a Microsoft Windows 2000 Administrative Structure Designing default administrative group membership Designing custom administrative groups local.
Module 3 Configuring File Access and Printers on Windows 7 Clients.
Module 3: Managing a Microsoft ® Windows ® Small Business Server Environment.
Working with Workgroups and Domains Lesson 9. Objectives Understand users and groups Create and manage local users and groups Understand the difference.
Module 3: Configuring File Access and Printers on Windows 7 Clients
Working with Users and Groups Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Introducing User Account Control Configure and troubleshoot.
Security Planning and Administrative Delegation Lesson 6.
Module 4 Planning for Group Policy. Module Overview Planning Group Policy Application Planning Group Policy Processing Planning the Management of Group.
Managing Local Users & Groups. OVERVIEW Configure and manage user accounts Manage user account properties Manage user and group rights Configure user.
Module 9: Designing Security for Data. Overview Creating a Security Plan for Data Creating a Design for Security of Data.
Administering Groups Chapter Eight. Exam Objectives In this Chapter:  Plan a security group hierarchy based upon delegation requirements  Plan a security.
Module 10: Implementing Administrative Templates and Audit Policy.
Module 1: Introduction to Administering Accounts and Resources.
Working with Users and Groups Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Introducing User Account Control Configure and troubleshoot.
Configuring, Managing and Maintaining Windows Server® 2008 Servers Course 6419A.
11 SECURITY PLANNING AND ADMINISTRATIVE DELEGATION Chapter 6.
Chapter Objectives In this chapter, you will learn:
Nassau Community College
Module 9: Preparing to Administer a Server
SECURITY PLANNING AND ADMINISTRATIVE DELEGATION
Module Overview Installing and Configuring a Network Policy Server
Module 1: Introduction to Administering Accounts and Resources
Creating and Managing User Accounts
Unit 8 NT1330 Client-Server Networking II Date: 8/2/2016
Server-to-Client Remote Access and DirectAccess
PLANNING A SECURE BASELINE INSTALLATION
Module 9: Preparing to Administer a Server
Presentation transcript:

Module 3: Planning Administrative Access

Overview Determining the Appropriate Administrative Model Designing Administrative Group Strategies Planning Local Administrative Access Planning Remote Administrative Access

 Determining the Appropriate Administrative Model Choosing Centralized Administrative Models Choosing Decentralized and Hybrid Administrative Models Identifying Network Resource Administrative Tasks Identifying Administrative Tasks Defining Security Management Tasks

Choosing Centralized Administrative Models Centralized Administration ! ! ? ? i i

Choosing Decentralized and Hybrid Administrative Models Decentralized Resource Administration Human Resources Dept. Centralized User Account Administration Decentralized Administration Hybrid Administration

Identifying Network Resource Administration Tasks Network Resources Account Administration ! ! ? ? i i Resource Administration Backup Administration

Identifying Administrative Tasks Storage Management Batch/Output Management Problem Management Performance Management Security Management Change and Configuration Management Change and Configuration Management Event Management

Defining Security Management Tasks Secure Physical Systems and Devices Manage Users, Groups, and Policies Define and Implement Authentication and Data Transmission Security Control and Monitor Access to Shared Resources Create and Implement an Audit Policy Create and Implement a Backup and Recovery Plan Create and Implement Desktop Policies Storage Management Batch/Output Management Problem Management Performance Management Change and Configuration Management Event Management Security Management

 Designing Administrative Group Strategies Creating Custom Groups Nesting Groups Managing Administration Memberships

Custom Groups Default Group Rights: Backup Restore Rights: Backup Rights: Restore Backup Operators Backup Only Restore Only Creating Custom Groups

Nesting Groups Employee Reviewers (Universal Group) Employee Records (Domain Local Group) Sales Mgrs (Global Group) IS Mgrs (Global Group) Product Mgrs (Global Group) All Managers (Global Group) Human Resources (Global Group) Rights and permissions to modify employee records allocated to group Rights and permissions to modify employee records allocated to group

Managing Administration Memberships Using Restricted Groups Monitoring Memberships

 Planning Local Administrative Access Controlling Physical Administration Points Planning Logical Security Settings Using the RunAs Service

Controlling Physical Administration Points Physical Security Smart Card Logon Access Cert ReaderReader Smart Card

Planning Logical Security Settings Restrictive Logon Hours Xy!2#Hv*j Strong Passwords Workstation Restrictions Active Directory User Account Options Smart Card

Running Applications Providing Alternate Credentials Using the RunAs Service User Account Process User Account Process User Account Process Administrative Account Process

Demonstration: Using the RunAs Service

 Planning Remote Administrative Access Encrypted Authentication and Data Transmission Customizing Microsoft Management Console Using Terminal Services for Remote Administration Using Telnet for Remote Administration

Encrypted Authentication and Data Transmission Securing Authentication Securing PPP and PPTP Connections Securing L2TP Connections Design Decisions

Customizing Microsoft Management Console Save As RemoteAdminConsole.msc Restricting Access to MMC Distributing MMC

Using Terminal Services for Remote Administration Server Running Terminal Services Administrator Computer Running Terminal Services Client Encrypted Screen Data Encrypted Keyboard and Mouse Data User Rights Administrator Security Data Encryption Additional Security Considerations

Using Telnet for Remote Administration

Lab A: Planning Secure Administrative Access

Review Determining the Appropriate Administrative Model Designing Administrative Group Strategies Planning Local Administrative Access Planning Remote Administrative Access

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.