6.3.2.3. Lab 3: User and Security Management

6.3.2.3. Lab 3: User and Security Management (30 minutes)

Objective: Practice user account management and security settings.

Setup: Windows computer with admin access (VM recommended)

Steps:

1. Local User Management

   • Open lusrmgr.msc (Local Users and Groups)
   • Create a new user called "TestUser"
   • Add TestUser to the "Remote Desktop Users" group
   • Set the password to expire at next logon
   • Disable the account, then re-enable it

2. Password Policy Review

   • Open secpol.msc (Local Security Policy)
   • Navigate to Account Policies > Password Policy
   • Note the current settings for minimum password length, password history, maximum password age
   • Navigate to Account Lockout Policy
   • Note the lockout threshold and duration

3. Firewall Configuration

   • Open Windows Defender Firewall with Advanced Security (wf.msc)
   • View Inbound Rules - find the rule for Remote Desktop
   • Note whether it's enabled or disabled
   • Create a new inbound rule to block a specific port (e.g., 23 for Telnet)

Deliverable: Screenshot your new firewall rule.