Re: [ActiveDir] I need an auditing and control solution [and yesI'll even fork moneyout for this]

Wed, 14 Dec 2005 10:29:14 -0800

SBS has VSC built in and yes it's one of the ways along with the nightly backup and the manual scripted robocopy that I do to an alternative location.
Based on VSC coverage that does snaps on those folders every two hours I'm about as covered as I can be on the data side to minimize loss. 


In this case it was faster to fire up my robocopied version of those 
folders and me put it back than dig through the snaps.  In this case I'd 
rather the user not put things back... I want to know to try and stop 
the behavior.



What I didn't have before is a good enough audit trail to go "AH HA YOU 
did it" which I now do.  [Sometimes fingerpointing and blame is the 
important part you know]


BTW don't defrag on a VSC volume and expect those snaps to survive.

James Eaton-Lee wrote:

On Mon, 2005-12-12 at 07:18 -0800, Susan Bradley, CPA aka Ebitz - SBS
Rocks [MVP] wrote:

  

But that's the thing... I need rename.. I need delete.  I can't 
permission myself into a non collaborative work environment where it 
takes a network admin to rename a misspelled folder.


I need a balance and I haven't found it yet.

    


Have you tried either volume shadow copy, or Data Protection Manager
(which uses volume shadow copy and is a bit more powerful)?

It doesn't get rid of the problem, but it does augment 'traditional'
backups considerably, and most importantly, offloads the restore of
backups onto the users to the point at which you could reasonably give
them control of the folders, experience a few accidental
deletions/restores and not really have to do very much about it other
than reminding them how to restore files...

You didn't mention either, and I don't think anyone else has either -
I'm not sure if that's because you/they consider them singularly
inappropriate for the task or just haven't heard of them! ;)

 - James.



  


--

Letting your vendors set your risk analysis these days?  
http://www.threatcode.com


List info   : http://www.activedir.org/List.aspx
List FAQ    : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/














    











					Reply via email to