WinSecWiki > Security Settings > Advanced Audit Policies > DS Access > Directory Service Changes
Audit Directory Service Changes
This category only generates events on domain controllers and is very useful for tracking changes to Active Directory objects that have object level auditing enabled. These events not only tell you what object and property was changed and by whom but also the new value of the affected properties. To configure this on Server 2008 you must use auditpol. Server 2008 R2 and later can use Group Policy.
Coverage on events generated by this category are currently in the Security Log Encyclopedia:
Back to top