(imported topic written by rharmer91)
As a start for this, I turned on the Security Settings - Account Policies Analysis. I’d like to use a baseline to determine if a particular servers are within our compliance guidelines. I’m sure that in a relevance language manual I can find this stuff, but maybe that isn’t the best way to accomplish what I want to do.
If a machine is in compliance, it needs to be configured like this. (there is more, but this is a good start)
Account Lockout Duration 15 minutes
Account Lockout Threshold 3 invalid logon attempts
Enforce Password History 1 passwords remembered
Maximum Password Age 90 days
Minimum Password Age 1 days
Minimum Password Length 5 characters
These are all items copy/pasted from the Analysis…
Thanks,
Rich