Welcome to Scribd!

Skip carousel

Active Directory For IT Auditors: Where Does Group Policy Fit In?

Uploaded by

ArnoldQuiranteJustiniana

0% found this document useful (0 votes)

4K views9 pages

webinar

Original Title

Webinar 126 Slides

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

webinar

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

4K views9 pages

Active Directory For IT Auditors: Where Does Group Policy Fit In?

Uploaded by

ArnoldQuiranteJustiniana

webinar

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 9

Search inside document

UltimateWindowsSecurity.

com

Active Directory for IT Auditors:

Where Does Group Policy Fit In?
Made possible by Randys On Demand, Interactive training course:
Audit and Assessment of Active Directory
Same 3-day course as in-person training
Only $595 and includes AD audit program (available separately for $200)
www.ultimatewindowssecurity.com/training/oiportal.aspx

Become an AD audit expert

Everything in this webinar comes from my course
and audit program
AD Audit Program
$200
www.ultimatewindowssecurity.com/itaudit/programs/ad

On Demand Interactive Training: Audit and

Assessment of Active Directory
Only $595
Includes the AD audit program
www.ultimatewindowssecurity.com/training/oiPortal.aspx

2011 Monterey Technology Group Inc.

UltimateWindowsSecurity.com

Preview of Key Points

Group Policy
What it does
Where does it fit into audits?
How it works
Become an AD audit expert

2011 Monterey Technology Group Inc.

What Group Policy Does

Centralized, automated control of configuration
Especially security settings, user desktop
restrictions

2011 Monterey Technology Group Inc.

UltimateWindowsSecurity.com

The Big Question

Where does Group Policy fit into IT audits?
Group policy might reside in AD
But
Group policy controls
Workstations
Servers
Not Active Directory

The Big Question

Where does Group Policy fit into IT audits?
4 different types of audits in MS environment
Workstations

Active
Directory

Applications

2011 Monterey Technology Group Inc.

Servers

UltimateWindowsSecurity.com

The Big Question

Where does Group Policy fit into IT audits?
4 different types of audits in MS environment
Workstations

Group Policy

Active
Directory

Applications

Servers

How Does Group Policy Work

Dont get hung up on the word group
First quick look at a GPO
Assign a GPO to an OU

2011 Monterey Technology Group Inc.

UltimateWindowsSecurity.com

How Does Group Policy Work

But, much more involved
What if multiple GPOs define conflicting settings?
How can you can override normal GPO behavior to
handle special requirements?
How can you be sure GPOs be applied the way
admins think they are?

What if GPOs conflict?

On the same OU
Priority
On different OUs
GPOs on lower OUs
override GPOs on higher
OUs

organizational
units

Audit policy:
- logon/logoff enabled
- all others disabled

Acme

Audit policy:
- use user rights enabled
- all others undefined

Benefits
Audit policy:
- use of user rights disabled
- object access enabled
- all others undefined

Recruiting

Audit policy:
- logon/logoff enabled
- object access enabled
- all others disabled

RecruitSvr1

2011 Monterey Technology Group Inc.

UltimateWindowsSecurity.com

Controlling Inheritance
with Enforced Policies
Two GPOs at root of domain
No Override & Enforced mean
the same thing
GPO1 blocks but Enforced/No
override GPO2 punches
through to the server

GPO2

GPO1

(no override)

Acme

(block policy
inheritance)

Recruiting

Benefits

RecruitSvr1

What if GPOs conflict?

Sequence of
application (last
applied wins)

Computer
Startup Applying Computer
Configuration

Local Computers
GPO

GPOs
linked to computers

GPOs
linked to users

GPOs
linked to computers

GPOs
linked to users

Site

Domain

Organizational
Units

2011 Monterey Technology Group Inc.

User Logon Applying

User
Configuration

Site

Domain

Organizational
Units

UltimateWindowsSecurity.com

What if GPOs conflict?

GPO at
domain root
User
Configuration

Computer
Configuration

HumanResources OU

Finance OU
GPO
User
Configuration

GPO

Computer
Configuration

User
Configuration

Computer
Configuration

GPO
User
Configuration

Computer
account

Not
applied

Computer
Configuration

Bobs user
account

Bob logs on
at a computer
in HR

Computer Configuration based upon computers location in AD.

User Configuration based on users location in AD.

Controlling Inheritance
Domains are the boundary
GPOs on parent domains do not flow to child
domains
Container level option
Block

2011 Monterey Technology Group Inc.

UltimateWindowsSecurity.com

Verifying results
Group Policy Results Wizard

Become an AD audit expert

Everything in this webinar comes from my course
and audit program
AD Audit Program
$200
www.ultimatewindowssecurity.com/itaudit/programs/ad

On Demand Interactive Training: Audit and

Assessment of Active Directory
Only $595
Includes the AD audit program
www.ultimatewindowssecurity.com/training/oiPortal.aspx

2011 Monterey Technology Group Inc.

UltimateWindowsSecurity.com

Bottom Line
Group Policy
Resides in AD but is not a control for AD
Control for
Workstations
Servers

Take a free sample of my course

www.ultimatewindowssecurity.com/training/oiPortal.aspx

2011 Monterey Technology Group Inc.

Windows Server Administration Course - I: Itcstc Restricted
Document15 pages
Windows Server Administration Course - I: Itcstc Restricted
Nyo Zin
No ratings yet
Group Policy
Document11 pages
Group Policy
hmjoin
No ratings yet
Grouppolicybestpractices 160617122000 PDF
Document23 pages
Grouppolicybestpractices 160617122000 PDF
Insan Reynil
No ratings yet
70-640 Lesson10 PPT 041009
Document31 pages
70-640 Lesson10 PPT 041009
addislibro
No ratings yet
Group Policy Best Practices
Document10 pages
Group Policy Best Practices
Douglas Powers
No ratings yet
Group Policy Interview Questions and Answers-2
Document3 pages
Group Policy Interview Questions and Answers-2
Srinivas Kumar
No ratings yet
Understanding Group Policy: James Michael Stewart
Document19 pages
Understanding Group Policy: James Michael Stewart
mohammedfereje sulieman
No ratings yet
Group Policy Interview Questions
Document6 pages
Group Policy Interview Questions
mushahid
100% (1)
Managing System and Group Policies
Document16 pages
Managing System and Group Policies
Ila Murugu
No ratings yet
Active Directory Group Policy
Document4 pages
Active Directory Group Policy
Maya Mohan Sagar
No ratings yet
Active Directory Group Policy Interview Questions and Answers
Document5 pages
Active Directory Group Policy Interview Questions and Answers
ksrpiramma
No ratings yet
PS WP PC Power Management GPO en
Document9 pages
PS WP PC Power Management GPO en
M.Amir Ansari
No ratings yet
Windows Audit Policy Best Practices
Document7 pages
Windows Audit Policy Best Practices
Enkhsaikhan Gereldamba
No ratings yet
Mod 06 Exercise 4
Document7 pages
Mod 06 Exercise 4
pa S
No ratings yet
06 Implementing A Group Policy Infrastructure
Document44 pages
06 Implementing A Group Policy Infrastructure
mystic_guy
100% (1)
Implementing Group Policy
Document50 pages
Implementing Group Policy
Abdul-alim Bhnsawy
No ratings yet
Group Policy
Document3 pages
Group Policy
mateigeorgescu80
No ratings yet
Group Policy Preferences
Document30 pages
Group Policy Preferences
ajgra
No ratings yet
Module 5: Creating and Configuring Group Policy
Document38 pages
Module 5: Creating and Configuring Group Policy
Alecsandro Queiroz
No ratings yet
Chapter 6 Audit in Automated Environment
Document16 pages
Chapter 6 Audit in Automated Environment
chananakartik1
No ratings yet
Group Policy Planning and Deployment Guide
Document84 pages
Group Policy Planning and Deployment Guide
aagnihothri
No ratings yet
Ertinside: Exam: Microsoft 70-293
Document12 pages
Ertinside: Exam: Microsoft 70-293
vintage_love2002
No ratings yet
Microsoft Official Course: Implementing Group Policy
Document27 pages
Microsoft Official Course: Implementing Group Policy
douglas
No ratings yet
6425A - 11 Trouble Shooting GPO
Document21 pages
6425A - 11 Trouble Shooting GPO
健康生活園Healthy Life Garden
No ratings yet
Group Policy The Ultimate Guide - Active Directory Pro
Document42 pages
Group Policy The Ultimate Guide - Active Directory Pro
Hawk Air
No ratings yet
Windows Group Policy InterviewWindows Group Policy Interview Questions Questions
Document4 pages
Windows Group Policy InterviewWindows Group Policy Interview Questions Questions
Raja Mozumder
0% (1)
Microsoft Official Course: Designing and Implementing A Group Policy Object Strategy
Document30 pages
Microsoft Official Course: Designing and Implementing A Group Policy Object Strategy
Le Xuan Truong
No ratings yet
Firemon
Document48 pages
Firemon
Lin Ken
No ratings yet
Ficoblazeadvisordecisionruleshowitworks4202wp 160302225024
Document40 pages
Ficoblazeadvisordecisionruleshowitworks4202wp 160302225024
Raj
No ratings yet
Module 11: Troubleshooting Group Policy Issues: Course 6425A
Document21 pages
Module 11: Troubleshooting Group Policy Issues: Course 6425A
Edson Jeancarlo Rueda Socola
No ratings yet
Gpo
Document9 pages
Gpo
Udhay
No ratings yet
What Is A GPO
Document18 pages
What Is A GPO
Rez Hablo
No ratings yet
Microsoft Virtual Academy: Implementing A Group Policy Infrastructure
Document20 pages
Microsoft Virtual Academy: Implementing A Group Policy Infrastructure
ff
No ratings yet
It Data Security Best Practices: © Skyview Partners, LLC, 2004. All Rights Reserved
Document4 pages
It Data Security Best Practices: © Skyview Partners, LLC, 2004. All Rights Reserved
Pavan Kumar
No ratings yet
Domain Controller Policy
Document32 pages
Domain Controller Policy
n43.nitin
100% (4)
A Report Namin Bukas 3
Document13 pages
A Report Namin Bukas 3
Maydhel Balino
No ratings yet
1 Introducing Group Policy
Document23 pages
1 Introducing Group Policy
AlexandreAntunes
No ratings yet
Introduction To Group Policy: Lesson 7
Document33 pages
Introduction To Group Policy: Lesson 7
addislibro
No ratings yet
Module 11: Troubleshooting Group Policy Issues
Document21 pages
Module 11: Troubleshooting Group Policy Issues
健康生活園Healthy Life Garden
No ratings yet
Administer Window Server LU4.
Document34 pages
Administer Window Server LU4.
samuel yitakubayo
No ratings yet
Group Policy Management Interview Questions and Answers
Document3 pages
Group Policy Management Interview Questions and Answers
ksrpiramma
No ratings yet
UAT
Document3 pages
UAT
Angelica Denise
No ratings yet
Active Directory: Group Policy
Document38 pages
Active Directory: Group Policy
famad83
No ratings yet
Group Policy Collection 1
Document147 pages
Group Policy Collection 1
Senthilkumar Balaraman
No ratings yet
Sarbanes-Oxley Best Practices in An Oracle Applications Environment
Document54 pages
Sarbanes-Oxley Best Practices in An Oracle Applications Environment
shameem_fics
No ratings yet
Microsoft Official Course: Securing Windows Servers Using Group Policy Objects
Document35 pages
Microsoft Official Course: Securing Windows Servers Using Group Policy Objects
J Loudes Anthoo Roys
No ratings yet
Overview of Group Policy
Document9 pages
Overview of Group Policy
sambradshaw945
No ratings yet
Configuring Local Group Policy For Windows 2003
Document14 pages
Configuring Local Group Policy For Windows 2003
Sukanta Pradhan
No ratings yet
Mis Information System Acquisition
Document10 pages
Mis Information System Acquisition
Karen Rotich
No ratings yet
Chapter 6: Implementing Group Policy (Presentation)
Document30 pages
Chapter 6: Implementing Group Policy (Presentation)
Muhammad Iqrash Awan
100% (1)
IB ComSci: 1.1 System in Organizations
Document18 pages
IB ComSci: 1.1 System in Organizations
Shea
No ratings yet
Operational Decision Management Chapter 5
Document31 pages
Operational Decision Management Chapter 5
LOKESH CHAUDHARY
No ratings yet
Design Tune Oracle e PM
Document40 pages
Design Tune Oracle e PM
Parmit Choudhury
No ratings yet
Aspera Software Asset Management ISO 19770-1 PDF
Document29 pages
Aspera Software Asset Management ISO 19770-1 PDF
Manish
No ratings yet
Group Policy For Beginners
Document26 pages
Group Policy For Beginners
luka Cvetkovic
No ratings yet
Group Policy: Fundamentals, Security, and the Managed Desktop
From Everand
Group Policy: Fundamentals, Security, and the Managed Desktop
Jeremy Moskowitz
No ratings yet
Software Testing Interview Questions You'll Most Likely Be Asked
From Everand
Software Testing Interview Questions You'll Most Likely Be Asked
Vibrant Publishers
No ratings yet
Microsoft Dynamics GP 2013 Implementation
From Everand
Microsoft Dynamics GP 2013 Implementation
Victoria Yudin
No ratings yet
Process Improvement & Performance Management Made Simple: The Fasttrack Approach to Getting Results Quickly
From Everand
Process Improvement & Performance Management Made Simple: The Fasttrack Approach to Getting Results Quickly
Andrew Muras
No ratings yet
Auditing Information Systems: Enhancing Performance of the Enterprise
From Everand
Auditing Information Systems: Enhancing Performance of the Enterprise
Abraham Nyirongo
No ratings yet
Auditing Completed Notes
Document68 pages
Auditing Completed Notes
ArnoldQuiranteJustiniana
No ratings yet
Global Financial Reporting: IFRS: Important Developments
Document39 pages
Global Financial Reporting: IFRS: Important Developments
ArnoldQuiranteJustiniana
No ratings yet
Deeper Insights Into The Illuminati Formula
Document656 pages
Deeper Insights Into The Illuminati Formula
nobodyever
96% (24)
Logical Stupidity - INNOVATION by Navigating Through Nonsense
Document191 pages
Logical Stupidity - INNOVATION by Navigating Through Nonsense
Peter Greenwall
100% (14)
Insurance Premium Calculations With Anticipated Utility Theory
Document14 pages
Insurance Premium Calculations With Anticipated Utility Theory
ArnoldQuiranteJustiniana
No ratings yet
National Math Panel Emailed Public Comments Technology: Date Author Subject
Document24 pages
National Math Panel Emailed Public Comments Technology: Date Author Subject
ArnoldQuiranteJustiniana
No ratings yet
Practical Guide To IFRS: New Guidance On Accounting For Joint Arrangements - A Significant Issue For The Oil & Gas Sector
Document8 pages
Practical Guide To IFRS: New Guidance On Accounting For Joint Arrangements - A Significant Issue For The Oil & Gas Sector
ArnoldQuiranteJustiniana
No ratings yet
GNChap 001
Document34 pages
GNChap 001
ArnoldQuiranteJustiniana
No ratings yet
IAS 12 Requires An Entity To Account For The Tax Consequences of Transactions and Other Events in The
Document2 pages
IAS 12 Requires An Entity To Account For The Tax Consequences of Transactions and Other Events in The
ArnoldQuiranteJustiniana
No ratings yet
Ifrs 2 A
Document3 pages
Ifrs 2 A
ArnoldQuiranteJustiniana
No ratings yet
Practical Guide To IFRS: New Guidance On Accounting For Joint Arrangements - A Significant Issue For The Oil & Gas Sector
Document8 pages
Practical Guide To IFRS: New Guidance On Accounting For Joint Arrangements - A Significant Issue For The Oil & Gas Sector
ArnoldQuiranteJustiniana
No ratings yet
Airz Blumers Background
Document1 page
Airz Blumers Background
ArnoldQuiranteJustiniana
No ratings yet
Action Planner
Document1 page
Action Planner
ArnoldQuiranteJustiniana
No ratings yet
557 563
Document7 pages
557 563
ArnoldQuiranteJustiniana
No ratings yet
Logical Stupidity - INNOVATION by Navigating Through Nonsense
Document191 pages
Logical Stupidity - INNOVATION by Navigating Through Nonsense
Peter Greenwall
100% (14)
IAS 1 Pres of Financial Statements - For Website
Document49 pages
IAS 1 Pres of Financial Statements - For Website
ArnoldQuiranteJustiniana
No ratings yet
4 15 Financial Statement Ratio Analysis
Document50 pages
4 15 Financial Statement Ratio Analysis
ArnoldQuiranteJustiniana
No ratings yet
What Is Supply Chain Management
Document3 pages
What Is Supply Chain Management
ozkanyilmaz
No ratings yet
Advanced Practice Registered Nurse Interview
Document6 pages
Advanced Practice Registered Nurse Interview
api-495065965
No ratings yet
Deped Order 36
Document22 pages
Deped Order 36
Michael Green
100% (1)
Rule: Airworthiness Directives: Hartzell Propeller Inc.
Document3 pages
Rule: Airworthiness Directives: Hartzell Propeller Inc.
Justia.com
No ratings yet
G.R. No. 113899. October 13, 1999. Great Pacific Life Assurance Corp., Petitioner, vs. Court of Appeals and Medarda V. Leuterio, Respondents
Document12 pages
G.R. No. 113899. October 13, 1999. Great Pacific Life Assurance Corp., Petitioner, vs. Court of Appeals and Medarda V. Leuterio, Respondents
danexrainier
No ratings yet
China: Xi: Nation Cannot Afford Complacency
Document20 pages
China: Xi: Nation Cannot Afford Complacency
Luis Lozano
No ratings yet
OneSumX IFRS9 ECL Impairments Produc Sheet
Document2 pages
OneSumX IFRS9 ECL Impairments Produc Sheet
Raju Kaliperumal
No ratings yet
HANA Presented Slides
Document102 pages
HANA Presented Slides
Rao Vedula
No ratings yet
DhakalDinesh Agriculture
Document364 pages
DhakalDinesh Agriculture
kendra
No ratings yet
The History of Sewing Machines
Document5 pages
The History of Sewing Machines
izza_joen143
100% (2)
سلفات بحري كومنز PDF
Document8 pages
سلفات بحري كومنز PDF
Sami Kahtani
No ratings yet
Machiavellian Thinking vs. Conventional Logic - Illimitable Men
Document16 pages
Machiavellian Thinking vs. Conventional Logic - Illimitable Men
Maurice Bathich
No ratings yet
Police Information Part 8
Document8 pages
Police Information Part 8
Mariemel Esparagoza
No ratings yet
Wa0256.
Document3 pages
Wa0256.
Daniela Daza Hernández
No ratings yet
The Second Oracle at Delphi
Document14 pages
The Second Oracle at Delphi
api-302698865
No ratings yet
The A To Z Guide To Afghanistan Assistance 2012
Document365 pages
The A To Z Guide To Afghanistan Assistance 2012
Khan Mohammad
No ratings yet
Statistik API Development - 080117 AHiA
Document6 pages
Statistik API Development - 080117 AHiA
Apdev Option
No ratings yet
Schonsee Square Brochure - July 11, 2017
Document4 pages
Schonsee Square Brochure - July 11, 2017
Scott Mydan
No ratings yet
RA 9072 (National Cave Act)
Document4 pages
RA 9072 (National Cave Act)
Lorelain Imperial
No ratings yet
SAARC and Pakistan, Challenges, Prospect
Document10 pages
SAARC and Pakistan, Challenges, Prospect
Riaz king
No ratings yet
Littérature Russe I Cours 1-3PDF
Document45 pages
Littérature Russe I Cours 1-3PDF
Sarah Dendievel
No ratings yet
People vs. Patulot - Case Digest
Document5 pages
People vs. Patulot - Case Digest
Gendale Am-is
No ratings yet
165 1 COST EST COMPLI Proposal1
Document17 pages
165 1 COST EST COMPLI Proposal1
Sofiane Setifien
No ratings yet
IDM Sem 6 Jury Work
Document13 pages
IDM Sem 6 Jury Work
Rabi Kant
No ratings yet
Ramesh and Gargi
Document14 pages
Ramesh and Gargi
Alok Ahirwar
No ratings yet
PMP Mock Exams 1, 200 Q&A
Document29 pages
PMP Mock Exams 1, 200 Q&A
sfdfdf dfdfdf
100% (1)
Chap 2 Tanner - The Sales Function & Multi Sales Channels 280516
Document17 pages
Chap 2 Tanner - The Sales Function & Multi Sales Channels 280516
Shahzain Rafiq
No ratings yet
EEE Assignment 3
Document8 pages
EEE Assignment 3
shirley
No ratings yet
Dayalbagh Herald
Document7 pages
Dayalbagh Herald
Ravi Kiran Maddali
No ratings yet
Utilitarianism and The Ethical Foundations of Cost-Effectiveness Analysis in Resource Allocation For Global Health
Document7 pages
Utilitarianism and The Ethical Foundations of Cost-Effectiveness Analysis in Resource Allocation For Global Health
Zainab Abbas
No ratings yet