Manage Learn to apply best practices and optimize your operations.

Five ways to improve Windows Server hardening


Features to shore up Windows Server security

Source:  JJpan/iStock/Getty Images
Visual Editor: Sarah Evans

Server operating systems are complex platforms composed of many files and modules. This intricate arrangement makes a server OS versatile and powerful enough for various business processes, but it also provides hackers with numerous opportunities to exploit unpatched vulnerabilities or slip into the system through even the most innocuous of configuration settings. The results of a data breach or ransomware attack can devastate the business and its customers.

There are tried-and-true tactics to reinforce Windows Server security: patch management, ongoing malware detection, intrusion detection and prevention, and log file monitoring and analytics.

Take Windows Server hardening to the next level with added security in user accounts and Active Directory, limited administrative rights, features for virtualization protection and, of course, antimalware.

View All Photo Stories

Join the conversation


Send me notifications when other members comment.

Please create a username to comment.

What steps has your organization taken to lock down Windows Server security?
Enable both built-in FW and external FW to allow only the necessary connections and open ports including source and destination limits.

review the basic built-in windows FW as it has many open to ANY rules that you might be able to disable.

Review all windows based services running on your servers as a lot of services are not needed based on your specific server role.