Нello,
It's clear to me how to harden winServer2003 with security configuration wizard and security templates.
But I'm a bit lost with SCM.
I have no SCCM and just wanna harden my DC.
Is the plan correct: export default DC policy to a file and import it to SCM. Then accociate imported policy with Windows Server 2008R2 SP1. Then merge imported policy with Domain Controller Policy baseline. Export and deploy customized policy on DC server.
How should I resolve conflicts while merging?