Published: December 31, 2003 | Updated: February 18, 2009
Download This Solution Accelerator
Launch the download of the Windows Server 2003 Security Compliance Management Toolkit or get the entire toolkit series from the Microsoft Download Center.
About This Solution Accelerator
The Windows Server 2003 Security Compliance Management Toolkit provides you with you with an end-to-end solution to help you plan, deploy, and monitor the security baselines of servers running Windows Server® 2003 Service Pack 2 (SP2) in your environment.
.jpg)
This Solution Accelerator includes the Windows Server 2003 Security Guide and the GPOAccelerator tool to provide you with prescriptive information and automated tools to establish and deploy your security baseline. This toolkit also provides you with 6 DCM Packs to use with the desired configuration management (DCM) feature in Microsoft® System Center Configuration Manager 2007 SP1. Use this functionality to help you monitor the implementation of your security baseline for Windows Server 2003 SP2.
The Windows Server 2003 Security Compliance Management Toolkit is part of the Security Compliance Management Toolkit series.
The Windows Server 2003 Security Guide offers a choice of preconfigured security baselines for the following two different environments:
- Enterprise Client. This security baseline is best for most organizations in which functionality is evenly balanced with security.
- Specialized Security – Limited Functionality. This security baseline is best for organizations in which concern for security is so great that a significant loss of functionality is acceptable. For example, military and security agency organizations operate in this type of environment.
Included in the Download
The Windows Server 2003 Security Compliance Management Toolkit includes the following components:
- Security guide – The updated security guide for Windows Server 2003. The guidance provides you with best practices and information about automated tools to help you plan and deploy your security baseline.
- Attack Surface Reference workbook – A resource that lists the changes introduced as server roles are installed on computers running Windows Server 2003.
- Security Baseline Settings workbook – A resource that lists the prescribed settings for each of the preconfigured security baselines that the guide recommends.
- Security Baseline XML – An XML file that allows customers to consume the data defined in the Security Baseline Settings workbook.
- GPOAccelerator tool – A tool that you can use to create all the Group Policy objects (GPOs) you need to deploy your chosen security configuration.
- INF Files – INF files for Windows Server 2003.
- Baseline Compliance Management Overview – An overview that includes best practices about how to monitor security baselines for computers running Windows Server 2003.
- DCM Configuration Pack User Guide – A step-by-step prescriptive user guide about how to use the Configurations Packs in Configuration Manager 2007 SP1.
- DCM Configuration Packs – The toolkit includes 6 DCM Configuration Packs for you to use with the DCM feature in Configuration Manager 2007 SP1.
In More Detail
The Windows Server 2003 Security Guide includes the following content:
Overview
Executive Summary
Who Should Read This Guide
Scope of This Guide
Chapter Summaries
Skills and Readiness
Chapter 1: Windows Server 2003 Hardening Mechanisms
Hardening with the Security Configuration Wizard
Hardening Servers with Active Directory Group Policy
Process Overview
Chapter 2: Implementing the Domain Policy
Domain Policy
Account Policies
Password Policy
Account Lockout Policy
Kerberos Policies
System Services
Chapter 3: Implementing the Security Baseline
Audit Policy
User Right Assignments
Security Options
Event Log
Restricted Groups
Securing the File System
Additional Security Settings
Chapter 4: Hardening Domain Controllers
Restricted Groups
Additional Security Settings
Chapter 5: Hardening Infrastructure Servers
Additional Security Settings
Chapter 6: Hardening File Services
Additional Security Settings
Chapter 7: Hardening Print Services
Additional Security Settings
Chapter 8: Hardening Web Services
Anonymous Access and the SSLF Settings
Additional Security Settings
Chapter 9: Hardening Internet Authentication Services
Additional Security Settings
Chapter 10: Hardening Certificate Services
Additional Security Settings
Chapter 11: Hardening Bastion Hosts
Additional Security Settings
Other New Solution Accelerators
- Hyper-V Security Guide
The Hyper-V Security Guide provides IT professionals like you with guidance, instructions, and recommendations to address your key security concerns about server virtualization. The guide includes the following chapters: Hardening Hyper-V, Delegating Virtual Machine Management, and Protecting Virtual Machines.
Related Resources
The following resources provide additional information about security topics and in-depth discussion of the concepts and security prescriptions in this guide:
Community and Feedback
- Want to know what’s coming up next? Check out our Security Guidance Blog.
- E-mail your feedback to the following address: SecWish@microsoft.com.
- If you’ve used a Solution Accelerator within your organization, please share your experience with us by completing this short survey (less than 10 minutes long).
About Solution Accelerators
Solution Accelerators are authoritative resources that help IT professionals plan, deliver, operate, and manage IT systems that address real-world scenarios. Solution Accelerators provide free prescriptive guidance and automation to accelerate cross-product integration, core infrastructure development, and other enhancements.
Register to receive the Solution Accelerator Notifications newsletter so that you can stay informed about new Solution Accelerator releases and updates. The newsletter covers such areas of interest as
- Communication & Collaboration
- Security, Data Protection, & Recovery
- Deployment
- Operations & Management
Download This Accelerator
Get the Windows Server 2003 Security Compliance Management Toolkit now.