Join Mike Chapple for an in-depth discussion in this video Access control lists, part of CompTIA Security+ Exam Prep (SY0-401): Access Control and Identity Management.
- In a discretionary access control system,…resource owners have the ability…to set and modify permissions…for other users of the system.…File owners manage resource permissions…by the creation of access control lists.…An access control list is simply a table…containing user names and the permissions granted…to each user of a resource.…For example, I might own a file on a computer…governed by a discretionary access control system…and decide that I want other users to access my file.…
I might grant one user the ability to edit the file…and a large group, the ability to read the file.…Each one of these decisions would require an entry…in an access control list.…The NTFS file system used by Windows…implements access control lists…and allows users to assign a variety of permissions.…Full control is just what the name implies.…The user can perform any action on the file or folder.…Read permission allows the user…to view the contents of the file.…
Read & Execute permission goes beyond the Read permission…and also allows the user to run executable programs.…
Author Mike Chapple, an IT leader with over 15 years experience, introduces identification methods such as usernames and biometrics, as well as authentication methods to verify users, including multifactor authentication, password authentication, and single sign-on. He also discusses authorization concepts such as mandatory and discretionary access controls, which can help you restrict access to sensitive parts of your network. The course also covers best practices for ongoing account management, such as establishing a good password policy, managing user roles, and monitoring accounts, and what to do when you need to suspend or terminate access.
NOTE: We are now a CompTIA Content Publishing Partner. Our training prepares members to pass CompTIA certification exams and become qualified IT professionals. As such, we are able to offer CompTIA exam vouchers at a 10% discount. For more information on how to obtain this discount, please download these PDF instructions.
- Setting policies for usernames and access cards
- Implementing biometrics
- Combining authentication factors for multifactor authentication
- Using a Kerberos access control system
- Using access control lists such as Windows NTFS file permissions
- Role-based authorization
- Implementing account and password policies
Skill Level Intermediate
Q: This course was updated on 04/14/2016. What changed?
A: We updated one tutorial to address the November 2015 security update to Kerberos.