Re: Track Domain Admin.
From: Sundaram Narayanan[MSFT] (sunnar_at_online.microsoft.com)
Date: 01/28/05
- Next message: That guy.: "Windows Genuine Advantage: will it affect only XP/Longhorn?"
- Previous message: Sundaram Narayanan[MSFT]: "Re: Blue Screen of Death Message"
- In reply to: Monica: "Track Domain Admin."
- Next in thread: Danny Sanders: "Re: Track Domain Admin."
- Reply: Danny Sanders: "Re: Track Domain Admin."
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 28 Jan 2005 10:46:29 -0800
The reality is there is no way to fully audit a domain administrator in a
domain if you don't trust them. The best way to fix this kind of an issue is
not to make anybody a domain admin who is not already trustworthy. If users
want to protect information from domain admins the only way is to use EFS
but even there you need plan your policy carefully.
-- This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subjected to the terms specified at http://www.microsoft.com/info/cpyright.htm. "Monica" <Monica@discussions.microsoft.com> wrote in message news:1AFB39D6-4413-4833-AC59-53AA480994A3@microsoft.com... > The domain admins can go into any machines to see the data either by > normal > logon or share drive (c$, D$). We are asked to provide a accessing log for > this. Where can I find a accessing log for this kind of access, especially > for the later one? > Thank you!
- Next message: That guy.: "Windows Genuine Advantage: will it affect only XP/Longhorn?"
- Previous message: Sundaram Narayanan[MSFT]: "Re: Blue Screen of Death Message"
- In reply to: Monica: "Track Domain Admin."
- Next in thread: Danny Sanders: "Re: Track Domain Admin."
- Reply: Danny Sanders: "Re: Track Domain Admin."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
