Is there an easy way to audit access to individual folders and files and to limit the amount of information that is generated? We havea rather large NetApp environment and I need to track file access to certain folders only. I was told that we had to enable auditing at the Share level, yet in our environment, we have setup root level shares that represent key departments. Folder access is available via NTFS permissions and Access Based Enumeration has been enabled.
At present, we only require auditing for a few folders (under the Departmental Shares) and I would like to limit the amount of log file transactions to display information for just those folders.