ntfs folder permissions auditing

how can i use folder auditing to see if someone was to add themselves rights to a folder that i only have permissions too? .
mrbayItAsked:
Who is Participating?
 
TomislavjConnect With a Mentor System AdminCommented:
In the local policy (or GPO) of the computer, enable Success audits via one of the following:

1. Computer Configuration | Policies | Windows Settings | Security Settings | Local Policies | Audit Policy | Audit Object Access

2. Computer Configuration | Policies | Windows Settings | Security Settings | Advanced Audit Policy Configuration | Audit Policies | Object Access | Audit File System

Enable auditing on your directory by right-clicking on the directory in Windows Explorer and selecting Properties/Security/Advanced/Auditing/Edit/Add/Next.
Enter Everyone as the security principal to audit.
Check the "Successful" box for "Change permissions".

In the Security event log keep eye on event 4663 or 4670
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.