Windows Server 2003 Security Services

Kerberos authentication for Windows Server 2003 is used to verify user or host identity. This page contains in-depth resources for planning and implementing Kerberos technologies.

Network Access Protection is a policy enforcement platform built into the Windows operating system that allows IT professionals to set policy (for example, operating system and antivirus update policy), which restricts clients from accessing a network until the clients can prove policy compliance.

Microsoft Public Key Infrastructure (PKI) for Windows Server 2003 provides an integrated public key infrastructure that enables you to secure and exchange information with strong security and easy administration across the Internet, extranets, intranets, and applications.

Security Configuration Wizard (SCW) allows you to quickly and easily configure Microsoft Windows servers based on your functional requirements—Web server, domain controller, or other—while simultaneously authoring security policies to minimize attack vulnerability.

A secure computing infrastructure is a strategic business asset. As a leader in the computing industry, Microsoft works to deliver more secure products and to help customers deploy and efficiently maintain those products more securely.

This article provides an overview of the benefits, new features, and improvements for Security services.

This white paper addresses security tools and processes including authentication, access control, security policy, auditing, the Active Directory directory service, data protection, network data protection, public key infrastructure (PKI), and trusts.

The Windows Server 2003 Security Guide focuses on providing easy-to-understand guidance as well as a set of tools and templates to help secure Windows Server 2003 in many environments.

This article details Microsoft technologies for managing security and software updates, provides guidance for choosing among different offerings, and discusses future releases meant to simplify the overall patch and update management process.

See how Internet Information Services 6.0 and ASP .NET contribute to the operational excellence of Windows Server 2003.

Included in this guide is detailed information about relevant security settings that can be configured on Windows Server 2003 and Windows XP. The different threats, potential countermeasures, and the potential impact of configuring these settings are all detailed here.

This document includes guides on planning, implementation, operations, and testing, as well as additional resources such as installation scripts, security templates, and monitoring scripts.

Software restriction policies provide administrators with a policy-driven mechanism for identifying software programs running on machines in a domain, and controls the ability of those programs to execute.

This white paper provides information about managing Internet Explorer Enhanced Security Configuration so that users and administrators can access trusted resources and Web sites on a corporate intranet and on the Internet.

This TechNet article describes configuration and deployment best practices for a Windows Server 2003-based PKI.

This white paper describes the default security settings for components of the Windows Server 2003 operating system. Read about the implications of these settings for developers and system administrators, and get answers to frequently asked questions.

This TechNet article describes how to configure and operate a Windows certification authority and includes operational scenarios, custom configuration information, and sample commands.

See the complete list of all technical articles you'll find on the Windows Server 2003 Web site, organized by technology.

The File Server Consolidation Toolkit (FSCT) provides several tools that simplify the migration and consolidation of file servers and minimize the impact of migration and consolidation on end users and line-of-business applications.

Enterasys Networks upgraded to Windows Server 2003, and in just three days was able to remotely deploy Windows Server 2003 to twenty Active Directory-based domain controller servers worldwide.

Attend this webcast series and learn how to become a dynamic IT organization and achieve operational effectiveness through delivering higher quality of service, email availability, and a more secure Windows environment. We'll provide a clear road map on the journey to a more secure and well managed enterprise environment. Tune in.

This webcast looks at a variety of free Microsoft tools that can help make systems more secure.

This webcast addresses management of the .NET Framework, especially management of various versions within an organization. It looks at differences between releases 1.0 and 1.1 and considers how to manage applications that use 1.0 or require 1.1. The seminar reviews the tools available to manage the Framework, covers basics and best practices for configuration files, and looks at the methods for monitoring the Framework and ASP.NET applications.

This webcast covers migration from Windows NT 4 to Windows Server 2003. Topics include: choosing the migration path, the different paths available, and the aspects of each that require certain attention. The webcast also will cover upgrading account domains and resource domains, restructuring domains, moving user and group accounts using ADMT, and the effects migration has on trust relationships, DNS, profiles, and scripts.

Get the technical guidance, tools, training, and updates you need to assist you in planning and managing a security strategy that's just right for your organization.

Get the latest hot fixes, service packs, and information on security issues by visiting this TechNet security page.

Learn how the new MCSA and MCSE security certifications validate your ability to create a secure computing environment based on the Microsoft platform.

In this paper, Ernst & Young validate the Relative Attack Surface Quotient (RASQ) model developed by Microsoft. The RASQ model provides a methodology to compute the "attackability" of Microsoft Windows Server 2003.

Microsoft Software Update Services (SUS) with Service Pack 1 (SP1) simplifies the process of keeping Windows-based systems up-to-date with the latest critical updates. SUS SP1 enables administrators to quickly and reliably deploy critical updates to their Windows Server 2000-based and Windows Server 2003-based servers as well as desktop computers running Windows 2000 Professional or Windows XP Professional.

Considering upgrading from Windows NT Server 4.0 or Windows 2000? Read about new features in Windows Server 2003 that can benefit your enterprise.

Microsoft Forefront Client Security running on Windows Server 2003 wholly satisfied Desktop/Server AV Detection Testing of the ICSA Labs Anti-Virus Corporate Certification Testing Criteria. Learn more and download free trial software.