New features in security
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
New features in security
| New features | More information |
|---|---|
Authorization Manager. Authorization Manager gives application developers a flexible framework for integrating role-based access control into their applications, and it lets administrators who use those applications provide access in a natural, intuitive way: through assigned user roles relating to job function. |
|
Stored user names and passwords. This utility provides secure storage for user names and credentials that are needed to access network or Internet resources. |
|
Software restriction policies. This new security policy enables administrators to prevent software applications from running based on a hash algorithm of the software, the software's associated file path, the software publisher's certificate, or the Internet zone that hosts the software. |
|
Changes to existing technologies |
|
Certification authoritities. Numerous improvements and added features are included for certification authorities. |
|
Constrained delegation. With this new security feature, you can specify what services you want to trust for delegation for a server. |
|
Effective permissions tool. This tool calculates the permissions that are granted to a specified user or group. |
|
Encrypting File System (EFS) no longer requires a recovery agent. |
|
Everyone membership. The built-in Everyone group includes Authenticated Users and Guests, but no longer includes members of the Anonymous group. |
|
Operation-based auditing. Operation based auditing offers more descriptive auditing events and provides you with the opportunity to choose what operations you want to audit when auditing object accesses. |
|
Reapplying security defaults. This procedure enables you to easily reapply the default security settings for the Windows Server 2003 family. |