Solved

Domain Controller Security Event Logs

Posted on 2010-11-21
9
1,719 Views
Last Modified: 2012-05-10
Hi,

Does anybody know what is the maximum safe size for security logs on a Win2k3 domain controller ?

If i change the event logs size on one DC, does it also replicate across all DCs?

Thanks :)
0
Comment
Question by:sproku
  • 4
  • 3
  • 2
9 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 34185158
Where I am we use the NSA or DISA guides  http://iase.disa.mil/stigs/content_pages/windows_os_security.html   I'll look to see what they recommend but you can also see for your OS

No the size is not replicated but you can set it using group policy so it applies to all the servers (or DCs)

Thanks

Mike
0
 
LVL 15

Expert Comment

by:getzjd
ID: 34185166
You will need to set this on all domain controllers.  It will not replicate.

Here is some info on the sizes
http://support.microsoft.com/kb/957662
http://technet.microsoft.com/en-us/library/cc776342(WS.10).aspx
0
 
LVL 15

Expert Comment

by:getzjd
ID: 34185172
YOu could set the log sizes via a GPO on the domain controllers.

http://technet.microsoft.com/en-us/library/cc778402(WS.10).aspx
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:sproku
ID: 34185223
I see that maximum security log size that can be set is up to 4GB. What would be the cons when i set it to the max of 4GB?
0
 
LVL 15

Assisted Solution

by:getzjd
getzjd earned 62 total points
ID: 34185231
Parsing the files would take longer.  Depends on what you are wanting to do with these log files.
0
 

Author Comment

by:sproku
ID: 34185255
are there no system performance degradation when raising it to max size?
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 63 total points
ID: 34185265
0
 

Author Comment

by:sproku
ID: 34185932
i see. i guess I'll just go with archiving of the log files.

thanks guys.
0
 

Author Closing Comment

by:sproku
ID: 34185939
thanks guys
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now