Week Two Assignment
Essay by review • February 5, 2011 • Research Paper • 1,010 Words (5 Pages) • 1,508 Views
Running head: WEEK ONE ASSIGMENT
Alex Londono
University of Phoenix
POS/427 - Windows Networking
Richard Rochon Jr., BSIT, MBA/GM
Week Two Assignment
05/09/2007
Abstract:
This short answer paper will be describing different aspects of Windows networking word accounts. The answers to the given questions will be giving a better understanding on how these different accounts are managed on Windows Networking Word. There are different types of accounts on Window networking such as: Group Accounts, User accounts, created accounts and built-in accounts. All of these accounts work together in the network. They each play different roles when it comes to the way each one of the accounts are used and managed as well as their different purpose on a network.
The first topic that will be addressed is using group accounts vs. user's accounts. The conditions that both of these accounts would be used under will be discussed. Next, the differences between created accounts and built-in accounts will be commented on. Preceding the previous topic, some of the issues concerning the usage of nesting to manage accounts will be explained. Finally, a question is answered on how group policy is helpful to manage software and some ways are discussed on how users can utilize this.
The following is an assignment containing answers to four given questions in fulfillment of part of the requirements for POS-427.
Why is it better to use group accounts rather than user accounts? Under what conditions would you use user accounts over group?
"User accounts are used to authenticate, authorize or deny access to resources for, and audit the activity of individual users on your network. A group account is a collection of user accounts that you can use to assign a set of permissions and rights to multiple users simultaneously. A group can also contain contacts, computers, and other groups. You can create user accounts and group accounts in Active Directory to manage domain users."
http://technet2.microsoft.com/windowsserver/en/library/c11d0f80-8f42-4ddd-ac35-2e6a204ebb941033.mspx?mfr=true. Group and user accounts are directly correlated in Active Directory. There is a unique identifier for an individual security principle for user accounts. User accounts can be assigned to people or services depending on how they are required. Active Directory provides user accounts with a way of making them authentic to help secure the fact that only authorized users or services utilize these under the security context of those particular accounts. Group and User accounts have properties that will allow permission to access resources and rights to perform actions. Using individual user accounts is best in a very small environment because using individual user accounts to manage rights and access resources is too much work. Group Accounts should be used on a larger environment because this is a great advantage for administrative purposes as far as managing access to resources. Once groups have been given the rights required and the permissions needed, it is easy to manage users' access by simply managing group membership in the directory instead of giving individual resource.
What is the difference between created accounts and built-in accounts?
"Built-in user accounts are installed with all Windows NT workstations and servers. These accounts are local to the individual system they are installed on and may have domain-wide access depending on how the computer is set up. The built-in accounts include Administrator, Guest, and System." http://www.microsoft.com/technet/archive/winntas/evaluate/featfunc/04wntpcb.mspx?mfr=true. Basically created accounts are created by the administrator. All processes run under a security context which is the administrator's accounts. This is the one account that it begins with that has the rights to everything. Consequently, this is the account that the administrator can
...
...