Many customers are interested in best practices for securing their MOM 2005 deployment. Beyond the documentation we provide (see the MOM Security Center as part of the MOM 2005 Admin consoleInformation Center) here are a couple more tips:
- Use Security Configuration Wizard. This is a great tool to lock down servers that comes as part of Windows Server 2003 SP1 (as an optional component). MOM 2005 is fully supported with Agent and Management Server profiles. For more info on this tool see http://www.microsoft.com/downloads/details.aspx?familyid=812b3089-18fe-42ff-bc1e-d181ccfe5dcf&displaylang=en.
- Use low privilege action accounts for monitoring mission critical/security sensitive servers. This can be tricky depending on the Management Packs deployed but definitely worth looking into for monitoring highly secure servers. For more info see the MOM security guide on http://www.microsoft.com/downloads/details.aspx?familyid=812b3089-18fe-42ff-bc1e-d181ccfe5dcf&displaylang=en.
Hope this helps.