Here's the Quick Start Guide. The menus above have all the advanced topics information
First thing to know, and it's very good, is that there's nothing to deploy, install, or push to any PC or server in order to audit them.
Next good news, there are no changes you need to make to your firewall, no ports to open or reserve, no enabling Remote Registry and no need for SNMP.
The entire process is just three quick steps.
1. Create two folders on your network on a server that all your users have access to. Typically that's your domain server, but it can be any server that fits that description in your particular setup.
Example: Create D:\ezaudit\audits. Share it as "ezaudit". Give a user group that best represents all your users (typically, "Domain Users") permissions to read, write, create, delete, modify and execute on the new shares.
2. You can do it directly in Group Policy, or in your login script if you call one from Group Policy.
Set WSHShell = CreateObject("WScript.Shell")
shellthis = "\\your_server_name\ezaudit\ezstart.exe"
shellcmd = Chr(32) & "-a
WSHShell.Run Chr(34) & shellthis & Chr(34) & shellcmd ,1,False
3. In the ezaudit Admin Console at your PC go to the Tools tab and select the Configuration tool. It's all point and click easy to choose what to audit, how often, etc.
Then save the configuration file to your new share: \\the-server-name\ezaudit\.
The configuration tool will copy the audit modules to that folder.
No changes are made to your server by us, ever, and nothing will run at the server itself.
That's it! The next time a user logs in, they get audited.
As you know, Group Policy changes don't always take effect right away, so a gpupdate /force at the server can sometimes nudge things along.
Here's the full guide to this with more advanced topics: