• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 129
  • Last Modified:

Services Settings for 2008 and 2008R2 - Datacentre

Hello

I'm looking for an official article that highlights the services that should be running as best practice for 2008 and 2008 R2.  

I use SCM for group policy best practices.  I wonder if there's anything out there that would be similar for windows services ?

Also, would the services be different if the OS was on a physical or VM ?

Thanks
0
nico-
Asked:
nico-
  • 5
  • 4
1 Solution
 
CoralonCommented:
The NSA has several published articles on best practices for locking down 2008 & 2008R2.

And it would not make a difference between a VM and a physical other than hardware drivers and the hypervisor tools.

Coralon
0
 
nico-Author Commented:
Hi Coralon

Any chance you could post links to the best practices ?

Thanks !
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
nico-Author Commented:
Hi Coralon

The links in the first starting point don't work .. must be old links
The second post has old material .. I've already used SCM, but I'm looking for something that detail which services should be enabled/disabled etc

Thanks
0
 
nico-Author Commented:
Hi Coralon

I've used the CIS stuff for Penetration testing before, but 606 pages is a lot to get through :)
I'm just looking for something in spreadsheet form that has all the services and their default state, once a 2008/2008 R2 server is build.  Would the editions - datacentre or standard make any difference to the number of services available to you know ? eg 102 for standard, 110 for datacentre ? (I've guessed the numbers)
0
 
nico-Author Commented:
I didn't receive what I was looking for here.  I'm sure there's a simple spreadsheet out there with Normal Startup / Recommended Startup.

I used the Best Practices Analyser in the end

Not very often I don't give out the points. Sorry!
0
 
CoralonCommented:
Sorry.. hadn't had a chance to get back to this. But, the link was valid when I posted it? I pulled it up before I posted it.  In fact, it's still valid? It popped right up for me.

Microsoft's Best Practices Analyzer does a pretty good job.. But for real security, the nsa is going to be the better choice.

Coralon
0
 
nico-Author Commented:
No acceptable / useful answer that helped.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now