Escolar Documentos
Profissional Documentos
Cultura Documentos
Introduction
The Securing Windows User Account Access module provides you with the instruction
and server hardware to develop your hands on skills in the defined topics. This module
includes the following exercises:
Exam Objectives
Lab Diagram
During your session you will have access to the following lab configuration.
Connecting to your Lab
In this module you will be working on the following equipment to carry out the steps
defined in each exercise.
To start, simply choose a device and click Power on. In some cases, the devices may
power on automatically.
For further information and technical support, please see our Help and Support
This document and its content is copyright of Practice-IT - Practice-IT 2016. All rights reserved. Any
redistribution or reproduction of part or all of the contents in any form is prohibited other than the following:
1. You may print or download to a local hard disk extracts for your personal and non-commercial use only.
2. You may copy the content to individual third parties for their personal use, but only if you acknowledge
the website as the source of the material. You may not, except with our express written permission, distribute
or commercially exploit the content. Nor may you transmit it or store it in any other website or other form of
To get a better understanding of this technology, please refer to your course material or
use your preferred search engine to research this topic in more detail.
The System Configuration editor is a useful administrator program that can be used to
fine tune the performance of your computer. You can turn off non-essential programs
that slows down your computer and free up system resources.
Msconfig.exe features has changed in Windows 8.1 as the option to control Start up
programs has been ported to Task Manager.
To get familiar with the System Configuration Tool, perform the following steps:
Step 1
Ensure that you have powered on the required devices indicated in the Introduction of
this lab.
Connect to PLABWIN810.
Step 2
Right-click Start charm and on the shortcut menu, select Run.
Figure 1.1
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the Start charm) > Run menu-options selected are displayed on the Windows
desktop of device PLABWIN810.
Step 3
On the Run dialog box, type:
msconfig
Press Enter.
Figure 1.2
Screenshot of the PLABWIN810 desktop: The Run dialog box is displayed with the name
of the file to run typed-in.
Step 4
The System Configuration tool opens.
Step 5
The Services tab gives you the capability to disable a service.
Keep the services unchanged as they are essential to the functionality of the operating
system.
Step 6
Notice that the Startup tab is empty as you can change the Startup of programs
via Task Manager.
Click Tools.
Figure 1.5
Screenshot of the PLABWIN810 desktop: The System Configuration dialog box is
displayed with the Startup tab showing the default settings and the Tools tab
highlighted.
Step 7
The Tools tab gives you option to launch an application.
Step 8
The System Information window opens.
This programs is important if you wish to collect a summary of hardware and software
settings of your computer.
Step 9
Back on the System Configuration dialog box, click Startup tab.
Figure 1.8
Screenshot of the PLABWIN810 desktop: The System Configuration dialog box with the
Tools tab listing the applications available on the server is displayed.
Step 10
On the Startup tab, click Open Task Manager web link.
Figure 1.9
Screenshot of the PLABWIN810 desktop: The System Configuration dialog box is
displayed with the Startup tab showing the default settings and the Open Task Manager
link highlighted.
Step 11
On the Task Manager window - Startup tab displays are the programs that will be
executed upon user sign on.
Step 12
Notice that pit is Disabled.
Note: pit is a batch file that runs with BGInfo application to display the computer
name, IP address, user logon name and logon name on desktop wallpaper
Figure 1.11
Screenshot of the PLABWIN810 desktop: The Startup tab on the Task Manager window
is displayed with the selected application disabled.
Step 13
Close Task Manager and System Configuration tool windows.
Figure 1.12
Screenshot of the PLABWIN810 desktop: The Task Manager window is displayed with
the Close icon on the top-right corner highlighted.
Step 14
Right-click Start charm and on the shortcut menu, select Shut down or sign out and
then click Sign out.
Figure 1.13
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the Start charm) > Shut down or sign out > Sign out menu-options are displayed
on the Windows desktop of device PLABWIN810.
Keep all devices powered on in their current state and proceed to the next task.
You need to sign on as different user in the succeeding tasks. Therefore, you will need to
turn off the auto login feature.
Step 1
You need to disable the auto logon feature in the Practice Labs web application to allow
other user accounts to logon to the devices.
Click the Access your settings folder tab. Under Server auto login section,
click Disable on the slider.
Keep all devices powered on in their current state and proceed to the next task.
Step 1
Connect again to PLABWIN810 device.
Step 2
On the logon screen, click on Other User.
Figure 1.14
Screenshot of the PLABWIN810 desktop: The login accounts-option screen on the
PLABWIN810 desktop is displayed with the Other user option selected.
Step 3
On the log on screen, click in the user name box and type:
marketinguser1
Passw0rd
Press Enter.
Figure 1.15
Screenshot of the PLABWIN810 desktop: The Other user login screen on the
PLABWIN810 desktop is displayed with the relevant login credentials typed-in.
Step 4
Notice that the batch file called pit did not run upon sign on as you have disabled it
earlier in the Task Manager - Startup tab.
The mentioned batch file will display information about computer name, IP address,
user name and domain name on desktop after a successful log on.
Note: The start-up batch file pit.bat applies only for new logons to the
PLABWIN810 device.
If you get a notification about installing Lab Device Client, click Install to
automatically setup this application. The program is used by lab devices.
Figure 1.16
Screenshot of the PLABWIN810 desktop: The Application Install - Security Warning
dialog box asking your confirmation to install Lab Device Client application on the
PLABWIN810 desktop is displayed.
Step 5
Right-click on Start charm and select Shut down or sign out then click Sign out.
Figure 1.17
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the Start charm) > Shut down or sign out > Sign out menu-options are displayed
on the Windows desktop of device PLABWIN810.
Keep all devices powered on in their current state and proceed to the next task.
Whenever Windows is powered on, numerous device drivers are initialized and loaded
to ensure that your computer will be fully operational before a user logs on. If the
operating system has successfully booted up, Windows services are automatically started
upon sign on of the user account.
In this task, you will enable boot logging feature which will create a log file of device
drivers and network services that are initialized before user sign on.
Step 1
Connect to PLABWIN810 device.
Step 2
In the password box, type:
Passw0rd
Press Enter.
Figure 1.19
Screenshot of the PLABWIN810 desktop: The PRACTICELABS\Administrator login
screen on the PLABWIN810 desktop is displayed with the relevant login credentials
typed-in.
Step 3
Right-click Start charm and select Run.
Figure 1.20
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the Start charm) > Run menu-options selected are displayed on PLABWIN810
Windows desktop.
Step 4
On the Run dialog box, type:
msconfig
Press Enter.
Figure 1.21
Screenshot of the PLABWIN810 desktop: The Run dialog box is displayed with the name
of the file to run typed-in.
Step 5
On the System Configuration dialog box, click Boot tab.
Figure 1.22
Screenshot of the PLABWIN810 desktop: The System Configuration dialog box is
displayed with the General tab showing the default settings and the Boot tab highlighted.
Step 6
Under the Boot tab, locate Boot options section.
Click OK.
Figure 1.23
Screenshot of the PLABWIN810 desktop: The System Configuration dialog box with the
Boot tab is displayed showing the Boot log checkbox selected and the OK button
highlighted.
Step 7
On the System Configuration dialog box, select Dont show this message
again check box.
Click Restart.
Figure 1.24
Screenshot of the PLABWIN810 desktop: The System Configuration dialog box is
displayed showing the dont show this message again checkbox selected and the Restart
button highlighted.
Step 8
Reconnect to PLABWIN810 computer after 1 minute to give the device enough time to
restart.
Step 9
On the sign on screen, click PRACTICELABS\Administrator.
Figure 1.25
Screenshot of the PLABWIN810 desktop: The login accounts-option screen on the
PLABWIN810 desktop is displayed with the PRACTICELABS\Administrator option
selected.
Step 10
In the password box, type:
Passw0rd
Press Enter.
Figure 1.26
Screenshot of the PLABWIN810 desktop: The PRACTICELABS\Administrator login
screen on the PLABWIN810 desktop is displayed with the relevant login credentials
typed-in.
Step 11
Click File Explorer on taskbar.
Figure 1.27
Screenshot of the PLABWIN810 desktop: The PLABWIN810 Windows desktop is
displayed with the File Explorer icon on the taskbar highlighted.
Step 12
Under This PC node, expand Local Disk (C:), then click Windows folder.
Notice the extensive list of folders and files in the right details pane.
Step 13
Right-click ntbtlog text file and select Open.
Figure 1.29
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking a text document) > Open menu-options are displayed on the file explorer
window.
Step 14
The ntbtlog-Notepad window opens.
Scroll down the list to examine the contents of this log file.
As you can see most of them are device drivers with extension names .sys and some of
them are operating system drivers .sys like ACPI.sysAdvanced Configuration
Power Interface which is responsible for controlling power management for devices
installed on the Windows computer.
Close ntbtlog-Notepad.
Figure 1.30
Screenshot of the PLABWIN810 desktop: The ntbtlog - Notepad window is displayed
with the Close icon on the top-right corner highlighted.
Step 15
Right-click on Start charm, select Shut down or sign out and click Sign out.
Figure 1.31
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the Start charm) > Shut down or sign out > Sign out menu-options are displayed
on the PLABWIN810Windows desktop.
Keep all devices powered on in their current state and proceed to the next task.
To avoid unintended changes on the system and ensure security while working on
corporate assets, it is recommended that you use a regular user account that is paired
with an administrator account. By having this approach, the user will invoke the
privileged account only when performing system-related tasks and revert back as an
ordinary user after the task has been completed.
In this exercise, you will use the Windows Run As feature by signing on as a common
user and invoke administrative rights by using an Administrator account.
To get a better understanding of this technology, please refer to your course material or
use your preferred search engine to research this topic in more detail.
Step 1
Connect to PLABWIN810 device.
Figure 2.1
Screenshot of the PLABWIN810 desktop: The login accounts-option screen on the
PLABWIN810 desktop is displayed with the Other user option selected.
Step 2
On the user name box, type:
john.smith
Passw0rd
Press Enter.
Figure 2.2
Screenshot of the PLABWIN810 desktop: The Other user login screen on the
PLABWIN810 desktop is displayed with the relevant login credentials typed-in.
Step 3
On the BGInfo License Agreement dialog box, click Agree.
Step 4
When signed on, click the Start charm to access the Start screen.
Figure 2.3
Screenshot of the PLABWIN810 desktop: The PLABWIN810 Windows desktop is
displayed with the Start charm selected.
Step 5
On the Start screen, type:
compmgmt.msc
Press Enter
Figure 2.4
Screenshot of the PLABWIN810 desktop: The Start screen on the PLABWIN810
Windows desktop is displayed with the required search key typed-in.
Step 6
Computer Management console opens.
Step 7
Since user John Smith does not have administrative rights on the computer, he gets
an access denied message.
Click OK.
Figure 2.6
Screenshot of the PLABWIN810 desktop: The Disk Management caution box is
displayed informing that the logged-in user does not have the required access rights to
perform the requested operation.
Step 8
Close Computer Management console window.
Figure 2.7
Screenshot of the PLABWIN810 desktop: The Computer Management console is
displayed with the Close icon on the top-right corner highlighted.
Keep all devices powered on in their current state and proceed to the next task.
The easiest way to invoke an administrator account using Run as is by using the shortcut
menu.
Step 1
On PLABWIN810 device, click again on Start charm.
Figure 2.8
Screenshot of the PLABWIN810 desktop: The Start charm selected on the PLABWIN810
Windows desktop is displayed.
Step 2
On the Start screen, type:
compmgmt.msc
On the Search fly out menu, right-click on compmgmt and select Run as
administrator.
Figure 2.9
Screenshot of the PLABWIN810 desktop: The Start screen on the PLABWIN810
Windows desktop is displayed with the required search key typed-in and the context
menu (that appears on right-clicking the name of the selected application) > Run as
administrator menu-options selected.
Step 3
The User Account Control dialog box appears. To run the program within the
administrator context, use the following information:
Administrator
Passw0rd
Click Yes.
Figure 2.10
Screenshot of the PLABWIN810 desktop: The User Account Control dialog box is
displayed with the relevant login credentials typed-in and the Yes button highlighted.
Step 4
Computer Management console opens.
Step 5
You now have access to the disk volumes on PLABWIN810.
Step 6
Close Computer Management window.
Figure 2.13
Screenshot of the PLABWIN810 desktop: The Computer Management console is
displayed with the Close icon on the top-right corner highlighted.
Step 7
Stay signed on to PLABWIN810 device as the current user for the next activity.
Keep all devices powered on in their current state and proceed to the next task.
To create a program shortcut for an administrator program to use Run as, perform the
following steps:
Step 1
On the PLABWIN810 device, click File Explorer icon on taskbar.
Step 2
On the File Explorer window, expand This PC node if not already expanded.
Step 3
Scroll down the details pane on the right to locate compmgmt.msc.
Step 4
Close File Explorer window.
Step 5
Back on the desktop, right-click on compmgmt-Shortcut icon and
select Properties.
Figure 2.16
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking a shortcut on the desktop) > Properties menu-options selected is displayed on
the PLABWIN810 Windows desktop.
Step 6
From the compmgmt-Shortcut Properties dialog box, click in the Target text box
and type over the existing text with the following:
Click OK.
Figure 2.17
Screenshot of the PLABWIN810 desktop: The compmgmt - Shortcut Properties dialog
box is displayed with the required target node path typed-in.
Step 7
Notice that the icon changes into a generic Windows icon, because you modified the
program path in the Target text box.
Step 8
You will now get a password prompt for
the PRACTICELABS\Administrator account. Type:
Passw0rd
Press Enter.
Important: You will not see the password as masked characters. Make sure you type
Step 9
Computer Management successfully opens.
Step 10
The list of disk volumes are now displayed.
Step 11
Right-click Start charm, point to Shut down or sign out and select Sign out.
Keep all devices powered on in their current state and proceed to the next task.
UAC was introduced in Windows Vista and has been carried over to succeeding versions
of Windows with minor changes. UAC setting can be changed on a per-computer basis
via Control Panel or changed globally via Group Policy Objects or GPO.
In this exercise, you will explore the basic features of UAC and find out how this security
feature works.
To get a better understanding of this technology, please refer to your course material or
use your preferred search engine to research this topic in more detail.
Task 1 - Examine the Workings of UAC
To find out how UAC is implemented within Windows 8.1, perform the following steps:
Step 1
Connect to PLABWIN810.
Figure 3.1
Screenshot of the PLABWIN810 desktop: The login accounts-option screen on the
PLABWIN810 Windows desktop is displayed with the PRACTICELABS\Administrator
option selected.
Step 2
In the password box, type:
Passw0rd
Press Enter.
Figure 3.2
Screenshot of the PLABWIN810 desktop: The PRACTICELABS\Administrator login
screen on the PLABWIN810 Windows desktop is displayed with the relevant login
credentials typed-in.
Step 3
When signed on, right-click the network icon on the system tray and select Open
Network and Sharing Center.
Figure 3.3
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the network icon on taskbar) > Open Network and Sharing Center menu-options
selected on the PLABWIN810 Windows desktop is displayed.
Step 4
On the Network and Sharing Center window, click Control Panel Home web link
on the left navigation pane.
Figure 3.4
Screenshot of the PLABWIN810 desktop: The Network and Sharing Center window is
displayed with the Control Panel Home link on the navigation pane at the left
highlighted.
Step 5
On Adjust your computers settings screen, click System and Security link.
Figure 3.5
Screenshot of the PLABWIN810 desktop: The Control Panel window is displayed with
the mouse-over of the System and Security link.
Step 6
Under Action Center, click Change User Account Control settings web link.
You will notice that certain web links have the security shield icon with 4 colors which is
the User Account Control. This means that if a non-administrator clicked the web links
the User Account Control prompt will appear.
Figure 3.6
Screenshot of the PLABWIN810 desktop: The System and Security window is displayed
with the Change User Account Control settings web link under the Action Center
highlighted.
Step 7
On the Choose when to be notified about changes to your computer, move the
slider to see the different options.
Click OK.
Figure 3.7
Screenshot of the PLABWIN810 desktop: The User Account Control Settings window is
displayed showing the default settings, and the OK button highlighted.
Step 8
Keep the System and Security window open.
Figure 3.8
Screenshot of the PLABWIN810 desktop: The System and Security window is displayed
on the PLABWIN810 Windows desktop.
Keep all devices powered on in their current state and proceed to the next task.
To make changes on the UAC behavior on Windows 8.1, perform the following steps:
Step 1
On PLABWIN810 back on the System and Security window, click in the address
bar and type:
secpol.msc
Press Enter.
Figure 3.9
Screenshot of the PLABWIN810 desktop: The System and Security window is displayed
with the required file name typed-in the address bar.
Step 2
On Local Security Policy window, expand Local Policies node and click
on Security Options node.
Scroll down the list and locate User Account Control: Behavior of the elevation
prompt for administrators in Admin Approval Mode policy.
Figure 3.10
Screenshot of the PLABWIN810 desktop: The Local Security Policy window is displayed
with the Security Options node selected on the navigation pane at the left and the
security policies listed on the details pane at the right.
Step 3
Right-click on User Account Control: Behavior of the elevation prompt for
administrators in Admin Approval Mode policy and select Properties.
Figure 3.11
Screenshot of the PLABWIN810 desktop: The Local Security Policy window is displayed
with the context menu (that appears on right-clicking the selected security policy) >
Properties menu-options selected.
Step 4
On the User Account Control: Behavior dialog box, change the drop-down list
to Prompt for consent.
Click OK.
There is no
alternative description to this image.
Step 5
Right-click on User Account Control: Behavior of the elevation prompt for
standard users policy and select Properties.
Figure 3.13
Screenshot of the PLABWIN810 desktop: The Local Security Policy window is displayed
with the context menu (that appears on right-clicking the selected security policy) >
Properties menu-options selected.
Step 6
On the User Account Control: Behavior of the elevation dialog box, change the
drop-down list to Automatically deny elevation requests.
Click OK.
There is no
alternative description to this image.
Step 7
Close Local Security Policy window.
Figure 3.15
Screenshot of the PLABWIN810 desktop: The Local Security Policy window is displayed
with the Close icon at the top-right corner highlighted.
Step 8
Close System and Security window.
Figure 3.16
Screenshot of the PLABWIN810 desktop: The System and Security window is displayed
with the Close icon at the top-right corner highlighted.
Step 9
Right-click Start charm, point to Shut down or sign out and select Sign out.
Keep all devices powered on in their current state and proceed to the next task.
In this task, you will make a system change in Windows and verify if the UAC prompt
appears.
Step 1
Connect to PLABWIN810.
Step 2
On the user logon page, sign on as:
john.smith
Passw0rd
Press Enter.
Figure 3.18
Screenshot of the PLABWIN810 desktop: The Other user login page on the
PLABWIN810 desktop is displayed with the relevant login credentials typed-in.
Step 3
When signed on, right-click on network icon and select Open Network and Sharing
Center.
Figure 3.19
Screenshot of the PLABWIN810 desktop: The context menu (that appears on right-
clicking the network icon on taskbar) > Open Network and Sharing Center menu-options
selected on the PLABWIN810 Windows desktop is displayed.
Step 4
On the Network and Sharing Center window, click Control Panel Home.
Figure 3.20
Screenshot of the PLABWIN810 desktop: The Network and Sharing Center window is
displayed with the Control Panel Home link on the navigation pane at the left
highlighted.
Step 5
On the User Accounts section, click Change account type link.
Figure 3.21
Screenshot of the PLABWIN810 desktop: The Control Panel window is displayed with
the Change account type web link under the User Accounts highlighted.
Step 6
Notice that instead of seeing the User Account Control dialog box, the user is
reminded that the system administrator has blocked this program
Click OK.
There is no
alternative description to this image.
Step 7
Click in the Control Panel address bar and type:
shutdown /l
Press Enter.
Figure 3.23
Screenshot of the PLABWIN810 desktop: The Control Panel window is displayed with
the required command typed in the address bar.
Shut down all virtual machines used in this exercise using Practice Labs power button
function to revert these devices to their default settings.
Alternatively, you may sign out of the lab portal to power down all devices.
Summary
In this module you perform the following tasks: