You have reason to believe someone with a domain user account has been accessing and modifying sensitive spreadsheets on one of your application servers.
You decide to enable auditing for the files to see who is accessing and changing them. You enable the Audit Object Access policy on the files via Group Policy.
Two weeks later, when you check on the audit logs, you see they are empty. What is the most likely reason this has happened?
A. You cannot enable auditing on files, just folders
B. You did not enable auditing on the files
C. The person modifying the files turned off auditing
D. You did not save the change to the policy
You have reason to believe someone with a domain user account has been accessing and modifying sensitive spreadsheets on
-
answerhappygod
- Site Admin
- Posts: 899604
- Joined: Mon Aug 02, 2021 8:13 am
You have reason to believe someone with a domain user account has been accessing and modifying sensitive spreadsheets on
Join a community of subject matter experts. Register for FREE to view solutions, replies, and use search function. Request answer by replying!