?
Solved

audit queries

Posted on 2014-03-31
5
Medium Priority
?
89 Views
Last Modified: 2015-06-24
dear gurus advise

for windows 2008 domain controller type network, how best we can audit our own network and get recommendation

any step by step tips guideline given
0
Comment
Question by:tmsa12
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 37

Accepted Solution

by:
Mahesh earned 2000 total points
ID: 39966760
Auditing is vast topic

generally auditing needs to be set in Default domain Controller Policy or separate policy that will apply to Domain Controllers OU
http://blog.pluralsight.com/windows-server-2008-auditing-active-directory
http://www.manageengine.com/products/active-directory-audit/help/getting-started/manual-configuration-dc-auditing.html

Also for file servers auditing you must put file server in separate OU \ OR use GPO security filtering to apply GPO only to file server computer object
In that GPO you must enable Audit object access for success and failures and then you need to set auditing on shared folders properties\security \advanced tab\auditing and there you need to add all respective users for which you wanted to audit access

Check below articles for more info
http://social.technet.microsoft.com/Forums/windowsserver/en-US/da689e43-d51d-4005-bc48-26d3c387e859/auditing-on-file-server?forum=winserverfiles
http://blogs.technet.com/b/mspfe/archive/2013/08/27/auditing-file-access-on-file-servers.aspx

Note that all auditing activities records logs in security event logs so ensure that you will ensure security event log size on servers

Mahesh.
0
 

Author Comment

by:tmsa12
ID: 39968664
dear gurus highly appreciate

in fact only domain admin, users audit required, folder/file sharing not require

advise any free tools to audit windows 2008 r2 enviornment and can it apply or install on master domain controller dc

regards
saleem
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39970353
Microsoft provides the above way to set auditing on your Domain controllers

When you set auditing polices in Default Domain Controller Policy, it will apply to Domain Controllers only

If you are looking for 3rd party tools, they are not free and you can check trial version of Ad Audit Plus from Manage engine, its really good tool and if you found OK, you can buy it

Mahesh
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40848207
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question