Event Auditing on Anything About IThttps://www.verboon.info/tags/event-auditing/Recent content in Event Auditing on Anything About ITHugoen-usSat, 22 Nov 2025 14:29:46 +0000Defender for Identity - Automatic Windows Event Auditing Configurationhttps://www.verboon.info/2025/11/defender-for-identity-automatic-windows-event-auditing-configuration/Sat, 22 Nov 2025 14:29:46 +0000https://www.verboon.info/2025/11/defender-for-identity-automatic-windows-event-auditing-configuration/<p>One of the most common issues we encounter during Defender for Identity assessments is misconfiguration. Many organizations assume that installing the sensor is the final step, but proper post-installation configuration is just as important.</p> <p>In particular, enabling the required Windows event auditing policies is essential for full detection capabilities. Without these settings, functionality is degraded and health notifications start to appear.</p> <p> <img src="images/defender-for-identity-automatic-windows-event-auditing-configuration-01.png" alt=""> </p> <p>Defender for Identity relies on specific Windows audit categories and subcategories to capture critical events.</p>