Published: December 31, 2003   |   Updated: January 4, 2010

 

Download This Solution Accelerator

This Solution Accelerator is part of the Security Compliance Management Toolkit Series. Launch the download of the Security Compliance Management Toolkit Series.

View the Security Compliance Management Toolkit Series in its entirety from Microsoft.

About this Solution Accelerator

The Windows Server 2003 Security Compliance Management Toolkit provides you with an end-to-end solution to help you plan, deploy, and monitor the security baselines of servers running Windows Server® 2003 Service Pack 2 (SP2) in your environment.

This Solution Accelerator includes the Windows Server 2003 Security Guide and the GPOAccelerator tool to provide you with prescriptive information and automated tools to establish and deploy your security baseline. This toolkit also provides you with 6 Configuration Packs to use with the desired configuration management (DCM) feature in Microsoft® System Center Configuration Manager 2007 SP1. Use these components to help you monitor the implementation of your security baseline for Windows Server 2003 SP2.

The Windows Server 2003 Security Compliance Management Toolkit is part of the Security Compliance Management Toolkit Series.

Included in the Download

Each of the Security Compliance Management Toolkits includes the following components:

• Security Guide –Each toolkit includes an updated version of a previously released security guide for Windows 7, Windows Vista, Windows XP, Windows Server 2008, Windows Server 2003, Internet Explorer 8, or 2007 Microsoft Office. The guidance provides you with best practices and automated tools to help you plan and deploy your security baseline.
• Security Baseline Settings workbook – A resource that lists the prescribed settings for each of the preconfigured security baselines that the security guides recommend.
• Security Baseline XML –XML files that allow your organization to consume the data defined in the Security Baseline Settings workbook.
• GPOAccelerator tool – A tool that you can use to create all the Group Policy objects (GPOs) you need to deploy your chosen security configuration.
• INF Files – INF files for Windows 7 and BitLocker, Windows Vista, Windows XP, Windows Server 2008, and Windows Server 2003.
• Baseline Compliance Management Overview – The overview discusses best practices on how to monitor security baselines for Windows operating systems, Internet Explorer, and Office applications.
• DCM Configuration Pack User Guide – A step-by-step prescriptive user guide about how to use the configurations packs in Configuration Manager 2007 R2.
• DCM Configuration Packs – The toolkit includes DCM Configuration Packs for you to use with the DCM feature in Configuration Manager 2007 R2.

In More Detail

The Windows Server 2003 Security Guide includes the following content:

Overview

Executive Summary

Who Should Read This Guide

Scope of This Guide

Chapter Summaries

Skills and Readiness

Chapter 1: Windows Server 2003 Hardening Mechanisms

Hardening with the Security Configuration Wizard

Hardening Servers with Active Directory Group Policy

Process Overview

Chapter 2: Implementing the Domain Policy

Domain Policy

Account Policies

Password Policy

Account Lockout Policy

Kerberos Policies

System Services

Chapter 3: Implementing the Security Baseline

Audit Policy

User Right Assignments

Security Options

Event Log

Restricted Groups

Securing the File System

Additional Security Settings

Chapter 4: Hardening Domain Controllers

Restricted Groups

Additional Security Settings

Chapter 5: Hardening Infrastructure Servers

Additional Security Settings

Chapter 6: Hardening File Services

Additional Security Settings

Chapter 7: Hardening Print Services

Additional Security Settings

Chapter 8: Hardening Web Services

Anonymous Access and the SSLF Settings

Additional Security Settings

Chapter 9: Hardening Internet Authentication Services

Additional Security Settings

Chapter 10: Hardening Certificate Services

Additional Security Settings

Chapter 11: Hardening Bastion Hosts

Additional Security Settings

Related Resources

The following resources provide additional information about security topics and in-depth discussion of the concepts and security prescriptions in this guide:

• Security Solution Accelerators
• TechNet Labcast On-Demand: SCM Toolkit: Configure the DCM feature
• TechNet Labcast On-Demand: SCM Toolkit: Reporting
• Hyper-V Security Guide
• IT Infrastructure Threat Modeling Guide
• System Center Configuration Manager Extensions for SCAP

Community and Feedback

• Want to know what’s coming up next? Check out our Security Guidance Blog.
• E-mail the Solution Accelerators security team with your feedback: SecWish@microsoft.com.
• If you’ve used a Solution Accelerator in your organization, please share your experience with us by completing this short survey.

About Solution Accelerators

Solution Accelerators are authoritative resources that help IT professionals plan, deliver, operate, and manage IT systems that address real-world scenarios. Solution Accelerators provide free, prescriptive guidance and automation to accelerate cross-product integration, core infrastructure development, and other enhancements.

Sign up to receive the Solution Accelerator Notifications newsletter so that you can stay informed about new Solution Accelerator releases and updates. The newsletter covers such areas of interest as:

• Communication and collaboration
• Security, data protection, and recovery
• Deployment
• Operations and management

Download This Accelerator

Launch the download of the Security Compliance Management Toolkit Series.