Security/Permissions Best Practices

[Ronald Nissley]

I'm trying to find a whitepaper or some info from
Microsoft on Best Practices or Standard Business Practice
regarding security permissions. What I'm looking for is
some standard business guidelines for security in general
and specifically permissions. What permissions should a
user have on the domain? Of course, the easy answer is
that it depends on their duties. What permissions should a
user have on "their" workstation/portable system? I'm
looking for some guidance on how to answer some of these
questions.

TIA,

Ronald Nissley

 

[Ben [MSFT]]

Ronald,

Here is a link to the Authoritative Security Guidance for the Enterprise
from MS:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
bestprac/default.asp

Unfortunately there is not gonig to be a simple answer to your question.
It will be a combination of your current environment, your risk assesments,
security guidlines that are currently set in place and numerous other
factors. Hopefully the guide will give you a good place to start.

blim
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| >Content-Class: urn:content-classes:message
| >From: "Ronald Nissley" <[email protected]>
| >Sender: "Ronald Nissley" <[email protected]>
| >Subject: Security/Permissions Best Practices
| >Date: Thu, 4 Dec 2003 12:52:04 -0800
| >Lines: 14
| >Message-ID: <[email protected]>
| >MIME-Version: 1.0
| >Content-Type: text/plain;
| > charset="iso-8859-1"
| >Content-Transfer-Encoding: 7bit
| >X-Newsreader: Microsoft CDO for Windows 2000
| >X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
| >Thread-Index: AcO6qHjaLBfCZvYcSn6v6QpKIm0QwQ==
| >Newsgroups: microsoft.public.win2000.security
| >Path: cpmsftngxa07.phx.gbl
| >Xref: cpmsftngxa07.phx.gbl microsoft.public.win2000.security:17042
| >NNTP-Posting-Host: tk2msftngxa11.phx.gbl 10.40.1.163
| >X-Tomcat-NG: microsoft.public.win2000.security
| >
| >I'm trying to find a whitepaper or some info from
| >Microsoft on Best Practices or Standard Business Practice
| >regarding security permissions. What I'm looking for is
| >some standard business guidelines for security in general
| >and specifically permissions. What permissions should a
| >user have on the domain? Of course, the easy answer is
| >that it depends on their duties. What permissions should a
| >user have on "their" workstation/portable system? I'm
| >looking for some guidance on how to answer some of these
| >questions.
| >
| >TIA,
| >
| >Ronald Nissley
| >

 

[Missy]

http://www.nsa.gov/snac/win2k/index.html
I don't think it gets better then this