Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.
Course Of The Month
6 days, 11 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Auditing User Access of Files, Folders for window 2003 default enable
Posted on 2012-12-27
Hi Experts ,
I asking question for my HR manager who work in my company . we have window 2003 server standard edition as file server , He asked me default gpo policy for auditing user access of files are enable by default , Is it correct . Someone has links that can proof default window server 2003 domain controller gpo policy is not enable by default .
B.rgds
I asking question for my HR manager who work in my company . we have window 2003 server standard edition as file server , He asked me default gpo policy for auditing user access of files are enable by default , Is it correct . Someone has links that can proof default window server 2003 domain controller gpo policy is not enable by default .
B.rgds
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
4 Comments
There is some auditing enabled by default, but not at the level that you want/need.
It can be done pretty easily via GPO or on specific folders even.
http://msmvps.com/blogs/richardwu/archive/2010/07/16/enabling-file-and-folder-auditing.aspx
http://technet.microsoft.com/en-us/library/cc738931(v=ws.10).aspx
http://support.microsoft.com/kb/325898
But more importantly, make sure that the folders are restricted so that only users with the neccessary permissions can view those folders.
Especially with the HR department, nobody besides HR should have access to their shared folders/network storage locations otherwise anybody will be able to see confidential information.
It can be done pretty easily via GPO or on specific folders even.
http://msmvps.com/blogs/richardwu/archive/2010/07/16/enabling-file-and-folder-auditing.aspx
http://technet.microsoft.com/en-us/library/cc738931(v=ws.10).aspx
http://support.microsoft.com/kb/325898
But more importantly, make sure that the folders are restricted so that only users with the neccessary permissions can view those folders.
Especially with the HR department, nobody besides HR should have access to their shared folders/network storage locations otherwise anybody will be able to see confidential information.
There is no auditing of folder or file access by default - if you want to switch it on then you first have to enable auditing of object access
Once that's done then for each folder (or file) you want to audit, you can set which users and which events should be recorded
Once that's done then for each folder (or file) you want to audit, you can set which users and which events should be recorded
opps - I forgot the link
http://support.microsoft.com/kb/310399
This is for XP but all versions of windows are similar
http://support.microsoft.com/kb/310399
This is for XP but all versions of windows are similar
Problem is, native File System Auditing in Windows servers is really cumbersome to analyze (especially for non-IT staff like HR) because event logs contain tons of low-level information and noise.
You should consider using a 3rd-party software solution called FileAudit, that tracks, audits, reports and alerts on all access to files and folders on Windows servers.
Detailed info and trial:
http://www.isdecisions.com/products/fileaudit
I also noticed the availability of FileAudit 4 beta version:
http://blog.isdecisions.com/post/37190108134/fileaudit-4-join-the-beta-testing-program-enter-to
You should consider using a 3rd-party software solution called FileAudit, that tracks, audits, reports and alerts on all access to files and folders on Windows servers.
Detailed info and trial:
http://www.isdecisions.com/products/fileaudit
I also noticed the availability of FileAudit 4 beta version:
http://blog.isdecisions.com/post/37190108134/fileaudit-4-join-the-beta-testing-program-enter-to
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Background Information
Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database.
Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This Micro Tutorial hows how you can integrate Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease.
The following video show how to bind OSX Mavericks to …
Suggested Courses
Course of the Month6 days, 11 hours left to enroll
Earn Certification
MCSA Configuring Windows 7 Exam 70-680
$49.00$44.10
724 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.