Active Directory Auditing with Tripwire

Posted on 2012-09-04
Last Modified: 2013-12-06
We have tripwire in our organization.  We want to use it to audit changes to Active Directory.  For example, we want to know:

-What accounts have been deleted in the past 30 days, and who deleted it
-What changes have been made to groups and users, and who made the change
-Changes to group policy, and who made them

etc...Basically any change/addition/deletion and who did it.

Looking for a tech guide on how to implement this with Tripwire.
Question by:southpau1
    LVL 6

    Accepted Solution

    trip wire is expensive, dont you guys have support with it.

    i am using something less cheaper but i assume its the same principles.

    one i have i create threads for each event u want to monitor and maybe raise an alarm on

    have a look at this for a complete list of event id's
    LVL 7

    Author Closing Comment

    Not exactly what I was looking for, but helpful nonetheless.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found here: http://www.experts-exchang…
    Introduction Many times we come across a slowness or instability between two hosts, and almost always we blame the poor networking guys, just because they're an easy target.  Sometimes we forget that other factors including disk bottlenecks, CPU …
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
    In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

    731 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now