My experience with the Security Configuration Wizard (SCW) have been good - albeit other Engineers I work with have provided different feedback. Part of that I attest perhaps to the types of applications installed, the network environment and the Administrative Delegation Model during the Post-Installation period when configuring the SCW occurs. Using and testing settings for the SCW 'Post Installation' is crucial in developing an optimized, 'secure' configuration of Ex2k7 specific to an individual Server Role. Remember the Policy Templates generated by SCW are in XML format. Be sure to 'secure' these files as they provide a 'fingerprint' specific to your Security Configuration on the respective Server.
Using the Security Configuration Wizard to Secure Windows for Exchange Server Roles
Additionally, you will find a useful Tool for examining the XML output from the SCW located here:
XML Notepad V2.4
Lynn Lunik
Independent Security Consultant
Windows(R) Platform
IT Pro Secure Corporation
blog <at> itprosecure.com
Posted
Mar 02 2007, 03:38 AM
by
lynn lunik