The Windows Server 2008 Security Guide provides customers with best practices, predefined security templates, and an automated deployment tool to help strengthen the security of servers running Windows Server 2008.  The security recommendations in the guide are based on the combined experience of Microsoft security experts, customers, partners, and governments worldwide.  

The guide comes with two preconfigured security baselines: 

Enterprise Client: This security baseline is best for the majority of organizations in which functionality is evenly balanced with security.

Specialized Security – Limited Functionality:  This baseline is best for organizations in which concern for security is so great that a significant loss of functionality is acceptable. For example, military and security agency organizations operate in this type of environment.

Both baselines have been thoroughly tested in Microsoft labs, and validated by Microsoft customers and partners under real-world conditions. You can easily tailor the security baseline you choose, modifying individual security settings to accommodate your organization’s environment and unique needs. The guide also includes a powerful GPOAccelerator tool that helps you quickly establish, test, and automatically deploy a configuration of Group Policy security settings across your organization—in minutes, instead of hours or days.

Technet Security Guide page: http://technet.microsoft.com/en-us/library/cc300311.aspx

Urs