ActiveDirSec.Org

The world's most trusted forum on Active Directory Security


ActiveDirSec.Org -> Active Directory Security Auditing -> Looking for an optimal set of events to audit in Active Directory
Post Info TOPIC: Looking for an optimal set of events to audit in Active Directory
WillR


Member

Status: Offline
Posts: 6
Date: May 31, 2011
Looking for an optimal set of events to audit in Active Directory
 
 

Hi Guys, we're in the midst of reviewing our Active Directory auditing settings, and were wondering if anyone had a list that enumerated the optimal set of events to audit in our Active Directory?

As you may be familiar, the risk of auditing too much is that our event logs fill up and roll over sooner than we wish them too, and the risk of not auditing all the right events is that we sometimes tend to miss important changes.

If anyone has attempted to come up with such a list, would really if you'd be willing to share your input or provide some guidance.

Thanks much in advance.



__________________

I’m sorry, but having a DB9 on the drive and not driving it is a bit like having Keira Knightley in your bed and sleeping on the couch.
Page 1 of 1  sorted by
Quick Reply

Please log in to post quick replies.
ActiveDirSec.Org -> Active Directory Security Auditing -> Looking for an optimal set of events to audit in Active Directory
Post to Facebook Post to Digg Post to Del.icio.us
Members Login
Username 
 
Password 
    Remember Me