Audit Directory Service Access
Updated: June 15, 2009
Applies To: Windows 7, Windows Server 2008 R2
This security policy setting determines whether the operating system generates events when an Active Directory Domain Services (AD DS) object is accessed.
Audit events will only be generated on objects with configured system access control lists (SACLs), and only when they are accessed in a manner that matches the SACL settings.
These events are similar to the Directory Service Access events in previous versions of Windows Server operating systems.
Event volume: High on servers running AD DS role services; none on client computers
Default: Not configured
If this policy setting is configured, the following event is generated. The event appears on computers running Windows Server 2008 R2 or Windows Server 2008.
|Event ID||Event message|
An operation was performed on an object.