Audit access to computer and queue objects

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

To audit access to computer and queue objects

  1. Open Active Directory Users and Computers.

  2. Highlight Active Directory Users and Computers, and on the View menu, click Users, Groups, and Computers as containers, and then click Advanced Features.

  3. To audit access to a computer (an msmq object), in the console tree, right-click msmq.

    Where?

    • Active Directory Users and Computers/YourDomain/YourOrganizationalUnit (such as Computers or Domain Controllers)/*YourComputer/*msmq

    Or, to audit access to a queue, right-click the applicable queue.

    Where?

    • Active Directory Users and Computers/YourDomain/YourOrganizationalUnit (such as Computers or Domain Controllers)/*YourComputer/*msmq/YourQueueFolder (Private Queues for a private queue)/YourQueue
  4. Click Properties.

  5. On the Security page, click Advanced.

  6. On the Auditing page of the Advanced Security Settings dialog box, click Add.

  7. In the Select Users, Computers, or Groups dialog box, click Object Types, select the Group and/or Users check box as appropriate, clear the remaining check boxes, and click OK. In Enter the object name to select, type the name of a group or user whose access you want to audit or the names of several such groups or users separated by semicolons and click OK. Or, click Advanced to search for groups or users, enter the applicable parameters, click Find Now, select the group or user, click OK, and then click OK again.

  8. In the Auditing Entry dialog box, in Apply onto, select the applicable objects for which user access will be audited. Then, under Access, select the appropriate check boxes next to the applicable entries and click OK. Or, to clear all audit entries, click Clear All, and then click OK.

Notes

  • To open Active Directory Users and Computers, click Start, point to All Programs, point to Administrative Tools, and then click Active Directory Users and Computers.

  • This procedure cannot be used to audit access to a private queue on a remote computer.

  • In addition to auditing access to computer and queue objects, you must also establish an audit policy for the local computer.

Information about functional differences

  • Your server might function differently based on the version and edition of the operating system that is installed, your account permissions, and your menu settings. For more information, see Viewing Help on the Web.

See Also

Concepts

Auditing Message Queuing objects
Message Queuing and Active Directory
Working with MMC console files