Here’s the scenario:
You’ve got some Windows servers that contain critical customer data–it might be customer records, or PCI (Payment Card Industry) data, or just a critical system on your network. You rightly use Group Policy Restricted Groups policy or similar, to control access to those servers. That Group Policy controls which users or groups are members of the local Administrators group on those Windows boxes. As the owner of those servers, you want and need to know if any changes occur to the GPO that controls that access. You need to know in near real-time and you need to know who made the change. Enter our Group Policy Auditing & Attestation (GPAA) product, which is ideally suited for the job!
GPAA not only can track all GPO settings changes that occur on your critical GPOs, but you can also assign owners who can periodically re-certify those GPOs and, a given GPO can have support contact who can be notified exclusively whenever a change occurs to those GPOs. I’ve recorded a short video that walks through this exact scenario. Check out the video and drop us a line at sales@sdmsoftware.com if you have any questions on this key capability!
Darren