Configuring Advanced Audit Policy

 

  1. Audit Policies must be configured for respective computers that require audit.

  2. Specific audit entries (SACLs) must be enabled for audit objects.

 

Configuring Audit Policy:

  1. What is an audit policy?

  2. What is an advanced audit policy?

  3. How to configure advanced audit policy?

What is an audit policy?

Audit Policies must be configured in any Active Directory environment; this ensures that relevant audit data are logged into the security logs of desired computers / domain controllers. ADAudit Plus will be able to collect and report audit data only for audit policy enabled computers.

What is an advanced audit policy?

Configuring the advanced audit policy in Windows Server (2008 R2, Windows 7 & above) environment ensures only the required security logs for auditing are collected, ensuring the disk space does not fill fast with unwanted logs.

 

How to Configure Advanced Audit Policy?

  1. Advanced Audit Configuration for Domain Controllers

  2. Advanced Audit Configuration for Workstations

  3. Advanced Audit Configuration for File Servers

  4. Advanced Audit Configuration for Member Servers

Copyright © 2014, ZOHO Corp. All Rights Reserved.
ManageEngine