![]() ![]() ![]() |
File Audit Report Profiles allows you to restrict and view reports that are specific to a File Audit Action for a selected Share. File Audit Report Profiles allows you to configure and view Reports of your choice.
Pre-configured profile based reports for File Audit
Click on the File Audit tab and select the Profile Based Reports tab on the left and select your domain, to view the reports listing.
File (or) Folder deleted | Folder Permission Changes | Folder Audit Settings(SACL) Changes | File (or) Folder Modified |
File Read Access Failure | File Write Access Failure | File Delete Access Failure | File Read Access success |
File (or) Folder Moved (or) Renamed | File (or) Folder Copy-N-Pasted | File (or) Folder Created |
ADAudit Plus hosts a list of pre-configured report profiles, these Report Profiles are provided for users to conveniently understand the functioning of Report Profiles. Profile based reports show domain specific data for the file audit report profiles configured in ADAudit Plus. Based on audit requirements, administrators / users can modify the existing file audit report profiles or configure new report profiles. A Pie / bar chart summarizes the entire list of file audit actions in the selected domain. Details like who created a file, when and from where are deciphered by comparing the snapshot available.
ADAudit Plus runs a periodic scheduler based on the time mentioned for every domain. For Files Created report alone, the "File Update Schedule" runs everyday at 3 AM. The comparison between the latest data received from the present schedule and the snapshot of the previous day's schedule (time-stamped event log data) provides data on the New Files Created for that day.
The File Update Schedule runs on a daily basis at 3:00 AM and cannot be altered. |
Configuring New File Audit Report Profiles
An administrator must select a file audit report profile 'event filter action' and map them with the desired shared objects within the file servers of the selected Domain.
Filter Actions
File Creation | File Creation Through Application 2 | File Creation-EMC | File Deleted - 2012 |
File Move (or) Rename - NetApp | Local File Copy-N-Paste - 2k8 | Local File Copy-N-Paste - 2k3 | File Permission Modified - EMC/NetApp |
File Copy-N-Paste - 2k3 | File Move (or) Rename - 2k3 | File Copy-N-Paste - 2k8 | File Move (or) Rename - 2k8 |
File Modification For Office Docs | File Read Access Denied - NetApp | File Delete Access Denied - NetApp | File Deleted - NetApp |
File Read - NetApp | File Modified - EMC/NetApp | File Permission Modified - 2k3 | File Deleted - 2k3 |
Successful file / folder read access | File Delete Access Denied | File Write Access Denied | File Read Access Denied |
File Modified - Write Data - 2k3 | File Modified - 2k8 | File Auditing Settings(SACL) Modified - 2k8 | File Permission Modified - 2k8 |
File Deleted- 2k8 |
Steps to Configure a File Audit Report Profile
Select the File Audit Action
Associate the File Servers / Shares
Alert Message
|
Any number of filter actions can be configured / added in a selected category. To add / configure new actions for a selected category, use the Advanced Configurations Option |
![]() ![]() ![]() |