Solved

Ad auditing

Posted on 2009-04-02
1
221 Views
Last Modified: 2012-05-06
I am setting up auditing for a active directory environment. I need to know what to do to correlate all teh events to a server or two. I am using a product called sentinel to access teh event logs over WMI. what do I have the ad administrator do on the ad side to make sure he has a plociy to collect ad events on his domain controller or is this in the DC event log by default
0
Comment
Question by:zenworksb
1 Comment
 
LVL 15

Accepted Solution

by:
zelron22 earned 500 total points
ID: 24050188
He needs to have auditing turned on for whichever events you want to audit, e.g. logon failure, logon success, object access, etc.

If any of the audited events occur, they get logged in the security log.

Audit logging is turned on/modified either via Local Security Policy for stand alone servers or through Group policy for domain members, domain controllers, etc.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
AWS VPS as AD Server 2 56
RSOP Red "X" 7 32
Using cipher to decrypt files. 4 31
exchange, active directory 8 30
Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now