How to enable Security Auditing in Active Directory?

In order to start security auditing within Active Directory, perform the followin steps:

  1. Log on to your Microsoft Windows Server as an Administrator.
  2. Click Start, then Administrative tools, and select Group Policy Management Console.
  3. Go to the Domain to be audited.
  4. Right click Group Policy Object, and choose Edit. This opens Group Policy Management Editor.
  5. In the left pane, expand Computer Configuration, then Policies, expand Windows Settings, then Security Settings, then finally Local Policies.
  6. Click Audit Policies.
  7. In the Editor main panel, click Audit object access and select both the Success and Failure options.
  8. Click on Audit directory service access and select both the Success and Failure options.
    1. You now have auditing enabled within Active Directory.