E
Ed Rauscher
Does ayone know what Class is used to enable Registry Auditing? Any help
would be great.
would be great.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
M
Manoj G [MVP]
I am not aware of any class in the FCL which can help you do that directly,
but you can use the auditing provided by Windows itself, which is very
comprehensive. I suppose, you can enable auditing as a group policy and
configure the specific registry keys you want to audit to enable
access/delete etc. Audit actions are logged into the security event log
which you can monitor using conventional EntryWritten event of the EventLog
class. This is one round-about way I can think of..
but you can use the auditing provided by Windows itself, which is very
comprehensive. I suppose, you can enable auditing as a group policy and
configure the specific registry keys you want to audit to enable
access/delete etc. Audit actions are logged into the security event log
which you can monitor using conventional EntryWritten event of the EventLog
class. This is one round-about way I can think of..
E
Ed Rauscher
Thanks for the info, but I am looking to automate this through VB.Net or
something simular, and not through Group Policy. By enabling it through
Group Policy you would have to let Group Policy manage your Registry
permissions as well, and this is something my company does not want it to
manage. Thanks again for the info though
- ETR
something simular, and not through Group Policy. By enabling it through
Group Policy you would have to let Group Policy manage your Registry
permissions as well, and this is something my company does not want it to
manage. Thanks again for the info though
- ETR
Manoj G said:I am not aware of any class in the FCL which can help you do that directly,
but you can use the auditing provided by Windows itself, which is very
comprehensive. I suppose, you can enable auditing as a group policy and
configure the specific registry keys you want to audit to enable
access/delete etc. Audit actions are logged into the security event log
which you can monitor using conventional EntryWritten event of the EventLog
class. This is one round-about way I can think of..
--
Manoj G [.NET MVP]
Site: http://www15.brinkster.com/manoj4dotnet
Blog: http://msmvps.com/manoj/
Ed Rauscher said:Does ayone know what Class is used to enable Registry Auditing? Any help
would be great.