Re: Security Event log full in 30 min
From: Blitz (jritchie@removehurricane-equipment.com)
Date: 01/21/03
- Next message: David Burklin: "Anonymous Logon in Event Log"
- Previous message: Fred: "Anyone know what the "IPSEC Policy Agent" is used for?"
- In reply to: Jeff: "Re: Security Event log full in 30 min"
- Next in thread: Blitz: "Re: Security Event log full in 30 min"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Blitz <jritchie@removehurricane-equipment.com> Date: 21 Jan 2003 21:16:00 GMT
"Jeff" <jeff@nospam.com> wrote in
news:012801c2c18e$149e2320$d7f82ecf@TK2MSFTNGXA14:
>
> Okay, I'm attempting to remember what the settings are on
> W2k, but I believe they are similar to XP. There is an
> Audit Logon Events, which is what you set, and there is
> Audit Account Logon Event - which is what you want.
>
> Audit Logon Events should log everything, including system
> events.
>
> Audit Account Logon Events should only log actual account
> logons (like yours), not the system logon events.
>
> That's all from the depths of my brain, so forgive me if I
> do not have the exact syntax down of what the audit
> policies are actually named, but it should be close.
>
>
Bingo that was it. Acounts events. Thanks
- Next message: David Burklin: "Anonymous Logon in Event Log"
- Previous message: Fred: "Anyone know what the "IPSEC Policy Agent" is used for?"
- In reply to: Jeff: "Re: Security Event log full in 30 min"
- Next in thread: Blitz: "Re: Security Event log full in 30 min"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
