Any company that implement Windows servers and Active directory should review and audit the logs and how the users are accessing their resources. This article includes details steps how to build your own environment to apply or audit security policies. Audit Security Policy Step by Step http://technet.microsoft.com/en-us/library/dd408940(WS.10).aspx Microsoft Windows 2008 Security Baseline http://technet.microsoft.com/en-us/library/cc514539.aspx