In this article. The security principal for whom the per-user audit policy specified by the category or subcategory is set. Either the category or subcategory option must be specified, as a security identifier SID or name. This setting is ignored for users who are members of the local Administrators group. One or more audit categories specified by globally unique identifier GUID or name. If no user is specified, the system policy is set. One or more audit subcategories specified by GUID or name.
Specifies success auditing. For more information, see auditpol restore for syntax and options. Clears the audit policy. For more information, see auditpol clear for syntax and options.
Removes all per-user audit policy settings and disables all system audit policy settings. For more information, see auditpol remove for syntax and options. Configures global resource system access control lists SACLs. For more information, see auditpol resourceSACL. Contents Exit focus mode. Is this page helpful? Please rate your experience Yes No.
Any additional feedback? Note This command is useful in two scenarios. Submit and view feedback for This product This page. View all page feedback. In this article. The same goes for an audit policy that applies to active directory based items, we need to enable auditing on the specific item in a similar manner.
For example, right click a file or folder and select properties. Select the security tab, then click advanced. In the advanced security settings window, select the auditing tab. You can now add users or groups that you want to audit, along with the permissions that you want to audit for. We can also configure auditing on Active Directory based events in a similar way if you configured an audit policy that works on these objects.
The rest of the process is similar to the file or folder process, from the properties window select the security tab, click advanced, then auditing. We can then add a new auditing entry. As you can see there are a lot more items to choose from here, you can be extremely granular when configuring auditing on Active Directory based objects.
The AuditPol. Additionally it can be used to create, configure, or remove an audit policy. As AuditPol.
0コメント