Value_data: "Administrator" | "TENABLE\Domain admins" Group to only contain the "Administrator" and "TENABLE\Domain admins" user:ĭescription: "Checks Administrators members" audit policy which looks for the "Administrators" audit file can specify multiple different customer items, so it is very easy to audit lists of users in multiple groups. Lastly, the "group_name" specifies a single group for auditing.Ī single Nessus. User accounts can also refer to their domain prefix such as "MYDOMAIN\John Smith". The "value_data" variable is a list of user accounts in quotes, separated by a pipe character. The "value_type" variable must always be "POLICY_TEXT". When using this type of audit, the following items should be considered. The template for this type of audit is as follows: If you would like to perform audits of a Windows server and make sure that there is a specific list of users present in one or more groups, it is now very trivial to accomplish. The new types allow for close analysis of file, registry and service audit policies as well as which specific users are members of of a group. There are four new types of audit types available for Windows: Tenable has added several new types of configuration and security audits that can be performed by Nessus 3 against Windows servers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |