Browse by Tags

Related Posts
  • Blog Post: What's New in Recommended Security Baseline Settings for Windows 8.1, Windows Server 2012 R2, and Internet Explorer 11

    The attachment on this post describes what's new in the security baseline recommendations for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11, relative to the baselines published for Windows 8, Windows Server 2012 and Internet Explorer 10 . It is included as a Word document in the download...
  • Blog Post: Changes in the Security Guidance for Windows 8.1, Server 2012 R2 and IE11 since the beta

    We have made a small number of changes in the baseline security guidance for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11 since we released the beta version of our guidance last April. This blog post discusses those changes and the reasons for them. Account Lockout Threshold: we’re...
  • Blog Post: Configuring Account Lockout

    We can recommend an ideal configuration for most of the settings in our security guidance. For example, the “Debug programs” privilege should be granted to Administrators and to no one else. For account lockout, however, there is no “one size fits all” setting, but there’s...
  • Blog Post: Security baselines for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11 - FINAL

    Microsoft is pleased to announce the final release of security baseline settings for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11. Some of the highlights of the new security baselines (many of which we intend to backport to older versions of Windows and IE): Use of new and existing...
  • Blog Post: Why We’re Not Recommending “FIPS Mode” Anymore

    In the latest review of the official Microsoft security baselines for all versions of Windows client and Windows Server, we decided to remove our earlier recommendation to enable “FIPS mode”, or more precisely, the security option called “System Cryptography: Use FIPS compliant algorithms...
  • Blog Post: Security baselines for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11 (BETA)

    Update, 13 August 2014: The final version of this guidance has been posted here . The changes since the beta are described here , with a separate discussion about the changes in the Account Lockout policy here . Microsoft is pleased to announce the beta release of security baseline settings for...
  • Blog Post: SCM v2 Beta: What happened to the EC + SSLF?

    I can feel this becoming a FAQ, so I wanted to blog on this early in the Beta . :) I forgot to mention in my Beta announcement anything about the new 'severity' you see on settings, whoops. The text below is a copy and paste from the IE9 Security Guide which hopefully clarifies our reasoning. [ UPDATE...
  • Blog Post: New version of SCM causes peace on Earth

    Well... I might be exaggerating just a bit about the “peace on Earth”, but it’s a worthy goal isn’t it!? :) I’m writing this post for a couple reasons: 1. Announce an updated version of Microsoft Security Compliance Manager (SCM) 2. Discuss the SCM roadmap for the...
  • Blog Post: New beta setting packs for Windows 7 and Internet Explorer 8

    The Solution Accelerators team is happy to announce the most recent additions to the Security Compliance Manager Baseline Beta Review Program: new setting packs for Windows 7 and Internet Explorer 8. Join the Security Compliance Manager Baseline Beta Review Program. Members, bookmark this link...
  • Blog Post: Wow, great SCM demo video on TechNet Edge

    Hello SCM people! Yes, I'm way behind on email. Sorry if I owe you a reply! We are DAYS away from releasing the SCM v2 CTP featuring GPO Import. Let me wrap this baby up and you will see it shortly on MS Connect. Thanks for the patience! Check out this awesome SCM video. It's great as an intro as...
  • Blog Post: SCM v2 (BETA) + New Baselines Available to Download

    [ UPDATE: September 6th, 2011 ] The Beta review period for SCM2 ended August 31st, 2011 (and the download is no longer available). We've been working on stabilizing the build and meeting release requirements. Look for the RTW of SCM2 on September 15th, 2011. Hello world! I know a lot of you have...
  • Blog Post: Post-Thanksgiving food coma ends - baselines restored

    If you experienced trouble downloading baselines last week , we are very sorry about the trouble! We realized the problem on Tuesday November 23 rd and had a bit of a “snow delay” getting the baselines restored. I am happy to report all is now well (and all the snow/ice in Seattle has melted...
  • Blog Post: Security Compliance Manager (SCM) version 2.5 now available

    You’ve been asking for Exchange Server baselines. You’ve been waiting for the Windows 7 SP1 baseline update. They are all available now in SCM v2.5! SCM 2.5 includes a number of new and updated baselines, empowering you to manage configuration drift, address compliance requirements, and...
  • Blog Post: Whoops, sorry about the baseline troubles!

    If you haven’t heard, Seattle was hit hard by snow and ice yesterday. It took some people up to 10 hours to get home last night . Holy cow! I was lucky – my boss advised I go home yesterday at about 12 noon and I was sitting in my apartment in downtown Seattle with hot spiced cider as I watched...
  • Blog Post: HIPAA or PCI or FISMA Baseline? (FAQ)

    A teammate of mine posted a FAQ this week about the GRC space and how it intersects with Microsoft Baselines. Check it out! http://social.technet.microsoft.com/wiki/contents/articles/grc-baselines-made-easy.aspx -jeff PS - for those of you wanting the SCM v2 Beta, I've got great news. Just...