Assignment: Recommendations for Access Controls
Requirements
In the lab for Module 1, Configure Active Directory and implement Departmental and User Access Controls, you defined the groups, users, and listed access controls necessary to fulfill specific access requirements. In this assignment, you will evaluate how each control affects users' access to files and folders. You will also examine how changing access controls can affect your users' ability to access files and folders.
Here are the users and groups you defined in the lab:
|
User
|
Member of Groups
|
|
SFuser01
|
ShopFloor
|
|
SFuser02
|
ShopFloor
|
|
SFmanager
|
ShopFloor, Manager
|
|
HRuser01
|
HumanResources
|
|
HRuser02
|
HumanResources
|
|
HRmanager
|
HumanResources, Manager
|
In the lab, you considered access requirements for four folders:
• C:\ERPdocuments - This folder will contain miscellaneous shared files for the ERP software.
• C:\ERPdocuments\HRfiles - Folder for shared HumanResources user files.
• C:\ERPdocuments\SFfiles - Folder for shared ShopFloor user files.
• C:\ERPdocuments\MGRfiles - Folder for shared Manager user files.
Here is a suggested list of access controls with basic permissions for each of the four folders your users will need to access:
|
Folder
|
Who Can Modify
|
Who Can Read and
Execute
|
Who Can List Folder
Contents
|
|
C:\ERPdocuments
|
Manager
|
Manager
|
Manager, ShopFloor, HumanResources
|
|
C:\ERPdocuments\HRfiles
|
HumanResources
|
Manager, HumanResources
|
Manager, HumanResources
|
|
C:\ERPdocuments\SFfiles
|
Manager, ShopFloor
|
Manager, ShopFloor
|
Manager, ShopFloor
|
|
C:\ERPdocuments\MGRfiles
|
Manager
|
Manager
|
Manager
|
Based on the requirements stated above, answer the following questions:
1. The access requirements in the table above are based on reference groups. However, should Windows access controls to implement these requirements be based on groups or individual users? Explain.
2. How would you provide a human resource (HR) manager with the ability to modify files in C:\ERPdocuments\HRfiles without giving the same ability to other managers?
3. Describe what would happen if you removed HR from the ‘List folder contents' permission for C:\ERPdocuments\HRfiles?
4. Describe what would happen if you added Shop Floor to the ‘Modify' permission for C:\ERPdocuments\HRfiles?
Format your assignment according to the following formatting requirements:
1. The answer should be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides.
2. The response also includes a cover page containing the title of the assignment, the student's name, the course title, and the date. The cover page is not included in the required page length.
3. Also include a reference page. The Citations and references should follow APA format. The reference page is not included in the required page length.