Reviewing Reports
A network environment might have many security mechanisms in place, but if the information such as logs and events obtained from them is not reviewed, security is more relaxed. Monitoring and management solutions (such as SCOM) can help consolidate this information into a report that can be generated on a periodic basis. This report can be invaluable to continuously evaluating the network’s security.
The reports should be reviewed daily and should include many details for the administrators to analyze. You can customize SCOM, for example, to report on only the most pertinent events for keeping the environment secure.
Get Windows Server® 2012 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
