File tree 1 file changed +1
-1
lines changed 1 file changed +1
-1
lines changed Original file line number Diff line number Diff line change @@ -72,7 +72,7 @@ In order to get the most of WHIDS you might want to improve your logging policy.
7272 1 . gpedit.msc -> ` Computer Configuration\Windows Settings\Security Settings\Advanced Audit Policy Configuration\System Audit Policies\Object Access\Audit File System ` -> Enable
7373 2 . Right Click Any Folder -> Properties -> Security -> Advanced -> Auditing -> Add
7474 1 . ` Select a principal ` (put here the name of the user/group you want the audit for). Put group ** Everyone** if you want to log access from any user.
75- 2 . ` Apply this to ` is used to select the scope of this audit policy starting from this folder
75+ 2 . ` Apply this to ` is used to select the scope of this audit policy starting from the folder you have selected
7676 3 . ` Basic permissions ` select the kinds of accesses you want the logs to be generated for
7777 4 . Validate
7878 3 . File System auditing logs will appear in the ` Security ` log channel
You can’t perform that action at this time.
0 commit comments