Re: Logging
From: Chris (kierownikx_at_yahoo.com)
Date: 08/04/05
- Next message: cobra: "event ID 675"
- Previous message: FastEddie: "IIS SMTP TLS with 256 bit encryption on IIS 6 [repost]"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 4 Aug 2005 10:30:14 -0500
Thanks for your reply, can you recommend professional loggin tool?
"Jorge_de_Almeida_Pinto" <UseLinkToEmail@WindowsForumz.com> wrote in message
news:3_1319689_e191aab77a077f03f7f789682d9ff658@windowsforumz.com...
> "" wrote:
> > Hi,
> >
> >
> >
> > How can I retrieve and print security logs, so that
> > management can see who
> > has accessed folders/files and when? There must be a better
> > way then
> > scrolling thru Event Viewer and filter only file access
> > related events.
> >
> >
> >
> > Advice please!
> >
> >
> >
> > Chris
>
> you need to configure auditing for the server and after that you need
> to configure what files/folders are audited and who is audited. All is
> logged into the security event log. Do some tests to see which event
> IDs are generated and then use eventcomb to get all IDs from the
> server.
> Be aware that is you audit when each user accesses a file/folder you
> logs can become huge and if that goes fast newer events will overwrite
> (depending how you configure logging) older events. For this you may
> need a professional auditing tool that retrieves the logs from time to
> time
>
> --
> Posted using the http://www.windowsforumz.com interface, at author's
> request
> Articles individually checked for conformance to usenet standards
> Topic URL:
> http://www.windowsforumz.com/Security-Logging-ftopict399380.html
> Visit Topic URL to contact author (reg. req'd). Report abuse:
> http://www.windowsforumz.com/eform.php?p=1319689
- Next message: cobra: "event ID 675"
- Previous message: FastEddie: "IIS SMTP TLS with 256 bit encryption on IIS 6 [repost]"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
