Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Windows "Object Access" auditing
Sep 18 2012 06:32PM
Glen GlenVictor com
Auditing Profiles will generate many noise events from the System and Network accounts, so it might be better to limit your target to Authenticated Users.
One solution is to DENY READ access to the Auditing GPO for the Management team.
A second solution is to write a WMI/VBScript/Powershell script...
[ more ]
Copyright 2010, SecurityFocus