• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 317
  • Last Modified:

Windows Active Directory Monitoring

Hi,
Every time a password is changed or an account added, I want to be notified (either email or in a log).

How do I do this?  I want to see if our active directory is being tampered with.

Thanks.
0
NYGiantsFan
Asked:
NYGiantsFan
4 Solutions
 
southpau1Commented:
If you have Server 2008 you can look in the security log for that.

Otherwise you need a tool, like ADAudit Plus to audit AD actions.
0
 
Krzysztof PytkoActive Directory EngineerCommented:
Yes, if you have Windows Server 2008 you can trigger an action on specified event ID and send it over e-mail

In other case, you need 3rd party tool or some other script.

The last option is to view event security log on Domain Controllers manually

Regards,
Krzysztof
0
 
Sushil SonawaneCommented:
Please refer the below link.

http://www.manageengine.com/windows-active-directory-tools.html

You can manage AD & Exchange - Manage, Audit, Report the easy way.

The trail version available.
0
 
McKnifeCommented:
Hi.

To add to what iSiek wrote: even win2003 servers are able to do event triggered actions like mails: Using eventtriggers.exe, builtin to 2003. Of course you would need to use a command line mailer, too, like blat.exe.
0
 
NYGiantsFanAuthor Commented:
Thanks for the start folks!
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now