Audit policy doesn't record authentication if logins are minutes apart?

From: luu duong (luu_duongtakeout_at_hotmail.com)
Date: 01/05/04 

Date: 5 Jan 2004 13:35:59 -0800

Hi, I turn on local security settings -> local policies -> audit
policy -> audit account logon events to record user authentication to
a website I have on a windows 2000 server (authentication using AD).
My question is why does the security event log record my first login
but if I close my browser and login again 2-3 minutes later the
security event log doesn't record this? If I wait more than 20 minutes
it does get recorded. Is there any way to change the timeout period of
logins to be smaller than 20 minutes so that I can record all
successful authentications that are < 20 minutes apart.

Thanks,

Luu

Relevant Pages

  • RE: XP not capturing logoff events
    ... Make sure that "Audit account logon events" is enabled for success ... Ensure that the Security event log is not full. ... Microsoft CDO for Windows 2000 ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Unable to Authenticate in IIS using Basic Authentication
    ... But the weird thing is I had the Security Event log to Overright events as ... > Failed to impersonate the Anonymous User for ASP Application ... > Using Basic Authentication no domain users can get authenticated. ...
    (microsoft.public.inetserver.iis)
  • Re: admin
    ... It is possibly using tcp 80 to a page that requires authentication. ... If so, find the IP from the IIS logs, or from the security event log, ...
    (microsoft.public.windows.server.security)
  • Re: VPN & Windows authentication
    ... find out what is going on with the login itself from the details provided in ... the security event log. ... so the web server machine can store its authentication attempts ...
    (microsoft.public.dotnet.framework.aspnet.security)