Consistent, easy registry changes
Use Regini from the Windows NT Resource Kit to make consistent powerful changes to Registry entries and access control lists. Regini processes changes listed in a text file, so you are assured that changes to each machine are consistent and easily documented.
Potential changes include forcing NTLM authentication levels, disabling anonymous access to the system and forcing event log parameters, to name a very few.
Excellent recommendations for security-related registry settings on NT 4 and Internet Information Server (IIS) systems can be found at the following sources:
NT Security Guidelines
-- prepared for the NSA by Trusted Systems.
SearchSecurity's NT and IIS configuration pages
Running Regini as part of your sytem building process is an excellent means to ensure that your machines conform to your company's security policy and that the registry changes are applied identically every time.
Dig deeper on Windows Server and Network Security