audit
From: DC Gringo (dcgringo_at_visiontechnology.net)
Date: 11/16/04
- Next message: Marco RV: "Re: Script to obtain listing of permission NTFS in fileserver"
- Previous message: Andre Rojde: "Re: Script to obtain listing of permission NTFS in fileserver"
- Next in thread: techguru100 (A+): "RE: audit"
- Reply: techguru100 (A+): "RE: audit"
- Reply: Steven L Umbach: "Re: audit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 16 Nov 2004 12:24:38 -0500
I audit to logons...can someone tell me what they mean?
Event Type: Success Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 576
Date: 11/15/2004
Time: 5:02:22 PM
User: domain\user1
Computer: machinename
Description:
Special privileges assigned to new logon:
User Name:
Domain:
Logon ID: (0x0,0xE15B34)
Privileges: SeChangeNotifyPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Event Type: Success Audit
Event Source: Security
Event Category: Privilege Use
Event ID: 578
Date: 11/15/2004
Time: 5:02:22 PM
User: domain/user1
Computer: CIL-132
Description:
Privileged object operation:
Object Server: SC Manager
Object Handle: -312443664
Process ID: 1068
Primary User Name: machinename$
Primary Domain: domainname
Primary Logon ID: (0x0,0x3E7)
Client User Name: dheckel
Client Domain: domainname
Client Logon ID: (0x0,0xE15B34)
Privileges: SeTakeOwnershipPrivilege
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
-- _____ DC G
- Next message: Marco RV: "Re: Script to obtain listing of permission NTFS in fileserver"
- Previous message: Andre Rojde: "Re: Script to obtain listing of permission NTFS in fileserver"
- Next in thread: techguru100 (A+): "RE: audit"
- Reply: techguru100 (A+): "RE: audit"
- Reply: Steven L Umbach: "Re: audit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
