Section 10.4: Using Group Policy

You can apply an audit policy to Active Directory users and OUs by editing an applicable Group Policy object. This is similar to enabling audit policy on files and folders. To do this, you need to modify the Group Policy on the Active Directory object as shown below:

• Click on the START button to display the Start Menu

• Click on RUN

• In the Run text box, type mmc to open an empty management console

• Click on the FILE menu

• Click ADD/REMOVE SNAP-IN

• Then click ADD

• Select group policy

• Then click ADD

• In the Select Group Policy Object dialog box, click the browse button to select the correct GPO for the domain or organizational unit

• Then click OK to open the GPO in the Group Policy Object Editor

• In the console tree, expand the computer configuration node

• Expand the windows settings node

• Expand the security settings node

• Right-click the file system node to add the auditing details for a file or a folder

• Navigate to the file or folder on which you want to set auditing, using the browse interface

• Click PROPERTIES

• Then click edit security to enter the auditing details

• Click the advanced button

• Then click on the auditing tab to view the existing audit entries

• You can select the edit button or the remove button to modify the existing properties or remove the entry