File System (Global Object Access Auditing)
Updated: June 15, 2009
Applies To: Windows 7, Windows Server 2008 R2
This security policy setting allows you to configure a global system access control list (SACL) on the file system for an entire computer. If both a file or folder SACL and a global SACL are configured on a computer, the effective SACL is derived from combining the file or folder SACL and the global SACL. This means that an audit event is generated if an activity matches either the file or folder SACL or the global SACL.
If you select the Configure security check box, you can add a user or group to the global SACL.
This policy setting must be used in combination with the File System security policy setting under Object Access. For more information, see Audit File System.