Uploaded byAASTHA76
DOCX, PDF57 views

Lab #1 – Assessment WorksheetImplementing Access Cont.docx

This document is a lab assessment worksheet for a course on application security focused on implementing access controls using Windows Active Directory. It includes a series of questions regarding the configuration of access controls, password policies, guest access security, and specific directory sharing changes. Additionally, it seeks to explain how confidentiality, integrity, and availability (CIA) can be achieved at granular levels using Windows Server 2012 R2 configurations.

Embed presentation

Download to read offline
Lab #1 – Assessment Worksheet Implementing Access Controls with Windows Active Directory Course Name and Number: Application Security (ISOL-534-50) Student Name: Instructor Name: Lab Due Date: Lab Assessment Questions 1. Relate how Windows Server 2012 Active Directory and the configuration of access controls achieve CIA for departmental LANs, departmental folders, and data.
2. Is it a good practice to include the account or username in the password? Why or why not? 3. To enhance the strength of user passwords, what are some of the best practices to implement for user password definitions to maximize confidentiality? 4. Can a user who is defined in Active Directory access a shared drive on a computer if the server with the shared drive is not part of the domain? 5. When granting access to network systems for guests (i.e., auditors, consultants, third-party individuals, etc.), what security controls do you recommend implementing to maximize CIA of production systems and data?
6. In the Access Controls Criteria table, what sharing changes were made to the MGR files folder on the TargetWindows01 server? 7. In the Access Controls Criteria table, what sharing changes were made on the TargetWindows01 server to allow Shop Floor users to read/write files in the C:LabDocumentsSFfiles folder? 8. In the Access Controls Criteria table, what sharing changes were made on the TargetWindows01 server to allow Human Resources users to access files in the C:LabDocumentsHRfiles folder?
9. Explain how CIA can be achieved down to the folder and data file access level for departments and users using Active Directory and Windows Server 2012 R2 access control configurations. Configuring unique access controls for different user types is an example of which kind of access controls?

More Related Content

DOCX
1. Relate how Windows Server 2012 Active Directory and the configura
bycareyshaunda
 
PPTX
Week No 13 Access Control Part 1.pptx
byXhamiiiCH
 
DOCX
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend .docx
byvanesaburnand
 
PDF
(4) NIST SP 800-53 Revision 4 (security control enhancements omitted) 20140804
byJames W. De Rienzo
 
DOCX
To meet the requirements for lab 10 you were to perform Part 1, S
byTakishaPeck109
 
DOCX
26 Lab #1 Performing Reconnaissance and Probing Using Comm.docx
bytamicawaysmith
 
DOCX
Final Project – Incident Response Exercise SAMPLE.docx
bylmelaine
 
DOCX
OverviewYou have been hired as an auditor for a local univer.docx
byaman341480
 
1. Relate how Windows Server 2012 Active Directory and the configura
bycareyshaunda
 
Week No 13 Access Control Part 1.pptx
byXhamiiiCH
 
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend .docx
byvanesaburnand
 
(4) NIST SP 800-53 Revision 4 (security control enhancements omitted) 20140804
byJames W. De Rienzo
 
To meet the requirements for lab 10 you were to perform Part 1, S
byTakishaPeck109
 
26 Lab #1 Performing Reconnaissance and Probing Using Comm.docx
bytamicawaysmith
 
Final Project – Incident Response Exercise SAMPLE.docx
bylmelaine
 
OverviewYou have been hired as an auditor for a local univer.docx
byaman341480
 

Similar to Lab #1 – Assessment WorksheetImplementing Access Cont.docx

PPTX
Access Controls
byprimeteacher32
 
PDF
Short Handbook for CISSP Learners with all domains
byarpitmags1
 
PPT
access control information security professor hossein saiedian fall 2014
bymaneltighiouart7
 
DOCX
Learning objectives and outcomes create a report detailing
bysimba35
 
DOCX
Module 04 Assignment - HIPAA Scenario Security Assignment .docx
byraju957290
 
DOCX
CIS 349 Entire Course NEW
byshyamuopuop
 
DOC
CIS 349 Imagine Your Future/newtonhelp.com   
bybellflower46
 
PDF
Cis 349 Inspiring Innovation--tutorialrank.com
byPrescottLunt371
 
DOCX
CIS 349 Effective Communication/tutorialrank.com
byjonhson185
 
DOCX
CIS 349 RANK Lessons in Excellence--cis349rank.com
byRoelofMerwe139
 
DOCX
CIS 349 RANK Inspiring Innovation--cis349rank.com
byKeatonJennings91
 
DOC
Cis 349 Education Specialist-snaptutorial.com
byrobertlesew95
 
DOCX
Cis 349 Extraordinary Success/newtonhelp.com
byamaranthbeg147
 
PDF
Cis 349 Teaching Effectively--tutorialrank.com
bySoaps82
 
DOCX
CIS 349 RANK Become Exceptional--cis349rank.com
byclaric103
 
DOCX
CIS 349 RANK Achievement Education--cis349rank.com
byclaric154
 
DOCX
CIS 349 RANK Education Counseling--cis349rank.com
byshanaabe13
 
DOCX
CIS 349 RANK Introduction Education--cis349rank.com
byclaric263
 
PDF
The Federal Information Security Management Act
byMichelle Singh
 
PDF
Remote Access Policy Is A Normal Thing
byKaren Oliver
 
Access Controls
byprimeteacher32
 
Short Handbook for CISSP Learners with all domains
byarpitmags1
 
access control information security professor hossein saiedian fall 2014
bymaneltighiouart7
 
Learning objectives and outcomes create a report detailing
bysimba35
 
Module 04 Assignment - HIPAA Scenario Security Assignment .docx
byraju957290
 
CIS 349 Entire Course NEW
byshyamuopuop
 
CIS 349 Imagine Your Future/newtonhelp.com   
bybellflower46
 
Cis 349 Inspiring Innovation--tutorialrank.com
byPrescottLunt371
 
CIS 349 Effective Communication/tutorialrank.com
byjonhson185
 
CIS 349 RANK Lessons in Excellence--cis349rank.com
byRoelofMerwe139
 
CIS 349 RANK Inspiring Innovation--cis349rank.com
byKeatonJennings91
 
Cis 349 Education Specialist-snaptutorial.com
byrobertlesew95
 
Cis 349 Extraordinary Success/newtonhelp.com
byamaranthbeg147
 
Cis 349 Teaching Effectively--tutorialrank.com
bySoaps82
 
CIS 349 RANK Become Exceptional--cis349rank.com
byclaric103
 
CIS 349 RANK Achievement Education--cis349rank.com
byclaric154
 
CIS 349 RANK Education Counseling--cis349rank.com
byshanaabe13
 
CIS 349 RANK Introduction Education--cis349rank.com
byclaric263
 
The Federal Information Security Management Act
byMichelle Singh
 
Remote Access Policy Is A Normal Thing
byKaren Oliver
 

More from AASTHA76

DOCX
(Dis) Placing Culture and Cultural Space Chapter 4.docx
byAASTHA76
 
DOCX
(a) Thrasymachus’ (the sophist’s) definition of Justice or Right o.docx
byAASTHA76
 
DOCX
#include string.h#include stdlib.h#include systypes.h.docx
byAASTHA76
 
DOCX
(chapter taken from Learning Power)From Social Class and t.docx
byAASTHA76
 
DOCX
#include stdio.h#include stdint.h#include stdbool.h.docx
byAASTHA76
 
DOCX
(a) The current ratio of a company is 61 and its acid-test ratio .docx
byAASTHA76
 
DOCX
#include customer.h#include heap.h#include iostream.docx
byAASTHA76
 
DOCX
#MicroXplorer Configuration settings - do not modifyFile.Versio.docx
byAASTHA76
 
DOCX
(APA 6th Edition Formatting and St.docx
byAASTHA76
 
DOCX
(Assmt 1; Week 3 paper) Using ecree Doing the paper and s.docx
byAASTHA76
 
DOCX
(Image retrieved at httpswww.google.comsearchhl=en&biw=122.docx
byAASTHA76
 
DOCX
#transformation10EventTrendsfor 201910 Event.docx
byAASTHA76
 
DOCX
#Assessment BriefDiploma of Business Eco.docx
byAASTHA76
 
DOCX
(Glossary of Telemedicine and eHealth)· Teleconsultation Cons.docx
byAASTHA76
 
DOCX
$ stated in thousands)Net Assets, Controlling Interest.docx
byAASTHA76
 
DOCX
(Accessible at httpswww.hatchforgood.orgexplore102nonpro.docx
byAASTHA76
 
DOCX
#include stdio.h#include stdlib.h#include pthread.h#in.docx
byAASTHA76
 
DOCX
(1) How does quantum cryptography eliminate the problem of eaves.docx
byAASTHA76
 
DOCX
$10 now and $10 when complete Use resources from the required .docx
byAASTHA76
 
DOCX
(1) Define the time value of money.  Do you believe that the ave.docx
byAASTHA76
 
(Dis) Placing Culture and Cultural Space Chapter 4.docx
byAASTHA76
 
(a) Thrasymachus’ (the sophist’s) definition of Justice or Right o.docx
byAASTHA76
 
#include string.h#include stdlib.h#include systypes.h.docx
byAASTHA76
 
(chapter taken from Learning Power)From Social Class and t.docx
byAASTHA76
 
#include stdio.h#include stdint.h#include stdbool.h.docx
byAASTHA76
 
(a) The current ratio of a company is 61 and its acid-test ratio .docx
byAASTHA76
 
#include customer.h#include heap.h#include iostream.docx
byAASTHA76
 
#MicroXplorer Configuration settings - do not modifyFile.Versio.docx
byAASTHA76
 
(APA 6th Edition Formatting and St.docx
byAASTHA76
 
(Assmt 1; Week 3 paper) Using ecree Doing the paper and s.docx
byAASTHA76
 
(Image retrieved at httpswww.google.comsearchhl=en&biw=122.docx
byAASTHA76
 
#transformation10EventTrendsfor 201910 Event.docx
byAASTHA76
 
#Assessment BriefDiploma of Business Eco.docx
byAASTHA76
 
(Glossary of Telemedicine and eHealth)· Teleconsultation Cons.docx
byAASTHA76
 
$ stated in thousands)Net Assets, Controlling Interest.docx
byAASTHA76
 
(Accessible at httpswww.hatchforgood.orgexplore102nonpro.docx
byAASTHA76
 
#include stdio.h#include stdlib.h#include pthread.h#in.docx
byAASTHA76
 
(1) How does quantum cryptography eliminate the problem of eaves.docx
byAASTHA76
 
$10 now and $10 when complete Use resources from the required .docx
byAASTHA76
 
(1) Define the time value of money.  Do you believe that the ave.docx
byAASTHA76
 

Recently uploaded

PDF
Character Sketches (Class 10 English).pdf
byShreyas Narnoli
 
PPTX
Salesforce Spring 26` Release Key Features.pptx
byMehediHasan939830
 
PDF
Cut off for Asst Professor Recruitment by HPSC i.e. Haryana Public Service Co...
byRajesh Verma
 
PPTX
CHAPTER NO. 05 BIOLOGICAL SOURCE,CHEMICAL CONSTITUENTS AND THERAPEUTIC EFFICA...
byGanu Gavade
 
PPTX
What are the Custom lot_serial number in Odoo 19
byCeline George
 
PPTX
How to Manage Margin & Cost in Odoo 18 POS
byCeline George
 
PDF
Teaching and Learning (BD1TL) - B.Ed TNTEU
byDr Raja Mohammed T
 
PDF
RESPIRATORY_SYSTEM_ ANATOMY_PATHOPHYSIOLOGY
bygovt. college of nursing bikaner
 
PPTX
How to Setup Global Invoice in Odoo 19 POS
byCeline George
 
PDF
DNA.CEO: DNA-Computing For Kids, Teens, & Dummies (Like Me)
byVladislav Solodkiy
 
PDF
Gaming Quiz 2025- 27th October 2025, Quiz Club NITW
byQuiz Club NITW
 
PPTX
All Things 2025 - A Year in Review Quiz!
byShashank Jogani
 
PPT
Clotting time - Practical - Hematology Physiology
bykishorkumar396
 
PPTX
Acid Base Titration First Year B Pharm.pptx
byMs. Ashatai Patil
 
PPTX
Non aqueous titration First Year B. Pharm.pptx
byMs. Ashatai Patil
 
PPTX
4. Nursery raising of vegetable crops.pptx
byUmeshTimilsina1
 
PPTX
Cultivation practice of Cucumber, Pumpkin and summer squash in Nepal.pptx
byUmeshTimilsina1
 
PPTX
Cultivation Practice of Brinjal in Nepal.pptx
byUmeshTimilsina1
 
PPTX
Cultivation Practice of Major Cole crops in Nepal.pptx
byUmeshTimilsina1
 
PPTX
Cultivation Practice of Chilli and sweet Pepper.pptx
byUmeshTimilsina1
 
Character Sketches (Class 10 English).pdf
byShreyas Narnoli
 
Salesforce Spring 26` Release Key Features.pptx
byMehediHasan939830
 
Cut off for Asst Professor Recruitment by HPSC i.e. Haryana Public Service Co...
byRajesh Verma
 
CHAPTER NO. 05 BIOLOGICAL SOURCE,CHEMICAL CONSTITUENTS AND THERAPEUTIC EFFICA...
byGanu Gavade
 
What are the Custom lot_serial number in Odoo 19
byCeline George
 
How to Manage Margin & Cost in Odoo 18 POS
byCeline George
 
Teaching and Learning (BD1TL) - B.Ed TNTEU
byDr Raja Mohammed T
 
RESPIRATORY_SYSTEM_ ANATOMY_PATHOPHYSIOLOGY
bygovt. college of nursing bikaner
 
How to Setup Global Invoice in Odoo 19 POS
byCeline George
 
DNA.CEO: DNA-Computing For Kids, Teens, & Dummies (Like Me)
byVladislav Solodkiy
 
Gaming Quiz 2025- 27th October 2025, Quiz Club NITW
byQuiz Club NITW
 
All Things 2025 - A Year in Review Quiz!
byShashank Jogani
 
Clotting time - Practical - Hematology Physiology
bykishorkumar396
 
Acid Base Titration First Year B Pharm.pptx
byMs. Ashatai Patil
 
Non aqueous titration First Year B. Pharm.pptx
byMs. Ashatai Patil
 
4. Nursery raising of vegetable crops.pptx
byUmeshTimilsina1
 
Cultivation practice of Cucumber, Pumpkin and summer squash in Nepal.pptx
byUmeshTimilsina1
 
Cultivation Practice of Brinjal in Nepal.pptx
byUmeshTimilsina1
 
Cultivation Practice of Major Cole crops in Nepal.pptx
byUmeshTimilsina1
 
Cultivation Practice of Chilli and sweet Pepper.pptx
byUmeshTimilsina1
 

Lab #1 – Assessment WorksheetImplementing Access Cont.docx

  • 1.
    Lab #1 –Assessment Worksheet Implementing Access Controls with Windows Active Directory Course Name and Number: Application Security (ISOL-534-50) Student Name: Instructor Name: Lab Due Date: Lab Assessment Questions 1. Relate how Windows Server 2012 Active Directory and the configuration of access controls achieve CIA for departmental LANs, departmental folders, and data.
  • 2.
    2. Is ita good practice to include the account or username in the password? Why or why not? 3. To enhance the strength of user passwords, what are some of the best practices to implement for user password definitions to maximize confidentiality? 4. Can a user who is defined in Active Directory access a shared drive on a computer if the server with the shared drive is not part of the domain? 5. When granting access to network systems for guests (i.e., auditors, consultants, third-party individuals, etc.), what security controls do you recommend implementing to maximize CIA of production systems and data?
  • 3.
    6. In theAccess Controls Criteria table, what sharing changes were made to the MGR files folder on the TargetWindows01 server? 7. In the Access Controls Criteria table, what sharing changes were made on the TargetWindows01 server to allow Shop Floor users to read/write files in the C:LabDocumentsSFfiles folder? 8. In the Access Controls Criteria table, what sharing changes were made on the TargetWindows01 server to allow Human Resources users to access files in the C:LabDocumentsHRfiles folder?
  • 4.
    9. Explain howCIA can be achieved down to the folder and data file access level for departments and users using Active Directory and Windows Server 2012 R2 access control configurations. Configuring unique access controls for different user types is an example of which kind of access controls?