ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Active Directory Checklist, V1R1.2 Field Security Operations<br />
22 September 2006 Defense Information Systems Agency<br />
E. AdminSDHolder Object Procedures<br />
• Start the Active Directory Users and Computers console (“Start”, “Run…”,<br />
“dsa.msc”). Ensure that the Advanced Features item on the View menu is<br />
enabled.<br />
• Select and expand the left pane item that matches the name of the domain being<br />
reviewed.<br />
- Select the System object.<br />
- Right-click the AdminSDHolder object and select the Properties item.<br />
- On the AdminSDHolder object Properties window, select the Security tab.<br />
- Select the Advanced button and then the Auditing tab.<br />
- Compare the audit settings of the AdminSDHolder object to the specifications<br />
for AdminSDHolder Objects in Checklist appendix A.4.<br />
• If the actual audit settings are not at least as inclusive as those in the appendix,<br />
then this is a Finding.<br />
F. RID Manager$ Object Procedures<br />
• Start the Active Directory Users and Computers console (“Start”, “Run…”,<br />
“dsa.msc”). Ensure that the Advanced Features item on the View menu is<br />
enabled.<br />
• Select and expand the left pane item that matches the name of the domain being<br />
reviewed.<br />
- Select the System object.<br />
- Right-click the RID Manager$ object and select the Properties item.<br />
- On the RID Manager$ object Properties window, select the Security tab.<br />
- Select the Advanced button and then the Auditing tab.<br />
- Compare the audit settings of the RID Manager$ object to the specifications for<br />
RID Manager$ Objects in Checklist appendix A.4.<br />
• If the actual audit settings are not at least as inclusive as those in the appendix,<br />
then this is a Finding.<br />
G. Domain Controllers OU Object Procedures<br />
• Start the Active Directory Users and Computers console (“Start”, “Run…”,<br />
“dsa.msc”).<br />
• Right-click the Domain Controllers OU and select the Properties item.<br />
- On the OU Properties window, select the Security tab.<br />
- Select the Advanced button and then the Auditing tab.<br />
- Compare the audit settings of the OU to the specifications for Domain<br />
Controllers OU Objects in Checklist appendix A.4.<br />
• If the actual audit settings for the Domain Controllers OU object are not at least as<br />
inclusive as those in the appendix, then this is a Finding.<br />
This check includes the functions of Windows Checklist item 2.021. That check will be removed<br />
in future versions of the Windows Checklists.<br />
UNCLASSIFIED<br />
5-14