Table of Contents
- Getting Started
- Agent-Based Management
- Common Tasks
- Data Providers
- Directory Services
- Auditing
- Hosts
- Templates
- Template Properties
- Batch Update Templates
- Assign Templates
- Log Management Templates
- SCAP Compliance Monitor
- Active Directory User Monitor Templates
- File and Directory Monitor Templates
- Windows Monitor Templates
- CPU Monitor Template
- Memory Monitor Template
- Disk Space Monitor Template
- Account Lockout Monitor Template
- Audit Policy Monitor Template
- Logon As Monitor Template
- Logon Monitor Template
- Performance Counter Monitor Template
- PowerShell Template
- Process Monitor Template
- RDP Session Monitor Template
- Registry Value Monitor Template
- Service Monitor Template
- SMART Disk Monitor Template
- System Security Monitor Template
- Windows Update Template
- WMI Query Template
- Task Scheduler Template
- Clock Synchronization Template
- Defragment NTFS Disks Template
- Network and Application Monitor Templates
- SSL Certificate Monitor Templates
- Database Templates
- Email Monitor Templates
- SNMP Monitor Templates
- Windows Accounts Templates
- Monitors
- Reports
- Auto-Configurators
- Filters
- Actions
- Schedules
- Environment Variables
- Options
- SNMP
- SSH Shell
- Syslog
- System Reset
- Shared Views
- Active Directory User and Group Filters
- Assign Actions
- Assign Azure Audit Logs
- Assign Consolidated Logs
- Assign Directories
- Assign Disks
- Assign Event Logs
- Assign Files
- Assign Services
- Assign Shares
- Auto-Config Host Assignment Properties
- Define CSV and W3C Log Entry Columns
- Define Log Entry Columns
- Define Log Entry Columns with Regular Expressions
- Executable Status
- Executable Timeline
- Explicitly Assigned Logs
- File Explorer
- General Executable Properties
- Report Columns
- Report Date/Time Ranges
- Report Security Event Log Filters
- Select Folder or File
- Target Files and Sub-Directories
- Command Line Interface
- Server Configuration
- Agent Configuration
- Troubleshooting
- Terminology
Corner Bowl Server Manager
SIEM, IPS, Server Monitoring, Uptime Monitoring and Compliance Software
System Security Monitor Template
The System Security Monitor Template enables Network Administrators and ISSMs to monitor results returned from the Windows secedit command-line executable. This template is typically used by ISSMs that want to scan for DISA vulnerabilities and DoD STIG compliance.
For more information, see secedit /export.
In this Topic
To Configure the System Security Monitor Template
- From the Menu Bar, select File | New. The Create New Object View displays.
- From the Create New Object View, expand Templates | Windows Monitors then select System Security Monitor. The New Template Properties View displays.
- The Template Properties view contains 5 tabs.
Options Configuration
- Use the Security Policy checkbox to scan secedit's [System Access] section.
- Use the User Rights Assignment checkbox to scan secedit's [Privilege Rights] section.
- Click the Refresh
button to load available results.
Note
SID values, found when scanning User Rights Assignments, are automatically resolved.
- Use the Column Definitions controls to select the target properties to monitor and include in triggers and other notifications.
- Click Load Columns to execute secedit then load all relevant section key value pairs returned.
- Use the Warning and Critical triggers controls to define trigger filter criteria and value thresholds.
System Security Monitor Template Properties for DISA Vulnerability ID V-253300