Ask the Expert

Intrusion prevention for Windows network security

Some users on my network brag about their "back door" abilities to hack into our relatively new system, which is based on three Windows Server 2003 servers. We have a domain controller, a file server and a terminal server. What should be my first three moves to bolster intrusion prevention and improve Windows network security?
Here is how I would approach this, from a Windows network security perspective:
  1. Enact a strong password policy. You can do this from the Local Security Policy under Administrative Tools. Make your passwords complex. While you're at this step, change the administrator password and force your users to change their passwords upon their next logon.
  2. Audit group memberships to make sure that no one has added himself (or has the ability to add himself) to powerful groups, such as domain admins.
  3. Make sure your file and terminal services machines are joined to your domain so they benefit from domain-level security.

This was first published in August 2007

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: