.


:




:

































 

 

 

 


B. .




, , , FullTrust.

, (User Manager for Domains - UMD) (User Manage r) . , , . , , .

, . . , (New User) :

(User must change password at next logon) , , .

( User cannot change password) - , , .

(Password Never Expires) , , , . , , Nothing.

, (Account Disabled), .

, . , , :

(Maximum Password Age) , . ( ) .

(Minimum Password Age) , .

(Minimum Password Length). .

(Password Uniqueness). ( ) . . .

(Account Lockout). . .

(Lockout After). . -3.

(Reset Count After). , . . 5 .

(Lockout Duration). (forever). . . , .

(Forcibly Disconnect Remote Users from Server When Logon Hours Expire). . , .

(User Must Log in to Change Password). . . .

(Polices) . (Password Policy).

, . , . , , , , , , . - .

, , . (Logon Hours) . , , .

(Logon To) , . , .

, (Account Expires) . . . . . .

. (Dialing) . (Dialing Information) , .

(Remote Access Service RAS). RAS . . . , . . , , , . . (Remote Access Administrator). , (Protocol selection). TCP/IP , IPX (NWLink) NetWare, NetBEUI IBM Microsoft . , TCP/IP . (Gateway isolation) . , , . , . IP , IP . () . (Authentication Encryption) , . , . (Password Authentication Protocol PAP) , . . . . (Require Encrypted Authentication). . PAP, Shiva - Shiva PAP, (Data Encryption Standard DES), Challenge Handshake Authentication Protocol CHAP MS CHAP Microsoft RSA Message Digest 4, . Microsoft - (Require Microsoft Encrypted Authentication), . RAS (Data Encryption), Microsoft . (Port Usage) . RAS - , . ( , , ). (Disconnection) . (Remote Access Administrator). , - . RAS (Dial-in Permission). , . . .

. . . , , . , , . . . . , .

(Account Policy). . , . . .

- . . , (Show Advanced Users Rights). , , . , , (Administrators). :

(Access This Computer from Network). , (Everyone).

(Add Workstations to the Domain). . .

(Back up Files and Directories). , , , . , .

(Bypass Traverse Checking). , . , . , .

(Change the System Time). , , , . .

(Force Shutdown from Remote System). . .

(Log on as Service). , . . .

(Log on Locally). ( ). , .

(Manage Auditing and Security Log). . , , . .

(Restore Files and Directories). . , .

(Shut Down the System). . . . .

(Take Ownership of Files or other Objects). . , - , . .

.

.

. . . ( ) . , . . , . :

(Logon and Logoff). . .

(File and Object Access). . , , , .

, , . , , . , , , . , , . . , , .

, .

, . , 6 . . , . 5 :

o .

o . . . , .

o .

o .

.

, . - . . . .

, . , SAM SYSTEM32/CONFIG. , . .SAV . , ( ). <NET USER> , <NET LOCALGROUP Administrators> . <FINGER> ( Finger) , . , , , , .

.

. .

- , , .

, - : , , . . , , , . , , .

(System Policy Editor), - .

, . , , , . , , , .

, . .

, , , , .POL. , .

, , , , .

( ). , , . ( ). Windows NT .

(Default Computer Policy) (Default User Policy). , .

, , . , , , .

winnt\system32\repl\export\. , . HKEY_LOCAL_MASHINE\System\CurrentControlSet\Control\Update, UpdateMode = 2 NetworkPath. ( UpdateMode =1 Netlogon). NetworkPath UNC , \\computername\sharename\filename.pol.

, ( Edit-Add Computer). , . , . (Default Computer Policy).

:

(Checked). . .

(Clear). .

(Gray). , .

(Default Computer Policy, Default User Policy) - .

, . . , Default Computer, Windows NT :

(Network)

(System)

Windows NT (Windows NT Network)

Windows NT (Windows NT Printers)

Windows NT (Windows NT Remote Access)

Windows NT (Windows NT Shell)

Windows NT (Windows NT System)

Windows NT (Windows NT User Profiles)

, . . , , , . () .

(Network)

(Remote Update) , Config.nt. :

o (Update mode). UpdateMode =1 Netlogon. UpdateMode = 2, . (, HKEY_LOCAL_MASHINE\System\CurrentControlSet\Control\ Update, .)

o (Path for manual update) \\servrer\share\file.pol.

o (Display error message). .

o (Load balancing) ( ) , . .

(System)

2 :

SNTP (Simple Network Management Protocol). , TCP/IP. SNMTP :

o (Communities) SNTP

o (Permitted Managers) , SNMP.

o (Traps for Public Community) , . , .

(RUN) , , . , .

o (Items to run) , . , RUN Security Policy.

Windows NT (Windows NT Network)

, Windows NT . ( ). - , (, ).

( ) (Create Hidden Drive Shares (Workstation)). Windows NT C$, D$ , Admin$. .

() (Create Hidden Drive Shares (Server)) Windows NT C$, D$ , Admin$. .

Windows NT (Windows NT Printers)

(Disable Browse Thread).

(Disable Browse Thread on this Computer). . , , .

(Scheduler Priority) .

(Beep for Error Enabled) 10 .

Windows NT (Windows NT Remote Access)

(Remote Access Service RAS).

(Remote Access Service RAS).

o (Max Number of Unsuccessful Authentication Retries) . 2. , . , .

o (Max Time Limit for Authentication) . 2 .

o (Wait Interval for Callback) , . . .

o (Auto Disconnect) , .

Windows NT (Windows NT Shell)

(Custom Shared Folders) , , , . .

o (Custom Shared Folders) . %SystemRoot\Profiles\AllUsers\StartMenu\Programs\

o (Custom Shared Desktop Icons) . %SystemRoot\Profiles\AllUsers\StartMenu\ Desktop \

o (Custom Shared Start Menu) Start. %SystemRoot\Profiles\AllUsers\StartMenu\

o (Custom Shared Start Folder) (SturtUp) %SystemRoot\Profiles\AllUsers\StartMenu\Programs\Sturtup\

Windows NT (Windows NT System)

.

(Logon). .

o (Logon Bunner) , , .. :

(Caption) , .

(Text) .

o (Enable Shut Down from Authentication Dialog Box) . .

o (Do not display Last Logged On User Name) , .

(File System). .

o 8.3 (Do not Create 8.3 File Names for Long File Names) (Windows 254 ), MS-DOS.

o 8.3(Allow Extended Characters in 8.3 File Names) Unicode ASCII.

o (Do not Update Last Access Time) ( ) NTFS . , , . , .

Windows NT (Windows NT User Profiles)

.

(Delete Cached Copies of Roaming Profiles) . , , .

(Automatically Detect Slow Network Connections) ( ).

(Slow Network Connections Timeout) . 2000 .

(Timeout for Dialog Boxes) . 30 .

.

:

. , . ( ).

. , .

. .

. .

. .

. .

. 2 :

FAT (File Allocation Table) MS DOS, Windows 95(NT), OS/2, Macintosh OS, Unix . , , . . , :

o . . . .

o . . . .

o . , .

o . , . .

o . 8.3 . .

o . 2 .

. , , . ( IIS Intranet Information Server). IIS , FAT.

NTFS (New Technology File System). :

o ( ).

o .

o . .

o .

. NTFC . , , . . . , :

. .

. , .

. .

, , .

. NTFC , , . SCSI .

. NTFC , . .

NTFC. NTFC , . . , , . , , . NTFC , , -. .

NTFC. NTFC :

, .

. , . NTFC . , , System policy Editor.

. , . .

. , . , , NTFC . , , . .

. NTFC , . - . .

. 255 . , , 8.3.

. , Windows , . .

. , , DACL, , . ASE. , . . :

. .

. , .

. .

. , .

. , .

. .

CACLS (Command-line Access Control ListS). : CACLS - .

CACLS ( [] - ):

CACLS [/T] [/E] [/C] [/G :] [/R []] [/P : []] [/D []]

- . . (ACL).

/T ACL .

/E ACL .

/C .

/G : . :

o R

o W

o C

o F

/R . ( /E)

/P : . :

o N -

o R

o W

o C

o F

/D .

( ):

o (CI) ASE

o (IO) - ASE

o (OI) - ASE ( ).

:

.

, , (Full Control) (Everyone) (Domain Users).

, .

(No Access) .

.

:

CD\WINNT\SYSTEM32\DRIVERS

CACLS *.* /E /C /P DomainUsers:R

- . , . :

, , DACL , , .

.

No Access .

. , , , .

.

(Classic Start Menu) Windows. (Start) , .

, (Start), (Programs), (Administrative Tools).





:


: 2016-11-12; !; : 939 |


:

:

.
==> ...

776 - | 739 -


© 2015-2024 lektsii.org - -

: 0.213 .