Tag: Active Directory audit

Active Directory user objects possess a number of logon metadata attributes that are valuable for Active Directory audit reporting and administration. For example, they are commonly used to identify user accounts that have been inactive for a significant period, or as “stale”...

Active Directory provides account management, authentication and authorization services that are critical for strong access governance. Accordingly, proper Active Directory auditing is essential for both cybersecurity and compliance with regulations that require strong access management. For...

Group Policy Objects (GPOs) can provide configurations for access to shared resources and devices, enable critical functionalities or establish secure environments. If some of the GPOs are deleted, users may not be able to access the Internet, modify their data, use peripherals or even log in to...

If you’re a knowledge worker, to be productive in a work environment, you’re probably going to need a user account. And you’re probably going to need to actually use this user account to login to your office and mobile devices. If you don’t, you’re probably not going to be working at that...

When it comes to change management, Scott Matteson gets it.  Too many companies today make changes without any kind of change management in place. Scott's approach even includes the mandated use of individual accounts to perform changes so that Auditing of system changes can easily be tied back to...

When it comes to security, event logs are supposed to be the best friends of an IT guy managing the environment, right? Roger Grimes from InfoWorld claims that the evidence of malicious activity can be found in Event Logs. So, if companies today already have all necessary data that points...

Because IT security breaches have become so prevalent, the common model for addressing them is often more reactive than proactive. Have you given up and given in to the idea that breaches are inevitable? Money, time and effort is put into establishing incident response teams, but often preventative...

Ask an IT manager to tell you who made what changes to system configurations in their IT infrastructure and it will often involve a time-consuming manual process of trawling through a disparate array of native audit logs from servers and network equipment. Despite being slow and insecure this...

Over the past several months I have had the pleasure of speaking with many customers who are looking to switch out their existing auditing platform for Netwrix Change Reporter Suite. They are most concerned about continuity of auditing over their critical systems to look for changes that may affect...

It had been a while since I needed to comb through event logs to figure out some change in Active Directory. Having just joined Netwrix, I thought it may be a good idea to spend some time reviewing Windows auditing and in particular What's New Windows Server with AD DS (Domain Services) logging. I...