HIPAA Compliance for Active Directory

Posted on 2008-11-19
Medium Priority
Last Modified: 2013-11-25
I've looked everywhere but can't seem to find any information, or valid templates, that I can use to configure Microsoft Active Directory to make it HIPAA compliant. Therefore the question is, does anyone have a site or information that I can use to configure Group Policy in Active Directory to affect users and computers that will be HIPAA compliant?

Any help would be greatly appreciated.
Question by:mikecr
1 Comment
LVL 24

Accepted Solution

andrew_aj1 earned 1500 total points
ID: 22997156
The HIPAA requirements are very vague at best. There is not set standard really. Personally I have the following setup for my clients that must comply with the HIPAA standards.
Every use has their own logon/password
They are only granted access to what they need and more more
They are required to change their password every 3 months
All tape backup are encrypted
The servers are stored in a locked room with limited access
Firewalls are setup to only let the required traffic in
Thats basically what I have done. One thing to do is document every security measure you use to comply with the HIPAA standards just in case you get an audit.
I hope this helps. Good luck.

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Integration Management Part 2
Simple Linear Regression

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question