You need to design a monitoring strategy for the folders that contain confidential
customer information, in the Customer Data folder to support the new data
retention strategy.
What should you do?
A. Audit success and failures for object access on the folders that contain customer
information, in the Customer Data folder.
B. Audit failure of object access on only the Customer Data folder.
C.
Leading the way in IT testing and certification tools, www.certifyme.com
- 74 -
Enable auditing on only the Customer Data folder using the Security Configuration and
Analysis tool.
D. Audit directory access failures.
E. Analyze security on Customer data by running Microsoft Security Baseline Analyzer
(MBSA).
Answer: A
Explanation: The data retention strategy must be configured to store user
information and network data.350-001 To support this strategy you need to monitor and log
all access to Customer Data and you need to maintain the log files that detail this
access for future reference. Thus you should enable Audit failure of object access on
only the Customer Data folder. If enabled the Audit object access setting triggers
auditing of user access to objects such as files, folders, Registry keys, and so forth.640-802 As with the other audit policies, you can either monitor the success or failure of
these actions.
1. All customer information must be kept confidential.
2. All access to customer information must be tracked.
Incorrect answers:
B: Auditing failure of object access only will only constitute half of the tracking that is
required as stated in the Stanford Finance written security policy.
C: The Security Configuration and Analysis tool is used to analyze and to help configure
a computer's local security settings.VCP-310 This is not the same as tracking all access to the
Customer data folders and subfolders.
D: Auditing directory access failures will not work in this scenario where more is
expected.
E: MBSA is a GUI-based tool used to perform centrally executed scans and to identify
common security configuration errors. However, while it is useful to run MBSA as part
of the patch management, it is not required for data retention.
Thursday, June 26, 2008
Subscribe to:
Posts (Atom)