IIS 7 and Above
Security best practices and using AD for server and process identity...
Re: Security best practices and using AD for server and process ident...
Jun 01, 2011 10:43 PM|steve schofield|LINK
Here is an article published by the AD team at MS
"Old school" is right, I've been using AD since w2k in a public facing environment. AD is the foundation of which many things can help provide a consistent, secure and stable environment. I use group policy extensively to lockdown servers with windows
firewall. The only real opening is a few management / utility servers that are trusted. You can honestly lockdown them down hard but you still have to manage, monitor and deploy code to them. I've managed stand-alone machines (not since w2k3 / w2k) so
my perspective is a bit aged on that front, however AD provides more benefit than hassle I probably could write a really long article on the topic of how I used, why and such. This is one of those topics near to my heart. :) Hpoe this helps. Any questions,
contact me off list if there are other concerns. Steve AT iislogs.com
Windows Server MVP - IIS
Log archival solution
Install, Configure, Forget