123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> System-Network-Administration >> View Article

Practice: Administering The Security Log

Profile Picture
By Author: Mike Jones
Total Articles: 256
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

Hisecws.inf To apply Hisecws.inf to a computer, the following mcitp boot camp requirements must be met:
All of the domain controllers that contain the accounts of all users that will log on to the client must run Windows NT 4 Service Pack 4 or later.
All of the domain controllers for the domain that the client is joined to must run Microsoft Windows 2000 or later.
If a client is configured with Hisecws.inf, the following constraints apply:Clients cannot connect to computers that only run LAN Manager or computers
running Windows NT 4 Service Pack 3 or earlier using a local account on the target server.
Clients cannot connect to servers running Windows 2000 or Windows NT 4 Service Pack 4 using a local account defined on the target server unless the clock on
the target server is within 30 minutes of the clock on the client.
Clients cannot connect to computers running Windows XP or later using a local account defined on the target computer unless the clock on the target computer is within 20 hours of the clock on the client.
Clients cannot connect ...
... to LAN Manager servers operating in windows 7 enterprise desktop support technician share-level security mode.
If a server is configured with Hisecws.inf, the following constraints apply:
A user with a local account on that server cannot connect to the server from a client that does not support NTLM version 2.
A client with a local account on that server cannot connect to the server unless the client computer is configured to send NTLM version 2 responses.
All clients that want to use SMB to connect to that server must enable client-side 8MB packet signing. All computers running Windows 2000 or later enable client-side SMB packet signing by default.
Hisecws.inf uses Restricted Groups settings to remove all members of the Power Users group and ensure that only Domain Admins and the local Administrator account are members of the local Administrators group. Hisecws.inf defines these group restrictions under the assumption that only applications that take part in the Windows Logo Program for Software are deployed. With certified applications in place, neither the insecure Compatible template nor the insecure Power Users group is needed. Instead, users can run certified applications successfully under the secure context of a normal
MCITP certification user as defined by the default security settings of the file system and registry.

Total Views: 317Word Count: 385See All articles From Author

Add Comment

System/Network Administration Articles

1. Wireless Network Setup Solutions For Offices By Entrust Network
Author: Entrust Network Services

2. Pcb Manufacturing: Understanding The Burn-in Test Process
Author: Ryan

3. Know About The Fiber Optic Cabling Solutions
Author: Ryan

4. Choosing The Perfect Cat6a Cable For Your 10g Networks
Author: Ryan

5. Pm Plc Splitter: Boost Efficiency Of Optical Network
Author: Ryan

6. Integrated Circuit Packaging Has Ic Substrate As Its Foundation
Author: Ryan

7. Boc Package Substrate: The Pillar Of Semiconductor Packaging
Author: Ryan

8. What Are The Leading Brands Or Manufacturers Of Growing Rack Systems?
Author: doris zhang

9. Polarization Maintaining Fiber Coupler: A Basic High Precision Fiber Sensor Component
Author: Ryan

10. Know About The Optical Circulator In Optical Communication
Author: Ryan

11. Optical Fiber Alignment System And Optical Waveguide Alignment System
Author: Ryan

12. Why Smoad Networks Is The Best Choice For Sim-based Wifi Routers
Author: HubraSEO

13. The Value Of Canada Ul Pcbs: Ensuring Safety And Compliance
Author: Ryan

14. Sap And Msap In Flexible Circuit Fabrication
Author: Ryan

15. Get Deeper Into The Insights Of Aluminum Nitride Pcb (aln Pcb)
Author: Ryan

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: