Re: Auditing
From: Bryce Shaw (bryce@silicon-wafers.com)
Date: 08/29/02
- Next message: Ron Davis: "Re: Microsoft Security Bulletin MS02-048"
- Previous message: microsoft.public.win2000.security: "security issue !! access computer in lock mode"
- In reply to: Tim Hines, MCSE: "Re: Auditing"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Bryce Shaw" <bryce@silicon-wafers.com> Date: Thu, 29 Aug 2002 13:40:33 -0400
Aahhhhh!
Thanx Tim, you da man!
:)
"Tim Hines, MCSE" <nupe009@carolina.rr.com> wrote in message
news:eKsb9.59134$iP2.2602910@twister.southeast.rr.com...
> this should be configured in the default DC policy not at the domain
level.
>
> --
> Tim Hines, MCSA, MCSE (2000 & NT4)
>
> "Bryce Shaw" <bryce@silicon-wafers.com> wrote in message
> news:#FHibY3TCHA.1992@tkmsftngp10...
> > Hi Everyone,
> >
> > It seems I'm having a problem setting up auditing. I had previously set
> up
> > account lockout after 3 bad hits....you know....to help keep the bad
guys
> > out. And two people on my network keep having their accounts tripped.
So
> I
> > tried to set up Logon/Off auditing. I open the MMC for Domain Security
> > Policy and expanded "Local Policies" and expanded "Audit Policy" and
then
> I
> > set Audit account logon events to Success, Failure.
> >
> > And from what I know, I thought that was all I had to do, but my
security
> > log is still empty. Am I missing a step or something?
> >
> > Thanx for any help,
> > Bryce Shaw
> >
> >
>
>
- Next message: Ron Davis: "Re: Microsoft Security Bulletin MS02-048"
- Previous message: microsoft.public.win2000.security: "security issue !! access computer in lock mode"
- In reply to: Tim Hines, MCSE: "Re: Auditing"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
