...
Include Page | ||||
---|---|---|---|---|
|
Section | ||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
This operation is optional, and allows optional allowing SBA administrators to configure the security settings for roles, role services, and features on the SBA. This applies security rules to the Windows Server 2008 R2 operating system on the ASM hosting the SBA, and improves system hardening (i.e., reducing its surface of vulnerabilityvulnurability). You can do so by either Applying a Predefined Security Template, or Importing a Custom Security Template of choice. The following is a list of the main groups of security rules that are modified:
|
...
Warning |
---|
Once the security template is applied, the action cannot be reversed. In order to disable the security template, the ASM has to be re-initialized. |
...
Click the Apply Stronger Security Rules Template
...
.
Panel | ||
---|---|---|
|
|
From the Apply Version drop down list, select the applicable TLS option (TLS 1.2 Only or TLS 1.0-1.2).
Info |
---|
Depending on the SBA deployment, configure the appropriate TLS version. See below for guidelines.
|
Note |
---|
For TLS 1.2 Only to work with a Skype for Business setup, ensure ASM-ROLL-UP-UPDATES_2016-10.zip or later is applied to the SBA. For installing ASM Rollups, refer to ASM Roll-up Update. |
Click Apply TLS Version.
For Microsoft SBA Security Hardening, click Apply Default Template. If SBA Security Hardening has been run on the SBA at deployment, this field will be greyed out.
|
You will need a Windows Server 2008 security template XML file created using the Microsoft Security Configuration Wizard (SCW)
...
Caption | ||||||
---|---|---|---|---|---|---|
| ||||||
|
to proceed with this operation.
Add label | ||
---|---|---|
|
...
...
0 | Figure |
---|---|
1 | View Enabled TLS Version |
...
Pagebreak |
---|