Part C $$ Security Policies

Scenario: You are the Chief Information Officer responsible for Data, Network and

Information Security. From the preliminary investigation, it is evident that you need to have

an effective solution to ensure alignment to business strategic goals. The core areas that need

to be addressed are listed below:

$1.$ Demonstrate configuring Windows Server $2012$ R$2$ in Oracle Virtual Box with

minimum system requirements. Use Network Adapter as Host Only.

a$.$ Assign Static IP with a Class C Address $(192\mathrm{.}168.$x$.$x$)$ where x represents a

choice of ip address between $1254.$

b$.$ Use a Secure Password for Administrator: P@$$w$0$rd$2024+$

c$.$ Use the Domain Name: $$Sxxxxxxxxx$.$local$$ where xxxxxxxxx is your student

ID Number. $($Preferred: Team Leaders ID$)$

d$.$ Restore Mode Password: Aa$12345$

$2.$ Create the following Organizational Units $($Top Level$)$ & Groups in the Active

Directory Hierarchical structure:

AccountingOU $|$ AccountsGroup

HROU $|$ HRGroup

TechnologyOU $|$ TechGroup

IS$351$ PROJECT

Project Semester $1,20243$

$3.$ Add the following users in Active Directory:

Username Description Passwords Department

David.Brown Accounts Receivable Computer@$25+$ Accounting

John.Smith HR Officer Computer@$25+$ HR

Kyle.Brown Team Leader Computer@$25+$ HR

James.Allen Financial Controller Computer@$25+$ Accounting

Mike.Petrie ICT Admin Computer@$25+$ Technology

$*$Student Name Chief Information Officer Computer@$25+$ Technology

$(*$ Use your first and last name for the Chief Information Officer$)$

$4.$ Implement Group policies as follows for Accounting & HR organizational units.

a$.$ Remove run from Start Menu.

b$.$ Remove Add or Remove Programs.

c$.$ Prevent changing desktop background.

d$.$ Prohibit access to USB Flash Drives.

e$.$ Remove Recycle Bin icon from Desktop.

$5.$ Implement security policies for all departments as follows:

a$.$ Enable Strong Password Policy.

b$.$ Interactive Logon Message:

$6.$ All Departments except the Technology Dept, are allowed to log into the network from

$7$:$00$am $8\mathrm{.}00$pm on Monday to Friday and $7$:$00$am to $4$:$00$pm on Saturday.

$7.$ James Allen is a temporary employee and his contract will finish on $30$th October $2024$

whilst David Brown is currently away on study leave for a year. Disable his account

and provision for this in Active Directory. Also identify any potential risks associated

if the above security measures were not in place.

$8.$ Configure a File Server with the following configurations:

a$.$ Accounts Folder having access for Accounting Dept.

b$.$ HR Folder having access for HR Dept.

c$.$ Common Folder having access for all departments.

$9.$ Perform a server backup and use BitLocker to encrypt the drive.