Getting Started with Windows Server Security

Develop and implement a secure Microsoft infrastructure platform using native and built-in tools

About This Book

• Learn how to identify and mitigate security risks in your Microsoft Server infrastructure
• Develop a proactive approach to common security threats to prevent sensitive data leakage and unauthorized access
• Step-by-step tutorial that provides real-world scenarios and security solutions

Who This Book Is For

If you are a security or Windows Server administrator wanting to learn or advance your knowledge in Microsoft security and secure your Windows Server infrastructure effectively, this book is for you.

What You Will Learn

• Design a secure Windows Server platform based on the best practices and industry standard recommendations
• Identify and mitigate security risks using tools such as Security Configurations Wizard, ASA, AppLocker, BitLocker, and EMET
• Follow step-by-step instructions to tighten the security of your Active Directory file, print server, Hyper-V and IIS servers, and application roles
• Develop a secure access control mechanism using the Dynamic Access Control (DAC) feature
• Learn how to maintain security and deliver new security updates and patches using the Windows Server Update Service (WSUS)
• Discover how PowerShell cmdlets and custom scripts can support your day-to-day security admin tasks

In Detail

Windows Server 2012 provides security features and solutions that can be used as standalone security solutions as well as integrated solutions with your existing security or auditing tools.

To begin, you will learn how to implement baseline security using Microsoft Security Configuration Wizard and how to lock down unwanted services, along with how to configure your Windows firewall. You will see how to enable and use native tools including AppLocker to identify and mitigate risks and tighten up your Windows Server infrastructure security.

This book also walks you through best practices for designing and building a secure Microsoft server platform, with instructions on configuration and managing Dynamic Access Control and polices.

At the end of the book, installation and configuration of Windows Server Update Services, which plays a crucial role in the security space, is covered.

開發並使用本地和內建工具實施安全的 Microsoft 基礎架構平台

關於本書
- 學習如何在 Microsoft Server 基礎架構中識別和減輕安全風險
- 開發預防常見安全威脅的主動方法，以防止敏感數據外洩和未經授權的訪問
- 提供實際場景和安全解決方案的逐步教程

本書適合對 Microsoft 安全和有效保護 Windows Server 基礎架構的安全或 Windows Server 管理員
你將學到什麼
- 根據最佳實踐和行業標準建立安全的 Windows Server 平台
- 使用安全配置嚮導、ASA、AppLocker、BitLocker 和 EMET 等工具識別和減輕安全風險
- 按步驟指南加強 Active Directory 文件、打印服務器、Hyper-V 和 IIS 服務器以及應用角色的安全性
- 使用動態訪問控制 (DAC) 功能開發安全的訪問控制機制
- 學習如何使用 Windows Server 更新服務 (WSUS) 維護安全性並提供新的安全更新和補丁
- 發現 PowerShell cmdlet 和自定義腳本如何支持日常安全管理任務

詳細內容
Windows Server 2012 提供了可作為獨立安全解決方案或與現有安全或審計工具集成的安全功能和解決方案。

首先，您將學習如何使用 Microsoft 安全配置嚮導實施基準安全性，以及如何鎖定不需要的服務，以及如何配置 Windows 防火牆。您將了解如何啟用和使用包括 AppLocker 在內的本地工具來識別和減輕風險，並加強 Windows Server 基礎架構的安全性。

本書還將指導您設計和構建安全的 Microsoft 服務器平台的最佳實踐，並提供有關配置和管理動態訪問控制和策略的指示。

最後，本書涵蓋了安裝和配置 Windows Server 更新服務的內容，該服務在安全領域中起著至關重要的作用。