As information technology professionals, security is not something we can ignore—it is something that impacts us every day. For those of us operating in an Active Directory environment, we need to know what information is available to help identify if—and when—we may have been compromised. In response to feedback from last year's presentation, this session will review the information available to monitor and also will show you how to get the information from your servers to a log management system (this is the new part). In addition, you will learn how to setup and configure a Greylog server.
Time: May 2 - 9:00 AM
Location: Room 110
Audience Level: All
Audience Knowledge: Should be familiar with Windows log files