Active Directory User Names not being logged

  • 1
  • Question
  • Updated 4 years ago
I cannot get name resolution with AD - our dc's are 2008 R2 native and, get the following error when I try to test AD:

Failed to find a recent Logon Event (ID 4624) in the Security Event log. Please ensure that auditing of Logon Events is enabled on the Domain Controller. See 
http://technet.microsoft.com/en-us/library/cc787268%28WS.10%29.aspx for more details.

Audit logon events are set to success.

Please help?
Photo of Joe Kingston

Joe Kingston

  • 2 Posts
  • 0 Reply Likes

Posted 4 years ago

  • 1
Photo of Aisling Brennan

Aisling Brennan, Official Rep

  • 390 Posts
  • 8 Reply Likes

The tip here might help you to resolve the problem.

Although AD Group policy is set in the Default DC Policy to Audit .. there is another “Advanced Audit Policy Config” that GP uses see below and auditing should be enabled.

In the Group Policy Management Editor, under Computer Configuration, expand Policies, expand Windows Settings, expand Security Settings, expand Advanced Audit Policy Configuration, expand Audit Policies, and then click Logon/Logoff.

Turn on audit in there.