How do you use system pruning fom AD? Scheduled "oldcmp.exe", or...?
David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 -----Original Message----- From: Steven Peck [mailto:[EMAIL PROTECTED] Sent: Sunday, October 05, 2008 11:58 AM To: NT System Admin Issues Subject: Re: securing windows 2003 servers... Insufficient information. Microsoft has loads of documents on securing windows servers and they all have a basis in what are your needs vs how secure your desire is. Have you done the basics? What is your environment? 5 or 500 servers? How much money/administrative effort are you willing to spend/dedicate? Do you have confidential information? Secure in today's buzzword filled world means all to many things. basic windows administrative practices and patch management and log review to full out security review, data retention, backups, registry templates ..... We do a variety of things Access control (global into local, local on the resource) Test environment patching Production environment patching Log review Test restores and off-site DR sessions McAfee EPo and log reviews System pruning from AD to dead systems beyond a certain date System pruning from AD to dead accounts beyond a certain date etc etc Steven Peck http://www.blkmtn.org On Sat, Oct 4, 2008 at 7:53 PM, Chyka, Robert <[EMAIL PROTECTED]> wrote: > Hello everyone, > > > > What does everyone do to secure windows servers, both controllers and member > boxes. Currently we run MBSA and Eeye Retina scans against our boxes but we > don't configure the windows firewall on them or the security configuration. > Am I doing enough? We run scans once a month on our servers and keep up to > date on patches. > > > > Thanks..Bob > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
