Lab #1: Develop System Administration Procedures for Windows 8.1 SecurityConfigurationPurpose: Developsystems administration procedures to implement systems security configuration guidanceand best practices. Objectives1.  Developa Windows system restore pointsystems administration procedure to implement an industry recognized bestpractice for maintaining system integrity and availability.2.  Developa Windows system administration procedure to manage programs and features.3.  Developa systems administration procedure toimplement configuration rules from systemssecurity technical guidanceissued by a vendor or government organization.OverviewIn this lab, our focus is upon developing a set ofprocedures which can be incorporated into an organization’s securityimplementation guidance and documentation. For each procedure, you willdevelop, test, and document the steps required to implement the selected bestpractices and security configuration guidance (as provided in the labinstructions and notes).Yourdeliverables for this lab will become part of the final project for this course(System Administration Manual).Deliverables(a)  Step-by-StepSystem Administration Procedure for Creating,Using, Removing System Restore Points for Windows 8.1(b)  Step-by-StepSystem Administration Procedure for ManagingWindows 8.1 Programs and Features  (c)  Step-by-StepSystem Administration Procedure for ImplementingSecurity Configuration Rules for Windows 8.1  Submit your deliverables in a SINGLE FILE in MS Wordformat (.docx or .doc file types) using the corresponding assignment folderentry (in LEO). (Use the Deliverable Template file from Course Resources >Sample Files > CSIA 310 Lab Deliverable Template.docx.) Every deliverablemust use the format shown below. (Replace [Section Name] with the heading forthe section, e.g. Creating a System Restore Point).Title:Operating Environment:1. Hardware2. SoftwareDescription:Notes, Warnings, & Restrictions:Resources (Further Reading):1. 2. 3. Procedures:[SectionName]BriefIntroduction Paragraph1. 2. 3. [SectionName]BriefIntroduction Paragraph1. 2. 3. InstructionsPart (a): Implementing System Restore Points1.  Investigatethe System Restore tool (used tomanage system restore points). To access the tool, open the System tool from Control Panel (ControlPanel > System and Security > System). Then, click on System Protection(left menu).2.  Identifyappropriate sources of information (e.g. Windows Help, Microsoft Technet, etc.)for instructions for using the Windows 8.1 System Restore Point capability.Using those sources, research the procedures required to perform the following tasks:a.  Createa system restore point for a Windows 8.1 systemb.  Usea system restore point to roll-back changes made to a Windows 8.1 systemc.  Removesystem restore points from a Windows 8.1 system (some and all)3.  Developa systems administration procedure which can be used to perform tasks relatedto item #1 (management and use of system restore points).4.  Testyour draft procedures using the virtual machine provided in the online labenvironment (UMUC’s VDA) or using a locally installed Virtual Machine (VM) runningMicrosoft Windows 8.1 Professional. As you run your tests, collect screensnapshots to illustrate key steps in your procedures. Insert these snapshots atthe appropriate points in your procedure.Part (b): Managing Programs and Features for Windows 8.11.  Investigatethe Programs and Features tool (usedto manage installed programs and optional features / capabilities). To accessthe tool, open Programs and Featuresfrom the Windows Control Panel.  2.  Identifyappropriate sources of information (e.g. Windows Help, Microsoft Technet, etc.)for instructions for using the Programsand Features tool. Using those sources, research the procedures required toperform the following tasks:a.  TurnWindows Features On or Offb.  Modify,Repair, or Uninstall a program from a Windows 8.1 systemc.  Selectand Install Updates for Windows and Windows Applications, Find an installedUpdate, Remove an installed update3.  Developa systems administration procedure which can be used to perform tasks relatedto item #2. Provide examples for each of the required tasks. (Select a specificfeature, program, or update and use that as an example in your procedure.)4.  Testyour draft procedures using the virtual machine provided in the online labenvironment (UMUC’s VDA) or using a locally installed Virtual Machine (VM)running Microsoft Windows 8.1 Professional. As you run your tests, collectscreen snapshots to illustrate key steps in your procedures. Part (c): Implementing Security Configuration Rules Using the Local GroupPolicy EditorNote: you are NOTimplementing the DISA / DoD STIG in this section. You are implementing a set ofsecurity configuration rules that your “company” has selected from industry accepted sources.1.  Investigatethe Local Group Policy Editor tool(Windows Key + R then type gpedit.msc). Pay particular attention to the menutree in the left hand pane (expand and review the categories of settings whichcan be changed using this tool). 2.  Researchthe security configuration rules listed in Table 1. These rules were developedfrom the Department of Defense SecurityTechnical Implementation Guidance for Windows 8.1.  3.  Grouprelated security configuration rules and then develop a step by step procedure foreach category of rules. See the “SuggestedProcedure Group” column in Table 1 for suggested categories. Your groupingsshould allow for inclusion of additional, related rules at a later date. (Forexample, there are two “energy saving” rules in the table; an organization maywish to add additional rules to this category at some point in the future.)4.  Foreach category of rules, develop step-by-step written procedures for systemsadministrators. Your written procedures must implement the “remediation”guidance as listed in Table 1[i].5.  Testyour draft procedures using the virtual machine provided in the online labenvironment (UMUC’s VDA) or using a locally installed Virtual Machine (VM)running Microsoft Windows 8.1 Professional. As you run your tests, collectscreen snapshots to illustrate key steps in your procedures.6.  Incorporateyour screen snapshots for key steps into the draft procedures. Each snapshotshould be placed UNDER (after) the step to which it applies. Captions are notrequired.7.  Makeany additional changes required to address issues found during testing of thestep-by-step procedures.Finalize Your Deliverable1.  Usingthe grading rubric as a guide, refine your step-by-step procedures. Your finalproducts should be suitable for inclusion in an organization’s Systems Administrator’s Handbook.Remember that you are preparing multiple system administration procedures whichmust be presented separately.2.  Asappropriate, cite your sources using footnotes or another appropriate citationstyle. 3.  Usethe resources section to provideinformation about recommended readings and any sources that you cite. Use astandard bibliographic format (you may wish to use APA since this is requiredin other CSIA courses). Information aboutsources and recommended readings, including in-text citations, should beformatted consistently and professionally.4.  Ata minimum, each systems administration procedure document must include thefollowing sections:  a.  Titleb.  OperatingEnvironmentc.  Descriptiond.  Notes,Warnings, & Restrictionse.  Resources(format as Bibliography or Reference list)f. Procedures5.  Eachprocedure document should be placed in the listed order in a SINGLE FILE (seedeliverables list above). Each file should start with a title page which liststhe following information:· Lab Title and Number· Procedure Name· Date· Your Name6.  TheCSIA 310 Template for LabDeliverable.docx file is set up to provide the required title page and threelab procedure templates.  Additional Requirements for this Lab1. Given the large number of security configurationrules which must be implemented, you must group the rules into categories orsub-sections within your step-by-step procedures.2. Your step-by-step procedures should tell thereader where to find and how to launch the systems administration tools used tochange security configuration settings for the Windows 8.1 operating system. 3. It is not necessary to specify every step that asystem administrator must take to implement the security rules. But, you mustaddress each security configuration rule separately and include enough detailthat your reader will understand how to perform the required steps to implementthe security configuration changes. 4. Use screen snapshots to cue the reader toimportant steps or provide information required to complete check points forproper completion of a step or set of steps (e.g. including a snapshot whichshows the “after” state for a group of security settings).5. Make sure that your snapshots will enhance thereader’s understanding of the procedure and required configuration changes. Toomany snapshots or illustrations can make a procedure difficult to use.6. All snapshots must be created by you for thislab using screen captures showing how you personally performed (tested) thesystems administration procedure as written by you. You may not copy and pasteimages from help pages, manuals, or the Internet. 7. Images (screen snapshots) should be cropped andsized appropriately. 8. A screen snapshot belonging to a specificprocedure step does not require a caption.9. Your procedures must be submitted to Turn It Infor originality checking. You are encouraged to consult existing configurationinstructions, guidance, and procedures for both content and format. Your workmust be substantially your own, however, which means you should paraphrasewhenever possible. Credit the sources of information used via footnotes and inyour “Resources” section. 10. Make sure that the sources you cite or recommend(additional reading) areauthoritative and are the best ones available.11. Your Operating Environment section shouldidentify the hardware, operating system, and/or software applications to whichthe procedure applies. For this lab, your procedures will apply to:a. Hardware: Laptop or Desktop Computersb. Operating System: Windows 8.1 ProfessionalYour Notes, Warnings & Restrictions sectionshould include important information that is not found elsewhere in theprocedures document. For example, this section could include information about alternativesto the selected security configuration settings. Or, this section could includeinformation about related security procedures or policies. If this procedureimplements controls relevant to an external security requirement, e.g. theHIPAA Security Rule, then that information should be included in the notessection. Consult the Windows 8.1 STIGto see what types of information you may need to include in your document. Thissection should also include important information about harm or risk that couldoccur if the procedure is not correctly followed or implemented. If there areno such warnings then this section should so[i]Table 1 was adapted from the Department of Defense Security Technical Implementation Guidance (STIG) for Windows 8/8.1.Available from: http://iasecontent.disa.mil/stigs/zip/Apr2015/U_Windows_8_and_8-1_V1R9_STIG.zip