The process of identifying users and validating the credentials.
When you combine two forms of authentication (such as both typing a password and providing a smart card), it's called...
multifactor authentication.
Where would you find the Credential Manager tool?
In the Control Panel, under User Accounts
Which auditing type should you enable to audit local logon events?
Which event log should you examine to find audited events?
Audit Logon Events
Security
Give a brief, simple description of 802.1x security.
It's a network authentication that limits what a computer can access on the network until the computer has been authenticated via Group Policy.
What tool can you enable to assist in troubleshooting authentication issues?
Auditing
**Audit Logon Events (local)
**Audit Account Logon Events (domain)
What tool would you use to troubleshoot an untrusted Certificate Authority?
MMC > Certificates
What tool would you use to determine what policies (ie Group Policy) are being imposed on a computer?
The Resultant Set of Policy mmc snap-in.
EFS (Encrypting File System) provides encryption for _____, while BitLocker provides encryption for ___.
EFS (Encrypting File System) provides encryption for individual files and folders, while BitLocker provides encryption for entire system drives.
What versions of Windows 7 support EFS (Encrypting File System)?
Windows 7 Professional, Enterprise and Ultimate.
EFS is not support on Windows 7 Starter, Home Basic or Home Premium.
What color is used to signify that a file or folder has been encrypted?
Green
True or False - Files marked with the System attribute can be encrypted.
False
True or False - Encrypted files and/or folders can be compressed with NTFS compression.
False
Granting addtional user access can be given to:
A. EFS-encrypted files only, and can be done only a single file at a time.
Who can act as a Data Recovery Agent (DRA)?
By default, workgroup computers configure the local Administrator account as the DRA. In domain environments, domain administrators configure one or more user accounts as DRAs for the entire domain.
What tool do you use to assign the Data Recovery Agent role on a computer in a workgroup environment?
Group Policy
What editions of Windows 7 include BitLocker?
Windows 7 Enterprise and Ultimate.
BitLocker is used to encrypt....
entire volumes.
What hardware device does BitLocker use to encrypt a volume?
TPM (Trusted Platform Module)
What four BitLocker modes are available with a TPM module?
TPM Only
TPM with external key (on USB thumb drive)
TPM with PIN
TPM with PIN and external key
If a computer does not have a TPM module, what can be substituted in its' place?
A USB thumb drive.
***This option is not enable by default and must be enabled via Group Policy.
What tool can you use to enable BitLocker on a computer that does not have a TPM module?
Group Policy to "Allow BitLocker without a compatible TPM"
What is the name of the command-line tool for managing BitLocker?
