ADAudit Plus facilitates an easy to understand alerting mechanism to alert on any configured change event. The alerts are based on the event data obtained from a configured Report Profile.
Alerts in ADAudit Plus enables real time monitoring of a change in the Active Directory. An alert will include the following information,
This is the Domain Controller from which Event Originated.
This provides the Domain Information.
Severity indicates the degree of importance associated with an event. ADAudit Plus provides 3 different alert notifications which include
The degree of importance or the Severity to be associated with an event is decided and configured by an administrator while configuring Alert Profiles.
Details of the generated alert provided in a easy-to-understand format.
Example: Login failure for User 'Administrator' in '192.168.117.56'. Reason: 'Bad password'
This is the time when the Alert was generated.
ADAudit Plus facilitates an administrator to create customized Alert Profiles by associating them to a Report Profile of choice. To configure / create an alert profile click here.
An important part of an alert is its ability to notify users. Alerts configured in ADAudit Plus can be notified to one or more recipients by email.
To configure an email alert from the "Alert" Tab
This will update the "Alert Profile" for the "Selected Report Profile". Any new alert will be notified by email to one or all email addresses entered here. This is also discussed under the Alert Profiles Configuration Section.
The "Mail To" Box will be open for entry only if a Mail Server is configured. To configure mail Server click on the "Configure Mail Server" Link.
The supported scripts are powershell, vbscript, executables and batch.
To be entered in the "Script Location" field according to the type of script-
Executables and Batch Scripts -
Format: filename [parameter1] [parameter 2] [parameter n]
Example 1: C:\users\test.bat
Example 2: C:\users\demo.bat %USERNAME%
Example 3: C:\users\example.exe
Powershell Scripts -
Format: powershell.exe filename [parameter1] [parameter 2] [parameter n]
Example 1: powershell.exe C:\Users\administrator\test.ps1 %PROCESS_NAME%
VB Scripts -
Format: wscript(or)cscript filename [parameter1] [parameter 2] [parameter n]
Example 1: wscript C:\users\sample.vbs %CLIENT_HOST_NAME%
Example 2: cscript C:\users\demo.vbs
filename - location (full path) of the script.
parameter - a parameter acts as input to the script and is customizable.
Note- The use of parameters is optional
Note- If the filename contains a space, enclose it within quotes(" ")