Upgrade to remove ads
CNT123 Chapter 08 Keywords
Terms in this set (16)
A type of delegation that limits the delegation to specific services running on specific computers. See also Kerberos delegation.
A property of GPO processing that defines which objects a GPO affects.
group managed service account (gMSA)
A specially configured managed service account that provides the same functions but can be managed across multiple servers. See also managed service account (MSA).
The authentication protocol used in a Windows domain environment to authenticate logons and grant accounts access to domain resources; also the basis for authorization to network resources in a Windows domain.
A feature of the Kerberos authentication protocol that allows a service to impersonate a client, relieving the client from having to authenticate to more than one service.
Key Distribution Center (KDC)
A component of Kerberos that uses the Active Directory database to store keys for encrypting and decrypting data in the authentication process. See also Kerberos.
managed service account (MSA)
A service account that enables administrators to manage rights and permissions for services with password management handled automatically.
A type of authentication in which the identities of both the client and server are verified.
password settings object (PSO)
An Active Directory object that enables an administrator to configure password settings for users or groups that are different from those defined in a GPO linked to the domain.
Security Accounts Manager (SAM) database
A database on stand-alone and member computers that holds local user and group account information.
A user account that Windows services use to log on with a specific set of rights and permissions.
service principal name (SPN)
A name that uniquely identifies a service instance to a client.
A digital message used by Kerberos; requested by an account when it wants to access a network resource, such as a shared folder. See also Kerberos.
ticket-granting ticket (TGT)
A digital message used by Kerberos; grants an account access to the issuing domain controller and is used to request a service ticket without having to authenticate again. See also Kerberos.
A record of the time a message is sent; used in Kerberos authentication. See also Kerberos.
A simple type of service account that doesn't need to be created, deleted, or managed by an administrator.
YOU MIGHT ALSO LIKE...
1.4.3 Service Account Facts
Microsoft 2 Testbank 15
ISYS 210 Chapter 16
70-411 Server 2012 Quiz 15
OTHER SETS BY THIS CREATOR
CNT135 Chapter 08 Key Terms
CNT135 Chapter 07 Key Terms
CNT135 Chapter 06 Key Terms
OTHER QUIZLET SETS
Picat - mechanical Comprehension
Ch. 1 The Airways and Alveoli
ap csp test 2
字彙的力量 Level 1