Skip to main content

Display information about audit policies using the Windows Security tab

Contributors netapp-ahibbard netapp-aherbin

You can display information about audit policies that have been applied to files and directories by using the Security tab in the Windows Properties window. This is the same method used for data residing on a Windows server, which enables customers to use the same GUI interface that they are accustomed to using.

About this task

Displaying information about audit policies applied to files and directories enables you to verify that you have the appropriate system access control lists (SACLs) set on specified files and folders.

To display information about SACLs that have been applied to NTFS files and folders, complete the following steps on a Windows host.

Steps
  1. From the Tools menu in Windows Explorer, select Map network drive.

  2. Complete the Map Network Drive dialog box:

    1. Select a Drive letter.

    2. In the Folder box, type the IP address or SMB server name of the storage virtual machine (SVM) containing the share that holds both the data you would like to audit and the name of the share.

      If your SMB server name is “SMB_SERVER” and your share is named “share1”, you should enter \\SMB_SERVER\share1.

      Note

      You can specify the IP address of the data interface for the SMB server instead of the SMB server name.

    3. Click Finish.

    The drive you selected is mounted and ready with the Windows Explorer window displaying files and folders contained within the share.

  3. Select the file or directory for which you display auditing information.

  4. Right-click on the file or directory, and select Properties.

  5. Select the Security tab.

  6. Click Advanced.

  7. Select the Auditing tab.

  8. Click Continue.

    The Auditing box opens. The Auditing entries box displays a summary of users and groups that have SACLs applied to them.

  9. In the Auditing entries box select the user or group whose SACL entries you want displayed.

  10. Click Edit.

    The Auditing entry for <object> box opens.

  11. In the Access box, view the current SACLs that are applied to the selected object.

  12. Click Cancel to close the Auditing entry for <object> box.

  13. Click Cancel to close the Auditing box.