Security - Windows Events
The security log can record security events such as valid and invalid login attempts, and events related to resource use, such as creating, opening, or deleting files. An administrator can specify what events are recorded in the security log. For example, if you have enabled login auditing, attempts to log on to the system are recorded in the security log.
Parameter | Description |
|---|---|
Type | The fields in this column display the type of the event, which can be one of the following: Audit Success An audited security access attempt that succeeds. For example, a user's successful attempt to log on to the system will be logged as a Success Audit event. Audit Failure An audited security access attempt that fails. For example, if a user tries to access a network drive and fails, the attempt will be logged as a Failure Audit event. |
Date | The date and time the event occurred in the default time format. |
Source | This field displays the origin of the event, this can either be the system or a system component, for example, SNMP or EventLog, or any type of application such as an antivirus or a word processing program. |
Category Name | This entry defines the severity level of the individual event. This information in the form of a number is mainly used in the security events. |
Event | Displays the ID number of the respective event. |
User | Displays the name of the user that caused the event, for example, SYSTEM, if the event was caused by the system or one of its components, the login name of the user which was logged on, or N/A if no information is available on the user. |