Term
|
Definition
| A directory service from Microsoft that is a part of Windows 2000. It is an implementation of Internet standard directory and naming protocols that uses a database engine for transactional support, and also supports a variety of application programming interface standards. |
|
|
Term
|
Definition
| When an administrator attempts to perform a task that requires administrative access, the system switches the account from the standard user token to the administrative token. |
|
|
Term
|
Definition
| The process of verifying that the identity of the person operating the computer matches that of the user account the person is using to gain access. |
|
|
Term
|
Definition
| The process of granting an authenticated user a specific degree of access to a specific computer or data resources |
|
|
Term
|
Definition
| In User Account Control, a screen that appears when a standard user attempts to perform a task that requires administrative privileges, and the user must supply the name and password for an account with administrative privileges. |
|
|
Term
|
Definition
| Is a collection of logical objects that represent various types of network resources, such as computers, applications, users, and groups. |
|
|
Term
|
Definition
| Is a collection of computers that all utilize a central directory service for authentication and authorization. |
|
|
Term
|
Definition
| A server with the Active Directory Domain Services (AD DS) directory service installed. |
|
|
Term
|
Definition
| In User Access Control, a message box that prevents unauthorized processes, such as those initiated by malware, from accessing the system using administrative privileges. |
|
|
Term
|
Definition
| Is another type of entity that Windows uses to represent a collection of users. Admins can create them for any reason and with any name, and then use them just as they would a user account. Any permissions or user rights that an admin assigned to a group are automatically inherited by all of the members. |
|
|
Term
|
Definition
| Is simply a read-only roaming user profile. |
|
|
Term
|
Definition
| Is a copy of a local user profile that is stored on a network share, so that the user can access if from any computer on the network. |
|
|
Term
|
Definition
| In User Account Control, a system state in which all desktop controls are suppressed except for an elevation or credential prompt. The object of this is to prevent malware from automating a response to the elevation or credential prompt and bypassing the human reply. |
|
|
Term
|
Definition
| Is essentially a placeholder for a collection of users with similar characteristics. |
|
|
Term
| User Account Control (UAC) |
|
Definition
| Is a feature in Windows that can help prevent unauthorized changes to your computer it does this by asking you for permission or an administrator‌ password before performing actions that could potentially affect your computer's operation or that change settings that affect other users. |
|
|
Term
|
Definition
| Is a series of folders, associated with a specific user account, that contain personal documents, user-specific registry settings, Internet favorites, and other personalized information. |
|
|
Term
|
Definition
| Completely separate from the permission systems; They are specific operating system tasks, such as Shut Down the System or Allow Log On Through Terminal Services, which can only be performed by certain users designated by a system administrator. |
|
|
Term
|
Definition
| Is a collection of computers that are all peers, in which every computer can function as both a server and a client. |
|
|
