We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you two Citrix podcasts. Learn about 2020 trends and get answers to your biggest Citrix questions!Listen Now

x

Auditing

LFC1980
LFC1980 asked
on
Medium Priority
449 Views
Last Modified: 2010-04-11
Hi

If you have a file server which has a folder with confidentail info, that only one group should be allowed to access

How would you maintain records of all attempts to access the folder.

I've been told you Enable Auditing of object access events on the server AND then on the folder it self you audit the Everyone group

My questions is this......I understand why you have to monitor the everyone group on the folder in question. but why do you have to enable auditing of object access events on the server. Cant you just do that on the folder itself?


Comment
Watch Question

Commented:
Could you specify what OS for which you require Auditing.
For tracking file access you should really be looking at "Tripwire"

Author

Commented:
It's something out of an MCSE study book, not something i am carrying out in real life.

The file server is a 2003

Commented:
you have to do both.... the audit policy to tell the server that he has to audit objects and the audit configuration in the folder to tell him what he has to audit.

Author

Commented:
But why couldn't we just put the audit policy that has been put on the server on the folder instead, as thats what we want to monitor?

Commented:
because the server audit policy is for "turning on" auditing.... then you have to configure what you want to audit. ask bill why they did it this way.... :)

Author

Commented:
So would this always be the case with auditing (i.e. always "turn it on" on the server first)

Author

Commented:
?
Commented:
yes, that's the way to do it. first turning on auditing on objects and then tell him what to audit.

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.