Microsoft updates Security Compliance Manager tool

Microsoft on Friday issued an update of its Security Compliance Manager tool, which helps IT pros set security policies for some Microsoft software.

The update improves over the initial release in April by including documentation and guidance materials within the tool, according to a Microsoft TechNet library article. Security Compliance Manager is a free Microsoft "solution accelerator" that works with Microsoft's System Center Configuration Manager 2007 management product. It's considered to be "the next evolution of the Microsoft Security Compliance Management Toolkit" series, the article explains.

IT pros can use the tool to download recommended security baseline configuration settings for a number of key Microsoft products, including Windows XP, Vista, Windows 7, Windows Server 2003, Windows Server 2008, Internet Explorer 8 and Office 2007.

The updated Security Compliance Manager can be downloaded here, along with release notes and a "Getting Started Guide" that Microsoft published in June. The tool runs on Windows 7 and Windows Vista Service Pack 2.

To customize security settings, IT pros can make copies of the baseline files and then modify the baseline settings. These customized settings can then be exported across the computing environment via Group Policy.

The tool offers a number of export formats, such as Excel, Group Policy objects, desired configuration management (DCM) packs or the Security Content Automation Protocol, according to TechNet. However, Microsoft's "Getting Started Guide" recommends the DCM format, which works with System Center Configuration Manager to help monitor the security baselines.

"The desired configuration management (DCM) feature of System Center Configuration Manager 2007 monitors server or client computers against a single or multiple security baselines," the Guide states. "To take advantage of this scanning feature, use the Security Compliance Manager to produce DCM configuration packs based on your security baselines."

In addition to enabling custom security settings, the tool can be used to check how closely an organization's existing security settings match up with Microsoft's best-practice recommendations.

About the Author

Kurt Mackie is senior news producer for the 1105 Enterprise Computing Group.

Featured

  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected