Group Policy or NTFS to lock down school labs

Published: 20 Mar 2001

What information is out there that helps people REALLY tighten down school labs running Windows 2000 Pro against a Win2k Server? We want to tighten down the labs considerably. We like Group Policy but want to use NTFS or other tools as well. Any ideas?

As far as I know, there aren't any specific resources focused on lab security. A lot of the work you'll have to do depends on whether or not the lab is open to the Internet. If it is, you should treat each lab machine as a potential security threat. The books I like the most on this subject are both titled "Windows 2000 Security Handbook." One is by Phil Cox and Tom Sheldon from Osborne/McGraw Hill and the other is by Jeff Schmidt from Que.

I'd take a look at the security templates and get familiar with the Security Configuration Editor. The "SecureWS" template gives you a pretty good start at locking down a desktop. You might also want to take a look at the website for the SANS (Systems Administration, Networking, and Security) Institute. These folks specialize in network and PC security. They have conferences in all parts of the country where you can trade information with fellow administrators and attend presentations from security professionals.

Dig Deeper on Windows Server storage management

Learn Group Policy basics for Windows administrators Group Policy hasn't changed much since its introduction, but it can be overwhelming to beginners. Learn how to use Group Policy to manage users and computers.

Keystroke dynamics makes BioPassword Internet Edition a viable authentication option BioPassword Internet Edition uses keystroke dynamics to authenticate users, eliminating the need for biometric hardware and token management.

Group Policy: Applying a 'master' set of policies in a non-AD environment In this series, expert Jeremy Moskowitz helps readers with such issues as using Group Policy to force all PC homepages to a specific Web site and using a registry key to monitor security template changes.

Applying a 'master' set of policies to a number of computers in a non-AD environment Expert Jeremy Moskowitz warns a reader about the dangers of exporting changes from a standalone workstation to other standalone workstations.

Fingerprinting logon techniques Learn how to personalize/replace the Windows 2000 logon prompt with fingerprint login techniques, in this identity and access management Q&A.

Securing client operating systems

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Windows Server experts

View all Windows Server questions and answers

SearchServerVirtualization

Group Policy or NTFS to lock down school labs

Dig Deeper on Windows Server storage management

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchServerVirtualization

Learn to integrate VMs and containers in your data center

Dockerfile commands for containerizing applications

VMware vSphere monitoring ensures system health, performance

SearchCloudComputing

Review these Azure Service Bus best practices

Instill cloud change management best practices

How much cloud does an IT disaster recovery plan need?

SearchSQLServer

SQL Server database design best practices and tips for DBAs

SQL Server in Azure database choices and what they offer users

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

SearchEnterpriseDesktop

Windows 10 issues top list of most read stories for IT pros

How to fix printer problems after a Windows 10 update

HP rolls out new remote workstation product ZCentral

SearchVirtualDesktop

VMware vs. Citrix: VDI security showdown

Understand VDI market shifts from traditional VDI to cloud

Compare offerings from 3 major desktop-as-a-service providers

Dig Deeper on Windows Server storage management

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.