Study your flashcards anywhere!

Download the official Cram app for free >

  • Shuffle
    Toggle On
    Toggle Off
  • Alphabetize
    Toggle On
    Toggle Off
  • Front First
    Toggle On
    Toggle Off
  • Both Sides
    Toggle On
    Toggle Off
  • Read
    Toggle On
    Toggle Off

How to study your flashcards.

Right/Left arrow keys: Navigate between flashcards.right arrow keyleft arrow key

Up/Down arrow keys: Flip the card between the front and back.down keyup key

H key: Show hint (3rd side).h key

A key: Read text to speech.a key


Play button


Play button




Click to flip

30 Cards in this Set

  • Front
  • Back
What is Authentication?
The process of confirming that a user has the correct permissions to access the reqired network resources.
What is an access token?
A "ticket" which contains access permissions to resources for which the user has been granted access. It identifies the user and all of his or her group memberships.
What are the three built-in user accounts?
Local user acocunts, Domain user accounts, and Built-in user accounts
What do local user accounts consist of?
e-mail servers, are not necessarily domain. local means local machine (box) They are never replicated to other machines. and do not have access to the domain. accounts stored in local security database named Security Accounts Manager (SAM)
Where is information for Domain User Accounts stored?
In Active Directory. Account information is replicated to all domain controllers within same domain. account is replicated to GC which is replicated to other GC servers throughout forest.
What are the two built-in user accounts created on a windows server 2003 computer by default?
Administrator and guest
What are best practices regarding the Administrator Account?
rename it, Set a strong password, limit knowlege of passwords, do not use Administrator acount for daily non-administrative tasks
What are best practices for guest account?
It is disabled and not assigned a password by default. Rename it before enabling it. Set a strong password.
What are the two group types?
Distrubution groups and security groups
What doe a distribution group consist of?
nonsecurity-related groups created for the distribution of information to one or more persons. ie - e-mail applications, or a software distribution program such as Microsoft Systems Management Server to update desktop applications
What do security groups consist of?
Administrators, backup operators, etc
True or false? After a group is created, it can be converted from a security group to a distribution group and vice versa at any time, as long as the domain functional level is set to windows 2000 native or higher.
True The Windows 2000 mixed domain functional level does not support the conversion of groups.
How are group scopes defined?
by where it is located or stored. i.e. if a group is located on a local computer, the permissions assigned to the group affect only the local coputer, making its sscope local. If the group is located within AD domain, associated permissions affect either that specific domain or possibly the forest.
What does membership in domain local groups include?
Local control. includes user accounts, computer accounts, global groups, and universal groups from any domain, in addition to other domain local groups from the same domain.
What is the purpose of Domain local groups?
They are used to assign permissions to resources. resourches for which you are assigning permissions must reside in the same domain as the domain local group.
Who are included in membership in global groups?
user accounts, computer accounts and/or other global accounts from the same domain.
What is the purpose of global groups? and where are global group memberships stored?
to organize users according to the needs of the organization. They are stored at the domain level and are replicated only to domain controllers within the same domain.
Who has membership in the Universal Groups? and what is the purpose?
This is forest control and members include user accounts, computer accounts and/or other global or universal groups from anywhere in the forest. If a cross/forest trust exists, universal groups can contain similar accounts from a trusted forest. Universal groups are used to organize users according to their resource access needs.
What is group nesting?
When groups are added as members of other groups. It helps reduce the number of times permissions need to be assigned.
What are three methods of creating many users in a short time frame or of importing users into Active Directory from an existing database?
Batch files, Comma-Separated Value Directory Exchange (CSVDE), LDAP Data Interchange Format Directory exchange (LDIFDE), Windows Script Hose (WSH)
What command do you use when writing batch files?
What does SAM stand for?
Security Account Name. It is the same as the user's common name.
Give an example of the DSADD command.
dsadd user cn=karcher,ou=sales.dc=cohowinery.dc=com -samid karcher To specify MySecretCode as the pasword, tpe:
dsadd user cn=karcher,ou=sales,dc=cowhowinery,dc=com -pwd MySecretC0de
How do you create a batchfile using notepad?
Use the syntax in the examples for dsadd and place a command on a separate line. Once all commands have been enterred, save the file and name it either using a .cmd or a .bat extension. Files with those extensions are processed line by line when the filename is typed at a command prompt.
How do you use CSVDE?
You can import information from Excel and Exchange and save it into a file in the CSV format. CSVDE allows an administrator to import or export AD director objects. It uses a .csv file based on a header record. Save the file with the .csv extension. type the following command to run the file: csvde.exe -i -f newusers.csv. CSVDE records cannot be modified.
How do you use LDIFDE?
LDIFDE is similar to CSVDE except that the records can be modified.
What is WSH
Windows Scripting Host
What is the difference between Local GPOs and NonLocal GPO's?
Local GPO's are non-Active Directory. They have fewer options and do not support folder redirection. Fewer availabler security settings.
nonlocal GPO's are AD based. They have site and organizational levels. When the local and Nonlocal have conflicting GPO settings the Nonlocal overrides the local GPO.
Where is the content of a nonlocal GPO stored?
in two locations: in the group policy container and in the group policy template
Where is the Group Policy template located?
in the Policies subfolder of the Sysvol volume it stores policy settings such as security settings and script folders.