How to create a Search to filter Active Directory events
说明
This video covers the topic of using Change Auditor 6.6 to create a search to filter Active Directory events. The video discusses how to create a new search, review the tabs of the search properties, and demonstrates a typical Change Auditor search for Active Directory events. The video covers topics such as defining the search name and description, setting search limits, specifying the person who made the change, defining the object and event that was changed, setting the severity and results filters, specifying the server where the event occurred, setting the time and date range, and defining the workstation for the user who performed the action. The video concludes by demonstrating a specific example of creating a search to see all the users that were added to a domain admin group in the last month.
解决办法
The following is discussed when creating a new Search in Change Auditor and filtering for certain Active Directory events:
Create a new Search
Explain the tabs in the Search properties
Demonstrate a typical Change Auditor for Active Directory Search
