Solved

Audit policy in Windows Server 2k3

Posted on 2004-04-23
3
552 Views
Last Modified: 2010-04-19
Hello everybody,

i have a windows server 2k3 configured as a D.C. i was searching about how to configure audit policies, i want that "audit account logon events" and "audit logon events" to be enabled for success & failure, but when i run secpol.msc, i find in security settings/local policies/audit policy that those entries have "no auditing", and also when i click properties, i cannot change them.. they are grey marked , does anybody know wher to make them enabled so i can change them ?

thanx in advance
0
Comment
Question by:SUKHOI_Flanker
  • 2
3 Comments
 
LVL 20

Expert Comment

by:What90
ID: 10899209
You need to really use the Active directoy tools for setting the policy for the Domain or the Domain controller. Lookup under admin tools on the DC

These links might help explain what's to do:


http://www.computerperformance.co.uk/w2k3/gp/group_policy_security_audit.htm#Audit%20Logon%20events
http://www.computerperformance.co.uk/w2k3/Security_Audit.htm
0
 

Author Comment

by:SUKHOI_Flanker
ID: 10899426
i've done what u told me, and disonnected from the session , then connect again, and i 've seen the logon/logoff event in event log, it was ok, but when i ran secpol.msc again, audit policies, i've not seen the changes in the 2 policies i've changed.. is it normal?
and also is there another part of the system where i can see more details about logon events ?

thanx
0
 
LVL 20

Accepted Solution

by:
What90 earned 50 total points
ID: 10899718
I take you are doing this from the DC?

If you run secpol from the DC it's effecting the local domain controller only. You need to use the MMC for security in Admin Tools for it to effect other machines/domain.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
idle mapped drive 10 53
home folder path for users 4 59
server DNS address could not be found 22 134
domain controller migration seems succesful, however.... 9 62
I have never ceased to be amazed how many problems you can encounter on a fresh install of a Windows operating system.  This is certainly case in point& Unable to complete ANY MSI installation.  This means Windows Updates are failing and I can't …
The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now