Blog
Projects
About
Backtrack:
Blog
›
Enable auditing on Network Pol…
Email this to a friend
Enable auditing on Network Policy Server
posted on January 1st 1970, at 01:00
by
lunarg
By default, audit of success and failure is enabled on Network Policy Server. This will log authentication attempts in the Security event log (filter on event IDs 6272 and 6273). If for some reason, it is not enabled, you can manually enable it via command-line (or Powershell).To view the current audit policy settings, run:
auditpol /get /subcategory:"Network Policy Server"
If it says No auditing, you can enable it by running:
auditpol /set /subcategory:"Network Policy Server" /success:enable /failure:enable
Note that a group policy can override this behaviour. Settings in GPO are located here: Computer Configuration → Policies → Windows Settings → Secu
...
read more
Send a link to this post to yourself or a friend.
Send to e-mail
:
Your name:
Your e-mail:
Captcha:
Type the letters and numbers as shown.
Not readable?
Get another
.
Information entered is solely used for sending a one-time e-mail, and is not retained and/or passed on to a third party.
Tags
computer
windows
software
vmware
microsoft
linux
exchange
hardware
network
news
mac
powershell
home
office365
msoffice
ad
sqlserver
server
dell
esx
soaring
rds
internet
mssql
sbs
events
terminalserver
powercli
antivirus
macos
Archive
«
‹
August 2025
›
»
Sun
Mon
Tue
Wed
Thu
Fri
Sat
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
Links
-
@harkx
-
Cats & Dogs
-
Jargon-free Security Guide
Quote
«
Debating Windows vs. Linux vs. Mac is pointless: they all have their merits and flaws, and it ultimately comes to down to personal preference.
»
Me
Contact
© 2009-2025 Black Manticore – all rights reserved
code by
lunarg
, design by
SuriAmanah
, hosted at Cats&Dogs
