Enabling the Audit Policy

File Access Manager relies on the standard Active Directory advanced audit. The advanced audit overrides the simple audit, making the former obsolete. Be sure to migrate existing simple auditing to Advanced Auditing before proceeding.

This guide does not deal with complex GPO scenarios. Be sure that changes do not affect GPO precedence or corrupt other GPOs. Below is the settings in the Domain Controllers GPO.

Apply the following in a Domain Controller GPO.

1. Open “Default Domain Controller Policy”.
2. Navigate to Computer Configuration > Policies > Windows Settings > Security Settings > Advanced Audit Policy Configuration > Audit Policies.

3. Set Audit to success in all the following settings:

   • Account Management > Audit User Account Management
   • DS Access > Audit Directory Services Changes
   • Logon/Logoff > Audit Account Lockout
   • Policy Change > Audit Policy Change
   • Policy Change > Audit Authentication Policy Change
   • Policy Change > Audit Authorization Policy Change

To enable login audits:

Set Audit Kerberos Authentication Service to Success in Account Logon