Audit Policy settings not applied on domain controller locally

Audit policy settings have not been applied on a local domain controller (DC), though all audit settings were successfully configured by the effective DC policy.
Email It to Me Print this Page
Question
The Audit policy settings have not been applied on a local domain controller (DC), though all audit settings were successfully configured by the effective DC policy.
Answer The issue appears if an organizational unit (OU) from your domain has some enforced policies in Group Policy Management Console. This may prevent the audit settings from being implemented.
To resolve the issue, do the following:
  1. Change all Domain Controllers policies status for the OU to be not Enforced.
  2. In the Command Prompt, type in gpupdate/force command, press Enter and close the dialog after update.
  3. Open Local Security Policy: go to Start -> Run, type in secpol.msc and click OK.
  4. In the left pane, navigate to Local Policies -> Audit Policy.
  5. Make sure the Audit account management and Audit directory service access policies are set to Success
This error can also occur when an audit.csv file is not allowing the local security policy to be set properly. This can be fixed by removing the audit.csv file in the following two locations:
C:\Windows\system32\grouppolicy\machine\microsoft\windows nt\audit\audit.csv
 
\SYSVOL\domain\Policies\{GUID}\Machine\microsoft\windows nt\Audit

Reference: http://blogs.msdn.com/b/spatdsg/archive/2011/06/06/audit-policy-not-registering-audits.aspx
Was this information helpful?