Lab Report: 13.3.4 Configure Remote Wipe

Your Performance

Your Score: 0 of 1 (0%) Pass Status: Not Passed Elapsed Time: 17 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Remotely wipe Maggie's iPad Explanation In this lab, your task is to assist Maggie with a remote wipe as follows:

Log in to icloud.com using the following credentials: Apple ID: [email protected] Password: maggieB123 Using Find iPhone, select her iPad and erase it. Enter a phone number and message to be displayed on the iPad.

Complete this lab as follows:

1. In the URL field in Chrome, enter icloud.com and press Enter. 2. Maximize the window for easier viewing. 3. In the Sign in to iCloud field, enter [email protected] and press Enter. 4. Enter maggieB123 and press Enter. 5. Select Find iPhone. 6. Select All Devices. 7. Select Maggie's iPad. 8. Select Erase iPad. 9. Select Erase. 10. In the Enter AppleID to continue field, enter [email protected] and press Enter. 11. Enter maggieB123 and press Enter. 12. In the Number field, enter a phone number of your choosing to be displayed on the iPad. 13. Click Next. 14. Enter a message of your choosing to be displayed on the iPad. 15. Click Done. 16. Click OK. Lab Report: 13.3.6 Require a Screen Saver Password

Your Performance

Your Score: 0 of 3 (0%) Pass Status: Not Passed Elapsed Time: 8 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Enable the screen saver In Enable the screen saver after 10 minutes In Show the logon screen when the computer wakes Explanation In this lab, your task is to complete the following:

Enable the screen saver (you choose the screen saver type to use). Start the screen saver after 10 minutes of inactivity. Show the logon screen when the computer wakes up.

Complete this lab as follows:

1. Right-click the desktop and select Personalize. 2. Maximize the window for easier viewing. 3. From the left menu, select Lock Screen. 4. Select Screen saver settings. 5. Under Screen Saver, select the screen saver to use. 6. In the Wait field, enter 10. 7. Select On resume, display logon screen. 8. Click OK. Lab Report: 13.5.4 Configure BIOS/UEFI Security

Your Performance

Your Score: 0 of 4 (0%) Pass Status: Not Passed Elapsed Time: 9 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Add an Admin password of t67xab1 In Add a hard disk password of dog8b0b for disk 0 In Enable chassis intrusion detection to show a message during POST In Enable the TPM Explanation In this lab, your task is to complete the following:

Restart the computer. As the computer boots, press F2 to enter the BIOS configuration utility. Configure the following security settings: Add an Admin password used to make changes to BIOS settings. Use t67xab1 for the password. Add a password that prevents hard disk access even when the hard disk is moved to another system. Use dog8b0b for the password. Enable chassis intrusion detection to show an alert during POST when an intrusion is detected. Enable the TPM. Save your changes. When you are finished, restart the computer to verify the changes you have made.

Complete this lab as follows:

1. Set Admin password as follows: a. Select Start. b. Select Power. c. Select Restart. d. When you see the BIOS loading screen, press F2 to enter the BIOS. e. On the left, expand Security. f. Select Admin Password to set the admin password. g. In the Enter the new password field, type t67xab1. h. In the Confirm new password field, type t67xab1. i. Click OK. 2. Set hard disk password as follows: a. On the left, select Internal HDD-1 Password to configure a hard drive password. b. In the Enter the new password field, type dog8b0b. (0 is a zero.) c. In the Confirm new password field, type dog8b0b. (0 is a zero.) d. Click OK. e. Read the Warning message on the screen. f. Select Yes. 3. Enable intrusion detection as follows: a. On the left, select Chassis Intrusion. b. Select Enable. c. Click Apply. 4. Enable TPM as follows: a. On the left, select TPM Security. b. On the right, select TPM Security. c. Select Apply. d. Select Activate. e. Select Apply. f. Click Exit. To exit and save the changes. The system reboots. 5. Verify the changes made as follows: a. Press Delete during the BIOS load to test the admin password. b. When you are prompted for the Admin password, enter t67xab1. The Admin password was set correctly. c. Select OK. d. Select Exit to exit the BIOS. e. When prompted for the hard drive password, type dog8b0b. (0 is a zero.) f. Press Enter. The hard drive password was set correctly. The system loads the operating system. Lab Report: 13.6.6 Configure Windows Defender

Your Performance

Your Score: 0 of 4 (0%) Pass Status: Not Passed Elapsed Time: 6 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Add a file exclusion In Add a process exclusion In Update protection definitions before scanning In Perform a quick scan Explanation In this lab, your task is to configure Windows Defender as follows:

Add a file exclusion for D:\Graphics\cat.jpg. Add a process exclusion for welcome.scr. Check for updates before you perform the scan. Perform a quick scan.

Complete this lab as follows:

1. Add a file exclusion as follows: a. In the search field, enter Windows Defender. b. Under Best match, select Windows Defender. c. Maximize the window for easier viewing. d. Select Virus & threat protection. e. Select Virus & threat protection settings. f. Under Exclusions, select Add or remove exclusions. g. Select the + (plus sign) next to Add an exclusion. h. From the drop-down lists, select File. i. Under This PC, expand Data (D:). j. Select Graphics. k. Select cat.jpg. l. Select Open. 2. Add a process exclusion as follows: a. Select the + (plus sign) next to Add an exclusion. b. From the drop-down lists, select Process. c. In the Enter process name field, enter welcome.scr. d. Select Add. 3. Update protection definitions as follows: a. In the left menu, select the shield icon. b. Select Protection updates. c. Select Check for updates. 4. Perform a quick scan as follows: a. In the left menu, select the shield icon. b. Under Scan History, select Quick Scan to run a quick scan now. Lab Report: 13.7.5 Enforce Password Settings

Your Performance

Your Score: 0 of 8 (0%) Pass Status: Not Passed Elapsed Time: 6 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Require passwords of 10 characters or more In Force password changes every 30 days In Remember the last 4 passwords In Do not allow password changes within 2 days In Require complex passwords In Lock accounts after 4 invalid attempts In Count bad logon attempts within a 30 minute period In Unlock locked accounts after 60 minutes Explanation In this lab, your task is to edit the local security policy and configure settings as follows:

Policy Location Policy Setting

Enforce password history 4

Maximum password age 30

Account Policies/Password Policy Minimum password age 2

Minimum password length 10

Passwords must meet complexity requirements Enabled

Account lockout threshold 4

Account Policies/Account Lockout Policy Account lockout duration 60

Reset account lockout counter after 30

Complete this lab as follows:

1. Select Start. 2. Select Windows Administrative Tools. 3. Select Local Security Policy. 4. In the left pane, expand Account Policies. 5. Select Password Policy. 6. Double-click the policy you want to configure. 7. Configure the policy settings. 8. Click OK. 9. Repeat steps 6–8 to configure additional policies. 10. Select Account Lockout Policy. 11. Repeat steps 6–8 to configure policy settings.

Select the Explain tab for a description of the effects of the policy to help you identify which policy to configure with which value. Lab Report: 13.7.6 Manage Linux Passwords

Your Performance

Your Score: 0 of 1 (0%) Pass Status: Not Passed Elapsed Time: 3 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Change the administrator user password to r8ting4str Explanation In this lab, your task is to change your password to r8ting4str. The administrator account was 7hevn9jan as the password.

Complete this lab as follows:

1. At the prompt, type passwd and press Enter. 2. When prompted, enter 7hevn9jan as the current password and press Enter. 3. At the New password prompt, enter r8ting4str and press Enter. 4. Retype r8ting4str as the new password and press Enter. Lab Report: 13.8.4 Configure File Encryption

Your Performance

Your Score: 0 of 2 (0%) Pass Status: Not Passed Elapsed Time: 6 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Encrypt the D:\Finances folder and its contents In Add Emily as an authorized user for 2018report.xlsx Explanation In this lab, your task is to complete the following:

Encrypt the D:\Finances folder and all of its contents. Add Emily as an authorized user for the D:\Finances\2018report.xlsx file.

Complete this lab as follows:

1. Encrypt a folder as follows: a. From the taskbar, open File Explorer. b. Expand This PC. c. Select Data (D:). d. Right-click Finances and select Properties. e. Select Advanced. f. Select Encrypt contents to secure data; then click OK. g. Click OK to close the Finances Properties window. h. Make sure Apply changes to this folder, subfolder and files is selected; then click OK. Notice the lock that appears over the Finances folder. 2. Authorize users for a file as follows: a. Double-click Finances. b. Right-click 2018report.xlsx and select Properties. c. Select Advanced. d. Select Details. e. Select Add. f. Select Emily; then click OK. g. Click OK. h. Select OK to close the Advanced Attributes dialog. i. Click OK to close the 2018report.xlsx Properties window. Lab Report: 13.10.4 Configure a Windows Firewall

Your Performance

Your Score: 0 of 4 (0%) Pass Status: Not Passed Elapsed Time: 6 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Turn Windows Firewall On In Allow Key Management Service through the firewall In Allow the Arch98 program through the firewall In Allow the Apconf program through the firewall Explanation In this lab, your task is to configure the Windows Firewall as follows:

Turn on the Windows Firewall for the Public network profile only. In addition to the programs and ports currently allowed, allow the following service and applications for the Public network profile: Key Management Service Arch98 Apconf

Complete this lab as follows:

1. Select Start. 2. Select Settings. 3. Maximize the window for easier viewing. 4. Select Network & Internet. 5. Select Windows Firewall. 6. In the left pane, select Turn Windows Firewall on or off to enable the firewall. 7. Under Public network settings, select Turn on Windows Firewall. 8. Click OK. 9. In the left pane, select Allow an app or feature through Windows Firewall to allow a program through the firewall. 10. Select Change settings. 11. For the Key Management Service, select the box in the Public column. 12. Select Allow another app to configure an exception for an uncommon program. 13. Select the program from the list. 14. Select Add. 15. For the program you just added, make sure the box in the Public column is selected. 16. For the program you just added, unmark the box in the Domain column. 17. Repeat steps 12–16 for additional programs. 18. Click OK. Lab Report: 13.11.4 Use a Proxy Server

Your Performance

Your Score: 0 of 2 (0%) Pass Status: Not Passed Elapsed Time: 6 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Enable a proxy server for your LAN In Configure the Proxy serverShow Details Explanation In this lab, your task is to configure the proxy server settings as follows:

Address: proxy.corpnet.com Port: 9000

Complete this lab as follows:

1. From the taskbar, open Internet Explorer. 2. To the right of the URL field, select Tools. 3. Select Internet options. 4. Select the Connections tab. 5. Select LAN settings. 6. Enable Use a proxy server for your LAN. 7. In the Address field, enter proxy.corpnet.com. 8. In the Port field, enter 9000. 9. Click OK. 10. Click OK. Lab Report: 13.12.4 Configure a VPN Connection

Your Performance

Your Score: 0 of 3 (0%) Pass Status: Not Passed Elapsed Time: 6 seconds Required Score: 100%

Task Summary Actions you were required to perform: In Configure the VPN connection on Exec-Laptop In Configure the VPN security propertiesHide Details

VPN Type: Secure Socket Tunneling Protocol (SSTP)

In Connect to SalesVPN Explanation In this lab, your task is to complete the following:

Configure a VPN connection on Exec-Laptop using the following settings: VPN provider: Windows (built-in). Connection name: SalesVPN. Server address: 198.10.20.12. VPN type: Secure Socket Tunneling Protocol (SSTP). SSTP works by encapsulating PPP traffic over the SSL channel of the HTTPS protocol. This type of VPN runs on port 443, which is typically left open in most network firewalls. Don't allow Windows to remember authentication credentials. Set the following VPN security properties: Authentication: Microsoft: Secured password (EAP-MSCHAP v2). This is the most secure password-based authentication protocol. Allow other people to use the connection. Connect to SalesVPN Username: MaryS49 Password: Sm4rt72#

Complete this lab as follows:

1. Create a VPN connection on Exec-Laptop as follows: a. In the notification area, right-click the Network icon and select Open Network & Internet settings. b. Maximize the window for easier viewing. c. On the left, select VPN. d. Select Add a VPN connection. e. Under VPN provider, select Windows (built-in). f. In the Connection name field, enter SalesVPN. g. In the Server name or address field, enter 198.10.20.12 for the server address. h. Under VPN type, select Secure Socket Tunneling Protocol (SSTP). i. Under Type of sign-in info, make sure User name and password is selected. j. Unmark Remember my sign-in info. k. Click Save. 2. Set VPN security properties on Exec-Laptop as follows: a. Select Change adapter options. b. Right-click SalesVPN and select Properties. c. Select the Security tab. d. Under Type of VPN, make sure Secure Socket Tunneling Protocol (SSTP) is selected. e. Under Authentication, select Use Extensible Authentication Protocol (EAP). f. From the drop-down list, select Microsoft: Secured password (EAP-MSCHAP v2). g. Select OK. h. Close the Network Connections window. 3. Connect to SalesVPN as follows: a. Under VPN, select SalesVPN. b. Select Connect. c. In the User name field, enter MaryS49 as the username. d. In the Password field, enter Sm4rt72# as the password. e. Click OK.