Hello
i am trying to audit all file accesses for a specific folder structure (right-click on folder --> Properties --> Security --> Advanced --> Auditing) but i want to exclude one single user (service account "acct.deletefiles", deleting old files based on a schedule).
My understanding is that i have to add an condition to the audit-rule as below:
https://imgur.com/a/GNQ5DJl
User Group Not member of each Value 1 item(s) selected
"1 item(s) selected" is an Domain Local Active Directory Security Group in which account ".acct.deletefiles" is member of.
Nevertheless, all file accesses for this user are logged, what am i doing wrong?
Thanks in advance