Script to set Windows Vista audit policy


There’s probably a sexier way to do it, but the attached script (rename to .cmd) can be used to set Windows Vista SP1 audit policy using auditpol.  The current settings are based on the FDCC 2008 Q1 settings.  It must be run elevated.  I suggest using something like the following command line:

CustomSetAuditPolicy-v2.cmd > C:\Windows\security\logs\CustomSetAuditPolicy.log 2>&1

If using in a MDT Task Sequence, I suggest the following:


cmd /c “%SCRIPTROOT%\CustomSetAuditPolicy-v2.cmd” > C:\Windows\security\logs\CustomSetAuditPolicy.log 2>&1


Disclaimer: The information on this site is provided “AS IS” with no warranties, confers no rights, and is not supported by the authors or Microsoft Corporation. Use of included script samples are subject to the terms specified in the Terms of Use.

CustomSetAuditPolicy-v2.txt

Comments (1)

  1. Anonymous says:

    One of my customers requires additional security settings beyond the OMB-mandated Federal Desktop Core

Skip to main content