Setting up permissions and auditing
You set up permissions and auditing by viewing the security properties of files, folders, shared folders, printers, and Active Directory objects.
When you set up permissions, you specify the level of access for groups and users. For example, you can let one user read the contents of a file, let another user make changes to the file, and prevent all other users from accessing the file. You can set similar permissions on printers so that certain users can configure the printer and other users can only print from it.
You set up auditing to detect and record security-related events, such as when a user attempts to access a confidential file or folder. When you audit an object, an entry is written to the Windows 2000 security log whenever the object is accessed in a certain way. You determine which objects to audit, whose actions to audit, and exactly what types of actions are audited. Once you set up auditing, you can keep track of users who access certain objects and analyze security breaches. The audit trail can show who performed the actions and who tried to perform actions that are not permitted.
Note
To set up permissions and auditing for files and folders, you must use drives formatted to use NTFS.
Related Topics
