Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
SCW Back/Front Install
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
 Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
|
|
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
|
SCW Back/Front Install - 5.Dec.2006 4:09:15 PM
|
|
|
yguelce
Posts: 71
Joined: 24.Oct.2006
Status: offline
|
I just installed Exchange in a cluster environment. I'm getting ready to apply the Security Configuration Wizard on these servers. However, this server will play the role of backend and front-end server for the organization. Nonetheless, I noticed there isn't a security policy specifically for back-end/front-end server on the list. Since this server will be playing both roles, should I apply both policies (Front and Backend)? And if I need to apply both, is there an order in which I should apply them?
Thanks
-YG
|
|
|
|
|
RE: SCW Back/Front Install - 5.Dec.2006 4:13:05 PM
|
|
|
jchong
Posts: 2516
Joined: 1.Dec.2005
From: Centreville, Virginia
Status: offline
|
Not sure, they might be mutually exclusive policies. I'll hold off until you get some feedbackup. I'll look into this myself.
_____________________________
James Chong
MCSE | M+, S+, MCTS, Security+
msexchangetips.blogspot.com
|
|
|
|
|
RE: SCW Back/Front Install - 7.Dec.2006 5:25:49 PM
|
|
|
yguelce
Posts: 71
Joined: 24.Oct.2006
Status: offline
|
Thanks James,
I have successful download and read the hardening Exchange 2003. Since they do not have any policy specifically for front/back-end server for say. Therefore, I believe I should be applying the following security policies to the exchange servers (yes, we're running exchange on 2 nodes cluster)
Policy Applying:
Windows Server Baseline Policy Template
Exchange Domain Controller Baseline Policy Template
Back-end Server Policy Template
Please let's if I have the right policies or if there's any I shouldn't apply.
In addition, would that be correct, these policies should be applied to both cluster nodes?
Thanks
|
|
|
|
|
RE: SCW Back/Front Install - 8.Dec.2006 9:46:54 AM
|
|
|
jchong
Posts: 2516
Joined: 1.Dec.2005
From: Centreville, Virginia
Status: offline
|
Exchange Domain Controller Baseline Template.
This policy is for domain controllers in which the domain had exchange servers. You do not apply this to an Ex server.
"The Exchange Domain Controller Baseline Policy modifies the domain controllers in your forest so they can support Exchange operations. "
http://www.microsoft.com/technet/prodtechnol/exchange/Guides/E2k3SecHardGuide/e720c32f-710a-42a7-bdea-ab5bf600c32b.mspx?mfr=true
So only
Back-end Server Policy Template
Windows Server Baseline Policy Template
_____________________________
James Chong
MCSE | M+, S+, MCTS, Security+
msexchangetips.blogspot.com
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
