| 24 |
| Monitor unauthorized access on your server |
| A proactive approach to security breaches is wise--just don't kid yourself into thinking that your |
| network is completely safe. When something nefarious does find its way to your network, make |
| sure you have an audit system in place that will notify you when there's suspicious activity on your |
| If you want to enable auditing, but your computer isn't joined to a domain, follow these steps: |
| Open the Local Computer Policy console. |
| Go to Computer Management | Windows Settings | Security Settings | Local Policies | Audit Policy. |
| In the right pane, enable all of the events you want to audit. |
| If you want to assign the Audit Policy to all of the computers in a domain, you'll want to adhere to |
| Open the Active Directory Users And Computers console. |
| Now open the Group Policy object on the container you want to assign the policy to. |
| Go to the Computer Management | Windows Settings | Security Settings | Local Policies | Audit |
| Policy In The Group Policy. |
| Enable the events you want to audit. |
| If you want to monitor unauthorized access, take these steps: |
| Open Audit Logon Events in the Audit Policy pane. |
| Select Unsuccessful Logon Attempts. |
| Open the Event Viewer console and select the Security log. This is where you'll find a log of all |
| unsuccessful logon attempts |
First Previous Next Last |