Re: hisecweb.inf

From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 03/06/05

Next message: anonymous_at_discussions.microsoft.com: "Re: LSASS.EXE Outbound on Port 53?"
Previous message: Steven L Umbach: "Re: Audit failures from explorer.exe"
In reply to: Mary S: "hisecweb.inf"
Next in thread: Mary S: "Re: hisecweb.inf"
Reply: Mary S: "Re: hisecweb.inf"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 6 Mar 2005 12:09:05 -0600

The easiest way is to import the security template into the Local Security
Policy or possibly at the Organizational Unit level that contains servers
you want to apply it to via a Group Policy assuming you want to implement
the security template as it is. If it includes settings for services,
Restricted Groups, file system, or registry you can not simply import it
into the Local Security Policy but you could use secedit or the Security
Configuration and Analysis tool to apply it. I suggest that you first use
the Security Configuration and Analysis tool which is a mmc snapin to
analyze the computer with that template to see exactly what changes it will
implement before you do apply the template and that you make a full image
type backup of your server first so that you have a rollback plan as these
high security templates often have unintended consequences particularly if
the server is also running other applications or services that would not
normally be found on a dedicated web server. See the link below on using
the Security Configuration and Analysis tool. There is a lot of information
for secedit in the Windows built in help or using secedit /?. --- Steve

http://www.lokbox.net/SecureXP/secAnalysis.asp

"Mary S" <nomail@forme.com> wrote in message
news:4sgl219hjoe5aqvrid3ht82jlm16ik81ud@4ax.com...
> Hi
>
> hope this is the right ng
>
> I'm trying to implement the abv policy. But where to I change
> the settings for event logs. Is this done in the registry?
>
> thanks in advance
>
> mary s

Next message: anonymous_at_discussions.microsoft.com: "Re: LSASS.EXE Outbound on Port 53?"
Previous message: Steven L Umbach: "Re: Audit failures from explorer.exe"
In reply to: Mary S: "hisecweb.inf"
Next in thread: Mary S: "Re: hisecweb.inf"
Reply: Mary S: "Re: hisecweb.inf"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Cant set Local Security policies. They fail to save
... predefined Security Template on SBS 2003 to restore security groups ... run "gpupdate.exe /force" under command prompt to force the policy ... reboot the Server to test. ... and then logon to client computer to test if user can save system logs. ...
(microsoft.public.windows.server.sbs)
Re: Security Logon/Logoff Events
... the full security audit is enabled by default so that you are ... Right-click Small Business Server Auditing Policy and click Edit. ... SBS 2003 creates a GPO on the DC container named Small Business Server ...
(microsoft.public.windows.server.sbs)
Re: Group Policy is now inhibiting the Administrator account
... under Group Policy Objects - those are the individual GPOs. ... You can apply any given GPO to one or more OUs, ... I use all of the default security in SBS, ... log on to the server with your own account. ...
(microsoft.public.windows.server.sbs)
RE: SBS 2003 Lost all the Security Policies.
... Policy or Domain Security Policy it is empty. ... Also your Exchange server is ... Exchange problem in our newsgroup. ...
(microsoft.public.windows.server.sbs)
Re: Routing and Remote Access
... First thing I would try is to logon to the server as local administrator ... If it still does not work, it could be a Local Group Policy ... far as security policy if you are having problem accessing a Remote Access ... Configuration and Analysis mmc snapin on the Remote Access Server and run it ...
(microsoft.public.windows.server.security)