Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

How do I trun on the Security log so I can see the event loggin in the Event Viewer?

Posted on 2006-11-29
3
Medium Priority
?
323 Views
Last Modified: 2012-05-05
I'm using Windows 2000 server.  Right now, there is no entry at all in my security log.

Thanks.
0
Comment
Question by:lapucca
  • 2
3 Comments
 
LVL 17

Accepted Solution

by:
jburgaard earned 1500 total points
ID: 18041628
How to enable and apply security auditing in Windows 2000:
http://support.microsoft.com/?kbid=300549

futher reading : http://labmice.techtarget.com/troubleshooting/EventLog.htm

hope this helps
0
 

Author Comment

by:lapucca
ID: 18041961
I followed the instruction of the 1st link but it's still not working and in  the Local Security Policy rihgt panel it still says "No auditing" in the "Effective Setting" column.  Why is that so?  
Also, I am in a domain, and the 1st link has a note about his as follow.  So how can I change that if I need to?  Thanks.
NOTE: If you are a member of a domain, and a domain-level policy is defined, domain-level settings override the local policy settings.


1. Log on to Windows 2000 with an account that has Administrator rights. If you want to grant other users the rights to set auditing, see the "How to Enable Another Account to Configure Auditing" section in the "Reference" section of this article.
2. Ensure that the Group Policy snap-in is installed; if it is not installed, follow the directions in the "How to Install the Group Policy Snap-in" section in the "References" section of this article to install it.
3. Click Start, point to Settings, and then click Control Panel.
4. Double-click Administrative Tools.
5. Double-click Local Security Policy to start the Local Security Settings MMC snap-in.
6. Double-click Local Policies to expand it, and then double-click Audit Policy.
7. In the right pane, double-click the policy that you want to enable or disable.
8. Click the Success (An audited security access attempt that succeeds) and Fail (audited security access attempt that fails) check boxes for logging on and logging off. For example, with this setting, a user's successful attempt to log on to the system is logged as a Success Audit event. If a user tries to access a network drive and fails, the attempt is logged as a Failure Audit event.
0
 

Author Comment

by:lapucca
ID: 18042461
Got it, I had to do it through Group Policy.  Thanks.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
LinkedIn blogging is great for networking, building up an audience, and expanding your influence as well. However, if you want to achieve these results, you need to work really hard to make your post worth liking and sharing. Here are 4 tips that ca…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question