123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> Business >> View Article

Determining What To Audit And Analyzing Audit Records

Profile Picture
By Author: Shirley Green
Total Articles: 129
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

In this practice, you will create a list of audit requirements for a fictitious company, and then analyze common MCSE 2003 exams(http://www.mcsa-70-291.com) records found in the security log. Complete the exercises that follow. If you are unable to answer a question, review the lesson materials and try the question again. You can find answers to the questions in the "Questions and Answers" section at the end of the chapter.
Exercise 1: Determining What to Audit
Read the following scenario and then answer the question that follows.
Scenario You are an IT auditor at Wingtip Toys. You are asked to specify the audit requirements for a file server in the research department. The file server will store confidential research information. Files are protected by EPS encryption. Communications between researchers' workstations and the file server are protected by IPSec. Only the researchers and their workstations are allowed to access the file server.
Figure 9-23 shows the configuration for auditing for use of the Take MCSE study guides free download(http://www.examshots.com/certification/MCSE-2003-50.html) Ownership ...
... permission. To ensure that the administrator is caught, you should also audit for privilege use. Two possible events can be recorded. If the administrator attempts access while logged on interactively to the server on which the file resides, the Se_TakeownershipPrivilege, event 578, is recorded. This is a privilege usage event. However, if she takes ownership remotely, the file Take Ownership permission (WRITE_OWNER) is used. This is object access event 560. With all this noted, remember that administrators can also delete audit logs, either in their entirety or by individual events. If you have untrustworthy administrators, the only solution is to not allow them to be administrators.
Also To prevent an administrator from reading a file, you can encrypt the file. However, if you do so, make sure the administrator is not the file recovery agent. To learn why and what you can do to prevent administrators from reading sensitive files, see Lesson 5, "Designing a File Encryption and Decryption Strategy" CCNA exam(http://www.upcert.com) later in the chapter.

Total Views: 425Word Count: 329See All articles From Author

Add Comment

Business Articles

1. Etsy Data Scraping Api — Real-time Listing, Shop & Sales Data | Real Data Api
Author: Acto96

2. Simple Guide To Takshak, Mahapadma And Vasuki Kaal Sarp Dosh
Author: Pandit Rakesh Guruji

3. Replace Spreadsheet-based Processes With Erp Supply Chain Software
Author: emathew

4. Kaal Sarp Dosh Effects On Career With Nivaran Procedure Guide
Author: Vidyanand Guruji

5. Kayali Perfume For Everyday Confidence And Style
Author: Kayali perfume

6. Difference Between 2 Bhk And 3 Bhk: Which Is Better?
Author: Dharmendra

7. How Ai Is Changing Search Engine Optimization
Author: bharathi

8. Benefits Of Professional Mosquito Control Services In Chennai
Author: Nandini

9. Comparing Bond Types Based On Risk And Return Potential
Author: Ravi Fernandes

10. How Winter Weather Causes Hidden Damage To Commercial Buildings
Author: Michael

11. Target Data Scraping Api — Real-time Product, Price & Store Inventory Data | Real Data Api
Author: Acto96

12. Cleaning Solutions For Airports, Metro Stations, And Large Facilities
Author: Steve Smith

13. Monel 400 Scrap Exporters In Mumbai
Author: Akshit shah

14. Chromium Carbide Plates Manufacturers In India
Author: Mukesh Chhajed

15. Kaal Sarp Puja In Nashik – Simple Guide, Benefits And Trimbakeshwar Puja
Author: Devansh Guruji

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: