Checklist: Securing computers using Security Configuration Manager

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Checklist: Securing computers using Security Configuration Manager

Preparing to set up security  

Step

Reference

Review security best practices.

Best practices for security

Review the descriptions of individual settings.

Security Setting Descriptions

Review default security settings.

Default security settings for groups, Default groups and Differences in default security settings

Have Users only use applications belonging to the Windows Logo Program for Software.

Applications that belong to the Windows Logo Program for Software are guaranteed to run for members of the Users group. For other applications to run, you might need to elevate the privileges of your users to Power Users or relax the User permissions security settings. Both are less secure configurations for your organization. For more information, see the Windows Logo Program for Software page at the Microsoft Web site.

Analyze your current settings

 

Step

Reference

Review Security Templates.

Security Templates

Select a predefined security template or create a new security template to use for your computers.

Predefined security templates or Define a security template

Perform a security analysis on the computer.

Analyze system security

Modify security settings

 

Step

Reference

Apply the appropriate template.

Apply a security template to local policy or Import a security template to a Group Policy object

(Optional) Modify security settings on your local computer

Edit local security settings

(Optional) Modify security settings for a domain or organizational unit.

Edit security settings on a Group Policy object