Advanced security audit policies
Advanced security audit policy settings are found in Security Settings\Advanced Audit Policy Configuration\System Audit Policies and appear to overlap with basic security audit policies, but they're recorded and applied differently. When you apply basic audit policy settings to the local computer by using the Local Security Policy snap-in, you're editing the effective audit policy, so changes made to basic audit policy settings appear exactly as configured in Auditpol.exe. In Windows 7 and later, advanced security audit policies can be controlled by using Group Policy.
In this section
|Planning and deploying advanced security audit policies||This article for IT professionals explains the options that security policy planners must consider, and the tasks that they must complete, to deploy an effective security audit policy in a network that includes advanced security audit policies|
|Advanced security auditing FAQ||This article for the IT professional lists questions and answers about understanding, deploying, and managing security audit policies.|
|Using advanced security auditing options to monitor dynamic access control objects||This guide explains the process of setting up advanced security auditing capabilities that are made possible through settings and events that were introduced in Windows 8 and Windows Server 2012.|
|Advanced security audit policy settings||This reference for IT professionals provides information about the advanced audit policy settings in Windows and the audit events that they generate.|