Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
|Type: Success Audit|
Password Policy Checking API is called:
Caller Username: MASTDC01$
Caller Domain: ACMEINC
Caller Logon ID: (0x0,0x3E7)
Caller Workstation: 127.0.0.1
Provided User Name (unauthenticated): -
Status Code: 0x0
|English: Request a translation of the event description in plain English.|
According to Microsoft, this event can be ignored.
This event is recorded on Windows 2003 servers running Microsoft SQL Server if some of the logins configured for the SQL server have the "Enforce password policy" enabled. If no SQL logins have this option enabled, the event is not recorded.
|Private comment: Subscribers only. See example of private comment|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated