CIS Benchmark Articles
Read articles from industry experts New Net Technologies to find out about best practices in keeping your IT systems secure.
New Net Technologies has access to security configuration benchmarks from the Center for Internet Security (CIS). Click on a link below to find out more about these benchmarks and CIS benchmark hardening.
What are the recommended Audit Policy settings for Windows when implementing logging for the PCI DSS or other security standard?
To enable logging of all relevant Windows security events to underpin your security policy, it is necessary to configure the Local Security Policy for the Server/Workstation. This can be done either directly using the Local Security Policy console or applied globally using Group Policy.
Since the introduction of the Windows Advanced Audit Policy, fine-grain control has been provided to system activity auditing. This allows detailed auditing to be applied more precisely with unwanted events being suppressed at source. The audit policy settings work in conjunction with a 'System Access Control List' (SACL). The SACL is defined for each system object (e.g. folder, file etc) and defines the access attempts to be logged.