CertiGuide to Network+  9  Chapter 1000:  Security in the Real World

Disaster Recovery 1 IV  Windows NT Security

As mentioned in the NOS chapter, resources in a network can be shared based on user-level permissions, or based on share-level permissions. With share-level permissions, anyone who knows the password to a resource can access it. Access control is accomplished by providing some users with passwords to some resources, and other users with passwords to other resources – and hoping that they don’t share the resources passwords with each other without authorization. With user-level authentication, the network administrator must have explicitly permitted the user (or a group of users) access to the resource before they can get to it.

User-level security usually assumes the existence of a central server on which user information is stored, and on which user authentication occurs. In the following sections, we’ll discuss a few important security aspects of popular network operating systems often used as servers in the corporate environment.

Disaster Recovery 1 IV  Windows NT Security