Do your organisations have any sort of formal procedure of security verifacation of your windows servers before you join them to your production/live network. we come across many common silly security mistakes on windows servers joined to the domain (i.e.
open shares with sensitive data) that i am trying to prescribe some form of formal procedure whereby the network admin has to verify the security of the server before it is joined to the domain. i wonder if you do similar and if so what specific checks do
you perform before the server is signed off as "security acceptable" to be joined to the live network.
↧