Microsoft recently published guideline documents for security hardening of Windows 2000, both for workstatios and servers, and Windows Server 2003.
The Windows 2000 document, the Windows 2000 Security Hardening Guide, provides a baseline level of coverage to be supplemented by numerous other guidelines. The Windows 2003 document, the Windows Server 2003 Security Guide, describes the implications of changes in security settings.
Windows 2003 generally installs in a more locked-down state than Windows 2000, so the guidelines for the two products are quite different. Both include a number of template files for the Windows Security Configuration Editor.