WinSecWiki > Security Settings > Advanced Audit Policies > Object Access > File Share

Audit File Share

This category logs one and only one event. To configure this on Server 2008 and Vista you must use auditpol. Windows 7 and Server 2008 R2 and later can use Group Policy.

Coverage on events generated by this category are currently in the Security Log Encyclopedia:

Event ID Title
5140 A network share object was accessed.

Back to top

 

Upcoming Webinars
  • Understanding Broken Object Level Authorization: The Quiet Access Control Failure Undermining Today’s Apps
  • Identity as the Kill Chain: Stopping Lateral Movement Across AD, Cloud, and AI
  • Patching 3rd Party Apps on PCs Managed by Intune
Additional Resources
    Object Access
    •Application Generated
    •Central Access Policy Staging
    •Certification Services
    •Detailed File Share
    •File Share
    •File System
    •Filtering Platform Connection
    •Filtering Platform Packet Drop
    •Handle Manipulation
    •Kernal Object
    •Other Object Access Events
    •Registry
    •Removable Storage
    •SAM

     
     
    User name:
    Password:
      / Forgot?
      Register
    January 2026
    Patch Tuesday    		 "Patch Tuesday - Starting 2026 with a Bang; 3 Zero Days " - sponsored by LOGbinder and Supercharger
    .
    Tweet
    Follow @randyfsmith
    About | Newsletter | Contact Ultimate IT Security is a division of Monterey Technology Group, Inc. ©2006-2026 Monterey Technology Group, Inc. All rights reserved.
    Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk. For complaints, please contact abuse@ultimatewindowssecurity.com.     		Terms of Use | Privacy |
    Cookies help us deliver the best experience on our website. By using our website, you agree to the use of cookies.