<p/> <A NAME="387"><H1>Lesson 2: Implementing Built-In Local Groups</H1></A> <p/>Windows 2000 has two categories of built-in groups: local and system. Built-in groups have a predetermined set of user rights or group membership. Windows 2000 creates these groups for you so you don't have to create groups and assign rights and permissions for commonly used functions.<p/> <font class=Quote>After this lesson, you will be able to</font> <p/>Describe the Microsoft Windows 2000 built-in groups.<p/> <p/><font class=Quote>Estimated lesson time: 10 minutes</font><p/><p/><A NAME="388"><h2>Built-In Local Groups</H2></A> <p/>All stand-alone servers, member servers, and computers running Windows 2000 Professional have built-in local groups. Built-in local groups give rights to perform system tasks on a single computer, such as backing up and restoring files, changing the system time, and administering system resources. Windows 2000 places the built-in local groups into the Groups folder in Computer Management.<p/>Table 11.2 describes the capabilities that members of the most commonly used built-in local groups have. Except where noted, there are no initial members in these groups.<p/><font class=Quote>Table 11.2</font> Built-In Local Groups<p/><table valign="top" cellpadding="5" width="95%"> <tr> <th>Local group</th> <th>Description</th> </tr> <tr> <td valign="top">Administrators</td> <td valign="top">Members can perform all administrative tasks on the computer. By default, the built-in Administrator user account for the computer is a member. <p/>When a member server or a computer running Client for Microsoft Networks joins a domain, Windows 2000 adds the Domain Admins group to the local Administrators group.<p/></td> </tr> <tr> <td valign="top">Backup Operators</td> <td valign="top">Members can use Windows Backup to back up and restore the computer.</td> </tr> <tr> <td valign="top">Guests</td> <td valign="top">Members can perform only tasks for which you have specifically granted rights and can gain access only to resources for which you have assigned permissions; members can't make permanent changes to their desktop environment. By default, the built-in Guest account for the computer is a member. <p/>When a member server or a computer running Client for Microsoft Networks joins a domain, Windows 2000 adds the Domain Guests group to the local Guests group.<p/></td> </tr> <tr> <td valign="top">Power Users</td> <td valign="top">Members can create and modify local user accounts on the computer and share resources.</td> </tr> <tr> <td valign="top">Replicator</td> <td valign="top">Supports file replication in a domain.</td> </tr> <tr> <td valign="top">Users</td> <td valign="top">Members can perform only tasks for which you have specifically granted rights and can gain access only to resources for which you have assigned permissions. By default, Windows 2000 adds local user accounts that you create on the computer to the Users group. When a member server or a computer running Windows 2000 Professional joins a domain, Windows 2000 adds the Domain Users group to the local Users group.</td> </tr> </table> <p/><A NAME="389"><h2>Built-In System Groups</H2></A> <p/>Built-in system groups exist on all computers running Windows 2000. System groups don't have specific memberships that you can modify, but they can represent different users at different times, depending on how a user gains access to a computer or resource. You don't see system groups when you administer groups, but they are available for use when you assign rights and permissions to resources. Windows 2000 bases system group membership on how the computer is accessed, not on who uses the computer. Table 11.3 describes the most commonly used built-in system groups.<p/><font class=Quote>Table 11.3</font> Commonly Used Built-In System Groups<p/><table valign="top" cellpadding="5" width="95%"> <tr> <th>System group</th> <th>Description</th> </tr> <tr> <td valign="top">Everyone</td> <td valign="top">Includes all users who access the computer. Be careful if you assign permissions to the Everyone group and enable the Guest account. Windows 2000 will authenticate a user who does not have a valid user account as Guest. The user automatically gets all rights and permissions that you have assigned to the Everyone group.</td> </tr> <tr> <td valign="top">Authenticated Users</td> <td valign="top">Includes all users with a valid user account on the computer (or if your computer is part of a domain, it includes all users in Active Directory directory services). Use the Authenticated Users group instead of the Everyone group to prevent anonymous access to a resource.</td> </tr> <tr> <td valign="top">Creator Owner</td> <td valign="top">Includes the user account for the user who created or took ownership of a resource. If a member of the Administrators group creates a resource, the Administrators group is owner of the resource.</td> </tr> <tr> <td valign="top">Network</td> <td valign="top">Includes any user with a current connection from another computer on the network to a shared resource on the computer.</td> </tr> <tr> <td valign="top">Interactive</td> <td valign="top">Includes the user account for the user who is logged on at the computer. Members of the Interactive group gain access to resources on the computer at which they are physically located. They log on and gain access to resources by &quot;interacting&quot; with the computer.</td> </tr> <tr> <td valign="top">Anonymous Logon</td> <td valign="top">Includes any user account that Windows 2000 didn't authenticate.</td> </tr> <tr> <td valign="top">Dialup</td> <td valign="top">Includes any user who currently has a dial-up connection.</td> </tr> </table> <p/><A NAME="390"><h2>Lesson Summary</H2></A> <p/>In this lesson, you learned that Windows 2000 has two categories of built-in groups: local and system. You also learned that built-in groups have a predetermined set of user rights or group membership. Windows 2000 creates these groups for you so you don't have to create groups and assign rights and permissions for commonly used functions.<p/> - Microsoft Windows 1002000 Professional [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Microsoft Windows 1002000 Professional [Electronic resources] - نسخه متنی

Rick Wallace

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Cover

LOC Page

About This Book

Chapter 1 -- Introduction to Windows 2000

Lesson 1: Overview of the Windows 2000 Platform

Lesson 2: Windows 2000 Professional

Lesson 3: Windows 2000 Workgroups and Domains

Lesson 4: Logging On to Windows 2000

Lesson 5: The Windows Security Dialog Box

Review

Chapter 2 -- Installing Windows 2000 Professional

Lesson 1: Getting Started

Lesson 2: Installing Windows 2000 from a CD-ROM

Lesson 3: Installing Windows 2000 over the Network

Lesson 4: Troubleshooting Windows 2000 Setup

Review

Chapter 3 -- Using Microsoft Management Console and Task Scheduler

Lesson 1: Introducing the Microsoft Management Console

Lesson 2: Using Consoles

Lesson 3: Using Task Scheduler

Review

Chapter 4 -- Using Windows Control Panel

Lesson 1: Configuring Hardware Settings

Lesson 2: Configuring the Display

Lesson 3: Configuring Operating System Settings

Lesson 4: Installing Hardware Automatically

Lesson 5: Installing Hardware Manually

Lesson 6: Configuring and Troubleshooting the Desktop Environment

Review

Chapter 5 -- Using the Registry

Lesson 1: Understanding the Registry

Lesson 2: Using Registry Editor

Review

Chapter 6 -- Managing Disks

Lesson 1: Introduction to Disk Management

Lesson 2: Common Disk Management Tasks

Review

Chapter 7 -- Installing and Configuring Network Protocols

Lesson 1: TCP/IP

Lesson 2: NWLink

Lesson 3: Other Protocols Supported by Windows 2000

Lesson 4: Network Bindings

Review

Chapter 8 -- Using the DNS Service

Lesson 1: Understanding DNS

Lesson 2: Understanding Name Resolution

Lesson 3: Configuring a DNS Client

Review

Chapter 9 -- Introducing Active Directory Directory Services

Lesson 1: Understanding Active Directory Directory Services

Lesson 2: Active Directory Structure and Replication

Lesson 3: Understanding Active Directory Concepts

Review

Chapter 10 -- Setting Up and Managing User Accounts

Lesson 1: Understanding User Accounts

Lesson 2: Planning New User Accounts

Lesson 3: Creating User Accounts

Lesson 4: Setting Properties for User Accounts

Review

Chapter 11 -- Setting Up and Managing Groups

Lesson 1: Implementing Local Groups

Lesson 2: Implementing Built-In Local Groups

Review

Chapter 12 -- Setting Up and Configuring Network Printers

Lesson 1: Introducing Windows 2000 Printing

Lesson 2: Setting Up Network Printers

Lesson 3: Connecting to Network Printers

Lesson 4: Configuring Network Printers

Lesson 5: Troubleshooting Network Printers

Review

Chapter 13 -- Administering Network Printers

Lesson 1: Understanding Printer Administration

Lesson 2: Managing Printers

Lesson 3: Managing Documents

Lesson 4: Administering Printers Using a Web Browser

Lesson 5: Troubleshooting Common Printing Problems

Review

Chapter 14 -- Securing Resouces with NTFS Permissions

Lesson 1: Understanding NTFS Permissions

Lesson 2: Applying NTFS Permissions

Lesson 3: Assigning NTFS Permissions

Lesson 4: Assigning Special Access Permissions

Lesson 5: Copying and Moving Files and Folders

Lesson 6: Solving Permissions Problems

Review

Chapter 15 -- Administering Shared Folders

Lesson 1: Understanding Shared Folders

Lesson 2: Planning Shared Folders

Lesson 3: Sharing Folders

Lesson 4: Combining Shared Folder Permissions and NTFS Permissions

Review

Chapter 16 -- Auditing Resources and Events

Lesson 1: Understanding Auditing

Lesson 2: Planning an Audit Policy

Lesson 3: Implementing an Audit Policy

Lesson 4: Using Event Viewer

Review

Chapter 17 -- Configuring Group Policy and Local Security Policy

Lesson 1: Configuring Account Policies

Lesson 2: Configuring Security Options

Review

Chapter 18 -- Managing Data Storage

Lesson 1: Managing NTFS Compression

Lesson 2: Managing Disk Quotas

Lesson 3: Increasing Security with EFS

Lesson 4: Using Disk Defragmenter

Review

Chapter 19 -- Backing Up and Restoring Data

Lesson 1: Understanding How to Back Up and Restore Data

Lesson 2: Backing Up Data

Lesson 3: Restoring Data

Lesson 4: Changing Windows Default Backup Options

Review

Chapter 20 -- Monitoring Access to Network Resources

Lesson 1: Monitoring Network Resources

Lesson 2: Monitoring Access to Shared Folders

Lesson 3: Sharing a Folder Using the Shared Folders Snap-In

Lesson 4: Monitoring Network Users

Review

Chapter 21 -- Configuring Remote Access

Lesson 1: Understanding the New Authentication Protocols in Windows 2000

Lesson 2: Configuring Inbound Connections

Lesson 3: Configuring Outbound Connections

Review

Chapter 22 - The Windows 2000 Boot Process

Lesson 1: The Boot Process

Lesson 2: Control Sets in the Registry

Lesson 3: Advanced Boot Options

Lesson 4: The Boot.ini File

Lesson 5: Using the Recovery Console

Review

Chapter 23 -- Deploying Windows 2000

Lesson 1: Automating Installations

Lesson 2: Using Disk Duplication to Deploy Windows 2000

Lesson 3: Performing Remote Installations

Lesson 4: Upgrading Previous Versions of Windows to Windows 2000

Lesson 5: Installing Service Packs

Review

Chapter 24 -- Configuring Windows 2000 for Mobile Computers

Lesson 1: Using Offline Folders and Files

Lesson 2: Configuring Power Options

Review

Chapter 25 -- Implementing, Managing, and Troubleshooting Hardware Devices and Drivers

Lesson 1: Using Device Manager and System Information

Lesson 2: Configuring, Monitoring, and Troubleshooting Driver Signing

Lesson 3: Configuring Computers with Multiple Processors and Monitoring System Performance

Lesson 4: Installing, Managing, and Troubleshooting Devices

Review

Appendix A -- Questions and Answers

Appendix B -- Creating Setup Boot Disks

Appendix C -- Understanding the DHCP Service

Appendix D -- Managing Backup Tapes

Glossary

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

R

S

T

U

V

W

Z

About This Electronic Book

About Microsoft Press

توضیحات
افزودن یادداشت جدید






Lesson 2: Implementing Built-In Local Groups


Windows 2000 has two categories of built-in groups: local and system. Built-in groups have a predetermined set of user rights or group membership. Windows 2000 creates these groups for you so you don't have to create groups and assign rights and permissions for commonly used functions.


After this lesson, you will be able to

Describe the Microsoft Windows 2000 built-in groups.


Estimated lesson time: 10 minutes

Built-In Local Groups


All stand-alone servers, member servers, and computers running Windows 2000 Professional have built-in local groups. Built-in local groups give rights to perform system tasks on a single computer, such as backing up and restoring files, changing the system time, and administering system resources. Windows 2000 places the built-in local groups into the Groups folder in Computer Management.

Table 11.2 describes the capabilities that members of the most commonly used built-in local groups have. Except where noted, there are no initial members in these groups.

Table 11.2 Built-In Local Groups






























Local groupDescription
AdministratorsMembers can perform all administrative tasks on the computer. By default, the built-in Administrator user account for the computer is a member.

When a member server or a computer running Client for Microsoft Networks joins a domain, Windows 2000 adds the Domain Admins group to the local Administrators group.

Backup OperatorsMembers can use Windows Backup to back up and restore the computer.
GuestsMembers can perform only tasks for which you have specifically granted rights and can gain access only to resources for which you have assigned permissions; members can't make permanent changes to their desktop environment. By default, the built-in Guest account for the computer is a member.

When a member server or a computer running Client for Microsoft Networks joins a domain, Windows 2000 adds the Domain Guests group to the local Guests group.

Power UsersMembers can create and modify local user accounts on the computer and share resources.
ReplicatorSupports file replication in a domain.
UsersMembers can perform only tasks for which you have specifically granted rights and can gain access only to resources for which you have assigned permissions. By default, Windows 2000 adds local user accounts that you create on the computer to the Users group. When a member server or a computer running Windows 2000 Professional joins a domain, Windows 2000 adds the Domain Users group to the local Users group.

Built-In System Groups


Built-in system groups exist on all computers running Windows 2000. System groups don't have specific memberships that you can modify, but they can represent different users at different times, depending on how a user gains access to a computer or resource. You don't see system groups when you administer groups, but they are available for use when you assign rights and permissions to resources. Windows 2000 bases system group membership on how the computer is accessed, not on who uses the computer. Table 11.3 describes the most commonly used built-in system groups.

Table 11.3 Commonly Used Built-In System Groups


































System groupDescription
EveryoneIncludes all users who access the computer. Be careful if you assign permissions to the Everyone group and enable the Guest account. Windows 2000 will authenticate a user who does not have a valid user account as Guest. The user automatically gets all rights and permissions that you have assigned to the Everyone group.
Authenticated UsersIncludes all users with a valid user account on the computer (or if your computer is part of a domain, it includes all users in Active Directory directory services). Use the Authenticated Users group instead of the Everyone group to prevent anonymous access to a resource.
Creator OwnerIncludes the user account for the user who created or took ownership of a resource. If a member of the Administrators group creates a resource, the Administrators group is owner of the resource.
NetworkIncludes any user with a current connection from another computer on the network to a shared resource on the computer.
InteractiveIncludes the user account for the user who is logged on at the computer. Members of the Interactive group gain access to resources on the computer at which they are physically located. They log on and gain access to resources by "interacting" with the computer.
Anonymous LogonIncludes any user account that Windows 2000 didn't authenticate.
DialupIncludes any user who currently has a dial-up connection.

Lesson Summary


In this lesson, you learned that Windows 2000 has two categories of built-in groups: local and system. You also learned that built-in groups have a predetermined set of user rights or group membership. Windows 2000 creates these groups for you so you don't have to create groups and assign rights and permissions for commonly used functions.

/ 156