Bagikan melalui

Konstanta Audit

  • Artikel

Konstanta berikut mewakili kategori dan subkataan peristiwa kebijakan audit.

Konstanta berikut mewakili kategori peristiwa kebijakan audit. Konstanta ini didefinisikan sebagai struktur GUID di Ntsecapi.h.

Audit_System

69979848-797a-11d9-bed3-505054503030

Audit mencoba mematikan atau menghidupkan ulang komputer. Selain itu, audit peristiwa yang memengaruhi keamanan sistem atau log keamanan.

Audit_Logon

69979849-797a-11d9-bed3-505054503030

Audit mencoba masuk atau keluar dari sistem. Selain itu, audit mencoba membuat koneksi jaringan.

Audit_ObjectAccess

6997984a-797a-11d9-bed3-505054503030

Audit mencoba mengakses objek yang dapat diamankan.

Audit_PrivilegeUse

6997984b-797a-11d9-bed3-505054503030

Audit mencoba menggunakan hak istimewa.

Audit_DetailedTracking

6997984c-797a-11d9-bed3-505054503030

Peristiwa khusus audit, seperti aktivasi program, beberapa bentuk menangani duplikasi, akses tidak langsung ke objek, dan proses keluar.

Audit_PolicyChange

6997984d-797a-11d9-bed3-505054503030

Audit mencoba mengubah aturan objek Azure Policy .

Audit_AccountManagement

6997984e-797a-11d9-bed3-505054503030

Upaya audit untuk membuat, menghapus, atau mengubah akun pengguna atau grup. Selain itu, audit perubahan kata sandi.

Audit_DirectoryServiceAccess

6997984f-797a-11d9-bed3-505054503030

Audit mencoba mengakses layanan direktori.

Audit_AccountLogon

69979850-797a-11d9-bed3-505054503030

Upaya log masuk audit oleh akun istimewa yang masuk ke pengendali domain. Peristiwa audit ini dihasilkan ketika Kerberos Key Distribution Center (KDC) masuk ke pengendali domain.

Konstanta berikut mewakili subkataan peristiwa kebijakan audit. Konstanta ini didefinisikan sebagai struktur GUID di Ntsecapi.h.

**Audit\_System\_SecurityStateChange** (0cce9210-69ae-11d9-bed3-505054503030) **Audit\_System\_SecuritySubsystemExtension** (0cce9211-69ae-11d9-bed3-505054503030) **Audit\_System\_Integrity** (0cce9212-69ae-11d9-bed3-505054503030) **Audit\_System\_IPSecDriverEvents** (0cce9213-69ae-11d9-bed3-505054503030) **Audit\_System\_Others** (0cce9214-69ae-11d9-bed3-505054503030) **Audit\_Logon\_Logon** (0cce9215-69ae-11d9-bed3-505054503030) **Audit\_Logon\_Logoff** (0cce9216-69ae-11d9-bed3-505054503030) **Audit\_Logon\_AccountLockout** (0cce9217-69ae-11d9-bed3-505054503030) **Audit\_Logon\_IPSecMainMode** (0cce9218-69ae-11d9-bed3-505054503030) **Audit\_Logon\_IPSecQuickMode** (0cce9219-69ae-11d9-bed3-505054503030) **Audit\_Logon\_IPSecUserMode** (0cce921a-69ae-11d9-bed3-505054503030) **Audit\_Logon\_SpecialLogon** (50cce921b-69ae-11d9-bed3-505054503030) **Audit\_Logon\_Others** (0cce921c-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_FileSystem** (0cce921d-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_Registry** (0cce921e-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_Kernel** (0cce921f-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_Sam** (0cce92220-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_CertificationServices** (0cce9221-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_ApplicationGenerated** (0cce9222-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_Handle** (0cce9223-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_Share** (0cce9224-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_FirewallPacketDrops** (0cce9225-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_FirewallConnection** (0cce9226-69ae-11d9-bed3-505054503030) **Audit\_ObjectAccess\_Other** (0cce9227-69ae-11d9-bed3-505054503030) **Audit\_PrivilegeUse\_Sensitive** ( 0cce92228-69ae-11d9-bed3-505054503030) **Audit\_PrivilegeUse\_NonSensitive** (0cce9229-69ae-11d9-bed3-505054503030) **Audit\_PrivilegeUse\_Others** (0cce922a-69ae-11d9-bed3-505054503030) **Audit\_DetailedTracking\_ProcessCreation** (0cce922b-69ae-11d9-bed3-505054503030) **Audit\_DetailedTracking\_ProcessTermination** (0cce922c-69ae-11d9-bed3-505054503030) **Audit\_DetailedTracking\_DpapiActivity** (0cce922d-69ae-11d9-bed3-505054503030) **Audit\_DetailedTracking\_RpcCall** (0cce922e-69ae-11d9-bed3-505054503030) **Audit\_PolicyChange\_AuditPolicy** (0cce922f-69ae-11d9-bed3-505054503030) **Audit\_PolicyChange\_AuthenticationPolicy** (0cce9230-69ae-11d9-bed3-505054503030) **Audit\_PolicyChange\_AuthorizationPolicy** ( 0cce9231-69ae-11d9-bed3-505054503030) **Audit\_PolicyChange\_MpsscvRulePolicy** (0cce9232-69ae-11d9-bed3-505054503030) **Audit\_PolicyChange\_WfpIPSecPolicy** (0cce9233-69ae-11d9-bed3-505054503030) **Audit\_PolicyChange\_Others** (0cce9234-69ae-11d9-bed3-505054503030) **Audit\_AccountManagement\_UserAccount** (0cce9235-69ae-11d9-bed3-505054503030) **Audit\_AccountManagement\_ComputerAccount** (0cce9236-69ae-11d9-bed3-505054503030) **Audit\_AccountManagement\_SecurityGroup** (0cce9237-69ae-11d9-bed3-505054503030) **Audit\_AccountManagement\_DistributionGroup** (0cce9238-69ae-11d9-bed3-505054503030) **Audit\_AccountManagement\_ApplicationGroup** (0cce9239-69ae-11d9-bed3-505054503030) **Audit\_AccountManagement\_Others** (0cce923a-69ae-11d9-bed3-505054503030) **Audit\_DSAccess\_DSAccess** (0cce923b-69ae-11d9-bed3-505054503030) **Audit\_DsAccess\_AdAuditChanges** (0cce923c-69ae-11d9-bed3-505054503030) **Audit\_Ds\_Replication** (0cce923d-69ae-11d9-bed3-505054503030) **Audit\_Ds\_DetailedReplication** (0cce923e-69ae-11d9-bed3-505054503030) **Audit\_AccountLogon\_CredentialValidation** (0cce923f-69ae-11d9-bed3-505054503030) **Audit\_AccountLogon\_Kerberos** (0cce9240-69ae-11d9-bed3-505054503030) **Audit\_AccountLogon\\_Others** (0cce9241-69ae-11d9-bed3-505054503030) **Audit\_AccountLogon\_KerbCredentialValidation** (0cce9242-69ae-11d9-bed3-505054503030) **Audit\_Logon\_NPS** ( 0cce9243-69ae-11d9-bed3-505054503030)

Persyaratan

Persyaratan Nilai
Klien minimum yang didukung
 Windows Vista [hanya aplikasi desktop]
Server minimum yang didukung
 Windows Server 2008 [hanya aplikasi desktop]
Header
Ntsecapi.h