245422 How to Enable Logging for Security Configuration Client Processing in
http://support.microsoft.com/?id=245422
Value Path: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{827D319E-6EAC-11D2-A4EA-00C04F79F83A}Value Name: ExtensionDebugLevelValue Type: REG_DWORDValue Data: 2 (hex)Output: %Systemroot%\security\logs\winlogon.logNote:To immediately generate logging output, type the following command at a command prompt on the client:On Windows 2000:"secedit /refreshpolicy machine_policy /enforce" (without the quotation marks)On Windows XP and 2003:"gpupdate /force" (without the quotation marks)