Automating security configuration tasks

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Automating security configuration tasks

By calling the Secedit.exe tool at a command prompt from a batch file or automatic task scheduler, you can use it to automatically create and apply templates, and analyze system security. You can also run it dynamically from a command prompt.

Secedit.exe is useful when you have multiple computers on which security must be analyzed or configured, and you need to perform these tasks during off-hours.

• For procedural information about using the Secedit.exe tool to perform security tasks, see Secedit.

• For information about defining Security Templates, see Security Templates.

• For more information about security configuration and analysis, see Security Configuration and Analysis.

Note

• The secedit /refreshpolicy command has been replaced with the gpupdate command. For information about how to refresh security settings, see Gpupdate.