Solved

audit policy for files and directories

Posted on 2006-11-16
3
224 Views
Last Modified: 2010-04-18
I've enabled audit policies for my desired files and directories.  Now I'm a little confused on setting the permissions.  I would like to log all successful and failed attemps to my specified files from all users except the administrator.

How can I do this?  I currently have it logging only failed attempts from the administrator and below that entry I have it logging all failed and successful attempts from anyone in the 'everyone' group.
0
Comment
Question by:gopher_49
  • 2
3 Comments
 

Author Comment

by:gopher_49
ID: 17958863
Also,

The file access audits get logged into the Security log for a few mins then it quits.  I get other logs, however,  the audits I just recently enabled are not being logged anymore.  It seems that another policy is overwritting the new settings.  I've enabled auditing in the 'Domain Controller Audit Policy'.  I left the domain policy set to 'not configured'.  

This stands true for any new audit setting aside from file audits?!  Any thoughts?
0
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 250 total points
ID: 17960235
i take it this is SBS server?

as far as your permissions go, just add the users that you want to audit in (or the everyone group/Domain Users Group) and select your successful and unsuccessful attempts

run a gpresult on one of the DC's and see what policies are applying. This (if not SBS) should all be applied in the default domain controllers group policy
0
 

Author Comment

by:gopher_49
ID: 17960405
It's win 2003 standard and I've done everything above.  The Domain Controller Policy is being applied succesfully.  It will audit for awhile and it will then quit.  It's weird.  Also, in the GPMC application I have the Domain Controller Policy linked, however, it's not enforced.  It's being applied though.....
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question