Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Domain Controller Security Event Logs

Posted on 2010-11-21
9
Medium Priority
?
1,745 Views
Last Modified: 2012-05-10
Hi,

Does anybody know what is the maximum safe size for security logs on a Win2k3 domain controller ?

If i change the event logs size on one DC, does it also replicate across all DCs?

Thanks :)
0
Comment
Question by:sproku
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
9 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 34185158
Where I am we use the NSA or DISA guides  http://iase.disa.mil/stigs/content_pages/windows_os_security.html   I'll look to see what they recommend but you can also see for your OS

No the size is not replicated but you can set it using group policy so it applies to all the servers (or DCs)

Thanks

Mike
0
 
LVL 15

Expert Comment

by:getzjd
ID: 34185166
You will need to set this on all domain controllers.  It will not replicate.

Here is some info on the sizes
http://support.microsoft.com/kb/957662
http://technet.microsoft.com/en-us/library/cc776342(WS.10).aspx
0
 
LVL 15

Expert Comment

by:getzjd
ID: 34185172
YOu could set the log sizes via a GPO on the domain controllers.

http://technet.microsoft.com/en-us/library/cc778402(WS.10).aspx
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:sproku
ID: 34185223
I see that maximum security log size that can be set is up to 4GB. What would be the cons when i set it to the max of 4GB?
0
 
LVL 15

Assisted Solution

by:getzjd
getzjd earned 186 total points
ID: 34185231
Parsing the files would take longer.  Depends on what you are wanting to do with these log files.
0
 

Author Comment

by:sproku
ID: 34185255
are there no system performance degradation when raising it to max size?
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 189 total points
ID: 34185265
0
 

Author Comment

by:sproku
ID: 34185932
i see. i guess I'll just go with archiving of the log files.

thanks guys.
0
 

Author Closing Comment

by:sproku
ID: 34185939
thanks guys
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question