Windows R2 System Hardening

Source: Internet
Author: User

  1. Check DEP Security Configuration

    Hardening method: Access to "Control Panel, System and security system" advanced system settings-on the Advanced tab, under Performance, under Settings. Go to the Data Execution Protection tab. Set to "Enable DEP only for basic Windows operating system programs and services"

  2. Check whether NTP is configured

    Hardening Method: cmd Command Window execution w32tm/config/update

    Modify the key value of the following options in Hkey_local_machine\system\currentcontrolset\services\w32time\timeproviders\ntpserver [Enabled] is set to 1. Function: Turns on the NTP server feature (the default is not to turn on the NTP Server service unless the computer is upgraded to a domain control station).

    Modify the following key values Hkey_local_machine\system\currentcontrolset\services\w32time\config\announceflags set to 5. Function: This setting forces the host to announce itself as a reliable time source, thereby using the built-in complementary metal oxide semiconductor (CMOS) clock. Use the default a value if you want to use the outside time server.

    Modify the following key value in the Hkey_local_machine\system\currentcontrolset\services\w32time\parameters\type [Type] set to NTP. 4. Restart the Win32time service: Turn off the Windows Time service before turning on the service. It can be done under the services interface of the administrative tools, or you can enter "net stop W32Time", "net start W32Time" in DOS.

  3. Check critical permission assignment security requirements-take ownership of files or other objects

    Hardening method: Access to User rights assignment, local policy, local security policy, start-and management tools, "Get ownership of files or other objects" set to "assign only to Administrators groups"

  4. Check the password lock policy to determine the condition: "Account lockout threshold" is set to less than or equal to 6 times

    Reinforcement method:

This article is from the "httpblog.mvp-610163.com" blog, make sure to keep this source http://341103.blog.51cto.com/331103/1852104

Windows R2 System Hardening

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.