Server Identity and Access Management (SK0-005)
Welcome to the Server Identity and Access Management practice lab. In this module, you will be provided with the instructions and devices needed to develop your hands-on skills.
A business’s infrastructure, personnel, and data security rely heavily on effective access control. With the use of software like Microsoft Active Directory and Group Policy Management, administrators will be able to make new user accounts and easily manage the privileges these accounts require. When properly set up, these technologies can permit a review of past network activity. This section will investigate, create, and set up policies that may be implemented to better protect the network.
Overview
Learning Outcomes:
In this module, you will complete the following exercises:
Exercise 1 – Password and Account Lockout Policies
Exercise 2 – User Accounts and Groups
Exercise 3 – Permissions and Access Controls
Exercise 4 – Auditing
Exercise 5 – Multifactor Authentication and Single Sign-On
After completing this module, you should be able to:
Explore, define, and configure password policies.
Explore, define, and configure account lockout policy.
Apply password policy.
Update group policy.
Explore, define, and configure Active Directory user and computers accounts.
Explore, define, and configure user groups and role-based access control.
Explore, define, and configure delegation.
Audit user activity.
Audit logins.
Audit group membership.
After completing this module, you should have further knowledge of:
Segregation of duties
Multifactor authentication
Single sign-on
Exam Objectives:
The following exam objective is covered in this module:
3.3 Explain important concepts pertaining to identity and access management for server administration
User accounts
User groups
Password policies
Permissions and access controls
Auditing
Multifactor authentication (MFA)
Single sign-on (SSO)