Security Overview for Microsoft Infrastructures Fred Baumhardt and James Noyce Infrastructure Solutions and Security Solutions Teams Microsoft Security.

Slides:



Advertisements
Similar presentations
SUS Feature Pack for SMS Michel Jouvin LAL / IN2P3
Advertisements

The System Center Family Microsoft. Mobile Device Manager 2008.
Introduction to Systems Management Server 2003 Tyler S. Farmer Sr. Technology Specialist II Education Solutions Group Microsoft Corporation.
Microsoft Forefront Client Security
WSUS Presented by: Nada Abdullah Ahmed.
What’s coming in Sccm 2007R2 aka Sccm 2007R2: 10 reasons to upgrade Kim Oppalfens SCUG.be.
Microsoft Security Solutions A Great New Way of Making $$$ !!! Jimmy Tan Platform Strategy Manager Microsoft Singapore.
Paula Kiernan Senior Consultant Ward Solutions
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
SAGE-AU Adelaide Windows Update Services Michael Kleef IT Pro Evangelist Microsoft Corporation Level 200.
Microsoft Operations Manager Presented by: Alen Plicanic.
Microsoft Baseline Security Analyzer INLS 187 Security Software Presentation by Hinár György Polczer
Patching MIT SUS Services IS&T Network Infrastructure Services Team.
Maintaining and Updating Windows Server 2008
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
A Tour of System Center Configuration Manager Adam Duffy Edina Public Schools.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.
IT:Network:Microsoft Applications
Module 16: Software Maintenance Using Windows Server Update Services.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.
Security of Communication & IT systems Bucharest, 21 st September 2004 Stephen McGibbon Chief Technology Officer, Eastern Europe, Russia & CIS Senior Director,
Wally Mead Senior Program Manager Microsoft Corporation.
Management Technologies In Windows Server 2003 Windows Server - Management One of the Fundamentals One of the Fundamentals  Security, performance, scalability,
Avanade: 10 tips for å sikring av dine SQL Server databaser Bernt Lervik Infrastructure Architect Avanade.
Microsoft ® Official Course Module 9 Configuring Applications.
Managing CERN Desktops with Systems Management Server (SMS 2003) Michel Christaller Internet Services Group Department of Information Technology CERN May.
SOE and Application Delivery Gwenael Moreau, Abbotsleigh.
What’s New for IT Professionals in Microsoft® SharePoint® Server 2013 (Day 2) Sayed Ali (MCTS, MCITP, MCT, MCSA, MCSE ) Senior SharePoint.
Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.
Acceleratio Ltd. is a software development company based in Zagreb, Croatia, founded in We create innovative software solutions for SharePoint,
IT:Network:Microsoft Server 2 Chapter 27 WINDOWS SERVER UPDATE SERVICES.
Technology from Microsoft David Overton Head of Technology for Small Business
Microsoft Installer Technologies and patch management approaches.
CIS 460 – Network Design Seminar Network Security Scanner Tool GFI LANguard.
User Manager Pro Suite Taking Control of Your Systems Joe Vachon Sales Engineer November 8, 2007.
Module 14: Configuring Server Security Compliance
Section 1: Introducing Group Policy What Is Group Policy? Group Policy Scenarios New Group Policy Features Introduced with Windows Server 2008 and Windows.
SMS 2003 Deployment and Managing Windows Security Rafal Otto Internet Services Group Department of Information Technology CERN 26 May 2016.
Time lag between discovering issue and resolving Difficult to find solutions and patches that can help resolve issue Service outages expensive and.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability.
Module 2: Installing and Maintaining ISA Server. Overview Installing ISA Server 2004 Choosing ISA Server Clients Installing and Configuring Firewall Clients.
Managing Windows Software & Updates SUS Server MS Baseline Security Analyzer Software and Group Policy Paul “The Yellow Dart” Peterson University of Minnesota.
Security Assessment Tools Paula Kiernan Senior Consultant Ward Solutions.
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.
Paul Butterworth Management Technology Architect
Module 6: Designing Security for Network Hosts
Module 14: Securing Windows Server Overview Introduction to Securing Servers Implementing Core Server Security Hardening Servers Microsoft Baseline.
Forefront – Security in Education Stephen Cakebread Security Solutions Sales Professional Microsoft Corporation.
Microsoft Management Seminar Series SMS 2003 Change Management.
Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.
11 IMPLEMENTING AND MANAGING SOFTWARE UPDATE SERVICES Chapter 7.
Jorke Odolphi Product Technology Specialist WebCentral Using Microsoft Operations Manager To Monitor And Maintain Your Farm.
Reducing server sprawl and IT power/cooling costs Moving from reactive to proactive state Quickly troubleshooting PC and laptop issues Deploying new.
Implementing Server Security on Windows 2000 and Windows Server 2003 Fabrizio Grossi.
Windows SharePoint Services. Overview Windows SharePoint Services (WSS) Information Worker Infrastructure component delivered in Windows Server 2003 Enables.
Managing your IT Environment. Microsoft Operations Manager 2005 Overview.
Service Pack 2 System Center Configuration Manager 2007.
Internet Explorer 7 Updated Advice for the NHS 04 February 2008 Version 1.3.
Managing Servers Lesson 10. Skills Matrix Technology SkillObjective DomainObjective # Using Remote DesktopPlan server management strategies 2.1 Delegating.
Maintaining and Updating Windows Server 2008 Lesson 8.
11 DEPLOYING AN UPDATE MANAGEMENT INFRASTRUCTURE Chapter 6.
Leveraging the Business Intelligence Features in SharePoint 2010
1/1/2019 8:36 AM System Center – Datacenter Management Technology Specialist Management Produkte Microsoft Deutschland.
Enterprise Program Management Office
A 5-minute overview of ADAudit Plus
Implementing Security Patch Management
IT Management, Simplified
Presentation transcript:

Security Overview for Microsoft Infrastructures Fred Baumhardt and James Noyce Infrastructure Solutions and Security Solutions Teams Microsoft Security Solutions, Feb 4 th, 2003

Agenda Threats – How you are attacked and from where Threats – How you are attacked and from where Application Level Attacks – the new Security Battleground Application Level Attacks – the new Security Battleground Overview of Microsoft Server Security Technologies and Tools Overview of Microsoft Server Security Technologies and Tools Management and Operations as a Defensive Mechanism Management and Operations as a Defensive Mechanism

The Three Phases of Hacking Information Gathering and Intelligence Information Gathering and Intelligence Analysis of Collected Information Analysis of Collected Information Probing and Compromise Probing and Compromise

Management as a Security Tool Detect unauthorised activity on your infrastructure Detect unauthorised activity on your infrastructure Prevent misconfiguration of systems Prevent misconfiguration of systems Ensure system vulnerabilities are captured and addressed Ensure system vulnerabilities are captured and addressed

Security Management Tools Analysis Analysis  Microsoft Baseline Security Analyser (MBSA)  Systems Management Server (SMS)  Software Update Services Feature Pack  Microsoft Software Update Services (MSUS)  Security Configuration and Analysis snap-in  RSoP Management Management  Group Policy Management Console (GPMC)  Microsoft Operations Manager (MOM)  Microsoft Audit Collection System (MACS)  Systems Management Server (SMS)  Software Update Services Feature Pack  Microsoft Software Update Services (MSUS)

Infrastructure Tools Snort – Free to Download – even on Windows – Snort – Free to Download – even on Windows – MBSA – Scans most MS Server products and windows clients MBSA – Scans most MS Server products and windows clients SUS – Patch management solution SUS – Patch management solution MOM-MACS-SMS MOM-MACS-SMS IPSEC – within Windows IPSEC – within Windows IISLockdown – URLScan IISLockdown – URLScan ISA Server with Feature Pack1 ISA Server with Feature Pack1

MBSA Version 1.1 The following new features are included with MBSA V1.1:  Exchange and Windows Media Player security update detection  Full HFNetChk integration into MBSACLI.exe  Incorporation of the latest HFNetChk engine code  Support for Software Update Services (SUS) during security update scanning  Detection for multiple SQL Server instances

Software Update Services Address Patch Management concerns Address Patch Management concerns  Windows keeps itself up-to-date with the latest critical & security updates  IT administrators can automatically deploy Windows Update content  IT administrator gains control over what patches are applied to a system  Leverage Windows Update web- based infrastructure

System Management Server Software Update Services Feature Pack Security patch inventory Security patch inventory Office patch inventory Office patch inventory Patch distribution Patch distribution Web reporting Web reporting

Recommendations for Customers Microsoft’s “A” recommendation for which tool to use: Microsoft’s “A” recommendation for which tool to use: **Small Business that work with a VAP should also consider SUS **Small Business that work with a VAP should also consider SUS Official external positioning is available at: Official external positioning is available at: p Recommended Technology to deploy critical updates Home User Windows Update Small Business Windows Update** Medium Enterprise Software Update Services Large Enterprise SMS (with the Feature Pack)

GPMC Overview What is the GPMC? What is the GPMC?  New admin tool for managing Group Policy:  Set of scriptable objects for managing GP  MMC Snap-in, built on these objects  Standalone web release shortly after Windows.NET Server RTM GPMC Design goals GPMC Design goals  Unify management of Group Policy  Address key deployment issues  Provide better UI for visualization  Enable programmatic access to GP

Microsoft Operations Manager Operations Management – event and performance management Operations Management – event and performance management  Built on Microsoft management services Microsoft solution manages Windows 2000, Exchange, SQL Server, and other Microsoft apps Microsoft solution manages Windows 2000, Exchange, SQL Server, and other Microsoft apps  Base Management Pack  Application Management Pack Heterogeneous and value-add solutions from third parties extend this offering Heterogeneous and value-add solutions from third parties extend this offering

Centralizes Windows security management in MOM Centralizes Windows security management in MOM Out-of-the-box security rules, knowledge, response actions, reports Out-of-the-box security rules, knowledge, response actions, reports Includes: Includes:  XMP for Anti-Virus Applications  XMP for Microsoft Windows Security  XMP for NetIQ Security Analyzer Security Management Pack: A set of Security XMP’s for MOM

Microsoft Audit Collection Services Client-Server application to collect security events in real time and store them in a SQL database Client-Server application to collect security events in real time and store them in a SQL database MACS is NOT a security management application (No user interface) MACS is NOT a security management application (No user interface)

MACS & MOM MACS is a security event collection tool- no management capability MACS is a security event collection tool- no management capability MOM complements MACS- MOM adds management, alerting, support for other logs MOM complements MACS- MOM adds management, alerting, support for other logs MACS v2 will likely be integrated with MOM v2 MACS v2 will likely be integrated with MOM v2 MACS v1 will ship with MOM management pack MACS v1 will ship with MOM management pack

Services Security is not just about technology Security is not just about technology Crucial to bring in expertise and knowledge transfer into your organisation Crucial to bring in expertise and knowledge transfer into your organisation SMB can use service templates and learn from them – such as MSA - SMB can use service templates and learn from them – such as MSA -

Service Offerings Microsoft Solution for Management Microsoft Solution for Management  Allows customers to prioritize, test and deploy Patches to their environment.  Delivers proven best practices and infrastructure for managing high volumes of patch deployments into a Microsoft tools and technology environment.  Enables customers to improve their quality of service while reducing total cost of ownership

Next Steps Review your systems Review your systems Web resources Web resources secwin2k/default.asp secwin2k/default.asp amilyID=F937A913-F26E-49B5-A21E-20BA D amilyID=F937A913-F26E-49B5-A21E-20BA D sp sp default.asp default.asp