/Logmira

Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.

MIT LicenseMIT

Logmira

Logmira has been created as a helpful download of Microsoft Windows Domain Group Policy Object settings. This GPO Backup inclues our recommended windows logging settings for all supported versions of MS Windows Server. As opposed to following a list and manualy modifying 100 or so settings, it's way easier to just import it from a backup.

NOTE: Applying these settings are NOT recommended for devices with HDDs. The iop limits on spinning disks can cause issues with the delay of logs when they are a high volume.

Logmira Files

  • Logmira.zip contains the full GPO backup of only the recommended windows logging settings.
  • gporeport.xml is also included inside the zip, but gives an overview of the settings within the backup

Exporting a GPO

(what we've done to create the zip files above, and what should be done for GPO Backups)
  1. To begin the export process, open up the group policy management console, navigate to the proper domain, expand group policy objects and select the group policy object that you'd like to export.
  2. Right-click and select Back Up.
  3. Select the location the backup will be exported to, and the description. Then click Back Up.
  4. The files are then exported to the location selected, click OK.

Importing a GPO

  1. After the file on the local DC, navigate to the same place in group policy management (the proper domain and expand group policy objects).
  2. NOTE: Do not import settings on an existing GPO unless you want all settings overwritten by the import

  3. Create a NEW GPO by right-clicking on Group Policy Objects > New.
  4. Give the new GPO a name (for example: Logging Settings)
  5. Right-click on the new GPO>"Import Settings"
  6. Next > Next > Select the location where the backup was saved if it is not selected already > Next
  7. Select the "Logmira" Backed up GPO > Next > Next > Finish
You should now have a GPO created that you can link to any OU in your domain to apply the correct logging settings.