Scribd Logo
Upload

Welcome to Scribd!

  • 2K views

    Complete System Administrator Checklist

    Uploaded by

    quedyah
    This document provides a checklist of daily, weekly, monthly, quarterly, and annual system administration tasks. It includes tasks such as checking logs for errors, monitoring system performance and hardware, backing up data, installing patches, scanning for vulnerabilities, managing user accounts, and testing backup procedures. The goal is to maintain system security, reliability and compliance with DoD security standards.

    Copyright:

    © All Rights Reserved
    Download as XLS, PDF, TXT or read online from Scribd

    Complete System Administrator Checklist

    Uploaded by

    quedyah
    2K views8 pages
    This document provides a checklist of daily, weekly, monthly, quarterly, and annual system administration tasks. It includes tasks such as checking logs for errors, monitoring system performance and hardware, backing up data, installing patches, scanning for vulnerabilities, managing user accounts, and testing backup procedures. The goal is to maintain system security, reliability and compliance with DoD security standards.

    Original Description:

    System Admin Checklist

    Copyright

    © © All Rights Reserved

    Available Formats

    XLS, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    This document provides a checklist of daily, weekly, monthly, quarterly, and annual system administration tasks. It includes tasks such as checking logs for errors, monitoring system performance and hardware, backing up data, installing patches, scanning for vulnerabilities, managing user accounts, and testing backup procedures. The goal is to maintain system security, reliability and compliance with DoD security standards.

    Copyright:

    © All Rights Reserved
    Download as XLS, PDF, TXT or read online from Scribd
    Download as xls, pdf, or txt
    2K views8 pages

    Complete System Administrator Checklist

    Uploaded by

    quedyah
    This document provides a checklist of daily, weekly, monthly, quarterly, and annual system administration tasks. It includes tasks such as checking logs for errors, monitoring system performance and hardware, backing up data, installing patches, scanning for vulnerabilities, managing user accounts, and testing backup procedures. The goal is to maintain system security, reliability and compliance with DoD security standards.

    Copyright:

    © All Rights Reserved
    Download as XLS, PDF, TXT or read online from Scribd
    Download as xls, pdf, or txt
    of 8
    At a glance
    Powered by AI
    The document outlines a comprehensive system administrator checklist that includes daily, weekly, monthly and annual tasks.

    Daily tasks include checking logs for errors, monitoring system performance and activity, and taking physical checks of systems.

    Weekly tasks include performing backups, updating antivirus signatures, and running antivirus scans.

    Complete System Administrator Checklist

    Daily
    Area Review Audit logs Tasks Check application log for warning and error messages for service startup errors, application or database errors and unauthorized application installs Check security log for warning and error messages for invalid logons, unauthorized user creating, opening or deleting files Check system log for warning and error messages for hardware and network failures Check web/database/application logs for warning and error messages Check directory services log on domain controllers Report suspicious activity to IAO Run and/or verify that a successful backup of system and data files has completed Run and/or verify that a successful backup of Active Directory files has completed on at least one Domain Controller Status

    Perform/verify daily backup

    Track/monitor system Check for memory usage performance and activity Check for system paging Check CPU usage

    Check free hard-drive space

    Check all drives for adequate free space

    Take appropriate action as specified by site's Standard Operating Physical checks of system Visually check the equipment for amber lights, alarms, etc. Take appropriate action as specified by site's Standard Operating

    Weekly
    Archive Audit logs Perform/verify weekly backup Archive audit logs to a media device with one year retention Run or verify that a successful backup of system and data files has been completed

    Update Anti-Virus signature file

    Download and install current Anti-Virus signature files

    Run Anti-Virus scan on Scan all hard-drives using current Anti-Virus signature files all hard-drives Check Vendor Websites Check vendor websites such as Microsoft, Sun, HP, Oracle, for Patch Information etc for new vulnerability information including patches and hotfixes Compare system configuration files against a baseline for changes Compare system configuration files against the baseline

    Compare application executables against the baseline Compare database stored procedures against the baseline Run file system integrity Run diagnostic tools to detect any system problems diagnostics

    Verify Retina Vulnerability Scan Performed (SCCVI)

    Verify system scanned by IAO or NSO using Retina tool to detect for vulnerabilities

    Remediate with Citadel Verify Hercules remediation tool is used on system to correct Hercules remediation vulnerabilities Tool (SCRI)

    Check for Password Files Perform Wireless Check

    Perform file search on system checking for documents containing words such as 'password', 'passwd', 'pwd', etc Check system for wireless devices and access

    Perform server clock/time synchronization

    Synchronize system clock with master server

    References

    Check for Unnecessary Check system services for any unnecessary services running Services

    Monthly
    Perform SelfAssessment Security Review Review technology checklist for any changes

    Run current security review tool Import results into Vulnerability Management System (VMS)

    Perform Hardware/Software Inventory

    Review hardware and compare to inventory list

    Review software and compare to inventory list Update VMS, where applicable Run Password-Cracking Run (or verify IAO team has run) a password-cracking tool to Tool (Domain detect weak passwords Controller only) Provide output to IAO team

    Perform/verify monthly backup

    Run or verify that a successful backup of system and data files has been completed

    Verify User Account Configuration

    Run DumpSec tool to verify user account configuration

    Verify and/or delete dormant accounts with IAO approval Provide output to IAO team

    Quarterly
    Test backup/restore procedures Restore backup files to a test system to verify procedures and files

    Annually
    Change ServiceAccount passwords Work with appropriate application administrator to ensure password changes for service accounts such as database accounts, application accounts and other service accounts are implemented Review appropriate STIGs which are updated annually

    Review appropriate Security Technical Implementation Guides (STIG)

    Participate in STIG Technical Interchange Meetings (TIM), when possible Review training requirements As Required

    Participate in TIMs to exchange information about updated STIGs, etc.

    Review training requirements according to DoD Directive 8570.1 Test Patches and Hotfixes Install Patches and Hotfixes Schedule Downtime for Reboots Apply OS upgrades and service packs Create/maintain user and groups accounts Set user and group security Create Emergency System Recovery Data Create new system configuration baseline Document System Configuration Changes Review and update SSAA Update VMS for Asset Changes Update VMS for IAVMs

    After system configuration changes:

    Notes

    Tools Windows Event Viewer

    References

    Windows Backup Tool Veritas Backup Software Microsoft www.Microsoft.com Management Monitoring Server Console performance Performance Log and Alerts Task Manager System Monitor Microsoft Operations Manager Disk Defragmenter www.Microsoft.com Monitoring Server performance

    Disk Management Disk Quotas

    Windows Backup Tool Veritas Backup Software www.cert.mil

    http://iase.disa.mil - DoD Patch Repository www.cert.mil Unix Tripwire

    Disk Defragmenter

    www.Microsoft.com Managing Disks and Volumes

    Error-checking tool Device Manager http://iase.disa.mil - DoD IA Enterprise-wide Tools and Software: SCCVI (DoD PKI cert req'd) http://iase.disa.mil - DoD IA Enterprise-wide Tools and Software: SCCVI (DoD PKI cert req'd)

    Windows Time Service Tools - Unix /Windows NTP

    http://iase.disa.mil Security Technical Implementation Guides (STIGs) www.Microsoft.com Windows Time Service

    DISA FSO Gold Disk and Scripts eEye Retina Scanner Citadel Hercules Remediation Tool

    http://iase.disa.mil - DoD IA Enterprise-wide Tools and Software: Gold Disk (.mil only) http://iase.disa.mil - IA Subject Matter Areas: Security Technical

    Tools - UNIX

    Implementation Guides STIGS: Security Readiness Review Evaluation Scripts

    DISA FSO Scripts eEye Retina Scanner Citadel Hercules Remediation Tool

    John-the-Ripper

    L0phtCrack Tools - UNIX Crack Tools available on DISA FSO Gold Disk (Windows) and DISA FSO Scripts (UNIX) Windows Backup Tool Veritas Backup Software Tool available on DISA FSO Gold Disk (Windows)

    Windows Backup and Recovery Tool Veritas Backup Software

    http://iase.disa.mil - IA Subject Matter Areas: Policy and Guidance

    You might also like