Windows Endpoint Security

Scope: Secure desktop endpoint in a simulated corporate environment that uses Active Directory and Windows Server 2016

  • Activated BitLocker for drive encryption on Windows Server 2016 to provide additional authentication at startup
  • Installed and configured AppLocker on client to prevent execution of unauthorized files using custom rules
  • Created a group policy to implement a firewall rule that blocks remote desktop connections to client computers using port 3389