O envio de formulários no site de suporte está temporariamente indisponível para manutenção programada. Se precisar assistência imediata, entre em contato com o suporte técnico. Lamentamos o inconveniente.
ODM Dirsync - SIDHistory Error: "Write: The operation requires that destination domain auditing be enabled I have verified Auditing has been enabled in the target environment" (4325147)
ODM Dirsync - SIDHistory Error: "Write: The operation requires that destination domain auditing be enabled I have verified Auditing has been enabled in the target environment"
Descrição
We receive the following error when syncing SIDHistory:
Error: Write: The operation requires that destination domain auditing be enabled I have verified Auditing has been enabled in the target environment.
Auditing is configured as per the documentation (success and failure) for source and target environments.
Causa
A GPO is enabled that can be overriding the DC policies, or a configuration step was missed.
Resolução
Confirm the domain policy is not overriding the domain controller policy for auditing:
Enable Auditing and Advanced Auditing following the sections below for both the Target & Source Domains:
Audit Policy
Log on as an administrator to any domain controller in the domain.
Click Start, point to All Programs, point to Administrative Tools, and then click Group Policy Management.
Navigate to the following node: Forest | Domains | Domain Name | Domain Controllers | Default Domain Controllers Policy
Right-click Default Domain Controllers Policy and click Edit.
In Group Policy Management Editor, in the console tree, navigate to the following node: Computer Configuration | Policies | Windows Settings | Security Settings | Local Policies | Audit Policy
In the details pane, right-click Audit account management, and then click Properties.
Click Define these policy settings, and then click Success and Failure.
Click Apply, and then click OK.
In the details pane, right-click Audit directory service access and then click Properties.
Click Define these policy settings and then click Success.
Click Apply, and then click OK.
Note: If the changes need to be immediately reflected on the domain controller, open an elevated command prompt and type gpupdate /force.
Advanced Audit Policy
In the Domain Group Policy Management Editor, in the console tree, navigate to the following node: Computer Configuration | Policies | Windows Settings | Security Settings | Advanced Audit Policy Configuration | Audit Policies | Account Management
In the details pane, right click on Audit Application Group Management subcategory and then click Properties.
Click Configure the following audit events and then slick Success and failure.
Click Apply, and then click OK.
Repeat above steps for the following Subcategory Audit Events.
Audit Computer Account Management
Audit Distribution Group Management
Audit User Account Management
Audit Other Account Management Events
Audit Security Group Management
Note: If the changes need to be immediately reflected on the domain controller, open an elevated command prompt and type gpupdate /force.
Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.
Conteúdo recomendado
Produto(s):
On Demand Migration
Current
Power365
Current
Tópico(s):
Troubleshooting, How To
Histórico do artigo:
Criado em: 7/17/2022 Última atualização em: 4/25/2024
Thank you for your feedback for Topic Request
Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.
Bem-vindo ao Suporte
Você pode encontrar ajuda de suporte on-line para *produto* da Quest em um local de suporte afiliado. Clique em Continue (Continuar) para ser direcionado ao conteúdo de suporte correto e à assistência a *produto*.
Encerramento do suporte aos navegadores IE 8, 9 e 10
O Portal da Quest Software não é mais compatível com IE8, 9 e 10. Recomendamos a atualização do navegador para a versão mais recente do Internet Explorer ou do Chrome.