Re: ADAM auditing
- From: "Lee Flight" <lef@xxxxxxxxxxxxxxx>
- Date: Tue, 3 Jul 2007 22:08:22 +0100
Hi
once you have enabled "Audit directory service access" in the
security policy of the server that is running ADAM you need
to set a system ACL (SACL) for the security principals of
interest on those parts of the directory tree you want to audit.
If you google for info. on AD DS audit it's much the same,
the security editor in ldp.exe is the tool of choice for ADAM
SACL manipulation. Practice on a non-production ADAM instance
and be wary of generating high volumes of "success" audit as
this might load a production server.
ADAM audit requires W2k3 code base.
Lee Flight
"mike" <michael.burutzis@xxxxxxxxx> wrote in message
news:1183490051.299661.200880@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I have installed ADAM and was wondering how I can activate auditing so
I can know who does what? Right now, all audits are under the service
account name...
thanks in advance
.
- References:
- ADAM auditing
- From: mike
- ADAM auditing
- Prev by Date: Re: Replication problems
- Next by Date: Re: Replication problems
- Previous by thread: ADAM auditing
- Next by thread: Re: finding username with SID
- Index(es):
Relevant Pages
|
Loading
