Re: Directory Auditing (SACLS)
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Tue, 13 Nov 2007 20:25:46 -0700
Security templates can do this, which would be great if your
machines have similar drive layouts as a group policy could
then apply broadly.
Once you have defined the security template and saved it
you would need to edit the text file to remove the DACL
part of each node for which you had defined an entry in the
template. Creating an NTFS specification in security templates
that applies only SACLs seems beyond the GUI, but once you
have removed the DACL part, they can be applied with the
Security Configuration and Analysis snapin or via import
into a GPO (but be careful there as GPOs get reapplied so
that could cause excessive reapplication).
Roger
"11001010Bob" <11001010Bob@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:B48ADD0E-AB17-45AB-81BF-51CA1CF58E3F@xxxxxxxxxxxxxxxx
Due to Security requirements I have to setup and check auditing on
directories for about 40 systems. Using auditpol.exe from the Win2K
Resource
Kit I can setup the System level auditing. Does anyone know of a similiar
command line tool or utility that will work with directory auditing
(SACLS)?
The requirements are
1. needs to be US software(Security Req)
2. easy to obtain
3. should allow both checking the audit settings remotely and configuring
the settings remotely, or using RCMD
4. Allow use in a batch file or script
Any help or ideas is appreciated
Bob
.
- Prev by Date: Discovering User Rights
- Next by Date: Re: How to make a web page only viewable by inhouse people?
- Previous by thread: Discovering User Rights
- Next by thread: Re: Directory Auditing (SACLS)
- Index(es):
