Logon / Logoff GPO not working

It might be that it's related to "User Group Policy loopback processing mode"
Please see also:
http://social.technet.microsoft.com/wiki/contents/articles/2548.windows-server-understand-user-group-policy-loopback-processing-mode.aspx
Do you have set this policy ?
It should be set to "Replace".

I wouldn't use the shared folder, i would copy it into the GPO's shared folder which is what pops up when you click the browse button when creating the login/logoff GPO. This way you will be sure to have the correct permissions. As zalazar said it could be the gpo loopbacking processing as well.

Ok I went in and set User Group Policy loopback processing mode to "replace" under computer configuration. Ran the force command. Right now I have the permissions on that folder set to everyone and shared with everyone trying to get it to work. The folder is right there on that same server.

Ok its now working for users logging on and off of that server. But the GPO is linked to the whole domain and this domain controller is in no way specified. Why are those other logins and logoffs not coming in?

Group Policy does not update the second you make a change to the policy. Replication can take up to 90 minutes. A computer checks GPO every 90 min at random times so the servers are not hit all at once. Let things replicate and then check it. Or do the gpupdate /force on the PCs by hand and check if its working.

I've done the force on other servers and some machines here. It only seems to record the logon and logoffs on that domain controller where I did the GPO only.

When I run GP Results wizard on other servers for my user name- it says that GPO is applied. Its not under Denied or anything. Not showing up in the csvs at all.

Not even working at all now. That server has stopped recording the logon and logoffs.

From the other server try to open the csv file and edit and save it by using the share name just to be 100% sure your permissions are correct.

Yeah I can do that ok. I don't think things aren't collecting to the DC right. Under status and then Status Details, then GPOs it says:  Data is uncollected. It says:  no infrastructure Status exists for this domain. When I click Detect Now I'm getting:

A processing error occurred collecting data using this base domain controller. Please change the base domain controller and try again.

I've opened up a new question because of other stuff related to this here:

https://www.experts-exchange.com/questions/28303682/Can't-change-FSMO-holder-in-ADSI-Edit.html

Ok made some changes (in other posting) and now the Status tab is working in GP Management. It shows that everything is replicating ok- but nothing is happening. The log on/offs only appear for that original DC I set it up on. Its weird because nowhere is that server specified in the GPO- it applies to the whole domain and applies to everyone. When I run the results wizard against myself on another DC- its shows the policy being applied to me, but my log on log off is not going to the csvs. The share is totally shared and everyone has permission to it- I don't know what's preventing the tons of log on log offs from getting to those csvs...

Does anyone have any recommendations for log on log off auditing software that I could get that would pull from the whole domain?

Does anyone have any recommendations for log on log off auditing software that I could get that would pull from the whole domain?

Yes try there , one is a free ware and the other is paid one . If it is only at the case all should be in a AD and a part of the domain.

Click here for freeware and for  paid tool.

Thanks

Yeah it seems like those run off of active directory, and believe it or not, it doesn't record log off events, only log on.

Ok then it can be as i also cross checked and it was log off details only the you need to go for the paid tool of AD as they would be only perfect to handle your query.

Thanks and try the paid one

I tried the paid version but still no log off capability was included. I told them that their software details said that it was included and this is how they responded:

"Sorry for the trouble you faced, we are releasing the upgraded version of the software in the next month in which we are providing the log off user detail as well. Till then if you have any other query related to our software you can ask to us.
Thanks & Regards"

So, still left in the lurch.

Thanks, I'm super busy right now, it will take me a bit to get to this and set it up. I will let you know asap.

You can forward events to central server.