Auditing Security and Controls of Windows® Active Directory® and Group Policy Objects

Most companies run at least some, if not all, Windows computers, and the vast majority also use Active Directory to control the network environment. This includes control over the network, security, and access to resources. It is important to understand that the domain model has changed dramatically from Windows NT 4.0 to Windows 2000 and Server 2003. This handbook focuses on the Active Directory infrastructure itself, as well as Group Policy Objects (GPOs). It is ideal whether you have never audited Windows Active Directory or GPOs or if you have done so a couple of times. This handbook will: - Expand your knowledge and push the limits of what your audit program includes. - Expose all of the nooks and crannies that need to be audited. - Solve issues regarding security control points, understanding of AD, function of GPOs, and target goals. - Teach you the terminology that can help you gather more information, perform better interviews, and help make your audit more efficient. - Pinpoint where each control point resides for a server. - Discuss how to structure the audit with regard to the aspects of the domain. - Lay out a detailed audit plan that will allow you to take the knowledge you learned and put it into action.