|
Home > Archive > BizTalk Server > April 2004 > biztalk security
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
| Mitch James 2004-04-11, 4:29 pm |
| I'm looking for some specific Biztalk Security information. A client is using the MS group policy templates like Web server, hi-sec ..etc. to lockdown their servers. I'm aware of the basic services that BT requires, but I'm looking for the specific ones,
since these templates turn off or adjust security on a wide variety of items.
What are the specific Windows 2003 services that Biztalk 2002/2004 requires.
What are the Windows process - lock pages in memory, etc that BT or it's service account requires?
Thanks
Mitch
| |
| Shaheer Abubucker 2004-04-14, 3:34 pm |
| Mitch,
Both BizTalks need WMI, IIS, Event Logs, COM+, and network access which
should include these services:
WMI services
RPC services
IIS & WWW services in order to use Messaging Manager and for the document
and map repository
All the COM+ services (Com+ Event System, COM+ System App, System Event
Notification)
MSMQ service if you are using MSMQ receive functions or if you are using
any XLANG
Event Log
DNS Client
Net Logon
Server
Network Connections
Workstation
DHCP
Thanks,
Shaheer Abubucker
Microsoft Biztalk Server Team
This posting is provided "AS IS" with no warranties,and confers no rights.
Subscribe at
http://support.microsoft.com/defaul...msdn/nospam.asp
&SD=msdn
--------------------
| Thread-Topic: biztalk security
|
| I'm looking for some specific Biztalk Security information. A client is
using the MS group policy templates like Web server, hi-sec ..etc. to
lockdown their servers. I'm aware of the basic services that BT requires,
but I'm looking for the specific ones, since these templates turn off or
adjust security on a wide variety of items.
What are the specific Windows 2003 services that Biztalk 2002/2004 requires.
What are the Windows process - lock pages in memory, etc that BT or it's
service account requires?
Thanks
Mitch
| |
| mitch james 2004-04-15, 5:48 pm |
| thanks for The information. I see a few items on the list (all of the com services) that I wasn't aware of. I'm not clear on why DHCP is a required service though.
Do you have any information on what access biztalk needs to the master database in terms of stored procedures?
Thanks
Mitch James
| |
| Shaheer Abubucker 2004-04-18, 10:53 am |
| Mitch,
DHCP for network access if you're getting dynamic IP and DNS updates on
your network.
Once BizTalk (2002 or 2004) has been installed, we don't touch the Master
database. We only call stored procs on our databases.
SQL Server itself does hit stored procs on the Master database when other
apps like BizTalk are using SQL - for example when a connection is first
made, SQL calls stored procs in the Master database to see if the user has
permissions on the database it's trying to hit.
I don't think you'd want to (or could) restrict what SQL itself can touch.
Thanks,
Shaheer Abubucker
Microsoft Biztalk Server Team
This posting is provided "AS IS" with no warranties,and confers no rights.
Subscribe at
http://support.microsoft.com/defaul...msdn/nospam.asp
&SD=msdn
--------------------
| thanks for The information. I see a few items on the list (all of the com
services) that I wasn't aware of. I'm not clear on why DHCP is a required
service though.
Do you have any information on what access biztalk needs to the master
database in terms of stored procedures?
Thanks
Mitch James
|
|
|
|
|
|