anonymous access to security/application/system logs

Discussion in 'Active Directory' started by MikeB, May 23, 2007.

  1. MikeB

    MikeB Guest

    Just went through a security audit and was told by the auditors that we
    needed to restrict Anonymous and EVERYONE from being able to access the
    server event logs. How is this done? I am stummped because it appears to me
    that the security is correct. This is on Windows 2003 Servers.

    Thanks,

    Mike
     
    MikeB, May 23, 2007
    #1
    1. Advertisements

  2. also see:
    http://support.microsoft.com/?id=323076

    I'm not mistaken, authenticated users can access the logs locally but not
    remotely on w2k3 servers. the security log can only be accessed by admins,
    either locally or remotely.

    on w2k servers the event logs can be read by all users, except for the
    security log


    --

    Cheers,
    (HOPEFULLY THIS INFORMATION HELPS YOU!)

    # Jorge de Almeida Pinto # MVP Windows Server - Directory Services

    BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
    BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
     
    Jorge de Almeida Pinto [MVP - DS], May 23, 2007
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.