I have a Windows SBS 2003 server and would like to track user activity (such as read, create, modify on dirs & files) using the SACL of AD. Enabling an audit of directory service access writes all events to the security log. Going through this info is time-consuming and a real nightmare!
I am after a tool which does this for me so that I can query and report the security log i.e. which user last had access to file1 or which files has user1 last edited/accessed.