Re: homebrew active directory auditing of changes?

Tech-Archive recommends: Speed Up your PC by fixing your registry

---

• From: "Herb Martin" <news@xxxxxxxxxxxxxx>
• Date: Sat, 17 Feb 2007 01:43:54 -0600

---

"Unsettled" <unsettled@xxxxxxxx> wrote in message
news:O8AdATmUHHA.3316@xxxxxxxxxxxxxxxxxxxxxxx

Does anyone know of code I can download that can automate the auditing of
changes to AD? Or, any sort of starting point, or sample code to get my
feet wet would be nice.

You don't really need "code" for this.

Just enable Account Manage Profiling, or if you need more detail enable
Directory Service Audit Policy AND the Auditing ACLs (similar to
permission) on the actual "objects" you wish to audit.

Ultimately, I'd like a daily email of all changes, or some way to do on
demand audits.

The audits will go to the security log, and you can find VBS and Perl
scripts to capture, parse, or email that to you.


--
Herb Martin, MCSE, MVP
http://www.LearnQuick.Com
(phone on web site)


.

---

• References:
  • homebrew active directory auditing of changes?
    • From: Unsettled

• Prev by Date: homebrew active directory auditing of changes?
• Next by Date: Re: Multiple Accounts Error with only one Computer Account in Domain
• Previous by thread: homebrew active directory auditing of changes?
• Index(es):
  • Date
  • Thread

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.active_directory  > 2007-02