Once you have enabled auditing of Active Directory objects, it’s time to specify exactly which actions and objects should be audited. This exercise walks you through the steps required to enable auditing for a specific OU.
- Open Start > Administrative Tools > Active Directory Users And Computers tool.
- To enable auditing for a specific object, right-click the Engineering OU and select Properties. Select the Group Policy tab on the Engineer Properties dialog box.
- Highlight the Engineering Security Policy object, if present, and select Properties.
- Select the Security tab on the GPO Properties dialog box, then click Advanced. Select the Auditing tab. You will see the current auditing settings for this Group Policy object.
- Click the Edit button. Notice that you can view and change auditing settings based on the objects and/or properties. To retain the current settings, click OK.
- To exit the configuration for the Engineering object, click OK three more times.
