Moving Forward
Security is too important a topic to cover in one chapter. So far we've seen how the security infrastructure works in Windows Server 2003 and how the operating system handles authentication, authorization, and auditing. In future chapters, we'll extend the security horizons to include specific ways to protect Active Directory, the Encrypting File System, and Public Key Infrastructure.
|
It is possible to monitor access to kernel objects that control access to threads in the Windows Executive. I've never seen an instance where this type of auditing was needed for a production system. Developers interested in tracing problems with their code can use this type of auditing on test systems. Kernel auditing is enabled via the Audit the access of global system objects policy, which should only be set in the local system policies. The policy is located in Computer Configuration | Windows Settings | Security Settings | Local Policies | Security Options. |