jueves, 4 de octubre de 2012

Export Audit Policy Configuration - Windows


secedit command allows to export Security policy configurations besides other acctions.

The possible actions are:
  • configure 
  • analyze
  • import
  • export
  • validate
  • generaterollback
To use secedit you must have a Security Database.

To create a Security Database (sdb) you must:
  1. open "mmc" (from start>run just type "mmc")
  2. click on File > add/remove snap-in
  3. Select "Security configuration and analysis"
  4. Button "Add" & "OK"
  5. Right click & New database & Select a name for the database & click open
  6. Define the policies you would like to export (define any value if you only need to export the configuration. define the propper values if you like to analyze)
    7.  
psexec @filserver.txt secedit /export /db security.sdb /areas SECURITYPOLICY GROUP_MGMT  GROUP_MGMT  GROUP_MGMT GROUP_MGMT  GROUP_MGMT /cfg output.txt >> outputLog.txt

psexec is used to run this command in several computers. The @filserver.txt file contains a list computers / servers.
Posted by at
Labels: ,

No hay comentarios.:

Publicar un comentario

Suscribirse a: Comentarios de la entrada (Atom)