<div>
Hi,<br />
<br />
This is the best practice for security audits <a href="http://technet.microsoft.com/en-us/library/cc778162(v=ws.10).aspx" rel="ugc">http://technet.microsoft.com/en-us/library/cc778162(v=ws.10).aspx</a><br />
<br />
You can use this link to configure security audits <a href="http://technet.microsoft.com/en-us/library/dd277403.aspx" rel="ugc">http://technet.microsoft.com/en-us/library/dd277403.aspx</a>
</div>


Hi,

This is the best practice for security audits http://technet.microsoft.com/en-us/library/cc778162(v=ws.10).aspx [http://technet.microsoft.com/en-us/library/cc778162(v=ws.10).aspx]

You can use this link to configure security audits http://technet.microsoft.com/en-us/library/dd277403.aspx [http://technet.microsoft.com/en-us/library/dd277403.aspx]

<div>
Thats not really the question though - the question is what is the risk in not enabling auditing - when will it come back to haunt you.
</div>


Thats not really the question though - the question is what is the risk in not enabling auditing - when will it come back to haunt you.

<div>
<div class="content wysiwyg-content">
Can anyone elaborate on the risk on not enabling logon success and failure auditing on file servers? Our admin doesnt enable auditing for such events and doesnt see it as a risk - as its only a select few IT admins who could ever logon anyway, so doesnt see what value such auditing would bring. Can anyone give a good example where logon success and failure would be required - and issues that could arise by not enabling logon success or failure.
</div>
</div>


Can anyone elaborate on the risk on not enabling logon success and failure auditing on file servers? Our admin doesnt enable auditing for such events and doesnt see it as a risk - as its only a select few IT admins who could ever logon anyway, so doesnt see what value such auditing would bring. Can anyone give a good example where logon success and failure would be required - and issues that could arise by not enabling logon success or failure.

logon success and failure auditing

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.

Microsoft Server OS

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.

Windows Server 2008

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).