Audit Detailed File Share
Updated: June 19, 2009
Applies To: Windows 7, Windows Server 2008 R2
This security policy setting allows you to audit attempts to access files and folders on a shared folder. The Detailed File Share setting logs an event every time a file or folder is accessed, whereas the File Share setting only records one event for any connection established between a client computer and file share. Detailed File Share audit events include detailed information about the permissions or other criteria used to grant or deny access.
|There are no system access control lists (SACLs) for shared folders. If this policy setting is enabled, access to all shared files and folders on the system is audited.|
Event volume: High on a file server or domain controller because of SYSVOL network access required by Group Policy
Default: Not configured
If this policy setting is configured, the following event is generated. The event appears on computers running Windows Server 2008 R2 or Windows 7.
|Event ID||Event message|
A network share object was checked to see whether the client can be granted desired access.