Chapter 16 - A+

Lakukan tugas rumah & ujian kamu dengan baik sekarang menggunakan Quizwiz!

brute force attack

A method to hack or discover a password by trying every single combination of characters.

share permissions

A method to share a folder (not individual files) to remote users on the network, including assigning varying degrees of access to specific user accounts and user groups. These permissions do not apply to local users of a computer; they can be used on an NTFS or FAT volume. Compare with NTFS permissions.

NTFS permissions

A method to share a folder or file over a network; these permissions can be applied to local users and network users. The folder or file must be on an NTFS volume. Compare with share permissions.

Group Policy Object (GPO)

A named set of policies that have been created by Group Policy and are applied to an OU.

network share

A networked computer (the client) that appears to have a hard drive, such as drive E:, which is actually hard drive space on another host computer (the server). Also see mapping.

strong password

A password that is not easy to guess.

Windows Firewall

A personal firewall in Windows that protects a computer from intrusion and is automatically configured when you set your network location in the Network and Sharing Center.

mapping

A process in which the client computer creates and saves a shortcut (called a network drive) to a folder or drive shared by a remote computer on the network. The network drive has an associated drive letter that points to the network share.

ActiveX control

A small app or add-on that can be downloaded from a website along with a webpage and is executed by a browser to enhance the webpage.

Active Directory (AD)

A suite of services and databases provided by Windows Server that is used to manage Windows domains, including five groups of services: Domain Services, Certificate Services, Federation Services, Rights Management, and Lightweight Directory Services.

Users group

A type of Windows user account group. An account in this group is a standard user account, which does not have as many rights as an administrator account.

Power Users group

A type of user account group. Accounts assigned to this group can read from and write to parts of the system other than their own user profile folders, install applications, and perform limited administrative tasks.

Guests group

A type of user group in Windows. User accounts that belong to this group have limited rights to the system and are given a temporary profile that is deleted after the user logs off.

Administrators group

A type of user group. When a user account is assigned to this group, the account is granted rights that are assigned to an administrator account.

BitLocker Drive Encryption

A utility in Windows 10/8/7 that is used to lock down a hard drive by encrypting the entire Windows volume and any other volume on the drive. Also called BitLocker Encryption.

Encrypting File System (EFS)

A way to use a key to encode a file or folder on an NTFS volume and protect sensitive data. Because it is an integrated system service, EFS is transparent to users and applications.

Everyone group

In Windows, the Authenticated Users group as well as the Guest account. When you share a file or folder on the network, Windows gives access to the Everyone group by default.

organizational unit (OU)

An object that defines a collection of user groups and/or computers in Active Directory.

hidden share

A folder whose folder name ends with a $ symbol. When you share the folder, it does not appear in the File Explorer or Windows Explorer window of remote computers on the network.

principle of least privilege

An approach where computer users are classified and the rights assigned are the minimum rights required to do their job.

Sync Center

A Control Panel applet that allows two computers to sync the contents of a shared folder or volume.

Local Security Policy

A Windows Administrative Tools snap-in in Control Panel that can manage the Security Settings group of policies. This same group can also be found in Group Policy in the Local Computer Policy/Computer Configuration/ Windows Settings group.

Server Manager

A Windows Server console, also available in Windows 10, that contains the tools used to manage Active Directory.

Resultant Set of Policy (RSoP)

A Windows command and console (rsop.msc) that displays the policies set for a computer or user.

BitLocker To Go

A Windows utility that can encrypt data on a USB flash drive and restrict access by requiring a password.

TPM (Trusted Platform Module)

A chip on a motherboard that holds an encryption key required at startup to access encrypted data on the hard drive. Windows 10/8/7 BitLocker Encryption can use the TPM chip.

Active Directory Domain Services (AD DS)

A component of Active Directory that is responsible for authenticating accounts and authorizing what these accounts can do.

Local Group Policy

A console (gpedit.msc) available in Windows 10/8/7 professional and business editions that applies only to local users and the local computer. Also see Group Policy.

Group Policy

A console (gpedit.msc) available in Windows Server and Windows 10/8/7 professional and business editions that is used to control what users can do and how the local and network computers on the Windows domain can be used.

Remote Admin share

A default share that gives the Administrator user account access to the Windows folder on a remote computer in a Windows domain.

Internet Options

A dialog box used to manage Internet Explorer settings.

Authenticated Users group

All user accounts that have been authenticated to access the system except the Guest account. Compare with anonymous users.

local shares

Folders on a computer that are shared with others on the network by using a folder's Properties box. Local shares are used with a workgroup and not with a domain.

Local Users and Groups

For business and professional editions of Windows, a Windows utility console (lusrmgr.msc) that can be used to manage user accounts and user groups.

defense in depth

Layered protection for a system or network so that, if one security method fails, the next might stop an attacker.

inherited permissions

Permissions assigned by Windows that are obtained from a parent object.

gpresult

The Windows command to find out which group policies are currently applied to a system for the computer or user.

gpupdate

The Windows command to refresh local group policies as well as group policies set in Active Directory on a Windows domain.

privileges

The access to data files and folders given to user accounts and user groups. Also called rights.

Home folder

The default folder presented to a user when she is ready to save a file. On a peertopeer network, the Home folder is normally the Documents folder in the user profile.

forest

The entire enterprise of users and resources that is managed by Active Directory.

administrative shares

The folders and volumes shared by default on a network that administrator accounts can access but are invisible to standard users. Use the fsmgmt.msc command to view a list of shared folders and volumes.

folder redirection

The technique in Active Directory of using a shared folder on the network instead of a user's Home folder on the local computer.

multifactor authentication (MFA)

The use of more than one method to authenticate access to a computer, network, or other resource.

anonymous users

User accounts that have not been authenticated on a remote computer.

permissions

Varying degrees of access assigned to a folder or file and given to a user account or user group. Access can include full control, write, delete, and read-only.

permission propagation

When Windows passes permissions from parent objects to child objects.


Set pelajaran terkait

Chapter 6 The Byzantine Empire Study Guide

View Set

CFP Investments - Lesson #4 - Stock Valuation & Ratio Names

View Set

Cognitive Psychology - Exam 2 Practice

View Set

History - Jane Addams of Hull House

View Set

bottom half of 5 Times Table (5x0, 5x1 5x2 5x3 5x4 5x5)

View Set