Question about auditing via the GPO

[CW]

Hello,

Running Windows 2000 Server here and looking to clear up
the wealth of contradictions I'm finding in my research.
What is the policy setting if I want to record in the log
every time someone tries to access a file or folder for
which they do not have access?

Thanks,

--CW

 

[Chriss3]

Computer Configuration\Windows Settings\Security Settings\Local
Policies\Audit Policy

Determines whether to audit the event of a user accessing an object (for
example, file, folder, registry key, printer, and so forth) which has its
own system access control list (SACL) specified.


--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1

 

[CW]

Chris,

You've given me the location to the area where auditing is
configured; I knew how to get there... I'm looking for the
exact policy setting to catch when someone tries to access
a file or folder for which they do not have access. Is
it "audit object access", "audit privilege use", or some
other setting?

Thanks,

--CW

 

[Chriss3]

sorry I forgot to post the type, audit object access

--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1

 

[CW]

Thanks!!!

-----Original Message-----
sorry I forgot to post the type, audit object access

--
Regards,

Christoffer Andersson
No email replies please - reply in the newsgroup
If the information was help full, you can let me know at:
http://www.itsystem.se/employers.asp?ID=1

"CW" <[email protected]> skrev i meddelandet


.