I'm trying to find a product/solution that would check a user's computer
at logon to make sure it has the latest security patches.  If it doesn't
it would not allow them to log into the network.
Does anyone know if such a solution exists?

I have started seeing a increasing number of workstations (W95 Prof +SP2
and all updates) showing event log entries (on the WKS) of logon
failures each time a users logs on to the workstations. The server shows
no errors and they can access all shares as permitted by their Group

Can you use DHCP Authorisation to stop rouge DHCP servers supplying PC with
IP addresses?
Thanks, Ben

In the Properties Pages for some of the files on my Win2003 server, the
"Allow inheritable permissions from the parent to propagate to this object
and all child objects. Include these with entries explicitly defined here."
checkbox is unchecked, while for others it is checked. ...

I have a folder which one user uses to read and write files on a regular
basis. A few other users access the folder on rare occasions.
I want to audit access to this folder for every user except the one user who
accesses the folder on a regular basis.

I have a code signing certificate that is expired months ago. I need to
renew that certificate cos' there's plenty of software signed with this
certificate. The environment is Windos 2000 server with ca root and ca
subordinate. Does anyone know a procedure to renew this ...

While I've been in the industry many years, I've never really been an admin,
and I'm new to security. I just got a dedicated server with 2003 server
intalled on it, and was wondering how dangerous is it to have a properly
configured (by someone who knows what they're doing) ...

Is there a way to give a person admin rights for Server 2003 to:
- Shutdown/start up server
- Start/stop services
- View BackupExec backup logs

My organisation have Enterprise CA in the AD domain. Its certificate will
expire within 1 year from now, so we need to renew it. It is the "lowest" CA
in tree level PKI structure (higher level Root and Sub are standalone CAs).
 Renewal event is an occasion to simplify our PKI ...

I have two Windows domains (domain "A" and domain "B", for the sake of
simplicity) with web servers sitting in both domains.  I would like to be
able to secure all the sites in both domains using CTLs, but there is a
single site in domain B that I need to prevent users in domain ...

Our server is Windows 2003 SBS R2. Group policy is configured to
redirect "My Documents" on the clients to a folder on the server. This
works great! Problem is that I need to move all these User folders to
a different hard drive because of space issues.

I have a log aggregation application that uses WMI to monitor security event
logs on Windows servers. The documentation says it requires a domain admin
account or local administrator account for access to the security logs, but I
would like to use the concept of "least privelege" ...

Due to Security requirements I have to setup and check auditing on
directories for about 40 systems. Using auditpol.exe from the Win2K Resource
Kit I can setup the System level auditing. Does anyone know of a similiar
command line tool or utility that will work with directory ...

Does anyone have any information on the Active Directory Computer
Account Password.  I am looking for something that outlines the
complexity of this password (ie length, characters used etc)\
If it makes any difference, the clients are primarily Windows XP SP2,

We have a stand alone Windows 2003 server running IIS 6 on a major corporate
network.  This computer has a Local Policy configured such that people with
non-corporate ip addresses can only view pages on the web server.  ANY other
access to the server is limited to computers with ...