Packt Least Privilege Security for Windows 7, Vista and XP 464pages software manual

Least Privilege Security for Windows 7, Vista and XP - Implement Least Privilege Security in Windows 7, Vista and XP to prevent unwanted system changes
- Achieve a seamless user experience with the different components and compatibility features of Windows and Active Directory
- Mitigate the problems and limitations many users may face when running legacy applications
- Distribute applications, updates and ActiveX Controls to least privilege users with Group Policy, application virtualization and the ActiveX Installer Service
- Ensure reliable remote access for IT administrators to support users by configuring support features and firecall access

Least Privilege Security is the practice of assigning users and programs the minimum permissions required to complete a given task. Implementing this principle in different versions of Microsoft Windows requires careful planning and a good understanding of Windows security. While there are benefits in implementing Least Privilege Security on the desktop, there are many technical challenges that you will face when restricting privileges.

This book contains detailed step-by-step instructions for implementing Least Privilege Security on the desktop for different versions of Windows and related management technologies. It will provide you with quick solutions for common technical challenges, Microsoft best practice advice, and techniques for managing Least Privilege on the desktop along with details on the impact of Least Privilege Security.

The book begins by showing you how to apply Least Privilege Security to different categories of users. You will then prepare a desktop image with Least Privilege Security enabled from the start and deploy the new image while preserving users' files and settings. You will identify problems with applications caused by Least Privilege Security using the Application Compatibility Toolkit. This book will help you configure User Account Control on multiple computers using Group Policy and support Least Privilege user accounts using reliable remote access. Then, you will modify legacy applications for Least Privilege Security, achieving the best balance between compatibility and security by using Application Compatibility shims. You will install per-machine ActiveX Controls using the ActiveX Installer Service (AxIS). The book will help you implement best practices for working with ActiveX Controls in a managed environment. Finally, you will deploy default Software Restriction Policy (SRP) or AppLocker rules to ensure only programs installed in protected locations can run and blacklist applications using SRP or AppLocker.

A practical handbook containing detailed step-by-step instructions for implementing Least Privilege Security on Windows systems

<b>What you will learn from this book :</b>
- Explore the principle of Least Privilege Security and implement it across different versions of Microsoft Windows
- Overcome the most common technical challenges of implementing Least Privilege Security on the desktop
- Apply Least Privilege Security to different categories of users and get buy-in from management
- Identify any potential compatibility problems with Least Privilege Security and software installed on networked PCs using Microsoft's Application Compatibility Toolkit (ACT)
- Prepare a desktop image with Least Privilege Security enabled from the start and deploy the new image while preserving users' files and settings
- Configure User Account Control on multiple computers using Group Policy
- Modify incompatible applications and achieve the best balance between compatibility and security by using Application Compatibility shims
- Deploy applications using Group Policy Software Installation (GPSI) and Windows Installer and create MSI wrappers for legacy setup programs
- Install per-machine ActiveX Controls using the ActiveX Installer Service (AxIS)
- Deploy default Software Restriction Policy (SRP) or AppLocker rules to ensure only programs installed in protected locations can run and blacklist applications using SRP or AppLocker

<b>Who this book is written for</b>
This book is for System Administrators or desktop support staff who want to implement Least Privilege Security on Windows systems.