Skip to Main Content
ISO27001 in a Windows® Environment: The best practice handbook for a Microsoft® Windows® environment, Second Edition
book

ISO27001 in a Windows® Environment: The best practice handbook for a Microsoft® Windows® environment, Second Edition

by Brian Honan
April 2010
Intermediate to advanced content levelIntermediate to advanced
310 pages
3h 35m
English
IT Governance Publishing
Content preview from ISO27001 in a Windows® Environment: The best practice handbook for a Microsoft® Windows® environment, Second Edition

Chapter 10. Auditing and Monitoring

Microsoft® Windows Server® 2008 provides a comprehensive range of auditing and logging features. If configured correctly, these features will enable you to trace all user activity on your systems in the event you need to investigate technical or security incidents.

The following sections outline some recommendations on how best to audit your Windows Server® 2008 environment.

The recommendations below are based on the guides provided by Microsoft, The Center for Internet Security, The SANS Institute and the US National Institute of Standards and Technology. Please refer to Appendix 2 for more details on these resources.

Table 52. Configuring registry auditing

Parameter

Settings

%SystemDrive%

Failures

HKLM\Software

Failures ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Windows Server® 2012 Unleashed

Windows Server® 2012 Unleashed

Rand Morimoto, Michael Noel, Guy Yardeni, Omar Droubi, Andrew Abbate, Chris Amaris

Publisher Resources

ISBN: 9781849280495Purchase book