ITBC201: Access Control and Resource Management

Questions and Answers

What do rights in access control concern?

Operations on the system

What do permissions in access control concern?

Operations on specific objects

What is the main difference between rights and permissions in access control?

Rights are for systems, permissions are for objects

What is a key aspect of access control design?

Defining rights and permissions

Which of the following is NOT a component of access control?

Encryption

What is a fundamental principle of security strategy?

Providing each user and group with the minimum level of permissions needed

What is the primary purpose of defining resources in access control?

To determine the resources that will put the organization at risk

What is the benefit of applying permissions to groups rather than individual users?

It simplifies the management of permissions

What is the purpose of using Group Policy in an Active Directory network?

To apply additional security settings

What is the purpose of using Encrypted File System (EFS)?

To provide an additional level of security

What is the primary purpose of NTFS permissions?

To control access to NTFS files and folders

What information does a security descriptor contain?

The user or group who owns the object, users and groups with access, and audited users and groups

Who has full permissions to change the information in the security descriptor?

The owner of the object

What can an administrator do if they can't access an object?

Take ownership of the object

Why is it important to manage object ownership?

To control access and permissions

What is a key aspect of auditing in security descriptors?

Recording user and group access attempts