Hello all! I need help with security hardening my Window 2008 R2 Box. Examples As administrator I type in DOS auditpol /set /subcategory:"IPSec Driver" /success:enable /failure:enable auditpol /set /subcategory:"Sensitive Privilege Use" /success:enable /failure:enable and Auditpol /get /subcategory:* It did not stick in Local security Policy MMC. And if I try to change something in MMC, all settings displayed in DOS are gone. My question is , why auditpol.exe command does not sync with Local Security Policy? And how can you perform security hardenning this in Window 2008 R2 core ? Thanks Chichi10