Auditing

Applies To: Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

This page lists resources for security auditing in Windows Server 2003. Security auditing is one of the most powerful tools to help maintain the security of your system. Auditing should identify attacks, either successful or not, that pose a threat to your network, or attacks against resources that you have determined to be valuable in your risk assessment.

• Checklist: Setting up object access auditing

  This checklist provides an overview of the steps needed to set up object access auditing.

• Auditing Security Events Best practices

  This topic lists best practices for auditing security events.

• Auditing Security Events How To...

  Procedures are available for the following auditing tasks:

  • Define or modify auditing policy settings for an event category

  • Apply or modify auditing policy settings for a local file or folder

  • Apply or modify auditing policy settings for an object using Group Policy

  • View the security log

• Auditing Policy

  This reference describes the event categories that you can choose to audit.

• For information about auditing in Windows Server 2008, see Security Auditing.