There is a “Filter Current Log” option in the right pane to find the relevant events. If anyone opens the file, event ID 4656 and 4663 will be logged. For example, in our case, someone opened the file (File access auditing.txt), and as shown in the following image, a file access event (ID 4663) was logged.
Click on the search icon and type „Event Viewer“ Click on the Search icon located in the task bar. As … Apply a basic audit policy on a file or folder (Windows 10 Windows 10; You can apply audit policies to individual files and folders on your computer by setting the permission type to record successful access attempts or failed access attempts in the security log. To complete this procedure, you must be signed in as a member of the built-in Administrators group or have Manage auditing and security log Auditing File and Folder Access Denied Attempts Mar 23, 2014 Is there a log file for RDP connections?
How to enable file and folder access auditing in Windows
Complete Guide to Windows File System Auditing - Varonis May 22, 2020 Monitoring file access on Windows - Information Security
Oct 29, 2018
Tracking down who removed files | Event Log Explorer blog May 10, 2016 The DISM log file can be found - Microsoft Community Jan 01, 2017 How to enable file and folder access auditing in Windows Go to Audit object access. Select Success/Failure (as needed). Confirm your selections, and click OK. Enable auditing at the object level. Navigate Windows Explorer to the file you want to monitor. Right-click on the target folder/file, and select Properties. Security → Advanced. Select the Auditing tab. Click Add. Accessing and reading Windows log files and event viewer