No entries in Security Event Log
Last response: in Windows XP
Archived from groups: microsoft.public.security,microsoft.public.windowsxp.security_admin (More info?)
I run XP Pro + all patches (except SP2). I do not use ICF.
I have never seen an entry in the Security Event Log.
Do I need to set something to enable logging?
I run XP Pro + all patches (except SP2). I do not use ICF.
I have never seen an entry in the Security Event Log.
Do I need to set something to enable logging?
More about : entries security event log
Archived from groups: microsoft.public.security,microsoft.public.windowsxp.security_admin (More info?)
Hi Alex,
> I have never seen an entry in the Security Event Log.
>
> Do I need to set something to enable logging?
Go to Administrative Tools / Local Security Policy.
In the treeview, open the Local Policies Node and Audit Policy nodes.
In the right-hand side audit policies pane, you can now set succes and/or
failure auditing for different categories of auditable events, by
double-clicking on each of those categories.
Cheers,
Jan.
Hi Alex,
> I have never seen an entry in the Security Event Log.
>
> Do I need to set something to enable logging?
Go to Administrative Tools / Local Security Policy.
In the treeview, open the Local Policies Node and Audit Policy nodes.
In the right-hand side audit policies pane, you can now set succes and/or
failure auditing for different categories of auditable events, by
double-clicking on each of those categories.
Cheers,
Jan.
Archived from groups: microsoft.public.security,microsoft.public.windowsxp.security_admin (More info?)
> > "Alex Coleman" <coalie@nomail.com> wrote in message
> > news:96D174842EAB631E75@66.250.146.159...
> >
> > I have never seen an entry in the Security Event Log.
> > Do I need to set something to enable logging?
>
>
> "Jan Spooren" <jspooren@nospam.nospam> wrote in
> message news:%23X5A5rRuFHA.3756@tk2msftngp13.phx.gbl...
>
> Go to Administrative Tools / Local Security Policy.
> In the treeview, open the Local Policies Node and Audit Policy nodes.
> In the right-hand side audit policies pane, you can now set succes and/or
> failure auditing for different categories of auditable events, by
> double-clicking on each of those categories.
Please note, you won't want to set an action for every event. I recommend
installing Microsoft Baseline Security Analyzer (MBSA) and performing a
scan of your machine. It will recommend which events to log as a good
security baseline.
MBSA can be found at http://www.microsoft.com/mbsa
--
AZC
MVP
> > "Alex Coleman" <coalie@nomail.com> wrote in message
> > news:96D174842EAB631E75@66.250.146.159...
> >
> > I have never seen an entry in the Security Event Log.
> > Do I need to set something to enable logging?
>
>
> "Jan Spooren" <jspooren@nospam.nospam> wrote in
> message news:%23X5A5rRuFHA.3756@tk2msftngp13.phx.gbl...
>
> Go to Administrative Tools / Local Security Policy.
> In the treeview, open the Local Policies Node and Audit Policy nodes.
> In the right-hand side audit policies pane, you can now set succes and/or
> failure auditing for different categories of auditable events, by
> double-clicking on each of those categories.
Please note, you won't want to set an action for every event. I recommend
installing Microsoft Baseline Security Analyzer (MBSA) and performing a
scan of your machine. It will recommend which events to log as a good
security baseline.
MBSA can be found at http://www.microsoft.com/mbsa
--
AZC
MVP
Related ressources:
- Forum? Delete/Remove Specific Entries From The Event Viewer Log
- ForumAuditing / Event Log Entries ...
- ForumNo entries in the event log on node in W2k Cluster
- ForumSubject: Security Event Log reading by Domain Users
- ForumSecurity Event Log Failure Audit 681
- Forumone event in security log only xp pro
- ForumDelete single event log entries ?
- ForumNETLOGON Event Log
- ForumSecurity Event 680: Do I have a problem?
- ForumEvent Viewer Log files Empty
- ForumSecurity Event Viewer Help
- ForumE-mailing Errors from Event Log
- ForumTelnet server error in Event log
- ForumHELP!!! Please with Windows XP
- Forumwindows security center
- Forum"lock computer" event id
- ForumCannot start security centre
- ForumSecurity Center - missing options
- ForumSecurity issue??
- ForumHuge security issue??????
- More resources
Read discussions in other Windows XP categories
!
