Harden your file servers with Windows wizard tool

To install the Security Configuration Wizard, you must be an administrator -- either a local administrator or a domain administrator.

Begin by following these steps:

To apply the settings from the SCW:

You can proceed through the remainder of the wizard, as some of the individual settings will vary depending on the structure of your environment.

Configure security settings manually

If you aren't running Windows Server 2003 Service Pack 1, then you won't have the option to use the Security Configuration Wizard. In this case, you won't go wrong with the following settings and options enabled to further secure your file server:

<

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Microsoft Windows security tools Using System Center Essentials as a patch management tool Troubleshooting Microsoft WSUS connectivity issues Windows security tools for the busy desktop administrator Four Internet Explorer 8 group policy security settings Microsoft Stirling security console delayed for more integration Why should Windows shops use Microsoft Baseline Security Analyzer? Using Sysinternals tools in security management scenarios Sysinternals tools: A must-have for every Windows security toolbox Windows security tools roundup Top Windows client security tools for end users

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

b>Generate a security template

Again, if you don't have Service Pack 1, it's a good idea to manually create a security template so you can consistently apply the same security settings to multiple file servers that may reside within your organization. You can generate security templates and save them by putting the Security Templates add-in into any Microsoft Management Console window.

The Security Configuration Wizard has an option that exports all settings configured in or by the wizard to an .inf file. You can then roll out the settings to any number of machines across your enterprise via the SCW or some other method. This is a very convenient, automated way to achieve a unified security policy across any server, not just a file server.

About the author: Jonathan Hassell is author of Hardening Windows (Apress LP) and is a SearchWindowsSecurity.com site expert. Hassell is a systems administrator and IT consultant residing in Raleigh, N.C., who has extensive experience in networking technologies and Internet connectivity. He runs his own Web-hosting business, Enable Hosting. His previous book, RADIUS (O'Reilly & Associates), is a guide to implementing the RADIUS authentication protocol and overall network security.

Rate this Tip To rate tips, you must be a member of SearchEnterpriseDesktop.com. Register now to start rating these tips. Log in if you are already a member. Submit a Tip DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.