Premium Essay

Domain Ssecurity Plan

In:

Submitted By stopazi
Words 367
Pages 2
Intro to Information Security Project Part 1
Listed below are some of the different layers of security that a Network Administrator or Security Administrator could implement on different domains in order to increase the strength of the servers against attacks. Many of these are universal implementations and can be applied to multiple types of servers / domains.
To increase the security of a User Domain at the user level an administrator should apply Group Policy settings in order to require end-users to use complex passwords. This increases the strength of the authentication process and helps prevent easy password cracking techniques such as Brute Force. To help prevent the extraction of data on the next layer, Workstation Domains, workstations should be setup to have important data encrypted on the drive. In the event of data extraction or theft of the drive, this would ensure that the data could not be utilized.
On the next layer, LAN Domains, it is important to implement spam filters in order to intercept and “weed out” potentially malicious incoming packets, connections, & emails to the server. It is also important to set Group Policy settings to initiate session timeouts for active sessions on the LAN and also on the WAN Domains. This will provide an extra layer of security if users walk away from their active workstations for an extended period of time. It will also help to secure the sessions from outside attacks if accidentally left open. Also, a good Network Administrator should be sure to block ports on the WAN level firewall to prevent outside access. It is always a good measure / strategy to start at the most restrictive settings and only open up ports that are necessary for mission critical workflow to be conducted.
At the layer of Remote Access it is recommended to ensure that the client-server has an established way of authenticating each

Similar Documents