B
Brad Smith
I have recently had (the unfortunate) opportunity of going through
Microsoft's excercise of locking down a terminal services 2003 server.
Does anyone know of a tool or method from MS or a third party that can
automatically, accurately and consistently apply a bunch or settings (like
those recommended in MS's ts 2003 lockdown) to any OU?
Am I just dump to sit and manually edit a GPO going through each setting
time and time again for every TS I have to lock down or is there some way I
can set this some once and then run something to just do it against an OU
anywhere I want?
Also, given a group of settings in a GPO is there anything I can use to
verify that they are still set the way I set them short of going through
each setting using the policy editor. Sort of an intrusion detection
mechanism which would tell me if delegated admins or someone got into and
changed a GPO I setup and thought I had secured?
A bleary eyied and dazed thanks to anyone how can help!
Microsoft's excercise of locking down a terminal services 2003 server.
Does anyone know of a tool or method from MS or a third party that can
automatically, accurately and consistently apply a bunch or settings (like
those recommended in MS's ts 2003 lockdown) to any OU?
Am I just dump to sit and manually edit a GPO going through each setting
time and time again for every TS I have to lock down or is there some way I
can set this some once and then run something to just do it against an OU
anywhere I want?
Also, given a group of settings in a GPO is there anything I can use to
verify that they are still set the way I set them short of going through
each setting using the policy editor. Sort of an intrusion detection
mechanism which would tell me if delegated admins or someone got into and
changed a GPO I setup and thought I had secured?
A bleary eyied and dazed thanks to anyone how can help!