Join Mike Chapple for an in-depth discussion in this video Managing roles, part of CompTIA Security+ (SY0-401) Cert Prep: Access Control and Identity Management.
- Roles provide Administrators with…an easy way to manage security permissions.…Administrators can create Roles, which group permissions…together in a manner that they may be assigned…to multiple users at the same time.…In Windows, we can use Security Groups…to manage roles and their permissions.…The major benefits of roles is that…they simplify account management.…When a new user joins a team,…Administrators can simply assign that new user…to the team's role, and then the user will get…all the permissions already associated with their new job.…
When the user leaves, the Administrator may remove the role…and those permissions go away.…Roles also eliminate the need…for dangerous account practices:…the use of shared and generic accounts.…In some organizations, Administrators create…generic accounts such as one for the HR department…or for all receptionists.…This way, Administrators don't need to create new accounts…for each user and manage the permissions on those accounts.…The danger with this approach is that it becomes difficult…
Author Mike Chapple, an IT leader with over 15 years experience, introduces identification methods such as usernames and biometrics, as well as authentication methods to verify users, including multifactor authentication, password authentication, and single sign-on. He also discusses authorization concepts such as mandatory and discretionary access controls, which can help you restrict access to sensitive parts of your network. The course also covers best practices for ongoing account management, such as establishing a good password policy, managing user roles, and monitoring accounts, and what to do when you need to suspend or terminate access.
NOTE: We are now a CompTIA Content Publishing Partner. Our training prepares members to pass CompTIA certification exams and become qualified IT professionals. As such, we are able to offer CompTIA exam vouchers at a 10% discount. For more information on how to obtain this discount, please download these PDF instructions.
- Setting policies for usernames and access cards
- Implementing biometrics
- Combining authentication factors for multifactor authentication
- Using a Kerberos access control system
- Using access control lists such as Windows NTFS file permissions
- Role-based authorization
- Implementing account and password policies
Skill Level Intermediate
Q: This course was updated on 04/14/2016. What changed?
A: We updated one tutorial to address the November 2015 security update to Kerberos.