General discussion

Locked

Auditing impossible on my Win2k Server

By johnnyextreme ·
I am unable to audit anything on a Win2k member server part of a mixed NT/2000 domain with Win2K PDC. Local security settings for Auditing Object Access is Local settings:Success,Failure Effective settings:Success,Failure. Domain level Group Policy has auditing object access on. When I try to set auditing in security tab of a folder or file it says "The current Audit Policy ...does not have auditing turned on..." I have enabled auditing from admin tools/security policy and from mmc Local Security Policy snapin, and from Group Policy snapin on the PDC. I am also unable to access the Active Directory from this member server, even though it logs onto the domain and shows in Net. Neighborhood. I need to AUDIT!

This conversation is currently closed to new comments.

8 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Auditing impossible on my Win2k Server

by rob.wilcox1 In reply to Auditing impossible on my ...

If you look in AD Users and Computers on your DC what do you see? Have you tried removing the machine from the domain, by removing the account from ADUC, moving the machine back in to a workgroup (from the machine), and re-adding it back to the domain ?

The problem sounds like the OU that the machine account exists in has auditing switched off at that level, and perhaps some other GPO's preventing access?

Thanks

Collapse -

Auditing impossible on my Win2k Server

by johnnyextreme In reply to Auditing impossible on my ...

This server is in the only domain in the A.D. and in the O.U. Computers. Right clicking on it to manage and I get 'Computer \\appsvr.delco.com cannot be managed. The network path was not found.' Group Policy / Default Domain Policy has No Override checked and has Audit Object Access enabled, so this should be THE policy.

Collapse -

Auditing impossible on my Win2k Server

by johnnyextreme In reply to Auditing impossible on my ...

This server is in the only domain in the A.D. and in the O.U. Computers. Right clicking on it to manage and I get 'Computer \\appsvr.delco.com cannot be managed. The network path was not found.' Group Policy / Default Domain Policy has No Override checked and has Audit Object Access enabled, so this should be THE policy.

Collapse -

Auditing impossible on my Win2k Server

by agentj In reply to Auditing impossible on my ...

Auditing is enabled on the domain. If the auditing is disabled on a GPO linked to the OU that contains your member server, then the lower level overrides the domain auditing policy. Domain policy only overrides subordinate policies in a few cases,such as password security settings. Check the OU that this server belongs to and enable auditing on the GPO there. Oh--and don't forget to audit at the resource, not the whole server!

Collapse -

Auditing impossible on my Win2k Server

by johnnyextreme In reply to Auditing impossible on my ...

Poster rated this answer

Collapse -

Auditing impossible on my Win2k Server

by johnnyextreme In reply to Auditing impossible on my ...

Auditing is enabled in the only GPO in this Domain, which is the default Domain Group Policy. See comments above for more information. I have DDNS problems which may be responsible for this.

Collapse -

Auditing impossible on my Win2k Server

by johnnyextreme In reply to Auditing impossible on my ...

I solved this problem by fixing a DNS problem on the PDC. Under TCP/IP advanced settings the 'Use NetBIOS settings from DHCP server' was selected when the DHCP server was the PDC itself. I changed this to Enable NetBIOS over TCP/IP which fixed my DNS and Active Directory problems and allowed this workstation to have policies from the Group Policy Object applied to it.

Collapse -

Auditing impossible on my Win2k Server

by johnnyextreme In reply to Auditing impossible on my ...

This question was closed by the author

Back to Windows Forum
8 total posts (Page 1 of 1)  

Related Discussions

Related Forums