< All CompTIA Security+ Notes

Clouds | CompTIA Security+ | Module 5

By: Clouds | Related Course: CompTIA Security+ | Published: September 16, 2016 | Modified: September 19, 2016
Join Cybrary

NotepadAccess Control

Identification: Username/User ID provided by the user.

Authentication: It is a process by which system sees if its real.

Authorization: After authentication, it checks what permissions does a user have.

ACL.: types of permission that a user or group have.

Access Control Model:

Mandatory Access:Security labels.

Discretionary access: Owners discretion/ owner will allow or dont allow the permission.

Rule Base: Set of rules

Role Base: What role do you play.(Eg:In organzatn).


NotepadAuthentication Services

RADIUS

TACASS+

KERBEROS

LDAP


NotepadBest practise for account managmt

Multiple accounts:

Only allow if he has multiple roles.Like if he is an admin and a user both then only allow the multiple accounts. Privilage in each account be different.

Shared Accounts:

Multiple user use a account over time. Keep a watch on log, who did log on , when, how.

Probihit making different accounts.

Account policy enforcement:
Credentials(Encrypt passwd; do not note down; do not share; hashing. etc..)
Group Policy(Audit account. etc..)
Password complexity.
Expiration of passsword.
Recovery of Password in case forgotten.
Disable the account or password if user is not available; terminated; died;. etc..
Lock out policy(several failed attemp lockdown the account)
Lockout thresshold(How many failed attempt will lockdown the account).
Lockout duration(Time for which the account is locked out)
Password history( eg:4, A user must use 4 new password before it can use previously make passworD).
pASSWORD reuse(Cannot use same password within the same year).
Password Length.

Group based privilages | User assigned privilages.

User access review.
Continous monitoring


< All CompTIA Security+ Notes
Join Cybrary

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel