Advertisement
Promo

Enterprise applications Toolkit

Microsoft offers server security guide

Published: 28 Apr 2003 11:22 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Microsoft released on Friday a tutorial and templates to help system administrators lock down the security of computers running the company's newest operating system, Windows Server 2003.

The tutorial consists of portable document files (PDFs) detailing the reasoning behind configuring the server software for various applications, from a Web server connected to the Internet to a domain controller on a company's internal network. Also included are examples of Microsoft-recommended configurations for specific applications.

"There are a lot of different settings that a customer can set on something like a Web server," said Michael Stephenson, lead program manager for Windows Server 2003. "What the guide does is explain to customers why they would want a setting a certain way."

The publication of the security how-to guide came a day after the launch of the next generation of Microsoft's server OS. Among other things, the guide contains explanations, checklists, sample configurations and scripts for setting up eight different classes of servers using Windows Server 2003.

Along with the Windows Server 2003 guide, the software giant released another set of documents, called "Threats and Countermeasures", which describes the various security options that can be set in Windows 2003 and XP.

The guides are Microsoft's latest tactic in the battle to help better secure customers who install its software, as part of the Trustworthy Computing Initiative, the giant's 15-month-old strategy to increase customers' faith in its products.

That's why Microsoft has decided to make a large body of best-practice documents available for Windows users, Stephenson said.

"As part of Trustworthy Computing, we need to make it easier to be secure in a certain environment, and that's not something that we want to charge for," Stephenson said.

The software giant has occasionally released such tools to help administrators identify vulnerabilities and harden the company's operating systems. The guides build on another set of similar documents released in mid-March for Windows 2000.

In February 2002, Microsoft released the Baseline Security Advisor, a free application designed to let system owners scan their computers for Microsoft applications that were missing patches.

In two weeks, the company plans to put the Windows Server 2003 guide's lessons into a Web tutorial format, to make learning the document's content easier. Microsoft also plans to release a new tool this summer to automate the configuration of Windows Server 2003 systems, Stephenson said.

"This plays well to what we are doing in the future...automating security and configurations," Stephenson said.

For all security-related news, including updates on the latest viruses, hacking exploits and patches, check out ZDNet UK's Security News Section.

Let the editors know what you think in the Mailroom.

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Did you find this article useful?
58 out of 100 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Enterprise applications


Company/Topic Alerts

Create a new alert from the list below:













Related Jobs

IT Technical Writer I

Staff Nurse

Senior Staff Nurse Critical Care Unit

Video icon

Video

Microsoft Futures Special Report

Ozzie: Success of Azure comes down to trust

Ozzie: Success of Azure comes down to trust

News In an interview, Ray Ozzie says businesses will be taking a risk by placing core operations in Microsoft's datacentre, but that the software giant has more to lose if things go bad

News Microsoft PDC: What to expect

News Microsoft unveils 'Azure' cloud OS

More Special Reports


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters