On Mon, Mar 21, 2011 at 5:19 PM, Sam Cayze <[email protected]> wrote: > I’d first look into this: > > Apply High-Security Template (hisecws) > http://www.tech-faq.com/understanding-security-templates.html > > And pick/test a security template that doesn’t break anything in your > environment.
That document seems to stop at Windows XP/2003. Things have changed somewhat since then. Vista (and I ass-ume Win 7) basically have two choices for security templates: "Enterprise Client" (EC) and "Special Security / Limited Functionality" (SSLF). SSLF will break many things. Personally, I don't think anything SSLF does is really all that radical, but apparently Microsoft and their ISVs disagree. So you really only have one choice (or you adopt a great many integration headaches). Also, the security guides and templates were, last I looked (mid-2009), rolled into something called the "Compliance Management Toolkit". The templates were further buried in something called a "GPO Accelerator". Then again, it's prolly changed names at least twice since then. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
