Displaying information about audit policies using the Windows Security tab

You can display information about audit policies that have been applied to files and directories by using the Security tab in the Windows Properties window. This is the same method used for data residing on a Windows server, which enables customers to use the same GUI interface that they are accustomed to using.

About this task

To display information about SACLs that have been applied to NTFS files and folders, complete the following steps on a Windows host.

Procedure

  1. From the Tools menu in Windows Explorer, select Map network drive.
  2. Complete the Map Network Drive dialog box:
    1. Select a Drive letter.
    2. In the Folder box, type the IP address or CIFS server name of the storage virtual machine (SVM) containing the share that holds both the data you would like to audit and the name of the share.
      If your CIFS server name is CIFS_SERVER and your share is named share1, you should enter \\CIFS_SERVER\share1.
      Note: You can specify the IP address of the data interface for the CIFS server instead of the CIFS server name.
    3. Click Finish.
    The drive you selected is mounted and ready with the Windows Explorer window displaying files and folders contained within the share.
  3. Select the file or directory for which you display auditing information.
  4. Right-click on the file or directory, and select Properties.
  5. Select the Security tab.
  6. Click Advanced.
  7. Select the Auditing tab.
  8. Click Continue.
    The Auditing box opens. The Auditing entries box displays a summary of users and groups that have SACLs applied to them.
  9. In the Auditing entries box select the user or group whose SACL entries you want displayed.
  10. Click Edit.
    The Auditing entry for <object> box opens.
  11. In the Access box, view the current SACLs that are applied to the selected object.
  12. Click Cancel to close the Auditing entry for <object> box.
  13. Click Cancel to close the Auditing box.