![]() Specifically configure the forwarding of the security event for a permissions change on the NTFS system & shares.(optional) turn on event forwarding & configure forwarding for the Security logs.You need to turn on auditing for NTFS and the shares on all your servers.If I think of it, I will add another comment.Īs far as tracking the group being added, it’s definitely not a function of AD, but you can leverage AD to help you track it. It would scan your network and look for the specified access. ![]() ![]() I used to know of one, but the name escapes me. The easiest thing is probably to use an existing access enum tool.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |