Re: Security Auditing
From: tianyu (liuty2006_at_sina.com)
Date: 03/25/05
- Next message: Carlos Santos: "RE: ISA Server FW Client Autodiscovery"
- Previous message: Spindles7: "RE: VPN Clients cannot connect through ISA 2000"
- In reply to: hak2cz: "Security Auditing"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 25 Mar 2005 08:29:18 +0800
you can try this one, it can record block informatiom.
http://www.netfeesoftware.com/NetFee/Index.htm
"hak2cz" <hak2cz@discussions.microsoft.com> дÈëÏûÏ¢
news:EDBFFE5F-A24E-4CBB-A570-7ACA7509B120@microsoft.com...
> My team is responsible for monitoring security event logs on all ISA
servers.
> our company's requirements are to audit success/failure attempts for
servers,
> however, should there be an exception for ISA servers. The reason being,
our
> Security logs are filled too quickly due to number of success account
logons.
> There is really no need to have the success auditing turned on. for
forensic
> analysis purpose, we are only interested in failed attempts.
> Is there a set of minimum requirements for Security Audit Policy on ISA
> servers.
> Thanks, Kevin
>
> --
> Incident Response Analyst
- Next message: Carlos Santos: "RE: ISA Server FW Client Autodiscovery"
- Previous message: Spindles7: "RE: VPN Clients cannot connect through ISA 2000"
- In reply to: hak2cz: "Security Auditing"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
