Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Summary:
Issue:
After enabling auditing on windows shares. The audit tabs were missing.
The Data Mover was rebooted and the audit tab went back online, however it disappears again after some time.
Unable to get the Auditing tab under Windows Security advanced tab.
When a new CIFS share was created, the Audit tab works fine, however it disappears after some time.
server_security server_2 -i -p gpo
The related GPO setting indicates the following
Generate security audits: *S-1-5-19,*S-1-5-20
Manage auditing and security log: *S-1-5-32-544
Environment:
Product: Celerra
EMC SW: NAS Code 5.5
Protocol: Common Internet File System (CIFS)
Protocol: Server Message Block (SMB)
Cause:
User did not have the right to view the Audit tab.
Resolution:
Add the relevant groups to the above listed GPOs to enable the Audit tabs.
Notes:
Generate security audits - determines which accounts can be used by a process to add entries to the security log. The
security log is used to trace unauthorized system access.
This user right is defined in the Default Domain Controller Group Policy object (GPO) and in the local security policy of
workstations and servers. By default, only the Local System account has the privilege to be used by processes to
generate security audits.
Manage auditing and security log - determines which users can specify object access auditing options for individual
resources such as files, Active Directory objects, and registry keys. A user with this right can use the security tab in the
security permission set editor's Properties dialog box to specify auditing options for the selected object. This user right is
defined in the Default Domain Controller Group Policy object (GPO) and in the local security policy of workstations and
servers. By default, only administrators have the privilege to manage auditing and the security log.
Product:
Shared:
Yes
RCA Status:
Not Started
External Source:
Primus
emc170779
KBAdmin