How To Enabling Local Auditing Policies on Windows 2000 (252412)


The information in this article applies to:

  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Professional
This article was previously published under Q252412

SUMMARY

There are many situations when enabling auditing is either required or recommended. A common example is for isolating and troubleshooting problems in distributed applications. This article provides instructions on how to enable auditing on a computer running Windows 2000.

MORE INFORMATION

To open the right administrative console, point to Start, point to Programs, point to Administrative Tools, and click Security Policy. This will open a Microsoft Management Console (MMC) console.

In the MMC console, browse to:

\Security Settings

\Local Policies

\Audit Policy


You will see a list of policies regarding events you can audit. Double-click an item to select the auditing you want. In a typical scenario, you would want to audit failures.

NOTE: Be sure that no domain-level policies override the ones you specify. Check the Effective Setting column to see the actual configuration in use.

REFERENCES

Please see your Windows 2000 Help for more information regarding auditing policies and local versus domain policies.
Modification Type:MinorLast Reviewed:7/1/2004
Keywords:kbBug kbDebug kbhowto kbSysAdmin KB252412
©2004 Microsoft Corporation. All rights reserved.