















































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A detailed guide on managing user accounts, detecting and removing destructive software, and identifying and stopping spam. It covers topics such as user account types and privileges, managing user accounts, modifying default security policies, monitoring emails, accessing information services, identifying security gaps, and configuring anti-virus software. It also includes practical exercises and a lap test.
Typology: Cheat Sheet
1 / 55
This page cannot be seen from the preview
Don't miss anything!
















































August, 2022
Prepared by: Ministry of Labor and Skill Addis Ababa, Ethiopia Page 2 of 55 Ministry of Labor and Skills Protecting Application or System Software Version - August, 2022
Ministry of Labor and Skills wish to extend thanks and appreciation to the many representatives of TVET instructors and respective industry experts who donated their time and expertise to the development of this Teaching, Training and Learning Materials (TTLM). Page 4 of 55 Ministry of Labor and Skills Protecting Application or System Software Version - August, 2022
Acronym Pc - Personal Computer GPO – Group policy Organization E-Mai l- Electronic Mail EOP - Exchange online protection MSA - Managed service account Page 5 of 55 Ministry of Labor and Skills Protecting Application or System Software Version - August, 2022
This unit is developed to provide you the necessary information regarding the following content coverage and topics: User account type/privileges Managing user accounts Modifying default security policy displaying appropriate logon legal notices Monitoring emails Accessing information service
1.1. User Account Type/Privileges What is user Account A user account allows you to sign in to your computer. By default, your computer already has one user account, which you were required to create when you set up your computer. If you plan to share your computer with others, you can create a separate user account for each person. Using separate user accounts At this point, you may be wondering why you would even need to use separate user accounts. But if you're sharing a computer with multiple people for example, with your family or at the office user accounts allow everyone to save their own files, preferences, and settings without affecting other computer users. When you start your computer, you'll be able to choose which account you want to use. Following are different Types of user accounts with their privileges Administrator, Standard, and Managed accounts Before you create new user accounts, it's important to understand the different types. Administrator :
Guest Account:
All types of user accounts are visible in the Family & Other Users pane. However, the processes for managing family accounts and non-family accounts differ, so we cover them separately in the following sections to avoid confusion. Fig. 1.2.1. User account management You manage other user accounts from this pane, so the lists don’t include your account
1. 3. Default security policy Modification Applying Security policy settings on Windows 10 and Windows 11 Security policy settings are rules that administrators configure on a computer or multiple devices for protecting resources on a device or network. The Security Settings extension of the Local Group Policy Editor snap-in allows you to define security configurations as part of a Group Policy Object (GPO). The GPOs are linked to Active Directory containers such as sites, domains, or organizational units, and they enable you to manage security settings for multiple devices from any device joined to the domain. Security settings policies are used as part of your overall security implementation to help secure domain controllers, servers, clients, and other resources in your organization. Security settings can control: User authentication to a network or device. The resources that users are permitted to access. Whether to record a user's or group's actions in the event log. Membership in a group. To manage security configurations for multiple devices, you can use one of the following options: Edit specific security settings in a GPO. Use the Security Templates snap-in to create a security template that contains the security policies you want to apply, and then import the security template into a Group Policy Object. A security template is a file that represents a security configuration, and it can be imported to a GPO, applied to a local device, or used to analyze security. For more info about managing security configurations, see Administer security policy settings. Page 13 of 55 Ministry of Labor and Skills Protecting Application or System Software Version - August, 2022
The Security Settings extension of the Local Group Policy Editor includes the following types of security policies: Account Policies. These policies are defined on devices; they affect how user accounts can interact with the computer or domain. Account policies include the following types of policies: o Password Policy. These policies determine settings for passwords, such as enforcement and lifetimes. Password policies are used for domain accounts. o Account Lockout Policy. These policies determine the conditions and length of time that an account will be locked out of the system. Account lockout policies are used for domain or local user accounts. o Kerberos Policy. These policies are used for domain user accounts; they determine Kerberos-related settings, such as ticket lifetimes and enforcement. Local Policies. These policies apply to a computer and include the following types of policy settings: o Audit Policy. Specify security settings that control the logging of security events into the Security log on the computer, and specifies what types of security events to log (success, failure, or both). For devices running Windows 7 and later, we recommend to use the settings under Advanced Audit Policy Configuration rather than the Audit Policy settings under Local Policies. o User Rights Assignment. Specify the users or groups that have sign-in rights or privileges on a device o Security Options. Specify security settings for the computer, such as Administrator and Guest Account names; access to floppy disk drives and CD-ROM drives; Software Restriction Policies. Specify settings to identify software and to control its ability to run on your local device, organizational unit, domain, or site. Application Control Policies. Specify settings to control which users or groups can run particular applications in your organization based on unique identities of files. Advanced Audit Policy Configuration. Specify settings that control the logging of security events into the security log on the device. The settings under Advanced Audit Policy Configuration provide finer control over which activities to monitor as opposed to the Audit Policy settings under Local Policies. Page 14 of 55 Ministry of Labor and Skills Protecting Application or System Software Version - August, 2022
1.5. Manage email and account settings on Windows 10 E- Mail
1. 6. Accessing information service Managing and Secure Service Accounts Microsoft service accounts are a critical part of any Windows ecosystem because they are used to run essential services and applications, from web servers to mail transport agents to databases. But all too often, they are not used and managed properly which leaves the organization at unnecessary risk of business disruptions, security breaches and compliance failures. Indeed, problems with service accounts are one of the top four issues that we at Quest uncover during security assessments. About Microsoft service accounts - A Microsoft service account is an account used to run one or more services or applications in a Windows environment. For example, Exchange, SharePoint, SQL Server and Internet Information Services (IIS) all run under service accounts. - The service account provides the security context for the service, in other words, it determines which local and network resources the service can access and what it can do with those resources. - Service accounts can exist on workstations, member servers and domain controllers (DCs). There are several types of Microsoft service accounts, each with its own advantages and disadvantages: Built-in service account : On a local computer, you can configure an application to run under one of the three built-in service accounts: LocalService, NetworkService or LocalSystem. These accounts do not have passwords. Traditional service account : - A traditional Microsoft service account is just a standard user account. Ideally, it should be an account created and used exclusively to run a particular service, but all too often, business users and admins use their regular user accounts as service accounts in the name of expediency. Unlike the built-in service accounts, these accounts do have passwords. However, managing the passwords of hundreds or thousands of service accounts can get complicated very quickly, and changing a service account’s password introduces the risk of breaking the applications or services it is used to run. Therefore, many organizations set their service account passwords to never expire and never update them, which is not much better than having no password at all. - Traditional service accounts can be created like any other user account, such as with Active Directory Users and Computers (ADUC) or your identity management solution. Page 17 of 55 Ministry of Labor and Skills Protecting Application or System Software Version - August, 2022
Self-check 1 Instruction I: Write True if the statement is correct and False if the statement is incorrect
Operation Sheet 1 Operation Title: Create local User Account Purpose: To practice and demonstrate the knowledge and skill required in Creating User account Instruction: you have given 20min and demonstrate to your trainer Tools and requirement: