Advanced Active Directory Audit Policy Reporting
We at ManageEngine always suggest that you track Active Directory and file changes with advanced auditing in lieu of the traditional audit policy settings. There’s a catch, though: how do you verify that your settings are in place? If you’ve been following our blogs for a while, you know that we truly rely on secpol.msc for most settings that are deployed in the Security Settings area of a GPO. However, that fails with advanced audit policy reporting!
So, what are you to do?
For some odd reason, secpols.msc fails to report on the advanced audit policy configurations. We could call up Microsoft and ask, but in cases like this, it is just not worth the effort.
Rsop.msc is another option, but unfortunately, the results from rsop.msc don’t even show the advanced audit policies!
Read the entire article here, Advanced audit policy reporting
via the fine folks at ManageEngine