Additional security changes in Windows Server 2008 include groups, auditing, changes to default authentication protocols, and more—which all adds up to a more secure server.
Windows Server 2008 adds several new default security groups, enabling better control of which users are allowed to do what functions. Table 23-6 shows the new groups in Windows Server 2008.
Table 23-6. New Groups in Windows Server 2008
Name of Group
New duty or role or changes from 2003
Members are authorized to perform cryptographic operations.
Certificate Service DCOM Access
Members of this group are allowed to connect to Certification Authorities in the enterprise.
Event Log Readers
Members of this group can read event ...