Translating A Security Policy That Controls User Access To Operating System Features

By Author: unknownmem
Total Articles: 128
Comment this article

In this practice, you will make a list of technical controls that can be used to fulfill a security 70-291(http://www.mcsa-70-291.com)
policy and then expand one control by providing details. Review the security policy and then answer the questions that follow. If you are unable to answer a question, review the lesson materials and try the question again. You can find answers to the questions in the "Questions and Answers" section at the end of the chapter.
Security Policy
The security policy states, "Users shall not be able to configure their computers."

The technical requirements are:
1.Laptop users must have limited access to operating system and application features. Specifically, they might need to be able to modify network configuration,add a printer, and do some other limited configurations, but they must not be able to control everything.
A way to update and maintain any configuration settings must be available without returning the laptop to the help desk for maintenance.
Software restriction policies Tools in Group Policy that free CompTIA question papers(http://www.examshots.com/vendor/CompTIA-4.html)
...
... can be used to restrict or allow software to run on computers running Windows XP Professional and Windows Server 2003.
Software restriction rule A specific declaration within a software restriction policy that allows a specific software program to run or prevents it from running.
Windows XP and IAS will perform dynamic key assignment during certificate authen?tication. Therefore, key exchange the process of ensuring that client and server both have the same session keys is protected. Keys are refreshed periodically by forcing the Windows XP client to reauthenticate to the server every 10 minutes. Dynamic key exchange and refresh, also known as rekeying, is possible only when 70-680(http://www.upcert.com)
certificates are used for authentication.