1. | Log on to a domain controller or a member computer that has Windows Server 2008 RSAT installed.
|
2. | Click Start, Administrative Tools, and then click Active Directory Users and Computers.
|
3. | On the View menu, ensure Advanced Features is selected.
|
4. | Locate the object on which you want to configure auditing; then click Properties.
|
5. | On the object properties page, click the Security tab, shown in Figure 1.
|
6. | On the Security tab, click Advanced.
|
7. | On the Advanced Security Settings page, click the Auditing tab.
|
8. | On the Auditing tab, shown in Figure 2, click Add.
|
9. | On the Select User, Computer, or Group page, shown in Figure 3, enter the name of the user, computer, or group for which you want to add the auditing entry; then click OK.
|
10. | On the Auditing Entry page, under Apply Onto, select the types of objects to which you want the auditing applied.
|
11. | On the Auditing Entry for Groups, page, under Access, select the Successful and Failed actions you want to audit; then click OK.
|
12. | Click OK to close the object properties page.
|