The Information Technology (IT) System and Network Administration site represents NIST resources for managing, maintaining, and securing IT products that are widely deployed across the organization information systems. The resources consist of NIST Special Publications and supporting automated content that can help IT operators implement recommended security baselines representing organizational policies and compliance requirements for various IT products.
The site and supporting publications have been created to assist IT professionals, in particular system administrators and information security personnel, in effectively securing various IT products. It is a complicated and time-consuming task for even experienced system administrators to know what a reasonable set of security settings are for a complex operating system and applications. NIST sought to make this task simpler, easier, and more secure by developing the publications. NIST maintains, along with IT vendors and major segments of the security community who participated in reviewing and testing the publication's security baseline settings, that the settings make a substantial improvement in the security posture of IT products.
The guides provides recommendations to assist organizations in making their IT products more secure. The settings and recommendations provide system and network administrators with the information necessary to modify the settings and to comply with local policy or special situations. The recommendations and settings provide a high level of security for IT products when used in conjunction with a sound and comprehensive local security policy and other relevant security countermeasures. The guidelines target different operational environments across the organization.
NIST does not endorse the use of any particular product or system. NIST is not mandating the use of any particular IT products nor is NIST establishing conditions or prerequisites for Federal agency procurement or deployment of any system. NIST is not precluding any Federal agency from procuring or deploying other computer hardware or software systems for which NIST has not developed a publication or configuration guide.
Lead Organizational Unit:ITL
Related Programs and Projects:
For more information regarding the Information Technology (IT) System and Network Administration project, please visit the Computer Security Resource Center (CSRC).
100 Bureau Drive