Overview User Accounts Groups User Rights Permissions.
15
Overview User Accounts Groups User Rights Permissions
-
Upload
shanon-chase -
Category
Documents
-
view
237 -
download
0
Transcript of Overview User Accounts Groups User Rights Permissions.
Overview
User Accounts
Groups
User Rights
Permissions
User Accounts
Local User Accounts
Domain User Accounts
Use a Local User Account to:Log on to the computer where the
account exists
Local User
Local User Account
Local User Account
Built-in (Local) User Accounts
Used when a computer is first set up with Windows 2000
Used for administrative tasks Account can never be deleted
Used when a computer is first set up with Windows 2000
Used for administrative tasks Account can never be deleted
Disabled by default Used for temporary access to the
local computer
Disabled by default Used for temporary access to the
local computer
AdministratorAdministrator
GuestGuest
Local User Accounts
Computer Management (Local)System Tools
Event Viewer System Information Performance Logs and AlertsShared FoldersDevice Manager
Action View
Local Users and Groups
Computer Management
TreeUsersGroups
Name
StorageServices and Applications
Use Domain User Accounts to:Gain access to resources anywhere
on a network
Domain User Network Resources
Domain
DomainUserAccountDomain Controller Active Directory
AccessAccess
Built-in (Domain) User Accounts
Manage the overall computer and domain configuration
Manage user accounts and groups Account can never be deleted
Manage the overall computer and domain configuration
Manage user accounts and groups Account can never be deleted
Disabled by default Used for occasional access to
network resources
Disabled by default Used for occasional access to
network resources
AdministratorAdministrator
GuestGuest
Active Directory Users and Computers
Console Window Help
Active View
nwtraders.msft 5 objectsTree
Active Directory Users and Comp
nwtraders.msft
Builtin
Computers
Domain Controllers
ForeignSecurityPrincipals
Users
BuiltinComputersDomain Contr...ForeignSecuri...Users
builtinDomainContainerOrganization...ContainerContainer
Default container...Default container…Default container…Default container…
Name Type Description
Domain User Accounts
Computer Management
Active View
Tree Name Description
Computer Management (Local)System Tools
Event Viewer System Information Performance Logs and AlertsShared FoldersDevice ManagerLocal Users and Groups
UsersGroups
StorageDisk ManagementDisk DefragmenterLogical DrivesRemovable Storage
Services and Applications
AdministratorsBackup OperatorsGuestsPower UsersReplicatorUsers
Administrators have complete and unrestriBackup Operators can override securityGuests have the same access as memberPower Users possess most administrateSupports file replication in a domainUsers are prevented from making accident
Groups on a Local Computer
Accounts Stored in Local Security
Database
Active Directory Users and ComputersConsole Window Help
Active View
Tree
Active Directory Users and Computernwtraders.msft
BuiltinComputersDomain ControllersForeignSecurityPrincipalsUsers
Builtin 9 objectsName Type Description
Account OperatorsAdministratorsBackup OperatorsGuests
Print OperatorsReplicatorServer OperatorsUsers
Security Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin LocalSecurity Group - Builtin Local
Pre-Windows 2000
Members can admAdministrators havBackup OperatorsGuests have the sA backward compMembers can admSupports file replicMembers can admUsers are prevent
Groups In Active Directory
Domain ControllersAccounts Stored
in Active Directory
Groups
User Rights
Common User Rights
Rights Assigned to Built-in Groups
Common User Rights
Log On LocallyLog On LocallyLog On LocallyLog On Locally Change the System TimeChange the System TimeChange the System TimeChange the System Time
Shut Down the SystemShut Down the SystemShut Down the SystemShut Down the System Access This Computer Access This Computer from a Networkfrom a Network
Access This Computer Access This Computer from a Networkfrom a Network
Alt DelCtrl
Shut Down...
Start
Rights Assigned to Built-in Groups
Rights of AdministratorsRights of AdministratorsRights of AdministratorsRights of Administrators Rights of UsersRights of UsersRights of UsersRights of Users
Rights of Power UsersRights of Power UsersRights of Power UsersRights of Power Users Rights of Backup OperatorsRights of Backup OperatorsRights of Backup OperatorsRights of Backup Operators
Permissions
Introduction to Permissions
NTFS File Permissions
NTFS Folder Permissions
Shared Folder Permissions
Printer Permissions
Introduction to Permissions
Object Permissions
Permissions granted for the object
Object is an entity, such as a file, folder, shared folder, or printer
NTFS File Permissions
~~~~~~~~~~~~~~~~~~~~
NTFS File PermissionsNTFS File PermissionsNTFS File PermissionsNTFS File Permissions
ReadRead
WriteWrite
Read & ExecuteRead & Execute
ModifyModify
Full ControlFull Control
NTFS Folder Permissions
NTFS Folder PermissionsNTFS Folder PermissionsNTFS Folder PermissionsNTFS Folder Permissions
ReadRead
WriteWrite
Read & ExecuteRead & Execute
ModifyModify
Full ControlFull Control
List Folder ContentsList Folder Contents
Shared Folder Permissions
Shared Folder Shared Folder PermissionsPermissions
Shared Folder Shared Folder PermissionsPermissions
ReadRead
ChangeChange
Full ControlFull Control
DataData
Printer Permissions
Three levels of printer permissions
Manage Documents
Manage Printers
PermissionsPermissions
Review
User Accounts
Groups
User Rights
Permissions
