d8b1e9f52a
Corrected [!NOTE] markup
2020-07-13 13:59:34 -07:00
c9661e0b52
Typo "\*\*Note: \*\*"→"**Note:**"
...
https://docs.microsoft.com/en-us/windows/security/threat-protection/auditing/basic-audit-object-access
2020-07-12 15:34:48 +09:00
4c451fa145
Update windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md
...
Accepted
Co-authored-by: Marty Hernandez Avedon <martyavedon@gmail.com >
2020-06-30 10:29:02 +05:30
1447e472a5
added link for Security Monitoring Recommendations
...
as per the user report #7028 , so i added the following link
**https://docs.microsoft.com/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events **
2020-06-25 08:58:02 +05:30
b192690b4b
updating blacklist/whitelist to allow/block
2020-06-15 08:51:22 -07:00
b050b2001f
Update Event Id 4624
...
In the Network information section, the workstation name is mentioned with 'machine name from which logon attempt was performed.' that has been modified to "machine name to which logon attempt was performed." (please notice 'to' instead of 'from'). The workstation name has to be the computer name of the target computer not the source computer. Please check the issue reported on https://github.com/MicrosoftDocs/windows-itpro-docs/issues/6438 , thanks.
2020-05-26 16:29:13 +05:30
95cf1b62d9
Updated meta description field
...
Note: I did not look at grammar, flow, spelling, etc.
2020-05-12 16:21:15 -07:00
af5a21e7bb
Merge pull request #2525 from MicrosoftDocs/Dansimp-removable-storage-feedback
...
Update monitor-the-use-of-removable-storage-devices.md
2020-04-29 14:18:46 -07:00
9d82bfa6dc
Applied [!NOTE] style
2020-04-29 14:05:08 -07:00
c5b2ef0657
Update monitor-the-use-of-removable-storage-devices.md
...
fix note style
2020-04-16 14:59:38 -07:00
61b0ffb053
Update monitor-the-use-of-removable-storage-devices.md
2020-04-13 15:58:44 -07:00
12b713411d
Update monitor-the-use-of-removable-storage-devices.md
...
Removable storage note per CSS
2020-04-13 15:29:01 -07:00
adf1425650
Threat Protection/Auditing: event 4985 page link
...
Description:
As reported in issue ticket #6470 (Incorrect link), the current link
named "4985(S): The state of a transaction has changed." links to Event
"4674(S, F): An operation was attempted on a privileged object."
This typo is a "no-brainer" and is likely the result of a copy-paste
mistake or a mass conversion oversight, not a dedicated operation.
Thanks to azupwn for pointing out this issue.
Changes proposed:
- Insert the correct event number 4985 in the link
- Reduce markdown bullet list spacing from 3 to 1 under "Applies to"
Ticket closure or reference:
Closes #6470
2020-04-12 19:28:29 +02:00
8735a5fd49
pencil edit
2020-03-25 08:56:43 -07:00
e8a6b2c386
pencil edit
2020-03-17 16:48:50 -07:00
a658b3d194
Edit Pass: Windows Security articles
2020-03-17 16:30:42 -07:00
216d989ff4
Merge pull request #1948 from jborsecnik/threat
...
Edit pass: Threat protection auditing article batch
2020-03-06 16:32:00 -06:00
95e7098978
Update monitor-central-access-policy-and-rule-definitions.md
2020-03-06 15:41:49 -06:00
30ff0afc3e
remove text with broken link
2020-03-05 17:29:49 -08:00
b2cf8944da
Update audit-filtering-platform-policy-change.md
2020-02-21 16:34:31 +05:00
60e746a585
Merge branch 'master' of https://github.com/MicrosoftDocs/windows-docs-pr into threat
2020-02-14 11:05:08 -08:00
85d4d35fb4
CAT Auto Pulish for Windows Release Messages - 20200207135623 ( #2013 )
...
* updated links
* updated links
* CAT Auto Pulish for Windows Release Messages - CAT_AutoPublish_20200207130559 (#2011 )
Co-authored-by: Direesh Kumar Kandakatla <direek@microsoft.com >
* added an s
Co-authored-by: Beth Levin <40870842+levinec@users.noreply.github.com >
Co-authored-by: Direesh Kumar Kandakatla <direek@microsoft.com >
2020-02-07 14:15:12 -08:00
728d5d42f6
updated links
2020-02-07 13:20:54 -08:00
7d086b8170
Merge branch 'master' into ConfigRebrand-Four
2020-02-06 17:26:32 -08:00
517466e3dc
Update monitor-the-central-access-policies-that-apply-on-a-file-server.md
2020-02-05 17:16:35 -08:00
bcaecab768
format corrections post-fix
2020-02-02 18:41:44 -08:00
4061b97503
staging problem solving
2020-02-02 18:27:24 -08:00
a93c55d624
staging problem solving
2020-02-02 18:15:14 -08:00
cf41115849
corrections in audit-token and configure-endpoint
2020-01-31 14:14:51 -08:00
e029378a1e
staging problem solving
2020-01-31 12:13:00 -08:00
eb56f46de6
staging problem solving
2020-01-31 11:28:14 -08:00
2061cc9dd9
staging problem solving
2020-01-31 11:14:53 -08:00
fc3cefa5e7
staging problem solving
2020-01-31 10:54:59 -08:00
af19e544f4
staging problem solving
2020-01-31 10:49:19 -08:00
85a8a77a38
staging problem solving
2020-01-30 12:51:46 -08:00
72114fafd3
staging problem solving
2020-01-30 12:27:35 -08:00
d9fa2542fc
staging problem solving
2020-01-30 12:05:37 -08:00
eefae2862a
staging problem solving
2020-01-30 11:51:16 -08:00
0f5d3ece63
proof
2020-01-30 10:07:13 -08:00
fb4fb066c0
proof
2020-01-28 11:14:42 -08:00
9ad5e09e17
proof
2020-01-27 17:12:26 -08:00
cbb2f0c7ff
Edit pass: monitor-the-central-access-policies-that-apply-on-a-file-server
...
@erhopf @Dansimp
The edit on this article is complete per work item 3851148. Let me know if my edits changed the technical meaning anywhere. Once you've approved, please sign off.
Thanks!
Kelly
2020-01-27 17:00:30 -08:00
27f30e0ba6
proof
2020-01-27 14:58:19 -08:00
a0fb8eaaf9
second edit pass
2020-01-27 11:44:57 -08:00
d77ec54e4c
second edit pass
2020-01-25 12:01:27 -08:00
3e8f6bc64d
first edit pass
2020-01-24 11:06:57 -08:00
64780ece8e
first edit pass
2020-01-22 17:16:43 -08:00
a857874b90
first edit pass
2020-01-22 09:57:27 -08:00
323e951400
first edit pass
2020-01-21 19:32:00 -08:00
3126413c90
resolved two content conflicts
2020-01-13 15:19:48 -08:00
