Re: WK2 AD Security

From: Steven L Umbach (sumbach_at_N0spam.ameritech.net)
Date: 04/16/04


Date: Fri, 16 Apr 2004 09:00:22 -0500

What exactly are you trying to secure as that is a huge topic? Security
templates are comptuer configuration and apply to the compatible computers
and everyone who logs onto them. For a domain, it is easiest and best to
make changes to security and Group Policy at the domain or Organizational
Unit level. Password/account policy can only be applied at the domain policy
level and will apply equally to all domain users. Be careful with changing
security options as you can lock out computers [especially "downlevel"
clients] with incompatbile settings and it is best to try a few test
computers or better yet isolated test domain if possible. The link below may
help. --- Steve

http://www.microsoft.com/technet/Security/prodtech/win2000/win2khg/05sconfg.mspx

"wetbehindears" <anonymous@discussions.microsoft.com> wrote in message
news:FC705F23-A4CD-4901-AF76-29D8873872DA@microsoft.com...
> Hi all,
>
> We have a W2K network and need to implement better security on the
workstations. What would be the best bet? Do I use AD and import a sec
template (make the necessary adjustments) and apply it at the domain level
for all users?
>
> thanks in advance!
>



Relevant Pages

  • Risks Digest 28.38
    ... ACM FORUM ON RISKS TO THE PUBLIC IN COMPUTERS AND RELATED SYSTEMS ... "How to lose customers with excessive security" ... And the two cables come together at nearby ... Subject: Mobile malware: One in six smartphone users victim of cyber attack ...
    (comp.risks)
  • Re: Basic Security Help
    ... > a network is weak or no passwords followed by malicious user on your ... Be sure to educate users of any pending changes to password policy ... > Windows Updates or using a SUS server to authorize and distribute security ... > network including how to isolate and repair infected computers. ...
    (microsoft.public.security)
  • RE: [Full-Disclosure] Insecurity in Finnish parlament (computers)
    ... > It is unlikely that all the computers have the same security ... > (both in TeliaSonera and in our parlament). ... Red herring. ...
    (Full-Disclosure)
  • Re: Preventing users from c onnecting to shares NOT on the domain..
    ... First condition would be to set "Require Security" policy to "Restricted ... These computers could be excluded by IP address, ... > The servers might be located on the same subnet of some of the clients. ...
    (microsoft.public.win2000.networking)
  • Re: Preventing users from c onnecting to shares NOT on the domain..
    ... First condition would be to set "Require Security" policy to "Restricted ... These computers could be excluded by IP address, ... > The servers might be located on the same subnet of some of the clients. ...
    (microsoft.public.win2000.security)