We help IT Professionals succeed at work.

Event Viewer, File access logging and tools to review

LBTechSol
LBTechSol asked
on
563 Views
Last Modified: 2018-02-08
I have enabled the Audit logging of events on a central file server, these are set to archive every 100Mb to a network share for off server storage. As you can imagine there are lots of events to review BUT the default tool is proving very difficult to use and gather the correct information im looking for. So.....

I need to track file access over the next 3 months for 2 users they have been added to the Auditing settings and i can see things are reporting back to the security logs.

1) Events to be looking out for (file open, access, delete, copy etc..) what are the best event ID's to be looking for here
2) Event Viewer, are there any good free event viewing tools out there?>

Any advice would be much appreciated.

Thanks,
Comment
Watch Question

Exec Consultant
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
E ATech Lead
CERTIFIED EXPERT
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
LBTechSolOperations Director
CERTIFIED EXPERT

Author

Commented:
Thanks for the info above, all very useful
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.