1. Go to Control Panel > Administrative Tools > Local Security Policy.
2. Expand Security Settings > Local Policies > Audit Policy.
3. Double click on
Audit object access and check the
Success checkbox. Click OK and close Local Security Settings window.
4. Go to Control Panel > Folder Options > View tab, scroll right to the bottom at Advanced settings and uncheck “Use simple file sharing”. Click OK.
5. Right click on the folder that you want to share and select
Sharing and Security…
6. Select Share this folder.
7. Go to
Security tab, click
Advanced button, go to
Auditing tab and click
Add button. Enter
EVERYONE as object name and click OK.
8. Now a selection box will be displayed. Choose only the options that you need. If you want to see who delete your files and folders, just check the successful checkbox for Delete and Delete Subfolders and Files. Click OK once you’ve done your selection and also OK through all of the windows you have open.
9. To view who deleted your files and folders on your shared folder, go to Control Panel > Administrative Tools > Event Viewer and view Security. The security event logs will tell you which user deleted what files.
Now when someone access your shared folders and deletes a file in there, you have no problem knowing who did it
OR
NetShareMonitor, a free and cool utility created by a Novell guy named Talekar Nagareshwar to watch your shared files from the intruders and thereby protecting your shares from unauthorized access. As soon as remote user connects to your machine, NetShareMonitor detects it and displays information about that session. The session information includes remote host address, remote user name, list of accessed files and time of connection. Entire details pertaining to each session will be logged to file for future analysis. Now you no longer have to worry about your shared files being accessed by unknown persons on the network. You can make NetShareMonitor to keep eye on your shares while you get down to work. It will alert you on any file access and you can always check the log files for past sessions in case you have missed the alert.
As soon as the remote user connects to your machine, alert will be generated by playing the music and the NetShareMonitor icon in system tray starts blinking to draw your attention.
The settings are very straight forward. You can have NetShareMonitor automatic startup and minimized to tray when you boot your computer, play alert music when remote session is started and view logs.
Download NetShareMonitor
ردیابی کاربران در workgroup
مجوز های ارسال و ویرایش
5سپاس
LinkBack URL
About LinkBacks
