Chapter 2 - MCSE 70-293 Planning server roles and server security

Abstract

This chapter begins with the review of server roles and ensures an understanding of the many roles a Windows Server 2003 server can play on the network. It discusses domain controllers, file and print servers, Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS) and Windows Internet Name Service (WINS) servers, web servers, database servers, mail servers, certification authorities and terminal servers. Then, it illustrates how to plan a server security strategy. It examines how to choose the right operating system according to security needs, how to identify minimum security requirements for the organization, and how to identify the correct configurations to satisfy those security requirements. Furthermore, it deals with how to plan baseline security, first planning the secure baseline installation parameters and then enforcing default security settings on new computers, both client and server machines. This chapter also shows how to customize server security and securing the servers according to their roles. Finally, it discusses the process of creating custom security templates and shows how to deploy security configurations.