Page 839 - StudyBook.pdf
P. 839
Self Test Appendix • Appendix 823
4. You have a decentralized network and want to give managers and assistant managers at each
location the necessary rights to backup data on Windows servers and workstations running
Windows XP.While managers have been with the company for years, there is some turnover in
employees who are assistant managers. Based on this, what is the best method of allowing these
users to backup data on the servers and workstations?
A. Modify each user account so that each person can perform backups.
B. Make each user a member of the Administrators group.
C. Make each user a member of a Backup Operators group.
D. Make each user a member of the Users group.
Answer C. Make each user a member of a Backup Operators group.You could add each of the
manager and assistant manager user accounts to a Backup Operators group, which has the nec-
essary permissions to backup data. By modifying the access control of one group, the access of
each account that is a member of that group would also be affected.
Answer A is incorrect, because it would require modifying the user account of each person
who served as a manager or assistant manager. Because there is turnover in assistant managers,
this would cause the greatest amount of account maintenance.Answer B is incorrect, because
making these users members of the Administrators group would give them more access than
needed.Answer D is incorrect, because users do not have access to backup data by being a
member of the Users group.
5. You are concerned that mistakes may be made from accounts that are set up on each server in
the network when users log into them.You also want to make it easier for users to log onto
multiple servers which physically reside in a server room within the company’s main building.
To achieve these goals, which of the following features of a network are needed?
A. Centralized servers
B. Decentralized servers
C. Single sign-on
D. Auditing
Answer C. Single sign-on.A network with a single sign-on allows users to sign in from one
computer, be authenticated by the network, and use resources and data from any servers to
which they have access. Single sign-ons make administration easier, because changes made to
one account are replicated to all servers in a network. If a user’s access needs change, or a user is
terminated and needs their account deleted, an administrator can make the change once and
know that the changes are reflected network-wide.
Answer A is incorrect, because centralizing servers locates the servers in a single area, but will
not affect a user’s inability to logon once to a network and have a single accounts security set-
tings effect their ability to access data and resource across the network.Answer B is also incor-
rect for this reason. Decentralizing servers will locate them in different areas, but will not affect
a user’s inability to logon once and use one account’s security settings.Answer D is incorrect,
because auditing is used to monitor activities and will not affect security settings.
6. A user is concerned that someone may have access to his account, and may be accessing his
data.Which of the following events will you audit to identify if this is the case?
www.syngress.com
