PrzemyslawKlys
commented
6 years ago Just a GPO over your DC.
You can skip the logon/logoffs as those most likely will not be useful. Seeing as logs are overloaded with those your Security log will grow a lot and you won't have much benefits from this.
It still can be useful for other purposes. The other GPO would be:
So the size of the logs is controlled. Keep in mind on above screenshot the log size is very small. You may need to adjust this to your environment.
ghost
Hi,
This is very very nice script and thanks for this! Maybe I missed but is there a documentation what I need to configure in my DC logging settings before I start using this?