(Default)Ĭonfigure machine inactivity limit to protect idle interactive sessions.Ĭonfigure Microsoft Network Client to always digitally sign communications.Ĭonfigure Microsoft Network Client to digitally sign communications if server agrees. Require Ctrl+Alt+Del for interactive logins. Place the University warning banner in the Message Text for users attempting to log on.ĭisallow users from creating and logging in with Microsoft accounts. Restrict local logon access to Administrators.ĭeny guest accounts the ability to logon as a service, a batch job, locally, or via RDP.
![windows server 2008 security guide windows server 2008 security guide](https://cdn.comparitech.com/wp-content/uploads/2018/11/Ultimate-Guide-to-Windows-Server.jpg)
Restrict the ability to access this computer from the network to Administrators and Authenticated Users.ĭo not grant any users the 'act as part of the operating system' right.
Windows server 2008 security guide install#
Install the latest service packs and hotfixes from Microsoft.Įnable automatic notification of patch availability.ĭo not store passwords using reversible encryption. If machine is a new install, protect it from hostile network traffic, until the operating system is installed and hardened.Ĭonsider using the Security Configuration Wizard to assist in hardening the host. Min Std - This column links to the specific requirement for the university in the Minimum Security Standards for Systems document. All steps are recommended.Ĭat II/III - For systems that include Category-II or -III data , all steps are recommended, and some are required (denoted by the !). UT Note - The UT Note at the bottom of the page provides additional detail about the step for the university computing environment.Ĭat I - For systems that include Category-I data , required steps are denoted with the ! symbol.
Windows server 2008 security guide how to#
The CIS document outlines in much greater detail how to complete each step. To Do - Basic instructions on what to do to harden the respective systemĬIS - Reference number in the Center for Internet Security Windows Server 2012 R2 Benchmark v1.1.0. If there is a UT Note for this step, the note number corresponds to the step number.Ĭheck (√) - This is for administrators to check off when she/he completes this portion.
![windows server 2008 security guide windows server 2008 security guide](https://www.newnettechnologies.com/images/windows-2008-server-hardening.jpg)
The Information Security Office uses this checklist during risk assessments as part of the process to verify that servers are secure. Print the checklist and check off each item you complete to ensure that you cover the critical steps for securing your server. The Information Security Office has distilled the CIS lists down to the most critical steps for your systems, with a particular focus on configuration issues that are unique to the computing environment at The University of Texas at Austin.
![windows server 2008 security guide windows server 2008 security guide](https://higherlogicdownload.s3.amazonaws.com/BROADCOM/MessageImages/32c1910321054954b8f514d4dca401e6.png)
The hardening checklists are based on the comprehensive checklists produced by CIS.