Re: DNS entry deletion tracking

Tech-Archive recommends: Speed Up your PC by fixing your registry

---

• From: "Herb Martin" <news@xxxxxxxxxxxxxx>
• Date: Thu, 4 Jan 2007 09:22:21 -0500

---

"Brendon B" <BrendonB@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:E568207F-68A3-4EF2-8621-FEEB9CE0C658@xxxxxxxxxxxxxxxx

Hi Everyone

One of the administrators here deleted an A entry in our 2003 Active
Directory Integrated DNS. Is there a way to track the user who did this?

i.e

In Logs? I'm not sure if the will be logged in the security logs of the
Domain Controllers? Would looking for a 564 Security Audit (Object

Deleted)

event pick this up?

Not unless you have enabled the appropriate auditing setting
(DS objects) AND selected the AD DNS objects to be auditing
with ACLs. (both unlikely.)

Your help is appreciated

Do you perhaps have too many admins?


.

---

• Prev by Date: Re: Can't view trust domain
• Next by Date: Re: Establishing DNS zone transfer for multiple domains
• Previous by thread: Establishing DNS zone transfer for multiple domains
• Next by thread: Re: DNS entry deletion tracking
• Index(es):
  • Date
  • Thread

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.dns  > 2007-01