securing the event log

  • Thread starter Thread starter Mike Campbell
  • Start date Start date
M

Mike Campbell

I have a peer to peer network with an XP pro workstation
that has the event log locked against everyone including
the local administrator account. I have searched thru the
local security policy & the local group policy. I cannot
find any reference to locking out the event log. Any
ideas?
 
There is a user right assignment for managing auditing and security log that would
need to include appropriate membership. Also check ntfs permissions on the .evt files
and eventvwr.msc file. it could also be configured as restricted in Group Policy
under user configuration/administrative templates/Windows components/MMC/restricted
and permitted snapins. Also see KB linK below if none of that helps. --- Steve

http://support.microsoft.com/?kbid=172156
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

can't modify local security settings 2
Peer2Peer wks log-on screen 1
Locking down XP machines on a peer to peer network 3
Changing Local Security Policy (Password / Account Lockout) 1
Failure to access local machine uisng IP Security Monitor 1
polsvrcl.dll? 1
Allow Log on through Terminal Services 1
can't clear security log as local admin 1

Back
Top