HIPAA Compliance for Active Directory

Posted on 2008-11-19
Last Modified: 2013-11-25
I've looked everywhere but can't seem to find any information, or valid templates, that I can use to configure Microsoft Active Directory to make it HIPAA compliant. Therefore the question is, does anyone have a site or information that I can use to configure Group Policy in Active Directory to affect users and computers that will be HIPAA compliant?

Any help would be greatly appreciated.
Question by:mikecr
    1 Comment
    LVL 24

    Accepted Solution

    The HIPAA requirements are very vague at best. There is not set standard really. Personally I have the following setup for my clients that must comply with the HIPAA standards.
    Every use has their own logon/password
    They are only granted access to what they need and more more
    They are required to change their password every 3 months
    All tape backup are encrypted
    The servers are stored in a locked room with limited access
    Firewalls are setup to only let the required traffic in
    Thats basically what I have done. One thing to do is document every security measure you use to comply with the HIPAA standards just in case you get an audit.
    I hope this helps. Good luck.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    5 Tips For Long Jumpers: A Sprinter's Approach to Agile Software Development As a Sprinter, long jumping — applying momentum to progress by leaps and bounds — is a natural and complementary skill. In the following article, I will share my five ti…
    Cobalt Digital Marketing began using the Scrum Framework development process in summer 2009.  We hired a consultant to train the teams, observe meetings, and answer questions. He recommended that we begin using one-week sprints for several reason…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now