3.3.10 Lab Create User Accounts

Lab – Create User Accounts

Introduction

In this lab, you will create and modify user accounts in Windows.

Part 1: Creating a New Local User Account

Part 2: Reviewing User Account Properties

Part 3: Modifying Local User Accounts

Required Resources

• A Windows PC

Instructions

Part 1:Creating a New Local User Account

Step 1:Open the User Account Tool.

a.Log on to the Windows PC with an Administrator account. The account CyberOpsUser is used in this example.

b.Click Start > search Control Panel. Select User Accounts in the Small icons view. To change the view, select Small icons in the View by drop down list.

Step 2:Create a user account.

a.In the User Accounts window, click Manage another account.

b.In the Manage Accounts window, click Add a new user in PC settings.

c.In the Settings window, click Add someone else to this PC.

d.In the How will this person sign in? window, click I don’t have this person’s sign-in information.

e.In the Let’s create your account window opens, click Add a user without a Microsoft account.

f.In the Create an account for this PC window, provide the necessary information to create the new user account named User1. Click Next to create the new user account.

Question:

What type of user account did you just create?

A local user account named User1 for use on this computer only not attached to your Microsoft login account.

g.Attempt to log into the newly created user account. It should be successful.

h.Navigate to C:\Users folder. Right-click the User1 folder and select Properties, and then the Security tab.

Question:

Which groups or users have full control of this folder?

User1: The newly created user account has full control over its own folder.

Administrators: The administrators group (including the CyberOpsUser account) usually has full control over all user folders.

SYSTEM: The system account typically has full control over system resources.

Type your answers here

i.Open the folder that belongs to CyberOpsUser. Right-click the folder and click the Properties tab.

Question:

Were you able to access the folder? Explain. As a newly created user (User1), you likely would not be able to access the CyberOpsUser folder. This is because the permissions for the CyberOpsUser folder are set to restrict access to other users. Only the CyberOpsUser and users with administrative rights have access to this folder.here.

j.Log out of User1 account. Log back in as CyberOpsUser.

k.Navigate to C:\Users folder. Right-click the folder and select Properties. Click the Security tab.

Question:

Which groups or users have full control of this folder?

• CyberOpsUser: The owner of the folder has full control.

• Administrators: The administrators group has full control over the folder.

• SYSTEM: The system account also has full control over this folder.

: The system account also has full control over this folder.

Part 2:Reviewing User Account Properties

a.Click Start > Search for Control Panel > Select Administrative Tools > Select Computer Management.

b.Select Local Users and Groups. Click the Users folder.

c.Right-click User1 and select Properties.

d.Click the Member Of tab.

Question:

Which group is User1 is a member of?

User group the default group for new user accounts.

e.Right-click the account CyberOpsUser and select Properties.

Question:

Which group is this user a member of?

Administrators group

Part 3:Modifying Local User Accounts

Step 1:Change the account type.

a.Navigate to the Control Panel and select User Accounts. Click Manage another account. Select User1.

b.In the Change an Account window, click the User1 account. Click Change the account type.

c.Select the Administrator radio button. Click Change Account Type.

d.Now the account User1 has administrative rights.

e.Navigate to Control Panel > Administrative Tools > Computer Management. Click Local Users and Groups> Users.

f.Right-click User1 and select Properties. Click Member Of tab.

Question:

Which groups does User1 belong to?

After changing the account type to Administrator, User1 belongs to the following groups:

• Administrators: This group provides User1 with full administrative rights.

• Users: User1 remains a member of this default group as well.

Type your answers here.

g.Select Administrators and click Remove to remove User1 from the Administrative group. Click OK to continue.

Step 2:Delete the account.

a.To delete the account, right-click User1and select Delete.

b.Click OK to confirm the deletion.

Question:

What is another way to delete a user account?

Another way to delete a user account is through the Command Prompt by using the command net user User1 /delete, where “User1” is the name of the account you want to remove. You can also delete user accounts through the Settings app in Windows by navigating to Accounts > Family & other users and selecting the user account to delete.

Type your answers here.

Reflection Questions

1.Why is it important to protect all accounts with strong passwords? I

It is important to protect all accounts with strong passwords to prevent unauthorized access. Weak passwords can be easily guessed or cracked by attackers, leading to potential data breaches, identity theft, and unauthorized changes to system settings. Strong passwords help safeguard personal and sensitive information, as well as maintain the overall security of the system.

2.Why would you create a user with Standard privileges?

Creating a user with Standard privileges is important for security and management purposes. Standard users have limited access to system settings and critical files, which minimizes the risk of accidental or malicious changes to the system. This is especially useful in shared environments, where users need access to their accounts and applications but should not have the ability to alter system configurations or install unauthorized software. This practice helps maintain system stability and security.