can anyone guide me or explain to me about this:-
I create a domain controller, and I was testing on the Event Viewer.
I want to test eventID 528 , which mean logon sucessfully.
How come when I login as an administrator , there isn't any Event log captured for it.
But of coz when I test with EventID:529, meaning that logged when there is a bad password or user name.
But I cannot see an expect resutl of an event 528 which the administrator successful log in, can there anyone explain to be, what other setting I need to enter.