How to enable monitoring on an unmonitored or custom attribute in AD with Change Auditor
説明
Is there any way that we can monitor custom attributes on a user or group object in AD using Change Auditor?
原因
Not all AD attributes are monitored by default, including custom attributes that your organization may have defined themselves, but you can enable them for monitoring.
対策
Open Change Auditor client
Go to View | Administration | Auditing
In the Administration Tasks tab, select the Auditing blade in the lower left corner
Click Attributes under Directories | Active Directory on the left hand side of the screen
Click on user in the right-hand pane
From Unmonitored attributes at the bottom, search for mS-DS-ConsistencyGuid and click on Add
A new Event class is created for that event and DC agents will start to monitor that attribute for changes
The new Event class can be used to determine when the attribute on a user object is changed
