|
Posted by Steven L Umbach on August 10, 2005, 9:36 pm
If you were Registered and logged in, you could reply and use other advanced thread options
If you apply the template then you do not have to apply the settings
manually. While templates are a good start they usually are not a complete
solution for all situations. What I would recommend is that you use secedit
to create a "rollback" template before you apply a security template and
refer to the Windows 2003 Server Security Guide for specific definitions and
recommendations on settings in security policy such as for security options
and user rights. That guide is available at the link below and the second
link may also be helpful on possible incompatibilities that can result from
security settings. The securews.inf template does not usually cause
problems. What I would suggest is that you use the mmc snapin for Security
Templates so that you can review exactly what changes are implemented by a
security template. For a stand alone server pay particular attention to lan
manager authentication level to make sure it is compatible with your needs
for that server to act as both a server and client. --- Steve
http://www.microsoft.com/technet/security/prodtech/windowsserver2003/W2003HG/SGCH00.mspx
http://support.microsoft.com/default.aspx?scid=kb;en-us;823659
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/gp/576.asp
-- lan manager authentication levels
>I have a stand-alone windows 2003 server. As a starting point, would you
> recommend using the securews.inf template for locking down a stand-alone
> server. I would like to run the analysis and configuration tool. I know I
> have to apply the settings manually.
| 
XML site map