Best Practices
Protect administrative accounts. Avoid using administrative accounts for routine computing needs, minimize the number of administrators, and avoid giving users administrative access.
Use security groups. By properly nesting security groups, you can implement a role-based security model for granting permissions.
Apply least privilege. Assign users and administrators the least privilege they need to complete their job tasks; this includes delegating privileges and rights appropriately.
Create password policies that reflect organizational culture. Create policies to enforce the use of passwords that balance complexity, randomness, and length.
Educate users and other administrators on how to create strong passwords. Despite enabling password ...
Get Microsoft® Windows® Security Resource Kit, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
