R
Rich S.
Hello,
I think this issue is security related so I hope this is the correct list.
My agency has had several instances where permissions change on shared
folders and sub-folders. I try to also apply security using groups. In
each instance, a security group seems to have been removed and/or replaced.
We have multiple users in my company with administrator privileges but of
course no one admits to changing anything. Political forces are currently
preventing taking steps to be more secure (renaming the administrator
account, assigning a 2nd account w/admin rights for the individuals,
changing and keeping admin account password private, etc).
As a result of this, I would like to set auditing for basically everything
on our file (and other role (ie database, application...) servers. Because
they all have multiple Gb of files, I don't want to sit for hours and watch
this happen at my desk or do it in the middle of the day and impact system
performance. Can anyone suggest a relatively quick / efficient way to do
this? Are this viable options:?
Group Policy
Windows Scripting
Other programmatic methods
Set the audit changes just before leaving for the weekend?
Anything else
TIA,
Rich
I think this issue is security related so I hope this is the correct list.
My agency has had several instances where permissions change on shared
folders and sub-folders. I try to also apply security using groups. In
each instance, a security group seems to have been removed and/or replaced.
We have multiple users in my company with administrator privileges but of
course no one admits to changing anything. Political forces are currently
preventing taking steps to be more secure (renaming the administrator
account, assigning a 2nd account w/admin rights for the individuals,
changing and keeping admin account password private, etc).
As a result of this, I would like to set auditing for basically everything
on our file (and other role (ie database, application...) servers. Because
they all have multiple Gb of files, I don't want to sit for hours and watch
this happen at my desk or do it in the middle of the day and impact system
performance. Can anyone suggest a relatively quick / efficient way to do
this? Are this viable options:?
Group Policy
Windows Scripting
Other programmatic methods
Set the audit changes just before leaving for the weekend?
Anything else
TIA,
Rich