Solved

Auditing AD and Exchange

Posted on 2008-10-07
2
366 Views
Last Modified: 2012-05-05
I would like to enable auditing on my domain for both exchange and active directory. Do I need to have GPO that touches the entire enterprise if i want to enable auditing? or can i set the auditing on the server, i would like to track when a user is changed, password updated, disabled/ enabled, and when the rights are changed. Any help would be great.

Thanks

Matt
0
Comment
Question by:HRSBTech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 6

Accepted Solution

by:
JimsZ earned 500 total points
ID: 22658442
I would go with domain wide GPO personally, although you can set GPO for only "default domain controllers".  You can also set local policies to enable auditing!

Start - Run - Secpol.msc and click "Local Policies" - "Audit Policy" and set your auditing options
0
 

Author Comment

by:HRSBTech
ID: 22658668
So if I want to check when all files rights are changed, user rights changed, disabled users, enabled, all these types of things, I can do this with domain wide GPO and apply it to everyone or just do it for the default domain controler policy... if i apply it to the default domain controller policy will it pick up all the changes? since the changes have to be made to an item that lives onthe DC?

make sense?
0

Featured Post

SharePoint Admin?

Enable Your Employees To Focus On The Core With Intuitive Onscreen Guidance That is With You At The Moment of Need.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question