Terminal Services Auditing?

• Previous message: avishver: "DOT NET & J2EE"
• In reply to: Wesley T. Scott: "RE: Terminal Services Manager as a non-admin user."
• Next in thread: Erik Birkholz: "Re: Terminal Services Auditing?"
• Maybe reply: Erik Birkholz: "Re: Terminal Services Auditing?"
• Maybe reply: Geoffrey Shorter: "Re: Terminal Services Auditing?"
• Maybe reply: Kamran Muzaffer: "RE: Terminal Services Auditing?"
• Maybe reply: Erik Birkholz: "RE: Terminal Services Auditing?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <focus-ms@securityfocus.com>
Date: Fri, 24 Oct 2003 15:05:19 -0200

Hi all,

continuing the TS subject, I think that someone is having access to one of
my servers thru Terminal Services... anyone know how can I audit these TS
logins?? I looked at the events but didn't find any ip logged.

Thanks

---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_focus-ms_031015
---------------------------------------------------------------------------

• Previous message: avishver: "DOT NET & J2EE"
• In reply to: Wesley T. Scott: "RE: Terminal Services Manager as a non-admin user."
• Next in thread: Erik Birkholz: "Re: Terminal Services Auditing?"
• Maybe reply: Erik Birkholz: "Re: Terminal Services Auditing?"
• Maybe reply: Geoffrey Shorter: "Re: Terminal Services Auditing?"
• Maybe reply: Kamran Muzaffer: "RE: Terminal Services Auditing?"
• Maybe reply: Erik Birkholz: "RE: Terminal Services Auditing?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]