40. Applying Auditing Policy

 Applying Auditing Policy

A computer running windows 2012 server Domain Controller.

A member server running windows server 2012 or Client running windows 7.

SYS1                                                                         SYS2

Domain Controller                                                 Member Server / Client

IP Address            10.0.0.1                                     IP Address            10.0.0.2

Subnet Mask         255.0.0.0                                  Subnet Mask         255.0.0.0

Preferred DNS      10.0.0.1                                     Preferred DNS    10.0.0.1

Steps:

1. Press windows Key to go to Start, select Group Policy Managament.
2. Right click Domain Controllers -> select Create a GPO...
3. Enter name (Ex: Auditing User Account Management) and click OK.
4. Right Click created GPO, select Edit.
5. Expand User configuration -> Policies -> Windows Settings -> Security Settings -> Advanced Aduit Policy Configuriation -> Aduit Policies -> Account Management -> Right click Audit User Account Management -> Select Properties
6. Check the box, Configure the following aduit events and Select Success and Failure.
Verification:
1. Login as Administrator on D.C, go to Active Directory Users and Computers and delete a user (S1).
2. Go to Start, Type Event in Search Apps and select Event Viewer
3. Expand Windows Logs -> Security and select the Event Audit Success Properties.
4. Verify the event displaying user s1 deleted by Administrator.Management

Comments

Post a Comment

Popular posts from this blog

41. Configuring Preferences using Item-level targeting

Configuring Preferences using Item-level targeting A computer running windows 2012 server Domain Controller. A member server running windows server 2012 or Client running windows 7. SYS1                                                                           SYS2 Domain Controller                                                   Member Server / Client IP Address                10.0.0.1                         ...
Read more

V-Center , cluster, DRS, HA, vMotion

Image
 VCenter  vCenter Server is the centralized management utility for VMware, and is used to manage virtual machines, multiple ESXi hosts, and all dependent components from a single centralized location.  Center Features  Multi-hypervisor management.  VMware Host Profiles.   Automatic VM restart.   Patch management.   vRealize Orchestrator (vRO).   vCenter Server Linked Mode.   Application programming interfaces (APIs).  CLUSTER  Cluster is a group of ESXi hosts. HA and DRS are the features of a cluster.  Pre requisites for Cluster.   Minimum 3 Hosts recommended   Shared storage “NAS / SAN / VSAN   CPU Compatibility   EVC Enhanced VMotion Compatibility   DRS   HA   VCenter for managing HostsVM kernel port group   Static IPs for all Hosts  HA or vSphere availability   High availability is the ability of the system...
Read more

Windows Services

Image
  Windows Services      Windows service is a computer program that operates in the background Ø        What is different between server and Client ? o    Server provide the service o    Client relives the service      Run command      Windows +R      Run - services.msc                   Dell hardware                Windows os 2019                SQL software          Print is not work ?                     Go to run command services.msc                     Print is running or not check      See the which service       click the right button in mouse...
Read more