Network Security: Detailed info on Re: AD Policy audit tool for Windows 2000

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

Re: AD Policy audit tool for Windows 2000

from [Raoul Armfield] Network Security

[Permanent Link]

Subject:	Re: AD Policy audit tool for Windows 2000
Date:	Thu, 25 May 2006 12:15:29 -0400

Ramsdell, Scott wrote:

Koolk3,

You want the "Group Policy Management" snap-in from Microsoft.  Should
work on 2000 as well as 2003.  The tool shows you what settings each GPO
sets.  It doesn't, to my knowledge, provide a diff from an original
install, so it isn't "ideal".  However, you can easily get a default
install config with a stand alone box and "dcpromo.exe" ;)

What we did was create an new Default domain policy and a new Default domain controller policy and use those to write our policies. This way if we ever need to go back to the default we can simply link the originals back and voila.

Raoul

--
Raoul Armfield
rarmfield at amnh dot org

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
AD Policy audit tool for Windows 2000, Koolk3 Re: AD Policy audit tool for Windows 2000, Saqib Ali Re: AD Policy audit tool for Windows 2000, Koolk3 Re: AD Policy audit tool for Windows 2000, Koolk3 RE: AD Policy audit tool for Windows 2000, Roger A. Grimes Re: AD Policy audit tool for Windows 2000, Rob McComber RE: AD Policy audit tool for Windows 2000, Ramsdell, Scott Re: AD Policy audit tool for Windows 2000, Raoul Armfield <= RE: AD Policy audit tool for Windows 2000, Crawley, Jim Re: AD Policy audit tool for Windows 2000, Koolk3

Previous by Date:	sha-1 shell extension for W2003, Murad Talukdar
Next by Date:	RE: MS Audit logs, Daniel Cid
Previous by Thread:	RE: AD Policy audit tool for Windows 2000, Ramsdell, Scott
Next by Thread:	RE: AD Policy audit tool for Windows 2000, Crawley, Jim
Indexes:	[Date] [Thread] [Top] [All Lists]