Security guidelines for system services in Windows Server 2016 (2023)

Table of Contents
In this article Disabling services not installed by default Explanation of columns Explanation of Microsoft recommendations ActiveX Installer (AxInstSV) AllJoyn Router Service App Readiness Application Identity Application Information Application Layer Gateway Service Application Management AppX Deployment Service (AppXSVC) Auto Time Zone Updater Background Intelligent Transfer Service Background Tasks Infrastructure Service Base Filtering Engine Bluetooth Support Service CDPUserSvc Certificate Propagation Client License Service (ClipSVC) CNG Key Isolation COM+ System Application Computer Browser Connected Devices Platform Service Connected User Experiences and Telemetry CoreMessaging Credential Manager Cryptographic Services Data Sharing Service DataCollectionPublishingService Device Association Service Device Install Service Device Management Enrollment Service Device Setup Manager DevQuery Background Discovery Broker DHCP Client Diagnostic Policy Service Diagnostic Service Host Diagnostic System Host Distributed Link Tracking Client Distributed Transaction Coordinator dmwappushsvc DNS Client Downloaded Maps Manager Embedded Mode Encrypting File System (EFS) Enterprise App Management Service Extensible Authentication Protocol Function Discovery Provider Host Function Discovery Resource Publication Geolocation Service Group Policy Client Human Interface Device Service HV Host Service Hyper-V Data Exchange Service Hyper-V Guest Service Interface Hyper-V Guest Shutdown Service Hyper-V Heartbeat Service Hyper-V PowerShell Direct Service Hyper-V Remote Desktop Virtualization Service Hyper-V Time Synchronization Service Hyper-V Volume Shadow Copy Requestor IKE and AuthIP IPsec Keying Modules Interactive Services Detection Internet Connection Sharing (ICS) IP Helper IPsec Policy Agent KDC Proxy Server service (KPS) KtmRm for Distributed Transaction Coordinator Link-Layer Topology Discovery Mapper Local Session Manager Microsoft (R) Diagnostics Hub Standard Collector Microsoft Account Sign-in Assistant Microsoft App-V Client Microsoft iSCSI Initiator Service Microsoft Passport Microsoft Passport Container Microsoft Software Shadow Copy Provider Microsoft Storage Spaces SMP Net.Tcp Port Sharing Service Netlogon Network Connection Broker Network Connections Network Connectivity Assistant Network List Service Network Location Awareness Network Setup Service Network Store Interface Service Offline Files Optimize drives Performance Counter DLL Host Performance Logs & Alerts Phone Service Plug and Play Portable Device Enumerator Service Power Print Spooler Printer Extensions and Notifications Problem Reports and Solutions Control Panel Support Program Compatibility Assistant Service Quality Windows Audio Video Experience Radio Management Service Remote Access Auto Connection Manager Remote Access Connection Manager Remote Desktop Configuration Remote Desktop Services Remote Desktop Services UserMode Port Redirector Remote Procedure Call (RPC) Remote Procedure Call (RPC) Locator Remote Registry Resultant Set of Policy Provider Routing and Remote Access RPC Endpoint Mapper Secondary Logon Secure Socket Tunneling Protocol Service Security Accounts Manager Sensor Data Service Sensor Monitoring Service Sensor Service Server Shell Hardware Detection Smart Card Smart Card Device Enumeration Service Smart Card Removal Policy SNMP Trap Software Protection Special Administration Console Helper Spot Verifier SSDP Discovery State Repository Service Still Image Acquisition Events Storage Service Storage Tiers Management Superfetch Sync Host System Event Notification Service System Events Broker Task Scheduler TCP/IP NetBIOS Helper Telephony Themes Tile Data model server Time Broker Touch Keyboard and Handwriting Panel Service Update Orchestrator Service for Windows Update UPnP Device Host User Access Logging Service User Data Access User Data Storage User Experience Virtualization Service User Manager User Profile Service Virtual Disk Volume Shadow Copy WalletService Windows Audio Windows Audio Endpoint Builder Windows Biometric Service Windows Camera Frame Server Windows Connection Manager Windows Defender Network Inspection Service Windows Defender Service Windows Driver Foundation - User-mode Driver Framework Windows Encryption Provider Host Service Windows Error Reporting Service Windows Event Collector Windows Event Log Windows Firewall Windows Font Cache Service Windows Image Acquisition (WIA) Windows Insider Service Windows Installer Windows License Manager Service Windows Management Instrumentation Windows Mobile Hotspot Service Windows Modules Installer Windows Push Notifications System Service Windows Push Notifications User Service Windows Remote Management (WS-Management) Windows Search Windows Time Windows Update WinHTTP Web Proxy Auto-Discovery Service Wired AutoConfig WMI Performance Adapter Workstation Xbox Live Auth Manager Xbox Live Game Save Feedback In this article FAQs Videos
  • Article
  • 54 minutes to read

Applies to: Windows Server 2016 only, when used in Desktop Experience installation option

(Video) Windows Server best practice you’ll want to implement today

The Windows operating system includes many system services that provide important functionality. Different services have different default startup policies: some are started by default (automatic), some when needed (manual), and some are disabled by default and must be explicitly enabled before they can run. These defaults were chosen carefully for each service to balance performance, functionality, and security for typical customers.

However, some enterprise customers may prefer a more security-focused balance for their Windows PCs and servers, one that reduces their attack surface to the absolute minimum, and may therefore wish to fully disable all services that are not needed in their specific environments. For those customers, Microsoft® is providing the accompanying guidance regarding which services can safely be disabled for this purpose.

The guidance is only for Windows Server 2016 with Desktop Experience (unless used as a desktop replacement for end users). Beginning with Windows Server 2019, these guidelines are configured by default. Each service on the system is categorized as follows:

  • Should Disable: A security-focused enterprise will most likely prefer to disable this service and forego its functionality (see additional details below).
  • OK to Disable: This service provides functionality that is useful to some but not all enterprises, and security-focused enterprises that don't use it can safely disable it.
  • Do Not Disable: Disabling this service will impact essential functionality or prevent specific roles or features from functioning correctly. Therefore it should not be disabled.
  • (No guidance): The impact of disabling these services has not been fully evaluated. Therefore, the default configuration of these services should not be changed.

Customers can configure their Windows PCs and servers to disable selected services using the Security Templates in their Group Policies or using PowerShell automation. In some cases, the guidance includes specific Group Policy settings that disable the service's functionality directly, as an alternative to disabling the service itself.

Microsoft recommends that customers disable the following services and their respective scheduled tasks on Windows Server 2016 with Desktop Experience:

Services:

(Video) Windows Server Hardening in AWS

  1. Xbox Live Auth Manager
  2. Xbox Live Game Save

Scheduled tasks:

  1. \Microsoft\XblGameSave\XblGameSaveTask
  2. \Microsoft\XblGameSave\XblGameSaveTaskLogon

Disabling services not installed by default

Microsoft recommends against applying policies to disable services that are not installed by default.

  • The service is usually needed if the feature is installed. Installing the service or the feature requires administrative rights. Disallow the feature installation, not the service startup.
  • Blocking the Microsoft Windows service doesn't stop an admin (or non-admin in some cases) from installing a similar third-party equivalent, perhaps one with a higher security risk.
  • A baseline or benchmark that disables a non-default Windows service (for example, W3SVC) will give some auditors the mistaken impression that the technology (for example, IIS) is inherently insecure and should never be used.
  • If the feature (and service) is never installed, this just adds unnecessary bulk to the baseline and to verification work.

For all system services listed in this document, the two tables that follow offer an explanation of columns and Microsoft recommendations for enabling and disabling system services in Windows Server 2016 with Desktop Experience:

Explanation of columns

NameDescription
Service nameKey (internal) name of the service
DescriptionThe service's description, from sc.exe qdescription.
InstallationAlways installed: Service is installed on Windows Server 2016 Core and Windows Server 2016 with Desktop Experience. Only with Desktop Experience: Service is on Windows Server 2016 with Desktop Experience, but is not installed on Server Core.
Startup typeService Startup type on Windows Server 2016
RecommendationMicrosoft recommendation/advice about disabling this service on Windows Server 2016 in a typical, well-managed enterprise deployment and where the server is not being used as an end-user desktop replacement.
CommentsAdditional explanation

Explanation of Microsoft recommendations

NameDescription
Do not disableThis service should not be disabled
OK to disableThis service can be disabled if the feature it supports is not being used.
Already disabledThis service is disabled by default; no need to enforce with policy
Should be disabledThis service should never be enabled on a well-managed enterprise system.

The following tables offer Microsoft guidance on disabling system services on Windows Server 2016 with Desktop Experience:

ActiveX Installer (AxInstSV)

NameDescription
Service nameAxInstSV
DescriptionProvides User Account Control validation for the installation of ActiveX controls from the Internet and enables management of ActiveX control installation based on Group Policy settings. This service is started on demand and if disabled the installation of ActiveX controls will behave according to default browser settings.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsOK to disable if feature not needed

AllJoyn Router Service

NameDescription
Service nameAJRouter
DescriptionRoutes AllJoyn messages for the local AllJoyn clients. If this service is stopped the AllJoyn clients that do not have their own bundled routers will be unable to run.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

App Readiness

NameDescription
Service nameAppReadiness
DescriptionGets apps ready for use the first time a user signs in to this PC and when adding new apps.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationDo not disable
CommentsNone

Application Identity

NameDescription
Service nameAppIDSvc
DescriptionDetermines and verifies the identity of an application. Disabling this service will prevent AppLocker from being enforced.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Application Information

NameDescription
Service nameAppinfo
DescriptionFacilitates the running of interactive applications with additional administrative privileges. If this service is stopped, users will be unable to launch applications with the additional administrative privileges they may require to perform desired user tasks.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsSupports UAC same-desktop elevation

Application Layer Gateway Service

NameDescription
Service nameALG
DescriptionProvides support for third-party protocol plug-ins for Internet Connection Sharing
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Application Management

NameDescription
Service nameAppMgmt
DescriptionProcesses installation, removal, and enumeration requests for software deployed through Group Policy. If the service is disabled, users will be unable to install, remove, or enumerate software deployed through Group Policy. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

AppX Deployment Service (AppXSVC)

NameDescription
Service nameAppXSvc
DescriptionProvides infrastructure support for deploying Store applications. This service is started on demand and if disabled Store applications will not be deployed to the system, and may not function properly.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Auto Time Zone Updater

NameDescription
Service nametzautoupdate
DescriptionAutomatically sets the system time zone.
InstallationOnly with Desktop Experience
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Background Intelligent Transfer Service

NameDescription
Service nameBITS
DescriptionTransfers files in the background using idle network bandwidth. If the service is disabled, then any applications that depend on BITS, such as Windows Update or MSN Explorer, will be unable to automatically download programs and other information.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Background Tasks Infrastructure Service

NameDescription
Service nameBrokerInfrastructure
DescriptionWindows infrastructure service that controls which background tasks can run on the system.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Base Filtering Engine

NameDescription
Service nameBFE
DescriptionThe Base Filtering Engine (BFE) is a service that manages firewall and Internet Protocol security (IPsec) policies and implements user mode filtering. Stopping or disabling the BFE service will significantly reduce the security of the system. It will also result in unpredictable behavior in IPsec management and firewall applications.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Bluetooth Support Service

NameDescription
Service namebthserv
DescriptionThe Bluetooth service supports discovery and association of remote Bluetooth devices. Stopping or disabling this service may cause already installed Bluetooth devices to fail to operate properly and prevent new devices from being discovered or associated.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsOK to disable if not used. Another disabling mechanism: Disabling Bluetooth and Infrared Beaming

CDPUserSvc

NameDescription
Service nameCDPUserSvc
DescriptionThis user service is used for Connected Devices Platform scenarios
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationOK to disable
CommentsUser service template

Certificate Propagation

NameDescription
Service nameCertPropSvc
DescriptionCopies user certificates and root certificates from smart cards into the current user's certificate store, detects when a smart card is inserted into a smart card reader, and if needed, installs the smart card Plug and Play minidriver.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Client License Service (ClipSVC)

NameDescription
Service nameClipSVC
DescriptionProvides infrastructure support for the Microsoft Store. This service is started on demand and if disabled applications bought using Microsoft Store will not behave correctly.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

CNG Key Isolation

NameDescription
Service nameKeyIso
DescriptionThe CNG key isolation service is hosted in the LSA process. The service provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone
NameDescription
Service nameEventSystem
DescriptionSupports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components. If the service is stopped, SENS will close and will not be able to provide logon and logoff notifications. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

COM+ System Application

NameDescription
Service nameCOMSysApp
DescriptionManages the configuration and tracking of Component Object Model (COM)+-based components. If the service is stopped, most COM+-based components will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Computer Browser

NameDescription
Service nameBrowser
DescriptionMaintains an updated list of computers on the network and supplies this list to computers designated as browsers. If this service is stopped, this list will not be updated or maintained. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Connected Devices Platform Service

NameDescription
Service nameCDPSvc
DescriptionThis service is used for Connected Devices and Universal Glass scenarios
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Connected User Experiences and Telemetry

NameDescription
Service nameDiagTrack
DescriptionThe Connected User Experiences and Telemetry service enables features that support in-application and connected user experiences. Additionally, this service manages the event-driven collection and transmission of diagnostic and usage information (used to improve the experience and quality of the Windows Platform) when the diagnostics and usage privacy option settings are enabled under Feedback and Diagnostics.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone
NameDescription
Service namePimIndexMaintenanceSvc
DescriptionIndexes contact data for fast contact searching. If you stop or disable this service, contacts might be missing from your search results.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsUser service template

CoreMessaging

NameDescription
Service nameCoreMessagingRegistrar
DescriptionManages communication between system components.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Credential Manager

NameDescription
Service nameVaultSvc
DescriptionProvides secure storage and retrieval of credentials to users, applications and security service packages.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Cryptographic Services

NameDescription
Service nameCryptSvc
DescriptionProvides three management services: Catalog Database Service, which confirms the signatures of Windows files and allows new programs to be installed; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; and Automatic Root Certificate Update Service, which retrieves root certificates from Windows Update and enable scenarios such as SSL. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Data Sharing Service

NameDescription
Service nameDsSvc
DescriptionProvides data brokering between applications.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

DataCollectionPublishingService

NameDescription
Service nameDcpSvc
DescriptionThe DCP (Data Collection and Publishing) service supports first-party apps to upload data to cloud.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone
NameDescription
Service nameDcomLaunch
DescriptionThe DCOMLAUNCH service launches COM and DCOM servers in response to object activation requests. If this service is stopped or disabled, programs using COM or DCOM will not function properly. It is strongly recommended that you have the DCOMLAUNCH service running.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Device Association Service

NameDescription
Service nameDeviceAssociationService
DescriptionEnables pairing between the system and wired or wireless devices.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Device Install Service

NameDescription
Service nameDeviceInstall
DescriptionEnables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Device Management Enrollment Service

NameDescription
Service nameDmEnrollmentSvc
DescriptionPerforms Device Enrollment Activities for Device Management
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Device Setup Manager

NameDescription
Service nameDsmSvc
DescriptionEnables the detection, download and installation of device-related software. If this service is disabled, devices may be configured with outdated software, and may not work correctly.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

DevQuery Background Discovery Broker

NameDescription
Service nameDevQueryBroker
DescriptionEnables apps to discover devices with a backgroud task
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

DHCP Client

NameDescription
Service nameDhcp
DescriptionRegisters and updates IP addresses and DNS records for this computer. If this service is stopped, this computer will not receive dynamic IP addresses and DNS updates. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Diagnostic Policy Service

NameDescription
Service nameDPS
DescriptionThe Diagnostic Policy Service enables problem detection, troubleshooting and resolution for Windows components. If this service is stopped, diagnostics will no longer function.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Diagnostic Service Host

NameDescription
Service nameWdiServiceHost
DescriptionThe Diagnostic Service Host is used by the Diagnostic Policy Service to host diagnostics that need to run in a Local Service context. If this service is stopped, any diagnostics that depend on it will no longer function.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Diagnostic System Host

NameDescription
Service nameWdiSystemHost
DescriptionThe Diagnostic System Host is used by the Diagnostic Policy Service to host diagnostics that need to run in a Local System context. If this service is stopped, any diagnostics that depend on it will no longer function.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Distributed Link Tracking Client

NameDescription
Service nameTrkWks
DescriptionMaintains links between NTFS files within a computer or across computers in a network.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Distributed Transaction Coordinator

NameDescription
Service nameMSDTC
DescriptionCoordinates transactions that span multiple resource managers, such as databases, message queues, and file systems. If this service is stopped, these transactions will fail. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

dmwappushsvc

NameDescription
Service namedmwappushservice
DescriptionWAP Push Message Routing Service
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsService required on client devices for Intune, MDM and similar management technologies, and for Unified Write Filter. Not needed for Server.

DNS Client

NameDescription
Service nameDnscache
DescriptionThe DNS Client service (dnscache) caches Domain Name System (DNS) names and registers the full computer name for this computer. If the service is stopped, DNS names will continue to be resolved. However, the results of DNS name queries will not be cached and the computer's name will not be registered. If the service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Downloaded Maps Manager

NameDescription
Service nameMapsBroker
DescriptionWindows service for application access to downloaded maps. This service is started on-demand by application accessing downloaded maps. Disabling this service will prevent apps from accessing maps.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationOK to disable
CommentsDisabling breaks apps that rely on the service; OK to disable if apps not relying on it

Embedded Mode

NameDescription
Service nameembeddedmode
DescriptionThe Embedded Mode service enables scenarios related to Background Applications. Disabling this service will prevent Background Applications from being activated.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Encrypting File System (EFS)

NameDescription
Service nameEFS
DescriptionProvides the core file encryption technology used to store encrypted files on NTFS file system volumes. If this service is stopped or disabled, applications will be unable to access encrypted files.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Enterprise App Management Service

NameDescription
Service nameEntAppSvc
DescriptionEnables enterprise application management.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Extensible Authentication Protocol

NameDescription
Service nameEapHost
DescriptionThe Extensible Authentication Protocol (EAP) service provides network authentication in such scenarios as 802.1x wired and wireless, VPN, and Network Access Protection (NAP). EAP also provides application programming interfaces (APIs) that are used by network access clients, including wireless and VPN clients, during the authentication process. If you disable this service, this computer is prevented from accessing networks that require EAP authentication.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Function Discovery Provider Host

NameDescription
Service namefdPHost
DescriptionThe FDPHOST service hosts the Function Discovery (FD) network discovery providers. These FD providers supply network discovery services for the Simple Services Discovery Protocol (SSDP) and Web Services - Discovery (WS-D) protocol. Stopping or disabling the FDPHOST service will disable network discovery for these protocols when using FD. When this service is unavailable, network services using FD and relying on these discovery protocols will be unable to find network devices or resources.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Function Discovery Resource Publication

NameDescription
Service nameFDResPub
DescriptionPublishes this computer and resources attached to this computer so they can be discovered over the network. If this service is stopped, network resources will no longer be published and they will not be discovered by other computers on the network.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Geolocation Service

NameDescription
Service namelfsvc
DescriptionThis service monitors the current location of the system and manages geofences (a geographical location with associated events). If you turn off this service, applications will be unable to use or receive notifications for geolocation or geofences.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsDisabling breaks apps that rely on the service; OK to disable if apps not relying on it

Group Policy Client

NameDescription
Service namegpsvc
DescriptionThe service is responsible for applying settings configured by administrators for the computer and users through the Group Policy component. If the service is disabled, the settings will not be applied and applications and components will not be manageable through Group Policy. Any components or applications that depend on the Group Policy component might not be functional if the service is disabled.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Human Interface Device Service

NameDescription
Service namehidserv
DescriptionActivates and maintains the use of hot buttons on keyboards, remote controls, and other multimedia devices. It is recommended that you keep this service running.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

HV Host Service

NameDescription
Service nameHvHost
DescriptionProvides an interface for the Hyper-V hypervisor to provide per-partition performance counters to the host operating system.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsPerformance enhancers for guest VMs. Not used today except for explicitly populated VMs, but will be used in Application Guard

Hyper-V Data Exchange Service

NameDescription
Service namevmickvpexchange
DescriptionProvides a mechanism to exchange data between the virtual machine and the operating system running on the physical computer.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V Guest Service Interface

NameDescription
Service namevmicguestinterface
DescriptionProvides an interface for the Hyper-V host to interact with specific services running inside the virtual machine.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V Guest Shutdown Service

NameDescription
Service namevmicshutdown
DescriptionProvides a mechanism to shut down the operating system of this virtual machine from the management interfaces on the physical computer.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V Heartbeat Service

NameDescription
Service namevmicheartbeat
DescriptionMonitors the state of this virtual machine by reporting a heartbeat at regular intervals. This service helps you identify running virtual machines that have stopped responding.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V PowerShell Direct Service

NameDescription
Service namevmicvmsession
DescriptionProvides a mechanism to manage virtual machine with PowerShell via VM session without a virtual network.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V Remote Desktop Virtualization Service

NameDescription
Service namevmicrdv
DescriptionProvides a platform for communication between the virtual machine and the operating system running on the physical computer.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V Time Synchronization Service

NameDescription
Service namevmictimesync
DescriptionSynchronizes the system time of this virtual machine with the system time of the physical computer.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

Hyper-V Volume Shadow Copy Requestor

NameDescription
Service namevmicvss
DescriptionCoordinates the communications that are required to use Volume Shadow Copy Service to back up applications and data on this virtual machine from the operating system on the physical computer.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSee HvHost

IKE and AuthIP IPsec Keying Modules

NameDescription
Service nameIKEEXT
DescriptionThe IKEEXT service hosts the Internet Key Exchange (IKE) and Authenticated Internet Protocol (AuthIP) keying modules. These keying modules are used for authentication and key exchange in Internet Protocol security (IPsec). Stopping or disabling the IKEEXT service will disable IKE and AuthIP key exchange with peer computers. IPsec is typically configured to use IKE or AuthIP; therefore, stopping or disabling the IKEEXT service might result in an IPsec failure and might compromise the security of the system. It is strongly recommended that you have the IKEEXT service running.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Interactive Services Detection

NameDescription
Service nameUI0Detect
DescriptionEnables user notification of user input for interactive services, which enables access to dialogs created by interactive services when they appear. If this service is stopped, notifications of new interactive service dialogs will no longer function and there might not be access to interactive service dialogs. If this service is disabled, both notifications of and access to new interactive service dialogs will no longer function.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Internet Connection Sharing (ICS)

NameDescription
Service nameSharedAccess
DescriptionProvides network address translation, addressing, name resolution and/or intrusion prevention services for a home or small office network.
InstallationAlways installed
Startup typeManual
RecommendationOK to disable
CommentsRequired for clients used as WiFi hotspots, and also on both ends of Miracast projection. ICS can be blocked with GPO setting, "Prohibit use of Internet Connection Sharing on your DNS domain network"

IP Helper

NameDescription
Service nameiphlpsvc
DescriptionProvides tunnel connectivity using IPv6 transition technologies (6to4, ISATAP, Port Proxy, and Teredo), and IP-HTTPS. If this service is stopped, the computer will not have the enhanced connectivity benefits that these technologies offer.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

IPsec Policy Agent

NameDescription
Service namePolicyAgent
DescriptionInternet Protocol security (IPsec) supports network-level peer authentication, data origin authentication, data integrity, data confidentiality (encryption), and replay protection. This service enforces IPsec policies created through the IP Security Policies snap-in or the command-line tool "netsh ipsec". If you stop this service, you may experience network connectivity issues if your policy requires that connections use IPsec. Also, remote management of Windows Firewall is not available when this service is stopped.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

KDC Proxy Server service (KPS)

NameDescription
Service nameKPSSVC
DescriptionKDC Proxy Server service runs on edge servers to proxy Kerberos protocol messages to domain controllers on the corporate network.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

KtmRm for Distributed Transaction Coordinator

NameDescription
Service nameKtmRm
DescriptionCoordinates transactions between the Distributed Transaction Coordinator (MSDTC) and the Kernel Transaction Manager (KTM). If it is not needed, it is recommended that this service remain stopped. If it is needed, both MSDTC and KTM will start this service automatically. If this service is disabled, any MSDTC transaction interacting with a Kernel Resource Manager will fail and any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Link-Layer Topology Discovery Mapper

NameDescription
Service namelltdsvc
DescriptionCreates a Network Map, consisting of PC and device topology (connectivity) information, and metadata describing each PC and device. If this service is disabled, the Network Map will not function properly.
InstallationAlways installed
Startup typeManual
RecommendationOK to disable
CommentsOK to disable if no dependencies on Network Map

Local Session Manager

NameDescription
Service nameLSM
DescriptionCore Windows Service that manages local user sessions. Stopping or disabling this service will result in system instability.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Microsoft (R) Diagnostics Hub Standard Collector

NameDescription
Service namediagnosticshub.standardcollector.service
DescriptionDiagnostics Hub Standard Collector Service. When running, this service collects real time ETW events and processes them.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Microsoft Account Sign-in Assistant

NameDescription
Service namewlidsvc
DescriptionEnables user sign-in through Microsoft account identity services. If this service is stopped, users will not be able to log on to the computer with their Microsoft account.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsMicrosoft Accounts are N/A on Windows Server

Microsoft App-V Client

NameDescription
Service nameAppVClient
DescriptionManages App-V users and virtual applications
InstallationOnly with Desktop Experience
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Microsoft iSCSI Initiator Service

NameDescription
Service nameMSiSCSI
DescriptionManages Internet SCSI (iSCSI) sessions from this computer to remote iSCSI target devices. If this service is stopped, this computer will not be able to login or access iSCSI targets. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsOur diagnostic data indicates this is used on client as well as server. No benefit to disabling this.

Microsoft Passport

NameDescription
Service nameNgcSvc
DescriptionProvides process isolation for cryptographic keys used to authenticate to a user's associated identity providers. If this service is disabled, all uses and management of these keys will not be available, which includes machine logon and single-sign on for apps and websites. This service starts and stops automatically. It is recommended that you do not reconfigure this service.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNeeded for PIN/Hello logons, which aren't supported on Server

Microsoft Passport Container

NameDescription
Service nameNgcCtnrSvc
DescriptionManages local user identity keys used to authenticate user to identity providers as well as TPM virtual smart cards. If this service is disabled, local user identity keys and TPM virtual smart cards will not be accessible. It is recommended that you do not reconfigure this service.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Microsoft Software Shadow Copy Provider

NameDescription
Service nameswprv
DescriptionManages software-based volume shadow copies taken by the Volume Shadow Copy service. If this service is stopped, software-based volume shadow copies cannot be managed. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Microsoft Storage Spaces SMP

NameDescription
Service namesmphost
DescriptionHost service for the Microsoft Storage Spaces management provider. If this service is stopped or disabled, Storage Spaces cannot be managed.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsStorage management APIs fail without this service. Example: "Get-WmiObject -class MSFT_Disk -Namespace Root\Microsoft\Windows\Storage".

Net.Tcp Port Sharing Service

NameDescription
Service nameNetTcpPortSharing
DescriptionProvides ability to share TCP ports over the net.tcp protocol.
InstallationAlways installed
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Netlogon

NameDescription
Service nameNetlogon
DescriptionMaintains a secure channel between this computer and the domain controller for authenticating users and services. If this service is stopped, the computer may not authenticate users and services and the domain controller cannot register DNS records. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Network Connection Broker

NameDescription
Service nameNcbService
DescriptionBrokers connections that allow Microsoft Store Apps to receive notifications from the internet.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Network Connections

NameDescription
Service nameNetman
DescriptionManages objects in the Network and Dial-Up Connections folder, in which you can view both local area network and remote connections.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Network Connectivity Assistant

NameDescription
Service nameNcaSvc
DescriptionProvides DirectAccess status notification for UI components
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Network List Service

NameDescription
Service namenetprofm
DescriptionIdentifies the networks to which the computer has connected, collects and stores properties for these networks, and notifies applications when these properties change.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Network Location Awareness

NameDescription
Service nameNlaSvc
DescriptionCollects and stores configuration information for the network and notifies programs when this information is modified. If this service is stopped, configuration information might be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Network Setup Service

NameDescription
Service nameNetSetupSvc
DescriptionThe Network Setup Service manages the installation of network drivers and permits the configuration of low-level network settings. If this service is stopped, any driver installations that are in-progress may be cancelled.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Network Store Interface Service

NameDescription
Service namensi
DescriptionThis service delivers network notifications (e.g. interface addition/deleting etc) to user mode clients. Stopping this service will cause loss of network connectivity. If this service is disabled, any other services that explicitly depend on this service will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Offline Files

NameDescription
Service nameCscService
DescriptionThe Offline Files service performs maintenance activities on the Offline Files cache, responds to user logon and logoff events, implements the internals of the public API, and dispatches interesting events to those interested in Offline Files activities and changes in cache state.
InstallationOnly with Desktop Experience
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Optimize drives

NameDescription
Service namedefragsvc
DescriptionHelps the computer run more efficiently by optimizing files on storage drives.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Performance Counter DLL Host

NameDescription
Service namePerfHost
DescriptionEnables remote users and 64-bit processes to query performance counters provided by 32-bit DLLs. If this service is stopped, only local users and 32-bit processes will be able to query performance counters provided by 32-bit DLLs.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Performance Logs & Alerts

NameDescription
Service namepla
DescriptionPerformance Logs and Alerts Collects performance data from local or remote computers based on preconfigured schedule parameters, then writes the data to a log or triggers an alert. If this service is stopped, performance information will not be collected. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Phone Service

NameDescription
Service namePhoneSvc
DescriptionManages the telephony state on the device
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsUsed by modern VoIP apps

Plug and Play

NameDescription
Service namePlugPlay
DescriptionEnables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Portable Device Enumerator Service

NameDescription
Service nameWPDBusEnum
DescriptionEnforces group policy for removable mass-storage devices. Enables applications such as Windows Media Player and Image Import Wizard to transfer and synchronize content using removable mass-storage devices.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Power

NameDescription
Service namePower
DescriptionManages power policy and power policy notification delivery.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Print Spooler

NameDescription
Service nameSpooler
DescriptionThis service spools print jobs and handles interaction with the printer. If you turn off this service, you won't be able to print or see your printers.
InstallationAlways installed
Startup typeAutomatic
RecommendationOK to disable if not a print server or a DC
CommentsOn a domain controller, the installation of the DC role adds a thread to the spooler service that is responsible for performing print pruning – removing the stale print queue objects from the Active Directory. If the spooler service is not running on at least one DC in each site, then the AD has no means to remove old queues that no longer exist. "Disabling Unnecessary Services? A Word to the Wise" - Microsoft Tech Community - Ask The Performance Team Blog.

Printer Extensions and Notifications

NameDescription
Service namePrintNotify
DescriptionThis service opens custom printer dialog boxes and handles notifications from a remote print server or a printer. If you turn off this service, you won't be able to see printer extensions or notifications.
InstallationAlways installed
Startup typeManual
RecommendationOK to disable if not a print server
CommentsNone

Problem Reports and Solutions Control Panel Support

NameDescription
Service namewercplsupport
DescriptionThis service provides support for viewing, sending and deletion of system-level problem reports for the Problem Reports and Solutions control panel.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Program Compatibility Assistant Service

NameDescription
Service namePcaSvc
DescriptionThis service provides support for the Program Compatibility Assistant (PCA). PCA monitors programs installed and run by the user and detects known compatibility problems. If this service is stopped, PCA will not function properly.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationOK to disable
CommentsNone

Quality Windows Audio Video Experience

NameDescription
Service nameQWAVE
DescriptionQuality Windows Audio Video Experience (qWave) is a networking platform for Audio Video (AV) streaming applications on IP home networks. qWave enhances AV streaming performance and reliability by ensuring network quality-of-service (QoS) for AV applications. It provides mechanisms for admission control, run time monitoring and enforcement, application feedback, and traffic prioritization.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsClient-side QoS service

Radio Management Service

NameDescription
Service nameRmSvc
DescriptionRadio Management and Airplane Mode Service
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Remote Access Auto Connection Manager

NameDescription
Service nameRasAuto
DescriptionCreates a connection to a remote network whenever a program references a remote DNS or NetBIOS name or address.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Remote Access Connection Manager

NameDescription
Service nameRasMan
DescriptionManages dial-up and virtual private network (VPN) connections from this computer to the Internet or other remote networks. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Remote Desktop Configuration

NameDescription
Service nameSessionEnv
DescriptionRemote Desktop Configuration service (RDCS) is responsible for all Remote Desktop Services and Remote Desktop related configuration and session maintenance activities that require SYSTEM context. These include per-session temporary folders, RD themes, and RD certificates.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsNone

Remote Desktop Services

NameDescription
Service nameTermService
DescriptionAllows users to connect interactively to a remote computer. Remote Desktop and Remote Desktop Session Host Server depend on this service. To prevent remote use of this computer, clear the checkboxes on the Remote tab of the System properties control panel item.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsNone

Remote Desktop Services UserMode Port Redirector

NameDescription
Service nameUmRdpService
DescriptionAllows the redirection of Printers/Drives/Ports for RDP connections
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsSupports redirections on the server side of the connection.

Remote Procedure Call (RPC)

NameDescription
Service nameRpcSs
DescriptionThe RPCSS service is the Service Control Manager for COM and DCOM servers. It performs object activations requests, object exporter resolutions and distributed garbage collection for COM and DCOM servers. If this service is stopped or disabled, programs using COM or DCOM will not function properly. It is strongly recommended that you have the RPCSS service running.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Remote Procedure Call (RPC) Locator

NameDescription
Service nameRpcLocator
DescriptionIn Windows 2003 and earlier versions of Windows, the Remote Procedure Call (RPC) Locator service manages the RPC name service database. In Windows Vista and later versions of Windows, this service does not provide any functionality and is present for application compatibility.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Remote Registry

NameDescription
Service nameRemoteRegistry
DescriptionEnables remote users to modify registry settings on this computer. If this service is stopped, the registry can be modified only by users on this computer. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationDo not disable
CommentsNone

Resultant Set of Policy Provider

NameDescription
Service nameRSoPProv
DescriptionProvides a network service that processes requests to simulate application of Group Policy settings for a target user or computer in various situations and computes the Resultant Set of Policy settings.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Routing and Remote Access

NameDescription
Service nameRemoteAccess
DescriptionOffers routing services to businesses in local area and wide area network environments.
InstallationAlways installed
Startup typeDisabled
RecommendationAlready disabled
CommentsAlready disabled

RPC Endpoint Mapper

NameDescription
Service nameRpcEptMapper
DescriptionResolves RPC interfaces identifiers to transport endpoints. If this service is stopped or disabled, programs using Remote Procedure Call (RPC) services will not function properly.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Secondary Logon

NameDescription
Service nameseclogon
DescriptionEnables starting processes under alternate credentials. If this service is stopped, this type of logon access will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Secure Socket Tunneling Protocol Service

NameDescription
Service nameSstpSvc
DescriptionProvides support for the Secure Socket Tunneling Protocol (SSTP) to connect to remote computers using VPN. If this service is disabled, users will not be able to use SSTP to access remote servers.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsDisabling breaks RRAS

Security Accounts Manager

NameDescription
Service nameSamSs
DescriptionThe startup of this service signals other services that the Security Accounts Manager (SAM) is ready to accept requests. Disabling this service will prevent other services in the system from being notified when the SAM is ready, which may in turn cause those services to fail to start correctly. This service should not be disabled.
InstallationAlways installed
Startup typeAutomatic
RecommendationDo not disable
CommentsNone

Sensor Data Service

NameDescription
Service nameSensorDataService
DescriptionDelivers data from a variety of sensors
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Sensor Monitoring Service

NameDescription
Service nameSensrSvc
DescriptionMonitors various sensors in order to expose data and adapt to system and user state. If this service is stopped or disabled, the display brightness will not adapt to lighting conditions. Stopping this service may affect other system functionality and features as well.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Sensor Service

NameDescription
Service nameSensorService
DescriptionA service for sensors that manages the functionality of different sensors. Manages Simple Device Orientation (SDO) and History for sensors. Loads the SDO sensor that reports device orientation changes. If this service is stopped or disabled, the SDO sensor will not be loaded and so auto-rotation will not occur. History collection from Sensors will also be stopped.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Server

NameDescription
Service nameLanmanServer
DescriptionSupports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationDo not disable
CommentsNeeded for remote management, IPC$, SMB file sharing

Shell Hardware Detection

NameDescription
Service nameShellHWDetection
DescriptionProvides notifications for AutoPlay hardware events.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationOK to disable
CommentsNone

Smart Card

NameDescription
Service nameSCardSvr
DescriptionManages access to smart cards read by this computer. If this service is stopped, this computer will be unable to read smart cards. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Smart Card Device Enumeration Service

NameDescription
Service nameScDeviceEnum
DescriptionCreates software device nodes for all smart card readers accessible to a given session. If this service is disabled, WinRT APIs will not be able to enumerate smart card readers.
InstallationAlways installed
Startup typeManual
RecommendationOK to disable
CommentsNeeded almost exclusively for WinRT apps

Smart Card Removal Policy

NameDescription
Service nameSCPolicySvc
DescriptionAllows the system to be configured to lock the user desktop upon smart card removal.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

SNMP Trap

NameDescription
Service nameSNMPTRAP
DescriptionReceives trap messages generated by local or remote Simple Network Management Protocol (SNMP) agents and forwards the messages to SNMP management programs running on this computer. If this service is stopped, SNMP-based programs on this computer will not receive SNMP trap messages. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Software Protection

NameDescription
Service namesppsvc
DescriptionEnables the download, installation and enforcement of digital licenses for Windows and Windows applications. If the service is disabled, the operating system and licensed applications may run in a notification mode. It is strongly recommended that you not disable the Software Protection service.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Special Administration Console Helper

NameDescription
Service namesacsvr
DescriptionAllows administrators to remotely access a command prompt using Emergency Management Services.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Spot Verifier

NameDescription
Service namesvsvc
DescriptionVerifies potential file system corruptions.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

SSDP Discovery

NameDescription
Service nameSSDPSRV
DescriptionDiscovers networked devices and services that use the SSDP discovery protocol, such as UPnP devices. Also announces SSDP devices and services running on the local computer. If this service is stopped, SSDP-based devices will not be discovered. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

State Repository Service

NameDescription
Service nameStateRepository
DescriptionProvides required infrastructure support for the application model.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Still Image Acquisition Events

NameDescription
Service nameWiaRpc
DescriptionLaunches applications associated with still image acquisition events.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Storage Service

NameDescription
Service nameStorSvc
DescriptionProvides enabling services for storage settings and external storage expansion
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Storage Tiers Management

NameDescription
Service nameTieringEngineService
DescriptionOptimizes the placement of data in storage tiers on all tiered storage spaces in the system.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Superfetch

NameDescription
Service nameSysMain
DescriptionMaintains and improves system performance over time.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Sync Host

NameDescription
Service nameOneSyncSvc
DescriptionThis service synchronizes mail, contacts, calendar and various other user data. Mail and other applications dependent on this functionality will not work properly when this service is not running.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationOK to disable
CommentsUser service template

System Event Notification Service

NameDescription
Service nameSENS
DescriptionMonitors system events and notifies subscribers to COM+ Event System of these events.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

System Events Broker

NameDescription
Service nameSystemEventsBroker
DescriptionCoordinates execution of background work for WinRT application. If this service is stopped or disabled, then background work might not be triggered.
InstallationAlways installed
Startup typeAutomatic
RecommendationDo not disable
CommentsIn spite of the fact that its description implies it is only for WinRT apps, it's needed for task scheduler, broker infrastructure service, and other internal components.

Task Scheduler

NameDescription
Service nameSchedule
DescriptionEnables a user to configure and schedule automated tasks on this computer. The service also hosts multiple Windows system-critical tasks. If this service is stopped or disabled, these tasks will not be run at their scheduled times. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

TCP/IP NetBIOS Helper

NameDescription
Service namelmhosts
DescriptionProvides support for the NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution for clients on the network, therefore enabling users to share files, print, and log on to the network. If this service is stopped, these functions might be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Telephony

NameDescription
Service nameTapiSrv
DescriptionProvides Telephony API (TAPI) support for programs that control telephony devices on the local computer and, through the LAN, on servers that are also running the service.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationDo not disable
CommentsDisabling breaks RRAS

Themes

NameDescription
Service nameThemes
DescriptionProvides user experience theme management.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationDo not disable
CommentsCan't set accessibility themes when this service is disabled

Tile Data model server

NameDescription
Service nametiledatamodelsvc
DescriptionTile Server for tile updates.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationDo not disable
CommentsStart menu breaks if this service is disabled

Time Broker

NameDescription
Service nameTimeBrokerSvc
DescriptionCoordinates execution of background work for WinRT application. If this service is stopped or disabled, then background work might not be triggered.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsIn spite of the fact that its description implies it is only for WinRT apps, it's needed for task scheduler, broker infrastructure service, and other internal components.

Touch Keyboard and Handwriting Panel Service

NameDescription
Service nameTabletInputService
DescriptionEnables Touch Keyboard and Handwriting Panel pen and ink functionality
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Update Orchestrator Service for Windows Update

NameDescription
Service nameUsoSvc
DescriptionManages Windows Updates. If stopped, your devices will not be able to download and install latest updates.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsService description was missing in v1607; Windows Update (incl. WSUS) depends on this service.

UPnP Device Host

NameDescription
Service nameupnphost
DescriptionAllows UPnP devices to be hosted on this computer. If this service is stopped, any hosted UPnP devices will stop functioning and no additional hosted devices can be added. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

User Access Logging Service

NameDescription
Service nameUALSVC
DescriptionThis service logs unique client access requests, in the form of IP addresses and user names, of installed products and roles on the local server. This information can be queried, via Powershell, by administrators needing to quantify client demand of server software for offline Client Access License (CAL) management. If the service is disabled, client requests will not be logged and will not be retrievable via Powershell queries. Stopping the service will not affect query of historical data (see supporting documentation for steps to delete historical data). The local system administrator must consult his, or her, Windows Server license terms to determine the number of CALs that are required for the server software to be appropriately licensed; use of the UAL service and data does not alter this obligation.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

User Data Access

NameDescription
Service nameUserDataSvc
DescriptionProvides apps access to structured user data, including contact info, calendars, messages, and other content. If you stop or disable this service, apps that use this data might not work correctly.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsUser service template

User Data Storage

NameDescription
Service nameUnistoreSvc
DescriptionHandles storage of structured user data, including contact info, calendars, messages, and other content. If you stop or disable this service, apps that use this data might not work correctly.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsUser service template

User Experience Virtualization Service

NameDescription
Service nameUevAgentService
DescriptionProvides support for application and OS settings roaming
InstallationOnly with Desktop Experience
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

User Manager

NameDescription
Service nameUserManager
DescriptionUser Manager provides the runtime components required for multi-user interaction. If this service is stopped, some applications may not operate correctly.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

User Profile Service

NameDescription
Service nameProfSvc
DescriptionThis service is responsible for loading and unloading user profiles. If this service is stopped or disabled, users will no longer be able to successfully sign in or sign out, apps might have problems getting to users' data, and components registered to receive profile event notifications won't receive them.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Virtual Disk

NameDescription
Service namevds
DescriptionProvides management services for disks, volumes, file systems, and storage arrays.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Volume Shadow Copy

NameDescription
Service nameVSS
DescriptionManages and implements Volume Shadow Copies used for backup and other purposes. If this service is stopped, shadow copies will be unavailable for backup and the backup may fail. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

WalletService

NameDescription
Service nameWalletService
DescriptionHosts objects used by clients of the wallet
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Windows Audio

NameDescription
Service nameAudiosrv
DescriptionManages audio for Windows-based programs. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Windows Audio Endpoint Builder

NameDescription
Service nameAudioEndpointBuilder
DescriptionManages audio devices for the Windows Audio service. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Windows Biometric Service

NameDescription
Service nameWbioSrvc
DescriptionThe Windows biometric service gives client applications the ability to capture, compare, manipulate, and store biometric data without gaining direct access to any biometric hardware or samples. The service is hosted in a privileged SVCHOST process.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows Camera Frame Server

NameDescription
Service nameFrameServer
DescriptionEnables multiple clients to access video frames from camera devices.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Windows Connection Manager

NameDescription
Service nameWcmsvc
DescriptionMakes automatic connect/disconnect decisions based on the network connectivity options currently available to the PC and enables management of network connectivity based on Group Policy settings.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Defender Network Inspection Service

NameDescription
Service nameWdNisSvc
DescriptionHelps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows Defender Service

NameDescription
Service nameWinDefend
DescriptionHelps protect users from malware and other potentially unwanted software
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Driver Foundation - User-mode Driver Framework

NameDescription
Service namewudfsvc
DescriptionCreates and manages user-mode driver processes. This service cannot be stopped.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows Encryption Provider Host Service

NameDescription
Service nameWEPHOSTSVC
DescriptionWindows Encryption Provider Host Service brokers encryption related functionalities from third-party Encryption Providers to processes that need to evaluate and apply EAS policies. Stopping this will compromise EAS compliancy checks that have been established by the connected Mail Accounts
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows Error Reporting Service

NameDescription
Service nameWerSvc
DescriptionAllows errors to be reported when programs stop working or responding and allows existing solutions to be delivered. Also allows logs to be generated for diagnostic and repair services. If this service is stopped, error reporting might not work correctly and results of diagnostic services and repairs might not be displayed.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsCollects and sends crash/hang data used by both MS and third party ISVs/IHVs. The data is used to diagnose crash-inducing bugs, which may include security bugs. Also needed for Corporate Error Reporting

Windows Event Collector

NameDescription
Service nameWecsvc
DescriptionThis service manages persistent subscriptions to events from remote sources that support WS-Management protocol. This includes Windows Vista event logs, hardware and IPMI-enabled event sources. The service stores forwarded events in a local Event Log. If this service is stopped or disabled event subscriptions cannot be created and forwarded events cannot be accepted.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsCollects ETW events (including security events) for manageability, diagnostics. Lots of features and third-party tools rely on it, including security audit tools

Windows Event Log

NameDescription
Service nameEventLog
DescriptionThis service manages events and event logs. It supports logging events, querying events, subscribing to events, archiving event logs, and managing event metadata. It can display events in both XML and plain text format. Stopping this service may compromise security and reliability of the system.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Firewall

NameDescription
Service nameMpsSvc
DescriptionWindows Firewall helps protect your computer by preventing unauthorized users from gaining access to your computer through the Internet or a network.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Font Cache Service

NameDescription
Service nameFontCache
DescriptionOptimizes performance of applications by caching commonly used font data. Applications will start this service if it is not already running. It can be disabled, though doing so will degrade application performance.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Image Acquisition (WIA)

NameDescription
Service namestisvc
DescriptionProvides image acquisition services for scanners and cameras
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Windows Insider Service

NameDescription
Service namewisvc
Descriptionwisvc
InstallationAlways installed
Startup typeManual
RecommendationOK to disable
CommentsServer doesn't support flighting, so it's a no-op on Server. Feature can be disabled via GP as well.

Windows Installer

NameDescription
Service namemsiserver
DescriptionAdds, modifies, and removes applications provided as a Windows Installer (*.msi, *.msp) package. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows License Manager Service

NameDescription
Service nameLicenseManager
DescriptionProvides infrastructure support for the Microsoft Store. This service is started on demand and if disabled then content acquired through the Microsoft Store will not function properly.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows Management Instrumentation

NameDescription
Service nameWinmgmt
DescriptionProvides a common interface and object model to access management information about operating system, devices, applications and services. If this service is stopped, most Windows-based software will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Mobile Hotspot Service

NameDescription
Service nameicssvc
DescriptionProvides the ability to share a cellular data connection with another device.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsNone

Windows Modules Installer

NameDescription
Service nameTrustedInstaller
DescriptionEnables installation, modification, and removal of Windows updates and optional components. If this service is disabled, install or uninstall of Windows updates might fail for this computer.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Windows Push Notifications System Service

NameDescription
Service nameWpnService
DescriptionThis service runs in session 0 and hosts the notification platform and connection provider which handles the connection between the device and WNS server.
InstallationOnly with Desktop Experience
Startup typeAutomatic
RecommendationOK to disable
CommentsNeeded for live tiles and other features

Windows Push Notifications User Service

NameDescription
Service nameWpnUserService
DescriptionThis service hosts Windows notification platform which provides support for local and push notifications. Supported notifications are tile, toast and raw.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationOK to disable
CommentsUser service template

Windows Remote Management (WS-Management)

NameDescription
Service nameWinRM
DescriptionWindows Remote Management (WinRM) service implements the WS-Management protocol for remote management. WS-Management is a standard web services protocol used for remote software and hardware management. The WinRM service listens on the network for WS-Management requests and processes them. The WinRM Service needs to be configured with a listener using winrm.cmd command line tool or through Group Policy in order for it to listen over the network. The WinRM service provides access to WMI data and enables event collection. Event collection and subscription to events require that the service is running. WinRM messages use HTTP and HTTPS as transports. The WinRM service does not depend on IIS but is preconfigured to share a port with IIS on the same machine. The WinRM service reserves the /wsman URL prefix. To prevent conflicts with IIS, administrators should ensure that any websites hosted on IIS do not use the /wsman URL prefix.
InstallationAlways installed
Startup typeAutomatic
RecommendationDo not disable
CommentsNeeded for remote management

Windows Search

NameDescription
Service nameWSearch
DescriptionProvides content indexing, property caching, and search results for files, e-mail, and other content.
InstallationOnly with Desktop Experience
Startup typeDisabled
RecommendationAlready disabled
CommentsNone

Windows Time

NameDescription
Service nameW32Time
DescriptionMaintains date and time synchronization on all clients and servers in the network. If this service is stopped, date and time synchronization will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Windows Update

NameDescription
Service namewuauserv
DescriptionEnables the detection, download, and installation of updates for Windows and other programs. If this service is disabled, users of this computer will not be able to use Windows Update or its automatic updating feature, and programs will not be able to use the Windows Update Agent (WUA) API.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

WinHTTP Web Proxy Auto-Discovery Service

NameDescription
Service nameWinHttpAutoProxySvc
DescriptionWinHTTP implements the client HTTP stack and provides developers with a Win32 API and COM Automation component for sending HTTP requests and receiving responses. In addition, WinHTTP provides support for auto-discovering a proxy configuration via its implementation of the Web Proxy Auto-Discovery (WPAD) protocol.
InstallationAlways installed
Startup typeManual
RecommendationDo not disable
CommentsAnything that uses the network stack can have a functional dependency on this service. Many organizations rely on this to configure their internal networks' HTTP proxy routing. Without it, internally-originating HTTP connections to the Internet will all fail.

Wired AutoConfig

NameDescription
Service namedot3svc
DescriptionThe Wired AutoConfig (DOT3SVC) service is responsible for performing IEEE 802.1X authentication on Ethernet interfaces. If your current wired network deployment enforces 802.1X authentication, the DOT3SVC service should be configured to run for establishing Layer 2 connectivity and/or providing access to network resources. Wired networks that do not enforce 802.1X authentication are unaffected by the DOT3SVC service.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationNo guidance
CommentsNone

WMI Performance Adapter

NameDescription
Service namewmiApSrv
DescriptionProvides performance library information from Windows Management Instrumentation (WMI) providers to clients on the network. This service only runs when Performance Data Helper is activated.
InstallationAlways installed
Startup typeManual
RecommendationNo guidance
CommentsNone

Workstation

NameDescription
Service nameLanmanWorkstation
DescriptionCreates and maintains client network connections to remote servers using the SMB protocol. If this service is stopped, these connections will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
InstallationAlways installed
Startup typeAutomatic
RecommendationNo guidance
CommentsNone

Xbox Live Auth Manager

NameDescription
Service nameXblAuthManager
DescriptionProvides authentication and authorization services for interacting with Xbox Live. If this service is stopped, some applications may not operate correctly.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationShould be disabled
CommentsNone

Xbox Live Game Save

NameDescription
Service nameXblGameSave
DescriptionThis service syncs save data for Xbox Live save enabled games. If this service is stopped, game save data will not upload to or download from Xbox Live.
InstallationOnly with Desktop Experience
Startup typeManual
RecommendationShould be disabled
CommentsThis service syncs save data for Xbox Live save enabled games. If this service is stopped, game save data will not upload to or download from Xbox Live.

Feedback

Submit and view feedback for

(Video) Windows Server 2016 System Requirements

This product This page

(Video) How to use Storage Migration Service with Windows Admin Center

FAQs

What are the three 3 security features of Windows Server 2016? ›

These three features include Configurable Code Integrity, VSM Protected Code Integrity, and Platform and UEFI Secure Boot (which has been around since Windows 8). Collectively, these three features work together to prevent malware infections.

Show Me More
What are the recommended requirements for Windows Server 2016? ›

Windows Server 2016 Recommended Hardware Requirements
  • Processor: 3.0GHz 64 Bit Processor.
  • RAM: 8GB RAM.
  • Disk Space: 32 GB.
  • Network: Gigabit (10/100/1000baseT) Ethernet adapter, 1Gbps connection is ideal.
  • Optical Storage: DVD drive (if installing the OS from DVD media)
May 23, 2019

Learn More Now
What are your first three steps when securing a Windows server? ›

Server Security in 3 Steps
  1. Step 1 – Shut Down Access. As IT admins install appropriate software packages and applications onto servers, invariably ports are opened and services enabled. ...
  2. Step 2 – Patch Your Servers. ...
  3. Step 3 – Tightly Control User Access.
Jan 23, 2015

Know More
Which of the following services can be used on Windows Server 2016? ›

Compute
  • General. ...
  • Hyper-V. ...
  • Nano Server. ...
  • Shielded Virtual Machines. ...
  • Active Directory Certificate Services. ...
  • Active Directory Domain Services. ...
  • Active Directory Federation Services. ...
  • Web Application Proxy.
Nov 16, 2022

Discover More Details
What are the five categories of security services? ›

Define five security services to prevent security attacks— data confidentiality, data integrity, authentication, non-repudiation and access control.

Read On
What are the 3 basic security requirements? ›

Regardless of security policy goals, one cannot completely ignore any of the three major requirements—confidentiality, integrity, and availability—which support one another. For example, confidentiality is needed to protect passwords.

Find Out More
What is the main difference between Windows Server 2016 and 2019? ›

Windows Server 2016 vs 2019

Windows Server 2019 is the latest version of Microsoft Windows Server. The current version of Windows Server 2019 improves on the previous Windows 2016 version in regards with better performance, improved security, and excellent optimizations for hybrid integration.

Learn More
What are the recommended system requirements for Windows Server? ›

Windows Server 2022 Standard and Datacenter editions share the same hardware requirements. Both require a 1.4 GHz, 64-bit CPU and 512 MB of RAM; for the Desktop Experience GUI-based version, the system needs 2 GB of RAM. Additionally, 32 GB of disk space are required.

Discover More Details
What is end of life for Windows Server 2016? ›

Support Dates
ListingStart DateExtended End Date
Windows Server 2016Oct 15, 2016Jan 12, 2027

View More
What are the four 4 requirements to protect and secure the server rooms? ›

4 Best Practices For A Secure Server Room
  • Backup Data Regularly. ...
  • Keep It Cool. ...
  • Invest In Uninterruptible Power Supply Devices. ...
  • Your Server Room Needs Access Cards.

Continue Reading

What are three controls that would protect the servers? ›

There are three primary areas or classifications of security controls. These include management security, operational security, and physical security controls.

Get More Info
What security features does Windows Server 2016 have? ›

Windows Server 2016 delivers huge leaps ahead in security through specific features like Shielded VMs, Hyper V Containers, Nano Server, integrated Windows Defender, Log Analytic Insights, Credential Guard, New Administrative modes, Device Guard, Control Flow Guard and much more.

Get More Info
What are the different windows services? ›

Windows Services broadly fall into three categories depending on the actions and applications they control: Local Services, Network Services and System. Third party applications such as antivirus software may also install their own services.

Discover More
What are the Windows Server services? ›

Windows Server Services include File Services (accessing or managing files or disk storage), Printing Services (printing to a printer managed by the Software Product), Remote Access Service (accessing the Server from a remote location through a communications link, including a virtual private network), and Terminal ...

See More
What are examples of security services? ›

Examples of security services are key management, access control, and authentication.

Learn More
What are the four security services? ›

4 Essential Security Services You Need in Your Business
  • Electronic Security and Property Surveillance. This is the most basic security service that you can set up for your business. ...
  • Access Control Systems. ...
  • Cybersecurity. ...
  • Security Personnel. ...
  • Security Services for Business.

Continue Reading
What are the different types of security services? ›

Types of Security Guards
  • Government Contract Security Guards. Security guards that are hired by the government are often highly trained and armed. ...
  • In-House Security Guards. ...
  • Contract Security Guards. ...
  • Unarmed Security. ...
  • Armed Security. ...
  • Bodyguards. ...
  • Video Surveillance Operator. ...
  • Patrol Guards.

Get More Info Here
What is a security requirements checklist? ›

The Security Requirements Checklist Form is used to identify the level of security required by the contract to ensure that the appropriate personnel security screening has taken place and that appropriate safeguards are in place to ensure the protection of sensitive information and assets that may be entrusted to the ...

Continue Reading
What are the security checklist? ›

SECURITY CHECKLIST
  • Create Strong Passwords. Strong passwords are critical to system security. ...
  • Change Passwords. ...
  • Avoid Untrustworthy Downloads. ...
  • Scrutinize Attachments Carefully. ...
  • View Email Messages Individually. ...
  • Install Free Antivirus Software. ...
  • Ensure Antivirus Software is Running. ...
  • Ignore Unsolicited Emails.

See More
What are the five 5 key points to be considered before implementing security strategy? ›

5 Components to a Proactive Security Strategy
  • #1: Get visibility of all your assets. ...
  • #2: Leverage modern and intelligent technology. ...
  • #3: Connect your security solutions. ...
  • #4: Adopt comprehensive and consistent training methods. ...
  • #5: Implement response procedures to mitigate risk.
Nov 1, 2018

Continue Reading

What feature has been removed from Windows Server 2016? ›

The file Journal. dll is removed from Windows Server 2016. There is no replacement. The Security Configuration Wizard is removed.

Discover More Details
What are advantages of using Windows Server 2016 over server 2012? ›

5 Reasons to Upgrade to Windows Server 2016
  • 1) Better Security.
  • 2) Less Downtime, More Productivity.
  • 3) More Applications and Reliability.
  • 4) More RAM.
  • 5) All the Benefits of the Cloud –To Your Own Servers.
  • No Time or Resources to Upgrade? No Problem.

View More
How many versions of Windows Server 2016 are there? ›

The operating system comes in two editions, Standard and Datacenter. The purpose of our article is to reveal the differences and similarities between the two Windows Server 2016 versions. The key difference is in the type of workloads they can handle.

Learn More Now
What is the minimum amount of RAM required in order to support Windows Server 2016 with a GUI desktop? ›

Minimum: 512 MB (2 GB for Server with Desktop Experience installation option)

Discover More Details
What is the use of Windows Server 2016? ›

Microsoft Windows Server 2016 is Microsoft's server operating system (OS). It was specifically developed to serve as a platform for running networked applications. Windows Server 2016 was released for general availability on Oct. 12, 2016, and was developed concurrently with Windows 10.

Show Me More
How long will Server 2016 receive security updates? ›

Windows Server 2016 is in mainstream support starting today. Not only does this mean that this particular Windows Server only gets security updates going forward, it also means that all support ends in five years. To be exact: support ends on January 12, 2027.

Discover More
Why is it important to maintain Windows 2016 servers? ›

Why does Windows Server 2016 matter? Windows Server 2016 includes a number of new features to its core foundation, including identity management and enhanced security capabilities to ensure data and access to data maintains its integrity from end to end, regardless of whether it's stored locally or in the cloud.

View More
How many years should a server last? ›

According to a leading analyst firm's report, though, the potential lifespan of servers is between 7-10 years (typically 6 years for rack servers and up to 10 years for integrated systems), “up to three times longer than the typical replacement cycle for servers and storage arrays.”

Get More Info Here
What are the security features in Windows Server 2016? ›

Windows Server 2016 delivers huge leaps ahead in security through specific features like Shielded VMs, Hyper V Containers, Nano Server, integrated Windows Defender, Log Analytic Insights, Credential Guard, New Administrative modes, Device Guard, Control Flow Guard and much more.

Read The Full Story
What are three features of server security level? ›

There are three security features that match the database level security: authentication, authorization, and encryption.

Tell Me More

What are the 3 types of security? ›

There are four main types of security: debt securities, equity securities, derivative securities, and hybrid securities, which are a combination of debt and equity.

Continue Reading
What is security features in Windows Server? ›

Windows Server Security provides layers of protection built into the operating system to safeguard against security breaches, help block malicious attacks, and enhance the security of your virtual machines, applications, and data.

See More
What are the server security services? ›

Deleting malicious files, enabling DDoS protection, enforcing SSL encryption for connections, using server hardening patches, etc. are some major activities we do to protect the web servers. In addition, we monitor web traffic and log files for anomalies, keeping the software updated and with latest security patches.

Get More Info Here
Where is the system protection in Windows 2016? ›

Right click Start > System > Advanced System Settings > System Protection TAB
  1. And then create a manual restore point immediately. ...
  2. Now imagine that your system is corrupted and cannot boot. ...
  3. Second – System backup. ...
  4. Then find it through Windows Administrative tools > Windows Server Backup.
May 10, 2016

Read More
What are the security features of server operating systems? ›

The most common techniques used to protect operating systems include the use of antivirus software and other endpoint protection measures, regular OS patch updates, a firewall for monitoring network traffic, and enforcement of secure access through least privileges and user controls.

See Details
What is an example of system security? ›

These include firewalls, data encryption, passwords and biometrics. A firewall consists of software and hardware set up between an internal computer network and the Internet to filter out unwanted intrusions. Data encryption is the process of encoding messages so it can only be viewed by authorized individuals.

Show Me More
What are the 4 significant features of is security? ›

Locking office doors. Implementing access control using key cards or biometrics. Using video surveillance. Hiring security personnels.

Read More

Videos

1. Performance Monitoring Windows Server + How to Use Perfmon + Which counters to add in Perfmon
(PSTA: Performance & Security Testing Academy)
2. MCITP 70-640: Service Accounts
(itfreetraining)
3. 13. Windows Server 2016 Monitoring tools (Explained)
(NLB Solutions)
4. Microsoft Defender for Endpoint | Onboarding Windows Server 2016
(Concepts Work)
5. How to Use Group Managed Service Accounts Step by Step
(ShotokuTech)
6. Create and Install SSL Certificates in a Windows Server 2016
(NT-Virtual Lab)
Top Articles
Latest Posts
Article information

Author: Otha Schamberger

Last Updated: 11/18/2022

Views: 6080

Rating: 4.4 / 5 (55 voted)

Reviews: 94% of readers found this page helpful

Author information

Name: Otha Schamberger

Birthday: 1999-08-15

Address: Suite 490 606 Hammes Ferry, Carterhaven, IL 62290

Phone: +8557035444877

Job: Forward IT Agent

Hobby: Fishing, Flying, Jewelry making, Digital arts, Sand art, Parkour, tabletop games

Introduction: My name is Otha Schamberger, I am a vast, good, healthy, cheerful, energetic, gorgeous, magnificent person who loves writing and wants to share my knowledge and understanding with you.