• Embed Doc
  • Copy Link
  • Readcast
  • Collections
  • CommentGo Back
Download
 
Microsoft Solutions for Security andComplianceWindows Server 2003 Security Guide
© 2006 Microsoft Corporation. This work is licensed under the Creative Commons Attribution-Non CommercialLicense. To view a copy of this license, visit http://creativecommons.org/licenses/by-nc/2.5/ or send a letter toCreative Commons, 543 Howard Street, 5th Floor, San Francisco, California, 94105, USA.
 
Table of Contentsii
Contents
Feedback ...................................................................................... xvi 
Chapter 1: Introduction to the Windows Server 2003 Security Guide...1
Overview ......................................................................................... 1Executive Summary .......................................................................... 1Who Should Read This Guide .............................................................. 2Scope of this Guide ........................................................................... 2Chapter Summaries .......................................................................... 3Chapter 1: Introduction to the Windows Server 2003 Security Guide .. 4Chapter 2: Windows Server 2003 Hardening Mechanisms ................. 4Chapter 3: The Domain Policy ....................................................... 4Chapter 4: The Member Server Baseline Policy ................................ 4Chapter 5: The Domain Controller Baseline Policy ............................ 5Chapter 6: The Infrastructure Server Role ......................................5Chapter 7: The File Server Role .....................................................5Chapter 8: The Print Server Role ...................................................5Chapter 9: The Web Server Role .................................................... 5Chapter 10: The IAS Server Role ................................................... 6Chapter 11: The Certificate Services Server Role ............................. 6Chapter 12: The Bastion Hosts Role ............................................... 6Chapter 13: Conclusion ................................................................ 6Appendix A: Security Tools and Formats ......................................... 7Appendix B: Key Settings to Consider ............................................7Appendix C: Security Template Setting Summary ............................. 7Appendix D: Testing the Windows Server 2003 Security Guide ...........7Tools and Templates ....................................................................7Skills and Readiness ..........................................................................8Software Requirements .....................................................................8Style Conventions .............................................................................8Summary ........................................................................................ 9More Information ........................................................................ 9
Chapter 2: Windows Server 2003 Hardening Mechanisms..................10
Overview ....................................................................................... 10Hardening with the Security Configuration Wizard ................................ 10Creating and Testing Policies ....................................................... 11Deploying Policies ...................................................................... 12
 
Template User Instructionsiii
Apply the Policy with the SCW GUI ......................................... 12Apply the Policy with the Scwcmd Command-line Tool............... 12Convert the SCW Policy to a Group Policy Object ...................... 12Hardening Servers with Active Directory Group Policy ........................... 13Active Directory Boundaries ........................................................ 13Security Boundaries ............................................................. 13Administrative Boundaries ..................................................... 14Active Directory and Group Policy ................................................ 16Delegating Administration and Applying Group Policy ................ 16Administrative Groups .......................................................... 16Group Policy Application ........................................................ 17Time Configuration ............................................................... 18Security Template Management ............................................. 19Successful GPO Application Events ......................................... 20Sever Role Organizational Units ............................................. 20OU, GPO, and Group Design ........................................................ 24Process Overview ............................................................................ 24Create the Active Directory Environment ....................................... 25Configure Time Synchronization ................................................... 25Configure the Domain Policy ....................................................... 26Create the Baseline Policies Manually Using SCW ........................... 27Test the Baseline Policies Using SCW ............................................ 29Convert the Baseline Policies to GPOs ........................................... 29Create the Role Policies Using SCW .............................................. 30Test the Role Policies Using SCW .................................................. 30Convert the Role Policies to GPOs ................................................ 31Summary ...................................................................................... 31More Information ...................................................................... 32
Chapter 3: The Domain Policy.............................................................33
Overview ....................................................................................... 33Domain Policy ................................................................................ 33Domain Policy Overview ............................................................. 34Account Policies .............................................................................. 34Password Policy .............................................................................. 34Password Policy Settings ............................................................ 35Enforce password history ...................................................... 36Maximum password age ........................................................ 36Minimum password age ........................................................ 37
of 00

Leave a Comment

You must be to leave a comment.
Submit
Characters: ...
You must be to leave a comment.
Submit
Characters: ...