Support
 
Phone Get Quote
 
Support
 
US: +1 888 720 9500
US: +1 888 791 1189
Intl: +1 925 924 9500
Aus: +1 800 631 268
UK: 0800 028 6590
CN: +86 400 660 8680

Direct Inward Dialing: +1 408 916 9892

 

Configuration prerequisites

Prior to adding the target Huawei OceanStor storage systems in ADAudit Plus, a few settings have to be configured. These are described below.

  1. Create a dedicated ADAudit Plus Huawei user account and provide it with the required minimum privileges per the steps in this section.
  2. Ensure that the Huawei OceanStor storage device's name resolves to an IP that serves as:
    • Both the management and service IP for OceanStor V5 series
    • The management IP for OceanStor 9000 V5
  3. To enable auditing, follow these steps:
    • For OceanStor V5 series:
      1. Go to Settings > Monitor Settings > Audit Log Settings.
      2. Set the Single Log Size to 100.
      3. Provide a path to serve as the audit log location.
      4. Enable the Automatically Delete option and provide a value for the available capacity (for example, 100GB) below which logs will be deleted automatically.
      5. Set the XML Version as 2.0.
      6. Enable Record Log.
      7. Enable Audit Log and select the access events that you wish to audit in the target shares. You can choose to audit any of the following events: Read, Create, Rename, Write, Delete, and Set security properties.
    • For OceanStor 9000 V5:
      1. Go to Settings > Storage Settings > Directory Log Settings.
      2. Select the access events you wish to audit in the target shares.
      3. Provide a path to serve as the audit log location.
      4. Set the logs to purge after reaching a specified capacity, i.e., 20GB.
  4. To filter out event noise and reduce the time taken to generate logs, disable logon and logoff events in OceanStor V5 series by executing the following command via SSH:
    (For vStores only)
    change vstore view name=vStore004
    change service cifs logon_audit_disable=yes
  5. Edit C:\Windows\System32\drivers\etc\hosts to add the service IP address and system name if the ADAudit Plus server is not a part of the AD domain.
  6. To view the access control list (ACL) values before and after permission change and owner change events, log in to the ADAudit Plus web console, navigate to Support > Support info > More > Configuration > Enable/Disable Configuration Settings, and enable ACL Dynamic Fetch.

ADAudit Plus Trusted By