This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I have enabled the auditing of Directory Service Objects (DS Objects), essentially to monitor the creation, deletion and modification of GPOs. I have two domain controllers, DC1 and DC2, the DC! is the Master DC. I'm using Windows Server 2022, on premise
When I run, on DC2, a creation, deletion, or modification of a GPO, I assumed those would be logged on the same DC2; but when I looked for the evnets in the Event Viewer, security panel, there was nothing. However, those events had been logged on DC1.
Shouldn't changes applied to GPOs in a particular DC allow events to be logged on that DC? I need help with this.
Hi @Scorpion
Check if the DC1 host the PDC role.
By default GPMC console is connected to PDC when you try modify a GPO.
Please don't forget to mark helpful answer as accepted
Hi @Bourbita Thameur.
Thanks very much for your answer, still i would like to ask you if, for example, i change the connection of GPMC to the other server, DC2 (which does not have the PDC role assigned). The events will be logged on that DC?..., if so, just let me know to try a test