Determining Available Options

By Author: unknownmem
Total Articles: 128
Comment this article

The first part of your plan is to determine what options are available in MCSE 2003 exams(http://www.mcsa-70-291.com)
trative templates and how you should recommend they be set.
1.Pick a section. The section is the Terminal Services Section, and there are six
subsections.
Read the Explain text. Open each item, and select the Explain tab.
3.Use additional resources. Some settings, such as Do Not Allow Drive Redirection, are explained well, but it's difficult to really see any security choice that needs to be made. And many of the settings use double negatives, as this one does. If you enable a "Do Not," that means it does, right? The Explain tab
for this setting indicates that drives are mapped, and you know that to be true from experience. When using a terminal services session, the user has
access to his own drives. So what? You reference a copy of the Windows XP Security Guide and find the issue. To make client drives available to the cli?
ent when the user is in a terminal services session, the terminal services server maps the client drives to itself. This means a possible ...
... attack vector is
added. If someone should be able to access the terminal services server and client drives were mapped, the attacker might be able to obtain data from the
client. You know that research MCSE exams(http://www.certtopper.com)
team members sometimes store the results of their work on the local computer. You decide that this setting should be
enabled; researchers should not be allowed to access their local drives when using a terminal services session.
4.Decide which settings must be configured to comply with security policy.Security policy requirements include the encryption of communications. You
note that the Set Client Connection Encryption Level setting allows you to require 128-bit encryption.
5.Decide which settings must be configured to comply with company policies.Company policy says to restrict certain activities of the researchers. Table 11-
4 provides guidelines for terminal services application features. Five recommendations that meet Tailspin Toys requirements are included in the table.
For a full review of terminal services settings, see the administrative template for any GPO.
6.Test settings in a test network. There are other parts of terminal services that must be tested. You provide the testers with a copy of a table similar to 11-4 to use in their tests. Create a GPO that includes settings for terminal services and test it as well.
Implement your design in a local or domain group policy. When the design is approved CompTIA Security+ Exam(http://www.securityplus-sy0-201.com)
and tested, administrators will implement it in the domain.