Windows 2000 and higher editions permit you to regulate the local security settings for an exacting computer. If the computer was fraction of a domain on a network then these settings would most probable be place at the domain group policy level on a domain controller. If you are not fraction of a domain or if you are a single computer consumer then you can adjust your safety settings so that they affect the consumers of your computer or computers.

To edit the normal security policy of a Windows computer you can employ the Local Security Settings tool or the Group Policy Editor tool. The Local Security Settings tool will show you only items associated to the security of that computer while the Group Policy Editor tool will illustrate you additional items you can arrange for instance user and software settings.

To open the Local Security Policy click on Start, Programs and then Administrative Tools. Then you will contain a Local Security Policy icon inside the Administrative Tools group. If you don’t contain the Administrative Tools group showing then right click your taskbar and decide Properties. From there click on the Start Menu tab and then the Customize button. If you employ the Classic start menu check the box that says Display Administrative Tools. If you employ the regular start menu then click on the Advanced tab scroll down to System Administrative Tools and ensure Display on the All Programs menu and the Start menu. Now you will contain an Administrative Tools choice beneath your Programs menu. Now you can click on Local Security Policy.



You will observe several sections related to dissimilar areas of the security policy.

Account Policies is where you can put password policies for instance the minimum password length and how long before passwords expire. You can also system account lockout policies which can lock out a consumer if they enter the wrong password too many times.

Local Policies is where you system things such as auditing for logins, file access, policy changes and other type of events that can be logged. There is also a part for user rights assignments which permits you to fine tune what administrative tasks your consumers can perform. In the Security Options part you can grant or deny various rights such as the ability to rename the administrator account and restricting access to devices for instance the CDROM.

Public Key Policies is utilized to specify how to direct certificates and certificate life cycles. This security setting states whether certificates are automatically enrolled, transformed when they are expired and removed when they are cancel.

Software Restriction Policy is utilized as a way to identify software and control its aptitude to run on local computers. The two security levels are Disallowed and Unrestricted.

IP Security Polices (IPSEC) is a framework for a place of protocols for safety at the network layer of network communication. It is utilized to support secure exchange of packets at the IP layer and is widely utilized in Virtual Private Networks (VPNs). Windows has 3 fixed IPSEC polices. Client, Secure Server and Server. Client (Respond Only) is used to discuss with servers that request security but it’s not essential to use security if none is present. Secure Server (Require Security) does not allow unsecured communication with untrusted clients. Server (Request Security) always requests security but allows unsecured communication with clients that do not react to demand.