Configure Account Policies
The "Configure Account Policies" module provides you with the instruction and server hardware to develop your hands on skills in the defined topics. This module includes the following exercises: 1) Configure Domain User Password Policy, 2) Configure Fine Grained Password Policy, 3) Delegate Password Settings Management, 4) Configure...
The Configure Account Policies module provides you with the instruction and server hardware to develop your hands on skills in the defined topics. This module includes the following exercises:
- Configure Domain User Password Policy
- Configure Fine Grained Password Policy
- Delegate Password Settings Management
- Configure Local User Password Policy
- Configure Kerberos Policy
Exercise 1 - Configure Domain User Password Policy
In this exercise, you will configure Domain Account Policies in a Windows domain. For enterprise networks, it is essential that system administrators create restrictive account policies that govern the use of network resources by users and computers.
Exercise 2 - Configure Fine Grained Password Policy
In this exercise, you will enable fine-grained password policy to a Windows security group so that it will have a distinct password policy from that of other users in PRACTICELABS.COM domain.
Exercise 3 - Delegate Password Settings Management
In this exercise, you will assign the responsibility of maintaining user passwords in a domain using Delegate Control wizard. You will then create an MMC Taskpad which is a simplified version of an administrative program.
Exercise 4 - Configure Local User Password Policy
In this exercise, you will configure local user password policy. This exercise is useful if you are maintaining a workgroup-type of network where each user is the administrator of his workstation.
Exercise 5 - Configure Kerberos Policy Settings
In this exercise, you will configure new security settings with the authentication protocol Kerberos. Windows Server 2012 has a new security feature called Flexible Authentication Secure Tunneling.
This feature adds security enhancements in Kerberos and ensures that clients do not fall back to legacy authentication protocols or earlier cryptographic methods.
When enabling these settings all domain controllers in the domain must be Windows Server 2012 or later versions and clients need to be running Windows 8 or higher.
IT & Cybersecurity certification hands on practice labs and practice exams for certifications and skill development.
See the full benefits of our immersive learning experience with interactive courses and guided career paths.