Using Custom Security Templates
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
Security templates are files that represent a security configuration. These files can be imported to a GPO, applied to a local computer, or used to analyze security. To edit individual security settings on a domain, site, or OU, administrators use the Group Policy Object Editor.
You can view the templates as text files or you can use the Security Templates snap-in to view the settings in each template. Security templates can be transported, imported, and exported. All of the security attributes in Table 4.1 can be contained in a security template.
Table 4.1 Security Template Attributes
| Security Attribute | Description |
|---|---|
Account Policies |
Password policy, account lockout policy, and Kerberos policy |
Local Policies |
Audit policy, user rights assignment, and other security options, including numerous security-related registry values |
Event Log |
Application, system, and security Event log settings |
Restricted Groups |
Membership of security-sensitive groups |
System Services |
Startup and permissions for system services |
Registry |
Permissions and auditing entries for registry keys |
File System |
Permissions and auditing entries for folders and files |