Missing IP address in Security Audit

From: Ronald (Ronald_at_discussions.microsoft.com)
Date: 03/09/05

Next message: Roger Abell [MVP]: "Re: Why Are "Permission Entries" changed"

Previous message: Ken Winters: "Re: Why Are "Permission Entries" changed"
Next in thread: Ronald: "RE: Missing IP address in Security Audit"
Reply: Ronald: "RE: Missing IP address in Security Audit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 8 Mar 2005 21:55:02 -0800

Hi All,
not sure if you come across this problem.

I have a domain with 8 members servers. Apparently we had turn on security
audit for successful logon as well.

The problem is user name, server name etc are correctly captured in the
event log(Security( but it does not capture the correct IP of the remote host
that login to the domain. The IP shown in the log is 127.0.0.1(local host
address). Can anyone help and advise any settings that I have miss out?

Regards
Ronald

Next message: Roger Abell [MVP]: "Re: Why Are "Permission Entries" changed"

Previous message: Ken Winters: "Re: Why Are "Permission Entries" changed"
Next in thread: Ronald: "RE: Missing IP address in Security Audit"
Reply: Ronald: "RE: Missing IP address in Security Audit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]