Service hardening
Harden critical applications
Users with administrator rights can maliciously or inadvertently change Windows components resulting in compromises to security. Users often disable services or applications that they deem a nuisance. These "nuisance" applications include security and management applications that are critical to the protection and maintenance of systems and disabling them has detrimental consequences. Arellia can lock services down so even administrators can't stop a protected service.
To lock a service down using Arellia:
- Enable the Windows service inventory policy
- (optional) Create a Service Security Descriptor
- Set restrictive service security client task
To set the service security descriptor to the default using Arellia use the Set standard service security client task.