Account Logon: Audit Kerberos Service Ticket OperationsID: oval:org.secpod.oval:def:14712 | Date: (C)2013-08-13 (M)2022-10-10 |
Class: COMPLIANCE | Family: windows |
This policy setting allows you to audit events generated by Kerberos authentication ticket-granting ticket (TGT) requests submitted for user accounts.
If you configure this policy setting, an audit event is generated after a Kerberos authentication TGT is requested for a user account. Success audits record successful requests and Failure audits record unsuccessful requests.
If you do not configure this policy setting, no audit event is generated after a Kerberos authentication TGT is request for a user account.
Volume: Low.
Default on Client editions: No Auditing.
Default on Server editions: Success.
Fix:
(1) GPO: Computer Configuration\Windows Settings\Security Settings\Advanced Audit Policy Configuration\System Audit Policies\Account Logon\Audit Kerberos Service Ticket Operations
(2) REG: INFO NOT AVAILABLE
Platform: |
Microsoft Windows 7 |