Scribd Logo
Upload

Welcome to Scribd!

  • Muhammad Aljafar-Abdulrahman Alotaibi-Hyunjo Hwang-Abdulaziz Alhajari-Assignment03

    Uploaded by

    Azoo Alhajri
    24 views10 pages
    dd

    Original Title

    Muhammad Aljafar-Abdulrahman Alotaibi-Hyunjo Hwang-Abdulaziz Alhajari-Assignment03 (1)

    Copyright

    © © All Rights Reserved

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    dd

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    24 views10 pages

    Muhammad Aljafar-Abdulrahman Alotaibi-Hyunjo Hwang-Abdulaziz Alhajari-Assignment03

    Uploaded by

    Azoo Alhajri
    dd

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 10

    KWANTLEN POLYTECHNIC UNIVERSITY

    INFO 2416 – Spring 2018

    ASSIGNMENT 3
    Working with OUs and Groups
    Muhammad Aljafar
    Hyunjo Hwang
    Abdulrahman Alotibi
    Abdulaziz Alhajari

    Mar. 9, 2018

    1. Obtain a screenshot of the AD Users & Computers window that shows all the OUs you have created in the
    left-hand folder tree.
    INFO 2416 – Assignment 3

    a.

    Page 2
    INFO 2416 – Assignment 3

    b.

    2. Obtain a screenshot of the AD Users & Computers window that shows all the expanded North America OU
    branch with the changes you have made.

    Page 3
    INFO 2416 – Assignment 3

    a.

    Delegate Control Over an Organizational Unit


    1. You should be able to check the effect of your changes by right-clicking the HQ OU and looking at its
    Properties. (Note that you will have to have View > Advanced Features checked to see the Security tab in the
    Properties window.) If you click Account Operators in the list of security principals, you will see that that
    group has special permissions. Click Advanced to see what those permissions are. You should see that the
    Account Operators group now has full control over Descendant Group objects and Descendant User objects.
    Obtain a screenshot of this window and close that window and the HQ properties window.

    Page 4
    INFO 2416 – Assignment 3

    a.

    2. Examine the Advanced permissions for the HQ OU again, and notice that the Server Operators group has a
    new series of permissions. Obtain a screenshot of this window showing the permissions for the Server
    Operators.

    Page 5
    INFO 2416 – Assignment 3

    a.

    Create Security Groups


    1. At this point, notice that to grant permissions user-by-user to the folders as described would create a lot of
    work! Granting permissions one user at a time, how many times would you have to set permissions for a
    user/folder combination (e.g. student1 for the Common folder, student2 for the same folder, etc.)? How did you
    calculate this? (Write your answers in the work you hand in.)

    a. Student1  common + student lounge  2 times of setting permissions


    b. Student2  common + student lounge  2 times of setting permissions
    c. Student3  common + student lounge  2 times of setting permissions
    d. Jumanji  common + VIPs 2 times of setting permissions
    e. Dwayne Johnson  common + VIPs 2 times of setting permissions
    f. Lionel Messi  common + VIPs 2 times of setting permissions
    g. Cristiano Ronaldo  common + VIPs 2 times of setting permissions
    h. Total permission assignment is 14 times

    2. Verify the membership of the various groups. You can do this by right-clicking the group icon, selecting
    Properties, and looking at the Members tab. Obtain screenshots of one of the global groups showing its
    members, and one of the domain local groups showing its members.
    a. Global group (Celebrities) members:

    Page 6
    INFO 2416 – Assignment 3

    a.

    b. Domain local group (Common Access) members:


    b.

    Page 7
    INFO 2416 – Assignment 3

    3. Turn on your Windows 8.1 client VM and log on as each of the types of users (i.e. as a student, as a celebrity,
    as a sports star), and obtain screenshots that show that each type of user has access to the appropriate folders.
    If you have problems, remember to check both the share permissions and the NTFS permissions on the folders.
    a. Accessing Common and VIPs as a sport star(Lionel Messi account):

    a.

    a.

    b. Accessing Common and VIPs as a celebrity (Dwayne Johnson account):


    b.

    Page 8
    INFO 2416 – Assignment 3

    c. Accessing Common and Student Lounge as student1 (Wayne account):


    c.

    Page 9
    INFO 2416 – Assignment 3

    4. Discuss and compare the efficiency of controlling permissions in each of the following ways.
    a. granting permissions to resources one-by-one to users
    b. adding user accounts to domain local groups, then granting permissions to resources to the
    domain local groups
    c. adding user accounts to global groups, adding global groups to domain local groups, then
    granting permissions to resources to the domain local groups

    Consider the work of initially preparing the framework, the work of adding a number of new users, the work
    of removing users, and the work of modifying user access. Write your answers in the work you hand in.

    Page 10

    You might also like