Let there be no misunderstanding, file and print security is greatly improved in Windows 2000. NTFS boasts security enhancements. The Encrypting File System (EFS) provides additional protection. Private keys guard against unauthorized access.
As a result, administering security in Windows 2000 can quickly prove complicated. Among other things, you must remember the order in which share and NTFS permissions are applied, how encryption is triggered, what happens when encrypted files are copied or moved, and how keys are stored.
You can read up on Win2K file and print administration in a sample Coriolis book chapter, which TechProGuild members can download here. The sample chapter, titled “File and Print Security,” is an excerpt from Coriolis’ MCSE Windows 2000 Security Design: Exam 70-220 book. It explains:
- · The roles System Access Control Lists and Discretionary Access Control Lists play in configuring security.
- · How to encrypt and decrypt files and folders using EFS.
- · How to control access to print resources.
- · The effective permissions that result when multiple permissions apply.
You’ll also find best practices recommendations for shared folders, descriptions of administrative shares, and a file system overview. Should you be preparing for the Windows 2000 security design exam, you’ll also find sample questions and projects that demonstrate real-world application for the processes the chapter describes.
Alleviate your file and print access worries. Download the sample chapter here.