Epic Fail on Intuitive Us... »
New Security Log and Audit Functionality in Windows Server 2012
Thu, 07 Jun 2012 14:21:38 GMT
Just a quick heads up that changes are coming - actually some pretty good sounding enhancements - to auditing in Windows Server 2012.
We are finally getting expression-based audit policies which will hopefully make it possible to define super granular audit policy and finally configure the noise out of the security log!
Also there are enhancements to file access, user logon auditing and new support for removable storage devices.
Stay tuned - I'll surely be posting more info as I work with the actual bits. Not to mention great webinars on the new features.
Understanding the Difference between “Account Logon” and “Logon/Logoff” Events in the Windows Security Log
Virtualization Security: What Are the Real World Risks?
SolarWinds Log & Event Manager Includes My Favorite Feature in a SIEM…
powered by Bloget™