Table of Contents
- Getting Started
- Agent-Based Management
- Common Tasks
- Data Providers
- Directory Services
- Auditing
- Hosts
- Templates
- Template Properties
- Batch Update Templates
- Assign Templates
- Log Management Templates
- SCAP Compliance Monitor
- Active Directory User Monitor Templates
- File and Directory Monitor Templates
- Windows Monitor Templates
- CPU Monitor Template
- Memory Monitor Template
- Disk Space Monitor Template
- Account Lockout Monitor Template
- Audit Policy Monitor Template
- Logon As Monitor Template
- Logon Monitor Template
- Performance Counter Monitor Template
- PowerShell Template
- Process Monitor Template
- RDP Session Monitor Template
- Registry Value Monitor Template
- Service Monitor Template
- SMART Disk Monitor Template
- System Security Monitor Template
- Windows Update Template
- WMI Query Template
- Task Scheduler Template
- Clock Synchronization Template
- Defragment NTFS Disks Template
- Network and Application Monitor Templates
- SSL Certificate Monitor Templates
- Database Templates
- Email Monitor Templates
- SNMP Monitor Templates
- Windows Accounts Templates
- Monitors
- Reports
- Auto-Configurators
- Filters
- Actions
- Schedules
- Environment Variables
- Options
- SNMP
- SSH Shell
- Syslog
- System Reset
- Shared Views
- Active Directory User and Group Filters
- Assign Actions
- Assign Azure Audit Logs
- Assign Consolidated Logs
- Assign Directories
- Assign Disks
- Assign Event Logs
- Assign Files
- Assign Services
- Assign Shares
- Auto-Config Host Assignment Properties
- Define CSV and W3C Log Entry Columns
- Define Log Entry Columns
- Define Log Entry Columns with Regular Expressions
- Executable Status
- Executable Timeline
- Explicitly Assigned Logs
- File Explorer
- General Executable Properties
- Report Columns
- Report Date/Time Ranges
- Report Security Event Log Filters
- Select Folder or File
- Target Files and Sub-Directories
- Command Line Interface
- Server Configuration
- Agent Configuration
- Troubleshooting
- Terminology
Corner Bowl Server Manager
SIEM, IPS, Server Monitoring, Uptime Monitoring and Compliance Software
Windows Audit Policy Monitor Template
The Windows Audit Policy Monitor Template enables Network Administrators to capture the Windows Audit Policy of any target host then using the captured policy, apply the Windows Audit Policy to any machine as well as continually verify the Windows Audit Policy has not been modified. This template is typically used to enable Network Administrators to apply Windows Audit Policies to off-domain hosts, hosts that reside in a DMZ as well as verify all hosts that reside in a domain have the correct Windows Audit Policy applied.
In this Topic
Video Tutorial
How to Monitor and Enforce Windows Audit Policies
To Create the Windows Audit Policy Monitor Template
- From the Menu Bar, select File | New. The Create New Object View displays.
- From the Create New Object View, expand Templates | Windows Monitors then select Windows Audit Policy Monitor. The New Template Properties View displays.
- The Template Properties view contains 4 tabs.
Options Configuration
- Use the Windows server or workstation drop-down to select the target host you would like to use as a baseline while configuring this Template.
Select Host Drop-Down
Note
Once selected, the server is automatically assigned to this template and the Audit Policy Table populated with the current Windows Audit Policy.
- Use the Enforce baseline audit policy checkbox to apply the configured audit policy to each assigned host.
- Use the Audit Policy Data Table to configure the baseline policy to verify and optionally apply to each assigned host.
Windows Audit Policy Monitor and Enforcement Properties View