The System Center Mobile Device Manager 2008 Security Configuration Wizard (SCW) includes three templates that you can apply to MDM servers to help enhance security by disabling functionality that is not required for the servers.

The SCW is an attack-surface reduction tool that is bundled with Microsoft Windows Server 2003. By using the SCW, you can create security templates that then can be applied to the server on which they were created or to other similarly configured servers.

The MDM SCW templates provided in this download are pre-configured by using SCW to disable functionality that is not required on each MDM server. The following SCW templates are included:

* DeviceManagementPolicy.xml - Template for MDM Device Management Server

* EnrollmentPolicy.xml - Template for MDM Enrollment Server

* GatewayPolicy.xml - Template for MDM Gateway Sever

For more information about using SCW, see "SCW Quick Start Guide" on the following
TechNet Web page:

Obtain the Server Tools here:

Resource Kit Tools - Server Tools

Network Service account requirements, as well as other security specific content:

Provide Network Service Permissions to the Certificate

Other Tools:

System Center Mobile Device Manager Resource Kit Tools

Other security content:

Security Best Practices in MDM

MDM Backup and Recovery

Security and Protection for Mobile Device Manager

Note: This information was originally contributed by Clint Koenig, Support Escalation Engineer, on the Mobile Device Manager Support Team blog: