ITM 315 Chapter Notes - Chapter 13: Advanced Encryption Standard, Active Directory, Group Policy

Security configuration wizard: reduced attack surface due to server core, windows firewall, network access protection, user account control: keeps user running in standard user mode, bitlocker drive encryption: prevents intruders from by passing acl file and folder, demilitarized zone: portion of a network, between two networks, new categories in group policy: power management, assign printers by location, Service tickets: allows computer to logon for duration to access network services: advanced encryption standard (aes): more secure than des, windows nt lan manager: default authentication, audit policies: tracks activity associated with accounts, events that are audited: logons, account management, directory service access. Object access, policy change, privilege use, process tracking, system events: user rights: most basic right is the ability to access the server, privileges: ability to manage server or active directory functions, logon rights: related to accessing accounts, computers, and services, security options: over 78 specialized options, ex: accounts, audit, devices, dc, network access/security, system objects/settings, user account control e)