Solved

Audit policy in Windows Server 2k3

Posted on 2004-04-23
3
553 Views
Last Modified: 2010-04-19
Hello everybody,

i have a windows server 2k3 configured as a D.C. i was searching about how to configure audit policies, i want that "audit account logon events" and "audit logon events" to be enabled for success & failure, but when i run secpol.msc, i find in security settings/local policies/audit policy that those entries have "no auditing", and also when i click properties, i cannot change them.. they are grey marked , does anybody know wher to make them enabled so i can change them ?

thanx in advance
0
Comment
Question by:SUKHOI_Flanker
  • 2
3 Comments
 
LVL 20

Expert Comment

by:What90
ID: 10899209
You need to really use the Active directoy tools for setting the policy for the Domain or the Domain controller. Lookup under admin tools on the DC

These links might help explain what's to do:


http://www.computerperformance.co.uk/w2k3/gp/group_policy_security_audit.htm#Audit%20Logon%20events
http://www.computerperformance.co.uk/w2k3/Security_Audit.htm
0
 

Author Comment

by:SUKHOI_Flanker
ID: 10899426
i've done what u told me, and disonnected from the session , then connect again, and i 've seen the logon/logoff event in event log, it was ok, but when i ran secpol.msc again, audit policies, i've not seen the changes in the 2 policies i've changed.. is it normal?
and also is there another part of the system where i can see more details about logon events ?

thanx
0
 
LVL 20

Accepted Solution

by:
What90 earned 50 total points
ID: 10899718
I take you are doing this from the DC?

If you run secpol from the DC it's effecting the local domain controller only. You need to use the MMC for security in Admin Tools for it to effect other machines/domain.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question