Get the A+ 4 Real e-book for your own computer.
Click Here!

Custom Search







Table Of Contents  CertiGuide to A+ (A+ 4 Real)
 9  Chapter 1: What are Operating Systems and How Do They Work?
      9  System Configuration Tools
           9  The Event Viewer

Previous Topic/Section
Error Events
Previous Page
Pages in Current Topic/Section
1
Next Page
The System Information Tool
Next Topic/Section

Local Security Settings

Clicking the security log in the left hand pane will probably show that no events have been logged into this log file. Why? The simple (and rather odd) reason is that Microsoft does not turn on security event logging by default. Therefore, if you need to know who is logging onto a machine and what actions they are taking, you need to enable security logging first. You do this by editing the local security policy.

To access the local security policy, navigate to Control Panel, double click the “Administrative Tools” applet (this is actually another special shortcut, as discussed previously), and double click the “Local Security Settings” item A window similar to Figure 112 will appear.


Figure 112: Local Security Settings

 


Policies are a large and complex topic, and a favorite Microsoft exam subject. CompTIA does not mention them in the A+ objectives directly, so being aware of their existence and potential use is sufficient for exam preparation.

To enable security logging, expand the “Local Policies” folder by clicking the + symbol next to it and click on the “Audit Policy” folder that appears. The right hand pane of the MMC console will be filled out with available options.

Figure 113: Local Audit Policy

 


These options control the events logged to the security event log. By default they are set to “No auditing”, which is the reason for the empty security log. To enable auditing on any of the options, simply double click the item in the right hand pane you wish to change. For example, to have all account management events logged (such as the creation, deletion and assignment of rights to user accounts), double click the “Audit account management” item.

Figure 114: Change Local Security Policy Setting

 


Effective Setting

What is the “effective setting” column for? As mentioned, local security policies can be overridden by domain policies when a computer is a member of a Windows 2000 domain. If conflicting policies are set, the “effective setting” column shows the actual status of the policy. When working without a Windows 2000 domain, the “effective setting” will always be the same as the “local setting”.


Select whether you wish to audit successful account changes, failures or both, and click “OK”. You are returned to the policy editor console, and your new policy settings take effect immediately.


Previous Topic/Section
Error Events
Previous Page
Pages in Current Topic/Section
1
Next Page
The System Information Tool
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to A+ (A+ 4 Real) from StudyExam4Less.com. Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $



Home - Table Of Contents - Contact Us

CertiGuide to A+ (A+ 4 Real) (http://www.CertiGuide.com/apfr/) on CertiGuide.com
Version 1.0 - Version Date: March 29, 2005

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version Copyright 2005 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.