1 / 81

CHAPTER Creating and Managing Users and Groups

CHAPTER Creating and Managing Users and Groups. Chapter Objectives. Explain the use of Local Users and Groups Tool in the Systems Tools Option to create and manage user accounts Describe the various account related properties of a user

joshua
Download Presentation

CHAPTER Creating and Managing Users and Groups

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CHAPTER Creating and Managing Users and Groups

  2. Chapter Objectives • Explain the use of Local Users and Groups Tool in the Systems Tools Option to create and manage user accounts • Describe the various account related properties of a user • Present different options that are available to define a user’s network environment

  3. Chapter Modules • User Manager in Windows NT • Adding a User • Setting Additional User Account Properties • Adding Multiple Users • Account Policy • User Environment: Home Directory • User Environment: User Profiles • User Environment: Logon Scripts • User Rights

  4. Generic Networking Model Network OS Installation Hardware Installation User Configuration

  5. MODULE User Manager of Windows NT © N. Ganesan, All rights reserved.

  6. Module Objectives • Authorized user managers • The user manager module • Ways of launching the user manager • From start, through shortcut and by running usrmgr • Case study domain details • Case study users in the domain

  7. Who Can Create User Accounts? • Administrators • Domain Administrators • Account Operators

  8. User Manager • The GUI module that enables user management • Activation • Through the start menu • Through command level activation by running the command usrmgr • From an already created short-cut

  9. Creating a Short Cut: The Steps C:\Winnt\Profiles\All Users\ Start Menu\Programs\ Administrative Tools\ User Manager for Domains Explorer Right Click Create Shortcut Drag and place on the desktop screen.

  10. Creating a Shortcut to User Manager: Demonstration

  11. Activating the User Manager: Demonstration Running usrmgr From Start Shortcut

  12. Domain Details NAFTA US Canada Mexico

  13. Users in the Domain Administrator California Texas Nevada

  14. END OF MODULE

  15. MODULE Adding a User © N. Ganesan, All rights reserved.

  16. Module Objectives • The steps for adding a user • Password options • Demonstration of adding a user • Further notes on the user

  17. Adding a User: Steps User Manager User New User Username Full Name Description Password

  18. Password Options Password Options User must change PW. User cannot change PW. PW never expires. Add User

  19. Adding Users: Demonstration Adding the user California.

  20. Notes on the User • A user created becomes a member of the built-in User group • Additional user account properties can be set: • at the time of creation of the account • later through the User Properties feature

  21. END OF MODULE

  22. MODULE Setting Additional User Account Properties © N. Ganesan, All rights reserved.

  23. Module Objectives • Reaching user properties menu • User optional properties • Assignment to groups • Profile • Hours restriction • Workstation access restriction • Account properties • Dial-in properties • Demonstration of properties configuration

  24. Reaching User Properties Menu • The menu can be reached through the User Manager for Domain Window • Select user and double-click • Select user and select Properties from the User Option from the top

  25. User Optional Properties Groups Logon To Profile Account Hours Dialin

  26. Groups • Enables the user to be assigned to a group • The user acquires the group privileges • Enable a user to be removed from a group

  27. Groups Demonstration Administrator Server Operator Etc. To be assigned User California Default

  28. Profile • User Profile Path • Logon Script Name • Local Path to Home Directory • User environment profile is discussed later

  29. Hours • Restricting the user to a fixed time period for using the network • For demonstration: • User California is restricted to logon to the network from 8:00 a.m. to 6:00 p.m., Monday to Friday

  30. Logon To • Restricting the user to a predefined number of workstations on the network • The network can be accessed only from these workstations

  31. Demonstration of Logon To US Others Canada Mexico California

  32. Account • Account time limit • Never expires or • Specify expiry date • Account type • Global for possible entry into other domains • Local for restricting to local resources • For demonstration: • User California’s account will never expire

  33. Dial-in • Allows the user dial-in access to the network • Provides callback for security verification • For the purpose of demonstration: • User California will be given dial-in access privileges • Callback security will not be imposed

  34. Dial-in Setup California Dial-in with no callback security. Modem US Canada Mexico

  35. Additional Properties: Demonstration Groups Hours Logon To Account Dial-in

  36. END OF MODULE

  37. MODULE Adding Multiple Users © N. Ganesan, All rights reserved.

  38. Module Objectives • Copying user account details • Overview, case example and demonstration • Changing the account properties of multiple users • Operation on multiple users

  39. Copying User Account Details • Can be copied from an existing user while creating a new user • Properties can then be modified to customize the new user properties

  40. Copying User Account Details: Case Example Copy account details to new user Nevada from California Modify Nevada, if required.

  41. Copying User Account Details: Demonstration

  42. Changing the Account Properties of Multiple Users • Multiple users can be chosen for account property modification • Example: • Enforcing the same logon time restriction on a group of users

  43. Operation on Multiple Users: Case Example Administrator Texas Nevada Addition to administrator group and then deletion from administrator group.

  44. END OF MODULE

  45. MODULE Account Policy © N. Ganesan, All rights reserved.

  46. Module Objectives • Account policy for all users in the domain • Password protection • Account lockout protection • Other protection • Account policy setting demonstration

  47. User Account Policy for All Users in the Domain • Major components • Password related • Account lockout related • Password • Security against password guessing • Account lockout • Thwart unauthorized attempt to access the network

  48. Password Protection Maximum PW age. Minimum PW age. Maximum PW length. PW uniqueness.

  49. Account Lockout Protection Lockout after ___ bad logon attempts Lockout duration: Forever or in minutes. Reset counter after ______ minutes.

  50. Other Protection Disconnect remote users after logon time expires. Require users to logon to change password.

More Related