Escolar Documentos
Profissional Documentos
Cultura Documentos
Windows Server 2008 and 2008 R2 have been one of the most widely deployed servers in the
project setups where they are used for supporting collaborative work environments. However,
because of the very nature of these kinds of setup where multiple resources have access to the
same objects, assigning responsibility for user actions become utmost important.
This can be ensured by auditing all User actions related to file and folder access. In this guide, we
are going to see how we can enable auditing on Windows Server 2008 and 2008R2.
On Windows Server 2008 and 2008 R2, auditing file and folder accesses consists of two parts:
1. Enabling File and Folder auditing which can be done in two ways:
a. Through Group Policy (for Domains, Sites and Organizational Units)
b. Local Security policy (for single Servers)
2. Performing audit settings for File and Folders to be audited i.e. specifying Files/Folders
and which all Users’ actions are to be audited.
Here, we will see how to enable auditing for object access on a MS Windows Server 2008 DC and
a client of the domain through GPO. To enable auditing, follow these steps:
Go to Windows Explorer
Right-click on it and select Properties.
In the Properties dialog box, select the Security tab and click on ‘Advanced’.
In the Advanced Security Settings dialog box, select the Auditing tab.
Click on the ‘Add…’ button.
In the Select User or Group dialog, enter names of Users whose accesses are to be
audited.
Select ‘Everyone’ to audit access attempts by all Users. Click on ‘OK’.
Auditing Entry for Accounts dialog box opens up.
Select the type of accesses to be audited. Successful access/Failed access or both can
be selected.
Click ‘Ok’ and ‘Apply’ to save the settings.
From this point onwards, all the access attempts to this particular folder by all Users would be
recorded on the DC. To view these event logs use Windows event viewer. Aside from this, you
can also use LepideAuditor for File Server for complete change auditing and reporting of File
Server environment with features like centralized and customizable auditing and real-time alert
generation.
Lepide Software
B 57, Sector 57
Noida, U.P.
India
201301
Phone: +91 (120) 4282353
Fax: +91 (120) 4282354
www.lepide.com