Question : Deleted Files, Who & When, Server 2008, NAS

Hi guys,

We have a network drive that is delegated security permissions through Windows 2008 servers. Let's just say somebody deleted a certain file from the drive (that they had access to), is there a way to track down who deleted the file and when it was deleted?

Answer : Deleted Files, Who & When, Server 2008, NAS

Right click on the folder where the data is stored, click properties, click the Security tab, then advanced, then the auditing tab. Click Edit, then Add. Enter Everyone and hit enter. A box will come up asking for what type of auditing you want to do. Scroll down to "Delete Subfolders and Files" and "Delete" and check Successful and Failed on each. Hit okay all the way back out. Entries will show up in the Security log on the Server or Computer that holds that folder. Let me look up the security codes on those so I can give you a way to filter for it.

Random Solutions

Receiving "Unable to cast object of type 'System.Windows.Forms.MouseEventArgs' to type 'System.Windows.Forms.KeyPressEventArgs' ERROR

Exit code and display message box depending on cell value

Exchange Activesync on HTC Incredible not updating group appointments properly

Laptop keyboard randomly types wrong characters.

lsass.exe System error when replacing SBS 2003 Hard Drives

Factory default settings for a PIX 506 and 506E

Deploy images in a workgroup

Exchange files with WCF?

Wordpress plugin TinyMCE Advanced not working and I'm getting 404 Reports from wp-includes tinymce files