News

Microsoft Updates Security Compliance Manager Tool

Microsoft on Friday issued an update of its Security Compliance Manager tool, which helps IT pros set security policies for some Microsoft software.

The update improves over the initial release in April by including documentation and guidance materials within the tool, according to a Microsoft TechNet library article. Security Compliance Manager is a free Microsoft "solution accelerator" that works with Microsoft's System Center Configuration Manager 2007 management product. It's considered to be "the next evolution of the Microsoft Security Compliance Management Toolkit" series, the article explains.

IT pros can use the tool to download recommended security baseline configuration settings for a number of key Microsoft products, including Windows XP, Vista, Windows 7, Windows Server 2003, Windows Server 2008, Internet Explorer 8 and Office 2007.

The updated Security Compliance Manager can be downloaded here, along with release notes and a "Getting Started Guide" that Microsoft published in June. The tool runs on Windows 7 and Windows Vista Service Pack 2.

To customize security settings, IT pros can make copies of the baseline files and then modify the baseline settings. These customized settings can then be exported across the computing environment via Group Policy.

The tool offers a number of export formats, such as Excel, Group Policy objects, desired configuration management (DCM) packs or the Security Content Automation Protocol, according to TechNet. However, Microsoft's "Getting Started Guide" recommends the DCM format, which works with System Center Configuration Manager to help monitor the security baselines.

"The desired configuration management (DCM) feature of System Center Configuration Manager 2007 monitors server or client computers against a single or multiple security baselines," the Guide states. "To take advantage of this scanning feature, use the Security Compliance Manager to produce DCM configuration packs based on your security baselines."

In addition to enabling custom security settings, the tool can be used to check how closely an organization's existing security settings match up with Microsoft's best-practice recommendations.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • IBM Giving Orgs a Governance Lifeline in Agentic AI Era

    Nearly overnight, organizations are facing brand-new challenges caused by self-directed AI systems (a.k.a. agentic AI). Big Blue is extending them some help.

  • Microsoft Launches Integrated E-mail Security Ecosystem for Defender for Office 365

    Microsoft is expanding its e-mail security capabilities with the launch of a new Integrated Cloud Email Security (ICES) ecosystem for Microsoft Defender for Office 365.

  • Microsoft Joins Workday's AI Agent Partner Network

    Microsoft has become a key partner in Workday's newly launched AI Agent Partner Network, aligning with other industry leaders to integrate AI agents into enterprise workforce systems.

  • LinkedIn CEO Ryan Roslansky To Lead Microsoft's Productivity Initiatives

    In a strategic leadership realignment, Microsoft has appointed LinkedIn CEO Ryan Roslansky to oversee its consumer and small business productivity software division, encompassing Microsoft 365, Teams and AI-driven tools like Copilot.

Most   Popular