You are previewing Microsoft System Center 2012 R2 Compliance Management Cookbook.
O'Reilly logo
Microsoft System Center 2012 R2 Compliance Management Cookbook

Book Description

Over 40 practical recipes that will help you plan, build, implement, and enhance IT compliance policies using Microsoft Security Compliance Manager and Microsoft System Center 2012 R2

In Detail

Compliance programs are often run and managed by security and audit teams. These teams provide policies and guidance that require implementation by the IT team. This book shows you how Microsoft Security Compliance Manager and Microsoft System Center are an ideal combination to provide a bridge between IT and the business teams responsible for compliance policies.

Aimed at getting you familiar with the practical side of IT compliance, this book starts by showing you the planning steps required to design a small business compliance program. It then provides practical guidance for using Microsoft Security Compliance Manager and Microsoft System Center Configuration Manager. Moving on from the basics, the recipes demonstrate how you can enhance the capabilities of IT compliance programs and prepare for enterprise compliance using the Microsoft System Center product family.

What You Will Learn

  • Design and implement your compliance program.
  • Explore Microsoft Security Compliance Manager as a base entry solution for your compliance program. Export configuration items ready for use in System Center Configuration Manager.
  • Use Microsoft System Center Configuration Manager to create, deploy, and manage the life cycle of compliance baselines.
  • Use Microsoft System Center Operations Manager to monitor for compliance breaches.
  • Design and run reports to understand your compliance status and security audit state.
  • Deploy Microsoft System Center Service Manager to centralize and efficiently manage your compliance program.
  • Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.

    Table of Contents

    1. Microsoft System Center 2012 R2 Compliance Management Cookbook
      1. Table of Contents
      2. Microsoft System Center 2012 R2 Compliance Management Cookbook
      3. Credits
      4. About the Authors
      5. About the Reviewers
      6. www.PacktPub.com
        1. Support files, eBooks, discount offers, and more
          1. Why subscribe?
          2. Free access for Packt account holders
          3. Instant updates on new Packt books
      7. Preface
        1. What this book covers
        2. What you need for this book
        3. Who this book is for
        4. Conventions
        5. Reader feedback
        6. Customer support
          1. Errata
          2. Piracy
          3. Questions
      8. 1. Starting the Compliance Process for Small Businesses
        1. Introduction
        2. Planning the scope of a basic compliance program
          1. Getting ready
          2. How to do it...
          3. How it works...
            1. Scope definition defined by the business
            2. Scope definition defined by regulatory, standard, contractual, or internal requirements
            3. An example on how to start with scope definition
          4. There's more...
        3. Understanding possible controls for compliance
          1. Getting ready
          2. How to do it...
          3. How it works...
        4. Evaluating the efforts of controls
          1. Getting ready
          2. How to do it...
          3. How it works...
        5. Bringing it all together into a basic compliance program
          1. Getting ready
          2. How to do it...
            1. Step 1 – understanding the terms of the authority document
            2. Step 2 – identifying objects and/or requirements based on key words
            3. Step 3 – identifying controls that fulfill this objective
            4. Step 4 – mapping controls to your business – defining the scope
            5. Step 5 – mapping controls to your business – defining the type of controls
            6. Step 6 – mapping controls to your business – defining the broader scope to simplify controls
          3. How it works...
      9. 2. Implementing the First Steps of Basic Compliance
        1. Introduction
        2. Preparing for the creation of a compliance baseline
          1. Getting ready
          2. How to do it...
          3. How it works...
            1. OU design
            2. GPO design
        3. Installing Security Compliance Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. See also
        4. Creating a compliance baseline using GPO to ensure system security
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more…
            1. Auditing or checking your existing GPO policies against established standards
            2. Exporting baselines to other tools
            3. Deploying new GPO settings
            4. Active Directory Domain Services fine-grained password policies
        5. Implementing the GPO baseline in Active Directory
          1. Getting ready
          2. How to do it...
          3. There's more...
            1. Test your customized GPO baseline using LocalGPO
            2. The Advanced Group Policy Management tool
      10. 3. Enhancing the Basic Compliance Program Using Microsoft System Center 2012 Configuration Manager
        1. Introduction
        2. Configuring Microsoft System Center 2012 Configuration Manager for compliance
          1. Getting ready
          2. How to do it...
            1. Creating a configuration item
            2. Creating a baseline
            3. Deploying a baseline
            4. Monitoring and reviewing baseline compliance
          3. How it works...
          4. There's more...
            1. Compliance assessment scheduling
            2. Remediation
            3. User data and profiles
            4. Company Resource Access
            5. Remote Connection Profiles
          5. See also
        3. Creating a baseline to monitor for unapproved software
          1. Getting ready
            1. Enable Configuration Manager for software inventory
          2. How to do it...
            1. Creating a software label
            2. Assigning a software label
            3. Reporting unapproved software
          3. How it works...
          4. There's more...
          5. See also
        4. Creating a baseline to monitor for unapproved hardware and virtual systems
          1. Getting ready
          2. How to do it...
            1. Enabling a discovery method
            2. Reviewing discovery data
          3. How it works...
          4. There's more...
            1. Delta Discovery
          5. See also
        5. Using Security Compliance Manager baselines in Microsoft System Center 2012 Configuration Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
          5. See also
      11. 4. Monitoring the Basic Compliance Program
        1. Introduction
        2. Planning a compliance program for Microsoft System Center 2012 Operations Manager
          1. Getting ready
          2. How to do it...
            1. Monitoring failed logons caused by a brute-force attack
            2. Logging any access to files in a shared folder on a server
          3. How it works...
            1. Monitoring failed logons caused by a brute-force attack
            2. Logging any access to files in a shared folder on a server
          4. There's more...
            1. Defining other compliance program events to monitor
        3. Adding a compliance program monitor in Microsoft System Center 2012 Operations Manager
          1. Getting ready
          2. How to do it...
            1. Creating a group in SCOM 2012
            2. Creating a monitor in SCOM 2012
          3. How it works...
          4. There's more...
            1. Testing the created compliance program monitor
          5. See also
        4. Installing Microsoft System Center 2012 Operations Manager Audit Collection Services to support the compliance program
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Checking whether ACS reports are installed
          5. See also
        5. Configuring a compliance program in Microsoft System Center 2012 Operations Manager Audit Collection Services
          1. Getting ready
            1. Setting permissions in the registry key on the SCOM 2012 ACS Server
            2. Copying the required files from the SCOM 2012 installation media
          2. How to do it...
            1. Creating an ACS Filter on the SCOM 2012 ACS server
            2. Activating the Microsoft System Center 2012 Operations Manager Audit Collection Services Forwarder
            3. Activating auditing on a folder of the file server
          3. How it works...
          4. There's more...
            1. Check the ACS Forwarder configuration on the audited server
            2. Checking the auditing filter on the SCOM 2012 ACS server
            3. Checking the audit data for the specified folder in the SCOM 2012 ACS database
          5. See also
      12. 5. Starting an Enterprise Compliance Program
        1. Introduction
        2. Using project management in your compliance approach
          1. Getting ready
          2. How to do it...
            1. Step 1 – defining and understanding the reason for your company's compliance program
            2. Step 2 – defining and understanding the approach to the compliance program
            3. Step 3 – defining and understanding the project structure
          3. How it works...
          4. See also
        3. Understanding management support
          1. Getting ready
          2. How to do it...
          3. How it works...
        4. Defining your communication approach
          1. Getting ready
          2. How to do it...
          3. How it works...
        5. Planning the risk assessment approach
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
        6. Planning documentation requirements
          1. Getting ready
          2. How to do it...
          3. How it works...
        7. Defining your test approach
          1. Getting ready
          2. How to do it...
          3. How it works...
      13. 6. Planning a Compliance Program in Microsoft System Center 2012
        1. Introduction
        2. Understanding the responsibilities of the System Center 2012 tools
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
          5. See also
        3. Planning the implementation of Microsoft System Center 2012 Service Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
          5. See also
        4. Planning the connection of the System Center 2012 components
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Automating CSV import
          5. See also
        5. Planning and defining the responsibilities for a compliance program
          1. Getting ready
          2. How to do it...
          3. How it works...
            1. Responsibility – primary owner of the overall compliance baseline
            2. Responsibility – primary owner for remediation in case of noncompliance
            3. Responsibility – primary owner for controls
        6. Planning System Center Service Manager 2012 related settings and configuration
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
          5. See also
        7. Planning and defining compliance reports
          1. Getting ready
          2. How to do it...
            1. Compliance status / audit reports
            2. Stakeholder-targeted reports
              1. Complete
              2. Measurable
              3. Relevant
              4. Transparent
          3. How it works...
          4. There's more...
          5. See also
      14. 7. Configuring a Compliance Program in Microsoft System Center 2012 Service Manager
        1. Introduction
        2. Configuring connectors in System Center 2012 Service Manager to support a compliance program
          1. Getting ready
          2. How to do it...
            1. Configuring the Active Directory connector
            2. Configuring the Configuration Manager Connector
            3. Configuring Operations Manager CI connector
          3. How it works...
          4. There's more...
            1. Adding more than one connector in SCSM
          5. See also
        3. Adding Configuration Items manually in System Center 2012 Service Manager to support a compliance program
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Importing CIs manually via CSV
            2. Adding new classes in SCSM 2012
          5. See also
        4. Configuring compliance process Incident Classification Categories in System Center 2012 Service Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Adding compliance-program-related categories for Change Management
          5. See also
        5. Adding support groups in System Center 2012 Service Manager to support the compliance program
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Creating a new view for compliance-related Incidents based on the support group in SCSM 212
          5. See also
        6. Creating compliance program Incident templates in System Center 2012 Service Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Adding compliance program Change Request templates in SCSM 2012
          5. See also
      15. 8. Automating Compliance Processes with Microsoft System Center 2012
        1. Introduction
        2. Planning the automation of the compliance management process
          1. Getting ready
          2. How to do it...
          3. How it works...
        3. Configuring compliance program notification in Microsoft System Center 2012 Service Manager
          1. Getting ready
          2. How to do it...
            1. Creating a notification template for compliance issue notification e-mails
            2. Creating a subscription for compliance issue notification e-mails
          3. How it works...
          4. There's more...
            1. Using different recipients for notifications related to compliance program incidents
            2. Notification for external personnel who are not members of the Active Directory of the organization
          5. See also
        4. Forwarding of compliance program-related alerts
          1. Getting ready
          2. How to do it...
            1. Configuring Operations Manager Alert connector in SCSM 2012
            2. Configuring the Operations Manager Alert connector in SCSM 2012
          3. How it works...
          4. There's more...
            1. Defining more than one routing rule in SCSM 2012 Alert Connector
            2. Manual forwarding of alerts in SCOM 2012 to SCSM 2012
          5. See also
        5. Forwarding compliance program-related Compliance Settings Management issues
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Adding more than one workflow to forward Compliance Settings Management issues from SCCM 2012 to SCSM 2012
          5. See also
      16. 9. Reporting on Compliance with System Center 2012
        1. Introduction
        2. Planning compliance reporting in Microsoft System Center 2012
          1. Getting ready
          2. How to do it...
          3. How it works...
        3. Generating compliance program reports in Microsoft System Center 2012 Configuration Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Getting details on the configuration baselines and affected systems
            2. Creating scheduled reports
        4. Generating compliance program reports in Microsoft System Center 2012 Operations Manager Audit Collection Service
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Saving the SCOM 2012 ACS compliance program report in a different format
          5. See also
        5. Generating compliance program reports in Microsoft System Center 2012 Service Manager
          1. Getting ready
          2. How to do it...
          3. How it works...
          4. There's more...
            1. Getting the details of an incident in the List of Incidents report
            2. Saving the configured filters of the List of Incidents report as a Favorite
          5. See also
      17. A. Useful Websites and Community Resources
        1. Introduction
        2. Compliance and System Center Partner tools
        3. Authors' community blogs
        4. Useful System Center community blogs
        5. Useful Security/Compliance community blogs
        6. Frameworks, standards, and processes
        7. Official websites on compliance requirements
        8. Valuable community forums and user groups
        9. Microsoft TechNet Information
        10. Social network resources
      18. Index