Solved

How do I enable file system auditing via VBS?

Posted on 2010-09-07
5
679 Views
Last Modified: 2012-05-10
Hi Everyone,

I'm looking to enable file system auditing for all local administrators across a very large number of windows servers (2000/2003/2008) and need to know if this can be scripted (VBS preferred). I have created and exported a security INF profile and know this can be imported on a server to apply changes. But since I need to apply these settings on a large number of systems, importing this INF on each server is not going to be feasible.

Please help.

Thanks!
0
Comment
Question by:jspirko
  • 3
  • 2
5 Comments
 
LVL 65

Expert Comment

by:RobSampson
ID: 33623230
Hi, it would probably be easiest to automate the install of the INF onto each server.  What is the comand that you use to do this?  We could probably just put that command in a central batch file, then use PSExec to run the batch file on each server...

Regards,

Rob.
0
 

Author Comment

by:jspirko
ID: 33626944
On a test machine I modified the local security policy with the settings that I needed. Then I export the security settings to an INF file (Local Security Policy > Security Settings > Right-Click > Export Policy). Then on the target server I can import the INF file (Local Security Policy > Security Settings > Right-Click > Import Policy).

So far I've done this manually as stated above. If there is a way to automate this that would be great.

Thanks,

Jason
0
 

Author Comment

by:jspirko
ID: 33626960
I'm not worried how to deploy the script to the servers. We have HP Opsware in our environment that we can use to push the script out.

~ Jason
0
 
LVL 65

Accepted Solution

by:
RobSampson earned 500 total points
ID: 33632618
OK, it looks like SecEdit will be the tool for this job, but I can't see the different between the /configure and /import options.

I have a feeling you're more after the /configure option though.  There's a few deployment methods here that should help you.  It appears you can use the secedit command rolled out to import the settings, or even use GPO.
http://www.windowsecurity.com/articles/Baselining-Security-Templates.html

Another document here might give you more info:
http://www.governmentsecurity.org/articles/step-by-step-guide-using-security-configuration-toolset.html

But that should get you well on the way, as long as you can figure out the secedit command.

Regards,

Rob.
0
 

Author Comment

by:jspirko
ID: 33775516
Thanks. I used the following SecEdit command to import the security template:

Secedit /configure /db secedit.sdb /cfg"c:\temp\custom.inf"
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
Introduction During my participation as a VBScript contributor at Experts Exchange, one of the most common questions I come across is this: "I have a script that runs against only one computer. How can I make it run against a list of computers in …
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
Edureka is one of the fastest growing and most effective online learning sites.  We are here to help you succeed.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now