Go Up
You are here: DeploymentConfigure IT InfrastructureActive DirectoryConfigure Security Event Log Size and Retention Settings

Configure Security Event Log Size and Retention Settings

Defining the Security event log size is essential for change auditing. If your Security log size is insufficient, overwrites may occur before data is written to the Long-Term Archive and the Audit Database, and some audit data may be lost. To prevent overwrites, increase the maximum size of the Security event log.

The retention method of the Security event log must be set to “Overwrite events as needed” (unless it is set to “Archive the log when full”). In this case, events will be written into the log even if it reaches its maximum size (new events will overwrite the oldest events in the log). Alternatively, you can enable auto archiving for the Security event log to prevent audit data loss if log overwrites occur.

To adjust your Security event log size and retention settings, perform the following procedures:

Go Up