What is Active Directory Logging?
Active Directory logging monitors network activity within the Active Directory tool used on Microsoft Windows domain networks. The Active Directory service authenticates users and workstations on a Windows network and handles security policies and other aspects of network administration.
With Active Directory logging, various registry options can be set to decide what types of events are logged. These range from zero to five, with only critical events and error events logged at zero, but five log many other types of events for Active Directory. Administrators can use other tools to decide whether certain types of events are logged and tracked on the system.
Active Directory logging can be an essential part of ensuring compliance with rules like HIPAA and Sarbanes-Oxley. Because Active Directory is so important to user accounts, policies, and other elements of the system, organizations should use Active Directory logging to keep track of what is happening on a network.