Security Basics mailing list archives
Re: Monitoring of Admin logins
From: Tremaine Lea <security-basics () ddiction com>
Date: Tue, 10 Apr 2007 11:38:39 -0600
A common practice currently is to create what are referred to as '99' accounts. Change the administrator password to something obscenely secure, and create username99 accounts that have the required administrative privileges. Easier to keep track of makes for a good audit trail.
It should also encourage users to only login with their 99 account when they need administrative privileges.
Cheers, --- Tremaine Lea Network Security Consultant Be in pursuit of equality, but not at the expense of excellence. On 10-Apr-07, at 10:25 AM, Sohail Sarwar wrote:
Hi there, I am assuming this have been done, but how ? I would like to get notified when a user logs in to my domain as an admin(Administrator) I have several people who are using the admin account, and I would like to setup something so that it notifies me via and email that a specific person has logged in to the domain controller or windows2003 servers as the administrator. I guess something like who the user is and from where.. Is there such a thing ? Thanks, Sohail
Current thread:
- Re: Audit Windows files/folders, (continued)
- Re: Audit Windows files/folders TStark (Apr 10)
- RE: Audit Windows files/folders J.M. Seitz (Apr 10)
- Message not available
- Fwd: Audit Windows files/folders kevin fielder (Apr 11)
- Monitoring of Admin logins Sohail Sarwar (Apr 10)
- RE: Monitoring of Admin logins Petter Bruland (Apr 10)
- RE: Monitoring of Admin logins Dixon, Wayne (Apr 10)
- Re: Monitoring of Admin logins Buz Dale (Apr 10)
- Re: Monitoring of Admin logins Steven Adair (Apr 11)
- Re: Monitoring of Admin logins Steven Hollingsworth (Apr 11)