Solved

How do I trun on the Security log so I can see the event loggin in the Event Viewer?

Posted on 2006-11-29
3
246 Views
Last Modified: 2012-05-05
I'm using Windows 2000 server.  Right now, there is no entry at all in my security log.

Thanks.
0
Comment
Question by:lapucca
  • 2
3 Comments
 
LVL 17

Accepted Solution

by:
jburgaard earned 500 total points
Comment Utility
How to enable and apply security auditing in Windows 2000:
http://support.microsoft.com/?kbid=300549

futher reading : http://labmice.techtarget.com/troubleshooting/EventLog.htm

hope this helps
0
 

Author Comment

by:lapucca
Comment Utility
I followed the instruction of the 1st link but it's still not working and in  the Local Security Policy rihgt panel it still says "No auditing" in the "Effective Setting" column.  Why is that so?  
Also, I am in a domain, and the 1st link has a note about his as follow.  So how can I change that if I need to?  Thanks.
NOTE: If you are a member of a domain, and a domain-level policy is defined, domain-level settings override the local policy settings.


1. Log on to Windows 2000 with an account that has Administrator rights. If you want to grant other users the rights to set auditing, see the "How to Enable Another Account to Configure Auditing" section in the "Reference" section of this article.
2. Ensure that the Group Policy snap-in is installed; if it is not installed, follow the directions in the "How to Install the Group Policy Snap-in" section in the "References" section of this article to install it.
3. Click Start, point to Settings, and then click Control Panel.
4. Double-click Administrative Tools.
5. Double-click Local Security Policy to start the Local Security Settings MMC snap-in.
6. Double-click Local Policies to expand it, and then double-click Audit Policy.
7. In the right pane, double-click the policy that you want to enable or disable.
8. Click the Success (An audited security access attempt that succeeds) and Fail (audited security access attempt that fails) check boxes for logging on and logging off. For example, with this setting, a user's successful attempt to log on to the system is logged as a Success Audit event. If a user tries to access a network drive and fails, the attempt is logged as a Failure Audit event.
0
 

Author Comment

by:lapucca
Comment Utility
Got it, I had to do it through Group Policy.  Thanks.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now