Sometimes in some of computers in my domain when I check their eventlog I see some events about other users logon in their security log like bellow:
Event Type: Success Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 538
Time: 10:09:32 ?.?
User Name: bahra-f
Logon ID: (0x0,0x1F256B)
Logon Type: 3
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
That the Computer-25 is the name of computer and bahra-f is the username of other user in the domain thet can't logon on this computer.
What's the meaning of this security message log?
In my domain everybody can logon just on her or his computer and all of them is winxp pro sp2 and the domain OS is Win server 2003 R2.
Now for some of users everyday the security log become full and they can't logon and I should clear their logs.
Could you please help me!!!???
October 9, 2006 5:28 AM
October 10, 2006 3:46 PM