As it was written on Sep 6, thus Trey Stevens typed:
Trey: Is there a place in group policy in which you can define who can read the
Trey: security logs? In our shop, we have domain controllers at sites in which the
Trey: IT staffs are not domain admins but still need to be able to see the
Trey: security logs to look for account lockouts.
Trey:
Trey:
Trey: Thanks in advance,
Trey:
Trey:
Trey: T. Stevens
CONTROL PANEL --> Administrative Tools --> Local Security Policy -->
Local Policies --> User Rights Assignment
Look for "Manage auditing and security log"
Typically only the Administrators group is the only value filled in.
But becareful, whomever you grant this permission to can erase the logs.
Thanks
Scott Birl http://concept.temple.edu/sysadmin/
Senior Systems Administrator Computer Services Temple University
====*====*====*====*====*====*====*====+====*====*====*====*====*====*==
==*====*
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
Trey: Is there a place in group policy in which you can define who can read the
Trey: security logs? In our shop, we have domain controllers at sites in which the
Trey: IT staffs are not domain admins but still need to be able to see the
Trey: security logs to look for account lockouts.
Trey:
Trey:
Trey: Thanks in advance,
Trey:
Trey:
Trey: T. Stevens
CONTROL PANEL --> Administrative Tools --> Local Security Policy -->
Local Policies --> User Rights Assignment
Look for "Manage auditing and security log"
Typically only the Administrators group is the only value filled in.
But becareful, whomever you grant this permission to can erase the logs.
Thanks
Scott Birl http://concept.temple.edu/sysadmin/
Senior Systems Administrator Computer Services Temple University
====*====*====*====*====*====*====*====+====*====*====*====*====*====*==
==*====*
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
[ reply ]