Audit policy not applying to subfolders
I created a folder with an audit policy to log when files, folders, and subfolders were created, modified, and deleted. It looks to be working normally BUT when I add a folder, the audit policy looks to be only applying to "this folder only",
even though it is set to apply to files, folders, and subfolders in the root folder. So, when I add files to subfolders, changes are not audited. The security of the folders looks to be inheriting from the root folder normally, the only
thing not inheriting is the audit policy.
What am I missing here? I am using Windows 2008 R2 x64 server, local audit policies.
Thanks in advance.
March 25th, 2011 2:25am
I worked on this further and it looks like the issue isn't present when the computer is in a workgroup rather than a domain. I looked in my default domain policy and noticed that auditing was not enabled for object access events. (but it was enabled
for other things) I am thinking that this has something to do with it but not sure why it would effect the audit policies in this manner.
I am just going to remove this computer from the domain to temporarly solve the issue and will look at modifying my default domain policy at a later time.
Free Windows Admin Tool Kit Click here and download it now
March 25th, 2011 9:13pm