The following excerpt is from Chapter 6 of the MCSE Exam Cram 2 book "Designing security for a Microsoft Windows Server 2003 network" written by Ed Tittel, courtesy of Sams Publishing. Click to purchase the book, check out the complete book excerpt series or go straight to the practice exam if you think you're ready to be tested.
By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
Exam Cram introduction: Designing an access control strategy for data
The main purpose of a network is to share resources, which include hardware, software, applications and information. Your network needs to be designed to allow for this as transparently as possible for those who have authorization. At the same time, your design needs to prevent those who are not authorized from using or even viewing the objects in your directory. Windows Server 2003 provides a structure that assists you in designing your access control strategy. In this chapter, we examine this built-in structure and its relation to access control in the following key areas:
- Designing an access control strategy for directory services
- Designing an access control strategy for files and folders
- Designing an access control strategy for the Registry
Terms you'll need to understand:
- Delegation of control
Start your learning here: Designing an access control strategy for directory services