Microsoft® Windows® Security: Essentials

Get full access to Microsoft® Windows® Security: Essentials and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

Start your free trial

Chapter 5

Use Windows Explorer to create the folder, and then enable auditing on the folder using the steps in the “Enabling Object Access Auditing” section. Enable auditing in the Local Security Policy for Object Access auditing using the steps in the “Enabling Auditing” section.
Launch the Event Viewer, and view the Security log.
Follow the steps in the “Viewing Audit Information” section. When entering the event ID numbers, enter 4000-5000.
Enable auditing in the Local Security Policy for successful system events. Launch the Event Viewer, and look for event ID 1102 in the Security log.

Get Microsoft® Windows® Security: Essentials now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now