User logs

Hi,

I need to keep track of when users log on and off and waht files they use.
Does windows 2003 keep a log of this information? If s how do i access this?
I'd also like to know when users log in via VPN and remote desktop to the
server.

Thanks,

B1ll

Hi Bill, you can use the security event log on a domain controller to see
when your users logon. You can also enable auditing on files and folders to
track access. However the security log will not provide you with enough
information to produce reports or really monitor in any detail. You will
likely require some 3rd party software to really monitor this.
James.
--
James Yeomans, BSc, MCSE, MCTS
Ask me directly at: http://www.justaskjames.co.uk


"bill" wrote:

> Hi,
>
> I need to keep track of when users log on and off and waht files they use.
> Does windows 2003 keep a log of this information? If s how do i access this?
> I'd also like to know when users log in via VPN and remote desktop to the
> server.
>
> Thanks,
>
> B1ll

Hello Bill,

You have to enable audting with GPO and link it to the Domain controllers
OU. For file access you have to enable fil/folder auditing.

Logon Auditing:
http://technet.microsoft.com/en-us/l.../cc787567.aspx

Folder Auditing (from another posting):
Enabling file auditing is a 2-step process.

[1] Configure "audit object access" in AD Group Policy or on the server's
local GPO. This setting is located under Computer Configuration-->Windows
Settings-->Security Settings-->Local Policies-->Audit Policies. Enable success/failure
auditing for "Audit object access."

[2] Configure an audit entry on the specific folder(s) that you wish to audit.
Right-click on the folder-->Properties-->Advanced. From the Auditing tab,
click Add, then enter the users/groups whom you wish to audit and what actions
you wish to audit - auditing Full Control will create an audit entry every
time anyone opens/changes/closes/deletes a file, or you can just audit for
Delete operations.

After you've done both of these steps, any file deletions will show up in
the Security log of the file server that hosts those files.

HTH


Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi,
>
> I need to keep track of when users log on and off and waht files they
> use. Does windows 2003 keep a log of this information? If s how do i
> access this? I'd also like to know when users log in via VPN and
> remote desktop to the server.
>
> Thanks,
>
> B1ll
>

Hello Bill,

Forget this one:
http://technet.microsoft.com/en-us/l.../cc787176.aspx

Also see here about auditing in general:
http://technet.microsoft.com/en-us/l.../cc779526.aspx

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> Hi,
>
> I need to keep track of when users log on and off and waht files they
> use. Does windows 2003 keep a log of this information? If s how do i
> access this? I'd also like to know when users log in via VPN and
> remote desktop to the server.
>
> Thanks,
>
> B1ll
>

Hi,

Thanks for the links. I now have auditing set up however the information
gathered is not easily to decipher. This appears to not provide enough
information to produce reports or really monitor in any detail. Are there any
3rd party applications which would give me the details I am after? Does
Microsoft have an application?

Bill

"Meinolf Weber [MVP-DS]" wrote:

> Hello Bill,
>
> Forget this one:
> http://technet.microsoft.com/en-us/l.../cc787176.aspx
>
> Also see here about auditing in general:
> http://technet.microsoft.com/en-us/l.../cc779526.aspx
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and confers
> no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>
> > Hi,
> >
> > I need to keep track of when users log on and off and waht files they
> > use. Does windows 2003 keep a log of this information? If s how do i
> > access this? I'd also like to know when users log in via VPN and
> > remote desktop to the server.
> >
> > Thanks,
> >
> > B1ll
> >
>
>
>

Hi,

Thanks for the links. I now have auditing set up however the information
gathered is not easily to decipher. This appears to not provide enough
information to produce reports or really monitor in any detail. Are there any
3rd party applications which would give me the details I am after? Does
Microsoft have an application?

Thanks,

Bill


"Meinolf Weber [MVP-DS]" wrote:

> Hello Bill,
>
> Forget this one:
> http://technet.microsoft.com/en-us/l.../cc787176.aspx
>
> Also see here about auditing in general:
> http://technet.microsoft.com/en-us/l.../cc779526.aspx
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and confers
> no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
>
> > Hi,
> >
> > I need to keep track of when users log on and off and waht files they
> > use. Does windows 2003 keep a log of this information? If s how do i
> > access this? I'd also like to know when users log in via VPN and
> > remote desktop to the server.
> >
> > Thanks,
> >
> > B1ll
> >
>
>
>