The security descriptor must include
a Discretionary Access Control List (DACL) specified using the Security Descriptor Definition
Language (SDDL).
List
Use the List mode to obtain a list of possible users, categories, or subcategories, rather than the
audit settings. For example, if you use the
/user
option alone, you??™ll see a list of users that have
audit policies set, rather than the user??™s settings. This mode uses the following syntax:
AuditPol /list
[/user|/category|/subcategory[:
|<{guid}>|*] [/v] [/r]
The following list describes each of the command line arguments.
/user
Displays a list of users who have audit policies set.
/category
Displays a list of categories whether or not they have audit policies set.
494 CHAPTER 20
MANAGING SYSTEM USERS
/subcategory[:{
categoryname | GUID
| *}
Displays a list of subcategories when you
supply a category name or associated GUID. Use the asterisk (*) to display a list of all subcategories
regardless of category.
/v
Outputs additional information depending on the list you display. This option displays the
SID for users and the GUID for both categories and subcategories.
Pages:
1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164