Standard Security Practices for Windows NT

 Last reviewed: November 24, 1997
Article ID: Q166992
The information in this article applies to:
  • Microsoft Windows NT operating system version 3.1
  • Microsoft Windows NT Advanced Server version 3.1
  • Microsoft Windows NT Workstation versions 3.5, 3.51, and 4.0
  • Microsoft Windows NT Server versions 3.5, 3.51, and 4.0

SUMMARY

Any security breach that requires access to administrative privileges needs to be dealt with using the appropriate security policy. This applies to all commercial operating systems, including Windows NT and UNIX.

MORE INFORMATION

Security is achieved through a combination of technology and policy. In order to maintain a highly secure environment, standard security practices should be followed, including:

  • Only trusted individuals should be granted Administrator privileges on the system.
  • The Administrator account should not be intended for casual use.
  • The Administrator account should only be used to administer the network or domain.
  • The Domain controllers should be physically secured.
  • Maintain a strong password policy. See http://www.microsoft.com/ security/guide.htm.
  • Rename the Administrator account.
  • Never run untrusted programs while logged in as Administrator.

For more information on other security topics, see the Microsoft Security Advisor site at: http://www.microsoft.com/security/.

Additional query words: hack ee times response
Keywords : ntdomain ntsecurity NTSrvWkst
Version : WinNT:3.1,3.5,3.51,4.0
Platform : winnt
Issue type : kbinfo

THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.

Last reviewed: November 24, 1997
© 1998 Microsoft Corporation. All rights reserved. Terms of Use.