LogRhythm 5.0 Opens New F... |
Recommendation Withdrawn:... »
New Audit Features in Windows 7 and Windows Server 2008 R2
Fri, 11 Sep 2009 04:31:27 GMT
Just a quick note about the new audit/security log features in Windows 7 and Windows Server 2008 R2:
- You can finally configure audit subcategories via group policy! No more need for running auditpol scripts on thousands of computers.
- Global audit policies for files and other objects. This allows you to configure system wide audit policies for different file types. The global policies are supposed to help you ensure all desired objects are audited without having to find and configure auditing at each location where such objects exist.
- Object access events now provide more information as to why access was allowed or denied by reporting the particular access control entries that played a part.
More to come on these new features in an upcoming webinar. Subscribe to my newsletter in order to be notified.
Understanding the Difference between “Account Logon” and “Logon/Logoff” Events in the Windows Security Log
SolarWinds Log & Event Manager Includes My Favorite Feature in a SIEM…
Virtualization Security: What Are the Real World Risks?
powered by Bloget™