Share via


New features in security

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

New features in security

New features More information

Authorization Manager. Authorization Manager gives application developers a flexible framework for integrating role-based access control into their applications, and it lets administrators who use those applications provide access in a natural, intuitive way: through assigned user roles relating to job function.

Authorization Manager

Stored user names and passwords. This utility provides secure storage for user names and credentials that are needed to access network or Internet resources.

Stored User Names and Passwords

Software restriction policies. This new security policy enables administrators to prevent software applications from running based on a hash algorithm of the software, the software's associated file path, the software publisher's certificate, or the Internet zone that hosts the software.

Software Restriction Policies

Changes to existing technologies

 

Certification authoritities. Numerous improvements and added features are included for certification authorities.

New features in Certificate Services

Constrained delegation. With this new security feature, you can specify what services you want to trust for delegation for a server.

Delegating authentication

Effective permissions tool. This tool calculates the permissions that are granted to a specified user or group.

Effective Permissions tool

Encrypting File System (EFS) no longer requires a recovery agent.

Encrypting File System

Everyone membership. The built-in Everyone group includes Authenticated Users and Guests, but no longer includes members of the Anonymous group.

Differences in default security settings

Operation-based auditing. Operation based auditing offers more descriptive auditing events and provides you with the opportunity to choose what operations you want to audit when auditing object accesses.

Operation-based auditing on files or folders

Reapplying security defaults. This procedure enables you to easily reapply the default security settings for the Windows Server 2003 family.

Reapply default security settings