Windows Vista Security Templates
Jan - 10 | By Tony Northrup | 7 comments | Related : Administration, Downloads, Security, Tips



Windows XP included several security templates (.inf files that represent a computer’s security configuration), but Windows Vista includes none. Want some? Download and install the Windows Vista Security Guide.

The Windows Vista Security Guide includes several templates:

  • Vista Default Security. A security template that you can use to restore default security settings or compare your current settings to the default.
  • VSG EC Desktop, VSG EC Laptop, and VSG EC Domain. Templates that the Windows Vista Security Guide team recommends for use in enterprise environments. EC stands for Enterprise Configuration. Use this if you have a domain.
  • VSG SSLF Desktop, VSG SSLF Laptop, and VSG SSLF Domain. Templates that the Windows Vista Security Guide team recommends for organizations that are willing to sacrifice some functionality for improved security. SSLF stands for Specialized Security Limited Functionality. Don’t use these unless your 200 feet underground in some concrete bunker. They break stuff (like application compatibility) and you’ll spend weeks tweaking the configuration to get things to work again.

After installation, you can examine these security templates by using the Security Templates snap-in.

Follow these steps to open the security templates in the Security Templates snap-in:

  1. Click Start and type mmc.
  2. A blank MMC console appears. Click the File menu, and then click Add/Remote Snap-In.
  3. From the Add Or Remove Snap-Ins dialog, double-click Security Templates. Click OK.
  4. Right-click Security Templates and then click New Template Search Path.
  5. In the Browse For Folder dialog, expand your user folder, Documents, Windows Vista Security Guide, GPOAccelerator Tool, and then select Security Templates (the Windows Vista Security Guide installs the templates to “C:UsersDocumentsWindows Vista Security GuideGPOAccelerator ToolSecurity Templates”). Click OK.
  6. Click the new folder in the Security Templates snap-in, and browse through the templates.

Want to see what the Windows Vista Security Guide team recommends that’s different from your current configuration? Use the Security Configuration And Analysis Snap-in:

  1. Create a new Microsoft Management Console (MMC) console, and add the Security Configuration And Analysis snap-in.
  2. Right-click Security Configuration And Analysis, and then click Open Database.
  3. In the Open Database dialog box, type a name for the new database, and then click Open.
  4. In the Import Template dialog box, select a security template to import. Click Open.
  5. Right-click Security Configuration And Analysis, and then click Analyze Computer Now.
  6. In the Perform Analysis dialog box, click OK.

After the analysis is complete, examine the results by expanding the nodes contained within the Security Configuration And Analysis node. The Database Setting column shows what’s recommended in the template. The Computer Setting column shows your setting.

  • RSS
  • email
  • Facebook
  • Twitter
  • Digg
  • del.icio.us
  • Google Bookmarks

7 Responses to “Windows Vista Security Templates”

  1. Anonymous says:
    April 2, 2007 at 6:47 pm

    the link to the download of security template is not longer available

    Reply
  2. GFL says:
    April 3, 2007 at 9:38 am

    Here is the link: http://go.microsoft.com/fwlink/?LinkId=74028

    Does anyone know where to find a template to reset registry and file system security settings? I used secsetup.inf in xp/2003 but there isn’t one in Vista. defltwk.inf is there but it has a lot of outdated file/reg paths and the inf in the security guide only resets group policy.

    Reply
  3. Ian Morrish says:
    May 8, 2007 at 8:33 am

    You have a bad character on the end of the Windows Vista Security Guide URL (b).
    It should be
    http://www.microsoft.com/downloads/details.aspx?FamilyID=a3d1bbed-7f35-4e72-bfb5-b84a526c1565

    Reply
  4. Peter Thomas says:
    April 13, 2008 at 8:52 am

    Great article and help on scurity permissions in Vista. but can you tell me simply how to restore my Vista Home Premium to the settings that were installed when I first installed windows vista.

    Many thanks ………………. Peter Thomas

    Reply
  5. Alex says:
    September 21, 2009 at 1:24 am

    i have the wworst possible situation i set my admin account the only one on vista made all the other accounts not be able to download or do anything and i dont have disc player thing so i cant to password reset disk so when i tried to do this i noticed that the files in the template were hidden so i did property checked hidden and preseed apply i got the shield symbol which for my account mean i have to enter the password to apply i dont know wat to do anyone help me

    Reply
  6. David says:
    November 15, 2009 at 5:01 pm

    I found a bunch of templates in the C:\Windows\inf folder on vista.

    Reply
  7. Darrick says:
    December 6, 2009 at 8:53 pm

    David,

    What you found were a lot of mostly driver inf files. Though I do believe there is a template based on the Security Configuration Editor in there. I forget the name of the inf.

    Reply

Leave a reply



Windows 7 Video Training

Tony's Links
Tags
active directory adobe automatic window arrangement boot camera cameras CD cs5 dial-up disk DVD flash Hardware hd tune hyper-v linux mac maxivista microphone multiple monitors Office Performance photography photoshop product key record recording remote access resolution startup startup problems startup programs static system restore tablet Tips usb Video virtualbox virtual pc vmware vpn windows media player wmv xp