I hope this post will act as a good reference point to be able to quickly understand the good and bad about new AD auditing enhancements and then enable you to dive deeper at will using the links in this article.
There’s nothing more exciting than auditing right? Well, check this out and hopefully it will spark some interest.
In Windows Server 2003 R2 and prior, the auditing of active directory certainly has not been a strong point. You would enable or disable global AD auditing for success or failures, set a SACL on the objects you wanted to monitor, and then typically one or both of the following would happen:
In Server 2008, we are on a good path to fix this pain. Some of the key improvements to AD auditing are as follows:
What are the downfalls?
Please comment on the same post on TechNet Edge.
PingBack from http://aceddl.cn/x/windows-server-2008-%c2%96-ad-auditing-enhancements.jsp
If you want to know all about the Auditing Improvements then head over to David Tesar's blog .