grindsmygeaqrs
asked on
How to audit changes to AD objects/accounts?
Experts,
What is the best practice to determine who made permission changes to an AD object? I know the account and have a general time frame of when the chance was made.
Thank you very much!
What is the best practice to determine who made permission changes to an AD object? I know the account and have a general time frame of when the chance was made.
Thank you very much!
Auditing will have to be turned on as well as ACLs... see this:
http://social.technet.microsoft.com/Forums/scriptcenter/en-US/d13bbd74-1570-42f5-bdcf-5b597f1887c0/how-to-determine-who-last-modified-ad-object?forum=ITCG
http://social.technet.microsoft.com/Forums/scriptcenter/en-US/d13bbd74-1570-42f5-bdcf-5b597f1887c0/how-to-determine-who-last-modified-ad-object?forum=ITCG
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Please see the below link for best practice to determine who made permission changes to an AD object.
http://blog.pluralsight.com/windows-server-2008-auditing-active-directory