To test CLA, you can copy the local system's current event log by right-clicking Logs to be Analyzed and selecting Cut Live Local Event Log. First, you need to tell CLA which event logs to analyze. Then, you can use the new shortcut in Administrative Tools to open CLA. To use CLA, you must first run setup.exe from the resource kit CD-ROM's \apps\loganalyst directory. CLA has 11 prebuilt reports that provide useful views of your systems' security activity, but you can also design custom reports.
CLA is a Microsoft Management Console (MMC) snap-in that lets you analyze the scattered Security logs of the systems in your domain as a whole. When I discovered that the valuable CyberSafe Log Analyst (CLA) is included in the Win2K Server resource kit, I did a double-take. (Be careful not to confuse the Win2K Server resource kit with the Microsoft Windows 2000 Professional Resource Kit, which is only a subset of the former.) Along the way, I point out several gotchas and drawbacks that you need to be aware of. In this article, I highlight just 10 of the many security-related reasons the resource kit is well worth its $300 price tag. However, this resource kit is especially valuable to administrators who put a premium on security. When you peruse the Microsoft Windows 2000 Server Resource Kit, you'll find the usual wealth of additional documentation and utilities that constitute a Microsoft resource kit. Before you administer Win2K, INSTALL THESE essential security-related utilities
0 kommentar(er)
