ALL >> System-Network-Administration >> View Article
Practice: Analyzing Administrative Template Settings To Control Application Features
Spend time learning about each selection in the Terminal 70-680 exam(http://www.70-680.com)
Services section of the administrative templates in Group Policy. Use the Explain tabs and any additional resources that you need, such as the results from searching the Technet Web site or the Windows XP Security Guide. Then use Table 11-5 to record at least five rec?ommendations for hardening terminal services (making sure they are things that can be done with Group Policy), and provide your reasons for making these recommendations. You cannot use any recommendations that were already used in this lesson.
Recommendations for Hardening Terminal Services—Answer Key
Enable this setting to prevent users with Citrix ICA clients from reconnecting to a session from a computer other than the computer that they started the session with. This might prevent a hijacked session, one where the original user does not end a session before logging off, and another user, who has obtained the original user's credentials, reconnects to the session. Unfortunately, this setting works only when Citrix clients are used.
Enable ...
... and set a time limit. If a Windows 7 certificate(http://www.mcitp-70-680.com)
user leaves her desktop unattended after starting a session, this timeout will disconnect the session after the specified time. This can prevent someone from simply using the session at the user's desktop while the user is away. The interloper would have access to anything that the original user would because the interloper is using her credentials.
Enable this setting to restrict a user's activity on the terminal server. The Start button is not displayed, and when the user ends the des?ignated program, the session is automatically terminated.
Enable this setting to prevent any viewing or remote control of a session. If an administrator can view a session, he can view sensitive information. If he can remotely control it, he can act as the user. Neither of these capabilities is desirable where users do confidential or sensitive work.
Enable this setting to prevent an administrator from forcing the logoff of another administrator when the first administrator is connected to the console. If the first comptia security+( http://www.securityplus-sy0-201.com)
administrator is forced off the session, all data not saved is lost. This might not be a good idea.
Add Comment
System/Network Administration Articles
1. Wireless Network Setup Solutions For Offices By Entrust NetworkAuthor: Entrust Network Services
2. Pcb Manufacturing: Understanding The Burn-in Test Process
Author: Ryan
3. Know About The Fiber Optic Cabling Solutions
Author: Ryan
4. Choosing The Perfect Cat6a Cable For Your 10g Networks
Author: Ryan
5. Pm Plc Splitter: Boost Efficiency Of Optical Network
Author: Ryan
6. Integrated Circuit Packaging Has Ic Substrate As Its Foundation
Author: Ryan
7. Boc Package Substrate: The Pillar Of Semiconductor Packaging
Author: Ryan
8. What Are The Leading Brands Or Manufacturers Of Growing Rack Systems?
Author: doris zhang
9. Polarization Maintaining Fiber Coupler: A Basic High Precision Fiber Sensor Component
Author: Ryan
10. Know About The Optical Circulator In Optical Communication
Author: Ryan
11. Optical Fiber Alignment System And Optical Waveguide Alignment System
Author: Ryan
12. Why Smoad Networks Is The Best Choice For Sim-based Wifi Routers
Author: HubraSEO
13. The Value Of Canada Ul Pcbs: Ensuring Safety And Compliance
Author: Ryan
14. Sap And Msap In Flexible Circuit Fabrication
Author: Ryan
15. Get Deeper Into The Insights Of Aluminum Nitride Pcb (aln Pcb)
Author: Ryan