Auditing

You can use security auditing techniques to track the activities of users and to detect unauthorized attempts to access your Windows NT File System (NTFS) directories and files. Activities that you can audit include:

• All logon attempts, both successful and unsuccessful.
• User attempts to access restricted accounts.
• User attempts to execute restricted commands.

This section contains:

• About Auditing   Learn about monitoring and assessing your Web server security.
• Monitoring Activity for an Account:   Create security logs.
• Detecting Unauthorized Access:   Learn how to interpret security logs for signs of unauthorized access.
• Creating Audit Records Using ASP:   Learn how to write ASP scripts that can expand your security auditing capabilities.

This section does not contain information on:

• How to log user Web and FTP site activity; see Logging Web Site Activity.

© 1997 by Microsoft Corporation. All rights reserved.