Auditing Access to Sensitive Data

Written by on Wednesday, March 5, 2008 6:32 - 0 Comments

How to see who’s accessing sensitive files on a server.

If you want to see who’s trying to access a folder of sensitive files on your file server, you can enable the Audit Object Access audit policy under Computer ConfigurationWindows SettingsSecurity SettingsLocal PoliciesAudit Policy in the appropriate GPO. Then use the ACL editor on the Security tab of the folder’s properties sheet and specify which groups of users you want to audit accessing the folder.

If you want to detect unauthorized attempts at accessing the files, enable Failure auditing in the policy and audit Read permissions in the ACL.

If you want to see who is accessing the files and modifying them, enable Success auditing in the policy and audit Write and Append permissions in the ACL.

Article written by MyComputerAid.com



Leave a Reply

You must be logged in to post a comment.

2003 server - Sep 30, 2008 22:34 - 0 Comments

instant messaging srv records

More In Computers & PC


Microsoft Outlook - Mar 22, 2009 11:22 - 0 Comments

Outlook: Duplicates in Mailbox

More In Computers & PC