1.) Click on the "Start" menu, and choose "Run".
2.) Type "mmc" into the run dialog, and press Return.
3.) The "Microsoft Management Console" (mmc) appears. Click on the "Console" menu, and choose "Add/Remove Snap-in..."
4.) Scroll down and click on the "Security Configuration and Analysis" snap-in, and click on the "Add" button.
5.) Click on the "Close" button, and then click on the "OK" button.
6.) Right click on the "Security and Configuration Analysis" node, and choose "Open Database..."
7.) Type in any name for the security database. The security database is just temporary storage for this program. In the figure below, the user has entered the name "securityTest" for the database. Click on the "Open" button.
8.) Choose a template to import. Note that you can also make your own template using the "Security Templates" MMC Snap-in. The template is a database of recommended security settings. The following are some of the pre-defined templates that are available.
- basicdc.inf Basic Security Settings for an Active Directory Domain Controller
- basicsv.inf Basic Security Settings for a Windows 2000 Server (non-DC)
- basicwk.inf Basic Security Settings for a Windows 2000 Professional Machine
- compatws.inf LOW Security Settings for a Windows 2000 Professional machine in a mixed (NT compatible) Domain
- hisecdc.inf High Security Settings for an Active Directory Domain Controller Server
- hisecwk High Security for a Windows 2000 Server
Choose the Security Template that is appropriate for your situation (basicsv.inf is a good place to start). Click on the "Open" button.
9.) Right click on the "Security Analysis and Configuration" node in the left pane, and choose "Analyze Computer Now".
10.) The tool then compares your computer's settings to those that are recommended by the template.
11.) When the analysis is complete, navigate through all the items in the left pane. A read "X" will appear in the right pane for any settings the template recommends you change.