GPO Policy Auditing Solution
From: Dave Leonardi (cyberfrost100_at_yahoo.com)
Date: 03/15/04
- Next message: Phillip Windell: "Re: Win2k3 server MAC bridge does not forward packets"
- Previous message: Steve Barnes: "Slow Network"
- Next in thread: Doug Sherman [MVP]: "Re: GPO Policy Auditing Solution"
- Reply: Doug Sherman [MVP]: "Re: GPO Policy Auditing Solution"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 15 Mar 2004 10:08:22 -0500
Good Morning,
I was wondering if someone could assist me with a group policy
auditing scenario. I would like to apply successful/failure auditing only on
a group of computers in a computer lab, not the whole domain. What is
happening is certain individuals are logging on to the classroom computers
when they have no business being there. I would like to find out who is
attempting logon without authorization.
I created an OU called CCSLAB, which contains all the lab computers,
and has an attached group policy underneath it named CCSLAB computer policy
(no settings created for now). I also have noted that under my default
domain controller policy, all auditing features are set to no auditing by
default. I set the audit logon events to success/failure on the domain
controller default policy, but it's grabbing everyone. Needless to say that
went away quickly. I would appreciate it if someone could propose a solution
to monitor user logon just for the CCSLAB OU. Thanks for your time it is
greatly appreciated.
Regards,
David Leonardi
- Next message: Phillip Windell: "Re: Win2k3 server MAC bridge does not forward packets"
- Previous message: Steve Barnes: "Slow Network"
- Next in thread: Doug Sherman [MVP]: "Re: GPO Policy Auditing Solution"
- Reply: Doug Sherman [MVP]: "Re: GPO Policy Auditing Solution"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
