|
|
|
|
|
|
 |
|
|
|
|
|
|
 |
|
|
|
SharePoint Auditing
|
 |
|
 |
|
Most of today's enterprise businesses leverage Microsoft Office SharePoint Server to provide collaboration and productivity enhancements for the organization. In some cases the SharePoint environment may need to be secured and monitored to enforce security controls. In these cases System Center users will find several options to help enforce those requirements while complementing Forefront capabilities. FyrSoft assists customers in fully leveraging System Center to assess and monitor SharePoint as well as audit key events for analysis and reporting.
Download Audit Logging Flyer
|
|
FyrSoft offers the following professional services to deliver custom auditing solutions for Windows SharePoint Services 3.0 and Microsoft Office SharePoint Server 2007:
- Configuration assessment, compliance validation, and remediation with SCCM DCM
- Security and incident alerting with configuration drift monitoring using SCOM
- Security event logging and audit reporting with SCOM ACS and Secure Vantage
|
|
|
|
|
|
|
|
|
|
SharePoint Configuration Auditing
|
|
|
|
|
In most cases auditing SharePoint Servers requires validating and monitoring configuration changes of the environment. The list below represents common configuration controls customers ask FyrSoft to help with in order to implement assessment and alerting rules for using SCCM and SCOM.
- Is Built-In Administrators enabled
- Discover sites and configurations
- Service accounts associated with SharePoint services
- Excessive and explicit permissions for users
- Group policies applied to SharePoint Servers
|
|
|
|
|
|
|
|
|
SharePoint Event Auditing
|
|
|
|
|
The Microsoft Office SharePoint Server event auditing is provided by Randy Franklin Smith's LogBinder SP service that sits on each SharePoint server to listen for targeted audit events which are then written to the local Security event log where a SCOM ACS Forwarder will collect the events for alerting and analysis using Secure Vantage's security solutions for SCOM and ACS. The following types of activities can be audited on:
| Scope |
Events |
| System Events |
SharePoint audit logs deleted, Site collection updated, Web updated, Workflow accessed |
| Documents |
Document checked in/out, Document updated, Document viewed, Document library updated, Document library viewed, Folder updated, Search performed |
| User and Groups |
SharePoint group created and deleted, SharePoint group member added and removed, SharePoint site administrator added and removed |
| Lists |
List updated and viewed, list item updated |
| Objects |
Object deleted, copied, restored, moved, viewed; Object profile changed; Child object deleted and moved; Export of objects started and completed, Import of objects started and completed; SharePoint object structure changed |
| Policies |
Audit policy changed, Information management policy created and changed; Site collection audit policy changed; Site collection information management policy created and changed |
| Permissions |
Permissions updated, removed, permission level created or deleted, unique permissions created or removed, unique permission levels created |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
|
|
|
|
|
Recent News
|
|
|
|
| |
| FyrSoft at MMS 2011 - Tuesday, March 22, 2011FyrSoft continues to grow turnkey service offerings for System Center read more ... |
| Gold Certification - Wednesday, August 25, 2010FyrSoft announces Microsoft partner Gold Certification with competencies in Systems Management and Server Platform. read more ... |
|
|
|
|
|
|
|
|
|
|
|
|
Copyright 2009 by FyrSoft
Terms Of Use
Privacy Statement
|