Live Demo
Free Edition
Download NowAccount Management » Event ID 686 - Password of the following user accessed
Event ID 686 - Password of the following user accessed
| Event ID | 686 |
| Category | Account management |
| Description | Password of the following user accessed |
This log data gives the following information:
| Target User Name Target User Domain By user Caller User Name Caller Domain Caller Logon ID |
Why event ID 686 needs to be monitored?
- Prevention of privilege abuse
- Detection of potential malicious activity
- Operational purposes like getting information on user activity like user attendance, peak logon times, etc.
- Compliance mandates
Pro tip:
ADAudit Plus makes Active Directory auditing very easy by tracking Password Status Changes for Users like password set or changed and account locked out/unlocked details with the help of pre-defined reports and instant alerts.
Event 686 applies to the following operating systems:
- Windows Server 2000
- Windows 2003 and XP
Explore Active Directory auditing and reporting with ADAudit Plus.
Account Management Auditing
Active Directory Auditing
Windows Server Auditing
- Related Products
- ADManager Plus Active Directory Management & Reporting
- ADAudit Plus Hybrid AD, cloud, and file auditing and security
- EventLog Analyzer Real-time Log Analysis & Reporting
- ADSelfService Plus Self-Service Password Management
- AD360 Integrated Identity & Access Management
- Log360 (On-Premise | Cloud) Comprehensive SIEM and UEBA
- AD Free Tools Active Directory FREE Tools