Configuring the COM+ rule

To configure a Windows COM+ rule, select the source COM+ objects that you want to audit or snapshot on a target server. The COM+ rule also checks Access Control Levels (ACLs) for the selected object, including ACLs that are inherited.

COM+ objects are categorized based on attributes of the object, where the COM+ object specifies zero or more categories. The audit or snapshot window displays all COM+ objects in one node in the Rules section of the COM+ object tree. To add a COM+ rule to the audit or snapshot, select it and then click the right arrow button.

If you want to be able to remediate COM+ rules in your audit or snapshot results, select the “Archive all associated files” option when you select the COM+ object or category. This option also includes all AccessPermissions and LaunchPermissions associated with the COM+ object in the audit or snapshot rule, including those that are inherited parent COM+ objects.

You cannot audit the COM+ root folder. However, you can audit the COM+ individual objects or sub-categories.

To configure a COM+ rule:

  1. Create a new audit, using one of the methods for creating an audit described in Creating an audit . If you want to create this rule for a snapshot specification, see Creating a snapshot specification .
  2. Select an Audit Source: Server, Snapshot, Snapshot Specification, or No Source. Some audit rules, such as Application Configuration and Windows User’s and Groups, must have a source.
  3. In the Audit window, from the Views pane, select Rules > COM+.
  4. In the content pane of the Audit window, expand the top level node in the Available for Audit section and select a COM+ object or object category.
  5. Click the right arrow button to move the COM+ object or object category into the Selected for Audit section.

    All COM+ object or object categories you select will be audited on the target servers or snapshot specification. You can select individual and COM+ categories for the rule. You cannot select the root folder to add to the audit rules.
  6. Choose an option from the bottom of the rule window:
    • Select the “Archive all associated files” option if you want to be able to remediate COM+ rules in your audit or snapshot results.
    • Select Compare only the file name and not the full pathname if you want the COM+ rule to check only the selected filename and not the full path.
  7. To finish configuring the audit, define any other COM+ object or object category rules you want and set the target servers, schedule, and notification for the audit.
  8. To save the audit, from the File menu, select Save. You can also save the Audit as a policy. For more information, see Saving an audit or a snapshot specification as an audit policy.
  9. To run the audit, from the Actions menu, select Run Audit. For more information about running an audit, seeCreating an audit policy .