Are there any tools or techniques or best practices for managing and controlling change on windows servers. I am concerned that not all domain administrators in my domain are following my requirment that ALL changes be documented in a change document for each server. I have noticed some bad wholesale security changes.
How can I find out when/by whom AD, File Security, and/or Configuration changes were made?
Is there software for tracking/auditing this?
PS - I have an SBS 2003 SP1 domain with 10 member servers and 60 users (all XP Pro).