Microsoft KB Archive/252412

From BetaArchive Wiki
Knowledge Base

How To Enabling Local Auditing Policies on Windows 2000

Article ID: 252412

Article Last Modified on 2/23/2007


  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Professional Edition

This article was previously published under Q252412


There are many situations when enabling auditing is either required or recommended. A common example is for isolating and troubleshooting problems in distributed applications. This article provides instructions on how to enable auditing on a computer running Windows 2000.


To open the right administrative console, point to Start, point to Programs, point to Administrative Tools, and click Security Policy. This will open a Microsoft Management Console (MMC) console.

In the MMC console, browse to:

\Security Settings

\Local Policies

\Audit Policy

You will see a list of policies regarding events you can audit. Double-click an item to select the auditing you want. In a typical scenario, you would want to audit failures.

NOTE: Be sure that no domain-level policies override the ones you specify. Check the Effective Setting column to see the actual configuration in use.


Please see your Windows 2000 Help for more information regarding auditing policies and local versus domain policies.

Keywords: kbbug kbdebug kbhowto kbsysadmin KB252412