|
Posted by Steven L Umbach on November 16, 2005, 8:29 am
Please log in for more thread options
I don't know of an easy way to do that or if there are any third party tools
but one thing you can try is to start with one of the less restrictive
security templates from the security guide and use Security Configuration
and Analysis mmc snapin to analyze it against your baseline server. Then you
can manually make changes to the settings that are not the same on your
baseline server and export the settings to a security template. You can
export most the other settings for user rights, security options, etc to a
security template and you can copy and paste some security template
categories using the mmc snapin for Security Templates which also allows you
to copy and create new security templates. For instance right click local
policies and you will see the option to copy/paste. --- Steve
>I am about to start with server hardening in a large enviroment.
> Before i start applying templates from Security guides ill like to make my
> self a baseline.
> A lot of the settings in the templates is "irreversible", like ntfs
> rights,
> security on services and sec om registry.
> Il like to export all the settings on a server to a New Sec template. This
> will be my rollback...
> Does anyone now how to make a sec template from an export of corrent
> settings?
> --
> \\\
> No warranty :-)
>
> \\\\\
| 
XML Sitemap