Was curious if anyone already had something like this implemented in their environment and could share:
I want to monitor the Local Administrators Group on 5 servers. I basically just want email alerts using the local SMTP server but only if someone is added or removed from the Local Admin group. If nothing is modified then no alert is sent. I’m assuming the script would just be monitoring the 4732/4733 events in the Event log but I’m not sure how to specify monitoring for just a specific local group.