NAV 5.00: Security Hardening Guide White Paper

Previous | Next | View all files | View Slideshow
posted by Erik P. Ernst
Mar 31, 2007
Downloads: 702
File size: 565.8kB
Views: 1,705
NAV 5.00: Security Hardening Guide White Paper

Microsoft Dynamics NAV 5.00 Security Hardening Guide White Paper

Introduction
Microsoft® provides operating systems with sophisticated standards-based network security. In the broadest sense, security involves planning and considering trade-offs. For example, a computer can be locked in a vault and only made accessible to one system administrator. This computer may be secure, but it is not very useful because it is not connected to any other computer. You need to consider how to make the network as secure as possible without sacrificing usability. Most organizations plan for external attacks and construct firewalls, but many companies do not consider how to mitigate a security breach once a malicious user gets inside the firewall. Security measures only work well if users are not required to perform too many procedures and steps to conduct business in a secure manner. Implementing security policies should be as easy as possible for users or they will tend to find less secure ways of doing things.

Table of Contents
Introduction
Microsoft Dynamics NAV Security Best Practices
The C/SIDE Database Server for Dynamics NAV and TCPS
Making the Server Service Secure
  SQL Server
C/SIDE Database Server for Microsoft Dynamics NAV
Application Server for Microsoft Dynamics NAV
Automated Data Capture Systems for Microsoft Dynamics NAV
Dynamics NAV Employee Portal
Passwords and Database Access
Backups
Operating System and Updates
License Files
Recovery Plan
Physical Security
The Employees
The Administrator
Securing the Server Operating System
Authentication
Strong Passwords
  Defining the Password Policy
Defining an Account Lockout Policy
Access Control
  Permissions
  Ownership of Objects
  Inheritance of Permissions
  User Rights
  Object Auditing
  Access Control Best Practices
External Security Firewall
ISA Server 2006
ISA Server Policies
Virus Protection
Types of Viruses
  Boot-Sector Viruses
  File-Infecting Viruses
  Trojan Horse Programs
Virus Protection Best Practices
Network Security Strategies
Wireless Networks
Network Security Scenarios
  No Firewall
  One Simple Firewall
  One Existing Firewall
  Two Existing Firewalls
Managing Security Updates
SQL Server Security Settings
Appendix
Links in this Document

Original file name: W1W1 Security Hardening Guide 5.00.pdf