Auditing a Shared Folder

Windows 7 and Server 2008 both have the feature to audit File Share. As stated by Microsoft, "This security policy setting determines whether the operating system generates audit events when a file share is accessed." We will be using this feature as other Systems Administrators do to detect if there has been intrusion. Remember that to stop the intrusion, effective firewalls are necessary.
Follow these steps to use Audit File Share:

1. Open Local Security Policy by clicking the Start button, typing secpol.msc into the search box, and then clicking secpol.‌ If you're prompted for an administrator password or confirmation, type the password or provide confirmation.

2. In the left pane, expand the Advanced Audit Policy Configuration folder. Expand System Audit Policies - Local Group. Double-click on Object Access.

3. In the right pane double-click on Audit File Share.

4. In the Audit File Share Properties window select the Configure the following events: check box. Then select the Success check box and the Failure check box to audit both successful and unsuccessful attempts to access a shared folder. Then click OK.
   

Source: http://technet.microsoft.com/en-us/library/dd772690%28WS.10%29.aspx

Career: Microsoft Certifications

This site lists and explain with requirements the many certifications that are possible through Microsoft.

• http://technet.microsoft.com/en-us/bb291022.aspx

See Certifications from Windows 7 to MS Office to Server 2008 for Microsoft Certified Technology Specialist.

• http://www.microsoft.com/learning/en/us/certification/mcts.aspx#tab2