Question about auditing via the GPO

C

CW

Hello,

Running Windows 2000 Server here and looking to clear up
the wealth of contradictions I'm finding in my research.
What is the policy setting if I want to record in the log
every time someone tries to access a file or folder for
which they do not have access?

Thanks,

--CW
 
C

Chriss3

Computer Configuration\Windows Settings\Security Settings\Local
Policies\Audit Policy

Determines whether to audit the event of a user accessing an object (for
example, file, folder, registry key, printer, and so forth) which has its
own system access control list (SACL) specified.


--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1
 
C

CW

Chris,

You've given me the location to the area where auditing is
configured; I knew how to get there... I'm looking for the
exact policy setting to catch when someone tries to access
a file or folder for which they do not have access. Is
it "audit object access", "audit privilege use", or some
other setting?

Thanks,

--CW
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top