Sharepoint Forum

Ask Question   UnAnswered
Home » Forum » Sharepoint       RSS Feeds

Find out who deleted

  Asked By: Alberto    Date: Apr 10    Category: Sharepoint    Views: 4101

I need to find out who deleted particular folders in my Sharepoint 2001
workspace. I've checked through the IIS W3svc logs but am unsure as to what
codes I need to be looking out for.

Can anyone tell me what information or codes I should be looking out/searching
for to find out who has been deleting folders?



4 Answers Found

Answer #1    Answered By: Ranu Badhan     Answered On: Apr 10

I don't have a direct answer. The IIS logs  are only going to be useful is
the folder name is passed as part of the URL (and I don't think it is).

However, one simple approach might be to create a new folder with a unique,
easily identifable name and then delete it (noting the server time-of-day).
Then search your IIS logs for the unique name and/or the server TOD.

This will hopefully give you a sense of what you need to be looking for in
the logs.

I hope this isn't too simple (and that it works).

Answer #2    Answered By: Irene Moss     Answered On: Apr 10

Our programmer has written an ASAPI filter on the IIS, writes a log of all
deletes of files and folders  to a file. Logs IP address and time.

Works for us, since deletions are inevitable with the poor security os

Answer #3    Answered By: John Scott     Answered On: Apr 10

The way our shop has handled the poor security on SharePoint 2001 is
that we made full use of the native security regime (using mostly
Author and Coordinator roles for our users) plus we used IIS and
Active Directory to lock down the site. If you are not a member of
an allowed group, you can't even get to our workspaces.

The problem we are having right now, in preparing to upgrade to
SharePoint 2003, is that Microsoft appears to have taken from us our
ability to use IIS to apply security to SharePoint sites. When we go
into IIS on Windows 2003, we cannot see the workspace nodes related
to our SharePoint test installation.

For us this is a show stopper. We cannot open the site to the entire
company, and we need to differentiate workspaces among users - so
that, for example, rogue employees can't delete documents or

Answer #4    Answered By: Donald Torres     Answered On: Apr 10

Is there something specific you are trying to do that is not possible with the
WSS security model? The ability to apply security to sites is a built-in
security function in WSS. The IIS settings are no longer an option because the
data is now stored in the database rather than on the filesystem.

Didn't find what you were looking for? Find more on Find out who deleted Or get search suggestion and latest updates.