The setting of audit criteria by FlashStart

0min

To enable Security Auditing registration, with the Administrator account in the Microsoft server, follow the next steps:

» Open the Group Policy Manager from Start->Run->gpmc.msc.
» Right-click Default Domain Policies and choose Edit.
» Open Computer Configuration->Policies->Windows Settings->Security Settings-> Advanced Audit Policy Configuration->Audit Policies->Account Logon.
» Right-click Audit Kerberos Authentication Service (right) and then click Properties.
» Select the Configure the following audit events and Success items. Apply the changes by clicking [Apply] and then [OK].
» Now open Computer Configuration->Policies->Windows Settings->Security Settings-> Advanced Audit Policy Configuration->Audit Policies->Logon/Logoff.
» Right-click Audit Logon (right) and then click Properties.
» Select the Configure the following audit events and Success items. Apply the changes by clicking [Apply] and then [OK].
Open Start->Run->cmd and run gpupdate /force to apply the changes immediately.
Related Frequently Asked Questions:

Configuring the Pro+ Filter - Introduction
Configuring the Windows Connector﻿
﻿
Other ways to ask:
» How to enable Security Auditing Registration. 
» Audit criteria. Let's see how.

Updated 28 Oct 2024

Did this page help you?

Windows connector setup

Pro+ Filter setup - Introduction