Administrator - Full access and control over the system.
Standard Users - Limited control over the system.
Service Accounts - These accounts are used by applications to perform service actions on a system.
Guest Accounts - This an account with little privileges which allows any user to log-in and use the system.
Shared Accounts - These are usually a single account that is shared between multiple users.
Complexity - The characters which are required to ensure a user creates a strong password.
History and re-use - Determines whether the user re-use and older password on the same system, password re-use is not recommended.
Length - This component specifies the minimum length a user should set their password.
Expiration - This rule causes a user password to expire after a period of time, ensuring the user frequently update their password on a system.
Account policies are a set of configuration which are used to apply access control on both user and computer accounts.
Access policies are the conditions which are used to permit or deny access.
Access policies can define the following:
Network
Time-based
IP address
Geo-location
Geo-fencing - Location-based logical boundaries.
Geo-Tagging - Attaching a location-based metadata.