Can check if a NTFS permission changed at a directory, who did do this change and when?
説明
Can we see if a NTFS permission changed at a directory, who did do this change and when?
対策
Security Explorer is primarily a permissions management tool, and it's reporting features are not as robust as other applications. SE is primarily designed for the management of security, permissions and access control. It logs who made NTFS changes, and when, when the user makes the change through SE, but if the change is done outside of SE, it doesn't provide the information required.
Also, SE cannot provide information on AD objects.
You may have to turn up logging under the General Settings area, setting to “Log all security changes”: Select to log all permission changes to the selected root path displayed in the box. Browse to locate the root folder. Only information about the selected root path is logged; no information about changes to sub-items is logged. To prefix each security change entry, type a string in the Change management prefix box. If the Change Management prefix is set to 0 (zero), no prefix is used.
If you are looking to audit changes occurring outside of SE, Change Auditor is probably the product you need.