?
Solved

Service connection point Object creation/deletion is not audited in Active Directoty

Posted on 2014-03-31
5
Medium Priority
?
99 Views
Last Modified: 2015-06-24
Hi,
I am trying to audit creation/deletion/update of service connection point type objects in an specific OU and sub OU's in AD. Attached is the snapshot of audit policy I have applied on OU. But I do not see any events in security events log on the DC. Can any one tell me what I am doing wrong or what else needs to be done to enable audit on all object in certain OU in AD?
Policy.JPG
0
Comment
Question by:SRao123
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 37

Accepted Solution

by:
Mahesh earned 2000 total points
ID: 39966030
What your screen shot showing is you have enabled auditing of file folder access

If you wanted to audit SCP related changes, then you must enable Audit directory service access for failure and success in default domain controller policy, then it will populate logs in security event logs on DC server

Also you will get some information in Directory service event logs on domain controller

Mahesh.
0
 
LVL 1

Author Comment

by:SRao123
ID: 39966043
We have DS auditing on success enabled, as in attached snapshot. Will that be enough or we need to make some other changes?
policy2.JPG
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39966194
That right
You need to select failure as well
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40848205
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question