Direct Inward Dialing: +1 408 916 9892
No results found
OverviewQuick start System requirementsQuick start PrerequisitesQuick start Deploying ADAudit PlusQuick start Configure components in ADAudit PlusQuick start Related documentationQuick start OverviewActive Directory > Active Directory auditing Configure AD domains and DCs - Automatic configurationActive Directory > Active Directory auditing Configure AD domains and DCs - Manual configurationActive Directory > Active Directory auditing Configure audit policies - Automatic configurationActive Directory > Active Directory auditing Configure audit policies - Manual configurationActive Directory > Active Directory auditing Configure object level auditing - Automatic configurationActive Directory > Active Directory auditing Configure object level auditing - Manual configurationActive Directory > Active Directory auditing Configure event log settingsActive Directory > Active Directory auditing TroubleshootingActive Directory > Active Directory auditing OverviewWindows Server > Removable storage auditing Configure USB AuditingWindows Server > Removable storage auditing TroubleshootingWindows Server > Removable storage auditing OverviewFile Server > Windows file server Supported systemsFile Server > Windows file server Configure Windows file servers - One server at a timeFile Server > Windows file server Configure Windows file servers - In bulkFile Server > Windows file server Configure audit policies - Automatic configurationFile Server > Windows file server Configure audit policies - Manual configurationFile Server > Windows file server Configure object-level auditing - Automatic configurationFile Server > Windows file server Configure object-level auditing - Manual configurationFile Server > Windows file server Configure object-level auditing - Using PowerShell cmdletsFile Server > Windows file server Configure event log settingsFile Server > Windows file server Exclude configurationFile Server > Windows file server File AnalysisFile Server > Windows file server TroubleshootingFile Server > Windows file server OverviewFile Server > EMC server auditing Privileges requiredFile Server > EMC server auditing Adding EMC serversFile Server > EMC server auditing Configure audit policiesFile Server > EMC server auditing Configure event log settingsFile Server > EMC server auditing Automatic configurationFile Server > EMC server auditing Manual configurationFile Server > EMC server auditing Exclusion configurationFile Server > EMC server auditing TroubleshootingFile Server > EMC server auditing OverviewWindows Server > Windows Server Auditing Using product consoleWindows Server > Windows Server Auditing Using command line argumentsWindows Server > Windows Server Auditing Configure audit policies automaticallyWindows Server > Windows Server Auditing Configure audit policies manuallyWindows Server > Windows Server Auditing Remove Apply Group Policy privilege for Authenticated UsersWindows Server > Windows Server Auditing Create a new group, add all Windows servers to the group, and link a GPO to the groupWindows Server > Windows Server Auditing Configure advanced audit policiesWindows Server > Windows Server Auditing Force advanced audit policiesWindows Server > Windows Server Auditing Configure legacy audit policiesWindows Server > Windows Server Auditing Configure event log settingsWindows Server > Windows Server Auditing TroubleshootingWindows Server > Windows Server Auditing OverviewActive Directory > Group policy object auditing Benefits of auditing Group Policy Objects using ADAudit PlusActive Directory > Group policy object auditing Configure domain controllersActive Directory > Group policy object auditing Configure audit controllers - Automatic processActive Directory > Group policy object auditing Configure audit controllers - Manual processActive Directory > Group policy object auditing Configure Object-level auditong - Automatic processActive Directory > Group policy object auditing Configure Object-level auditong - Manual processActive Directory > Group policy object auditing Configure event log settingsActive Directory > Group policy object auditing Install the Group Policy Management ConsoleActive Directory > Group policy object auditing OverviewActive Directory > ADFS auditing Configure AD FS servers in ADAudit PlusActive Directory > ADFS auditing Configure audit policies - Automatic configurationActive Directory > ADFS auditing Configure audit policies - Manual configurationActive Directory > ADFS auditing Configure AD FS servers for auditing - Enable auditingActive Directory > ADFS auditing Configure AD FS servers for auditing - Configure claimsActive Directory > ADFS auditing Configure AD FS servers for auditing - Configure extranet lockoutActive Directory > ADFS auditing TroubleshootingActive Directory > ADFS auditing OverviewWindows workstation auditing Configuring windows workstations - Using product consoleWindows workstation auditing Configuring windows workstations - Using command ine argumentsWindows workstation auditing Configuring audit policies - Automatic ProcessWindows workstation auditing Configuring audit policies - Manual ProcessWindows workstation auditing Configuring event log settingsWindows workstation auditing TroubleshootingWindows workstation auditing OverviewWindows Server > File integrity monitoring Configure FIM in ADAudit PlusWindows Server > File integrity monitoring Configure audit policies - Automatic configurationWindows Server > File integrity monitoring Configure audit policies - Manual configurationWindows Server > File integrity monitoring Configure object-level auditing - Using Windows sharesWindows Server > File integrity monitoring Configure object-level auditing - Using PowerShell cmdletsWindows Server > File integrity monitoring Configure object-level auditing - Using Global Object Access Auditing settingsWindows Server > File integrity monitoring Exclude configurationWindows Server > File integrity monitoring Configuring event log settingsWindows Server > File integrity monitoring OverviewWindows Server > PowerShell auditing Configure audit policies - Automatic configurationWindows Server > PowerShell auditing Configure audit policies - Manual configurationWindows Server > PowerShell auditing Configure PowerShell in ADAudit PlusWindows Server > PowerShell auditing Configuring event log settingsWindows Server > PowerShell auditing TroubleshootingWindows Server > PowerShell auditing User session recordingWindows Server > User session recording OverviewFile Server > EMC Isilon auditing Privileges requiredFile Server > EMC Isilon auditing Configure EMC Isilon auditingFile Server > EMC Isilon auditing Add EMC Isilon clustersFile Server > EMC Isilon auditing Exclude configurationFile Server > EMC Isilon auditing TroubleshootingFile Server > EMC Isilon auditing OverviewFile Server > Synology auditing Configure Synology NAS auditingFile Server > Synology auditing TroubleshootingFile Server > Synology auditing OverviewProduct Configuration > SSL configuration Steps for enabling sslProduct Configuration > SSL configuration Product Configuration > GlossarySSL configuration OverviewProduct Configuration > Service account configuration New user, group, and GPO creationProduct Configuration > Service account configuration Privileges required for event log collectionProduct Configuration > Service account configuration Privileges required for automatic audit policy and object level auditing configurationProduct Configuration > Service account configuration Privileges required for file server auditingProduct Configuration > Service account configuration For DataEngine Product Configuration > Service account configuration Other privileges requiredProduct Configuration > Service account configuration Products and System PortsProduct Configuration > Ports OverviewProduct Configuration > Agent configuration Installation prerequisitesProduct Configuration > Agent configuration Agent installationProduct Configuration > Agent configuration Agent security settingsProduct Configuration > Agent configuration Agent configuration syncProduct Configuration > Agent configuration Upgrading the agentProduct Configuration > Agent configuration Agent uninstallationProduct Configuration > Agent configuration TroubleshootingProduct Configuration > Agent configuration PostgreSQL/MySQL to MS SQL MigrationMigration Migrating data between different versions of MS SQLMigration MySQL/MS SQL to PostgreSQL MigrationMigration Moving ADAudit Plus from one server/drive to anotherMigration Migrating ADAudit Plus from 32-bit to 64-bit architectureMigration Backup and restoreMigration To enable NTLM-based single sign-onProduct Configuration > Single sign-on To modify existing single sign-on settingsProduct Configuration > Single sign-on Troubleshooting steps for NTLM-based SSOProduct Configuration > Single sign-on Configuring SSO using OktaProduct Configuration > Single sign-on Configuring SSO using OneLoginProduct Configuration > Single sign-on Configuring SSO using Ping IdentityProduct Configuration > Single sign-on Configuring SSO using ADFSProduct Configuration > Single sign-on Configuring SSO using a custom identity providerProduct Configuration > Single sign-on Troubleshooting tips for SAML-based SSOProduct Configuration > Single sign-on OverviewSecurity > Security specifications Potential vulnerabilitiesSecurity > Security specifications Security > Security specificationsSecurity > Security specifications ArchitectureArchitecture Security Log SettingsProduct configuration > Security log settings Security hardeningProduct configuration > Security hardening OverviewActive Directory > Azure AD configuration Configuration type M365 vs Azure AppActive Directory > Azure AD configuration Using an Azure AD Premium licenseActive Directory > Azure AD configuration Using a Microsoft 365 licenseActive Directory > Azure AD configuration ADAudit Plus vs. Azure portalActive Directory > Azure AD configuration ADAudit Plus vs. PowerShell cmdletsActive Directory > Azure AD configuration Event categories trackedActive Directory > Azure AD configuration Log retention settings in Azure ADActive Directory > Azure AD configuration TroubleshootingActive Directory > Azure AD configuration OverviewActive Directory > Azure AD DS auditing Reporting capabilities of ADAudit PlusActive Directory > Azure AD DS auditing Azure AD DS configurationActive Directory > Azure AD DS auditing Configure Azure AD DS in ADAuditPlusActive Directory > Azure AD DS auditing TroubleshootingActive Directory > Azure AD DS auditing OverviewActive Directory > AD CS auditing Configure AD CS auditing Active Directory > AD CS auditing OverviewProduct configuration > 2FA configuration Enable 2FA in ADAudit PlusProduct configuration > 2FA configuration Email VerificationProduct configuration > 2FA configuration SMS VerificationProduct configuration > 2FA configuration Google AuthenticatorProduct configuration > 2FA configuration RSA SecurIDProduct configuration > 2FA configuration Duo SecurityProduct configuration > 2FA configuration RADIUS AuthenticationProduct configuration > 2FA configuration Set a preferred authentication modeProduct configuration > 2FA configuration Reset the second authentication factorProduct configuration > 2FA configuration OverviewFile server > Huawei OceanStor Auditing Privileges requiredFile server > Huawei OceanStor Auditing Configuration prerequisitesFile server > Huawei OceanStor Auditing Adding Huawei OceanStor systemsFile server > Huawei OceanStor Auditing Exclude configurationFile server > Huawei OceanStor Auditing TroubleshootingFile server > Huawei OceanStor Auditing OverviewEvent collection troubleshooting Domain errorsEvent collection troubleshooting Report based errorsEvent collection troubleshooting General errorsEvent collection troubleshooting Netapp filer errorsEvent collection troubleshooting EMC errorsEvent collection troubleshooting Synology errorsEvent collection troubleshooting Hitachi errorsEvent collection troubleshooting OverviewProduct configuration > High availability configuration High availability workflowProduct configuration > High availability configuration PrerequisitesProduct configuration > High availability configuration High availability setupProduct configuration > High availability configuration OverviewFile server > NetApp filer auditing Adding NetApp 7Mode/vFiler CIFS serverFile server > NetApp filer auditing Automatic configurationFile server > NetApp filer auditing Manual configurationFile server > NetApp filer auditing Automatic configurationFile server > NetApp filer auditing Manual configurationFile server > NetApp filer auditing Exclude ConfigurationFile server > NetApp filer auditing TroubleshootingFile server > NetApp filer auditing OverviewFile server > NetApp cluster auditing Configuration prerequisitesFile server > NetApp cluster auditing Adding the target clusterFile server > NetApp cluster auditing Adding the target sharesFile server > NetApp cluster auditing Configuring audit optionsFile server > NetApp cluster auditing Exclude ConfigurationFile server > NetApp cluster auditing OverviewFile server > Hitachi NAS auditing Privileges requiredFile server > Hitachi NAS auditing Add a Hitachi NAS serverFile server > Hitachi NAS auditing Configure audit policiesFile server > Hitachi NAS auditing Configure object-level auditingFile server > Hitachi NAS auditing Exclude ConfigurationFile server > Hitachi NAS auditing TroubleshootingFile server > Hitachi NAS auditing OverviewFile server > Amazon FSx auditing guide PrerequisitesFile server > Amazon FSx auditing guide Configure audit policiesFile server > Amazon FSx auditing guide Configure object-level auditingFile server > Amazon FSx auditing guide Configure Amazon FSx in ADAudit PlusFile server > Amazon FSx auditing guide TroubleshootingFile server > Amazon FSx auditing guide OverviewProduct configuation > Email and SMS server configuration Configure the email server using SMTPProduct configuation > Email and SMS server configuration Configure the email server using an APIProduct configuation > Email and SMS server configuration Email and SMS server configurationProduct configuation > Configure the SMS server TroubleshootingProduct configuation > Email and SMS server configuration Add/Remove devices and sharesProduct configuation > automatic-configuration Overview and stepsProduct configuation > ServiceNow Integration OverviewFile server > QNAP NAS Auditing Guide Configure QNAP NAS AuditingFile server > QNAP NAS Auditing Guide Exclude ConfigurationFile server > QNAP NAS Auditing Guide TroubleshootingFile server > QNAP NAS Auditing GuideIssue: Unable to add tenants to configure Azure AD due to invalid client secret.
Solution:
Client secret values will be available only while it is generated. So, if you have a copy of your current client secret copied elsewhere, you can use it to compare to the value configured in ADAudit Plus. If not, you will have to create a new client secret.
Generate a new client secret by following the steps listed below:
Issue: Unable to add tenants to configure Azure AD due to invalid client ID.
Solution: Check if you have entered the correct client ID by following the steps listed below:
Issue: Unable to add tenant due to invalid tenant name.
Solution: Check if you have entered the correct tenant name by following the steps listed below:
Issue: The application does not have the necessary privileges required to audit the cloud directory.
Solution: Grant the minimum required permissions for application created to audit Azure AD using the steps listed on this page.
Issue: There is a connectivity issue between the ADAudit Plus server and Azure AD server.
Solution: Check if there is a stable and reliable internet connection with a speed of 20Mbps or over.
If there is proxy configured in the machine where ADAudit Plus is installed, then configure proxy setting in ADAudit Plus too, using these steps:
Issue: A firewall could be restricting ADAudit Plus from connecting with the Azure AD server.
Solution: If you are using a firewall to secure your network, kindly ensure that the domains listed below are added to the exemption list.
https://login.microsoftonline.com
https://outlook.office365.com
https://graph.windows.net
https://graph.microsoft.com
https://manage.office.com
If you do not use a firewall, or if the issue persists even after upgrading to the latest build, contact support.
Issue: A firewall could be restricting ADAudit Plus from connecting with the Azure AD server.
Solution: If you are using a firewall to secure your network, kindly ensure that the domains listed below are added to the exemption list.
https://login.microsoftonline.com
https://outlook.office365.com
https://graph.windows.net
https://graph.microsoft.com
https://manage.office.com
If you do not use a firewall or if the issue persists even after upgrading to the latest build, contact support.
Issue: The updated Azure certificate is missing from the ADAudit Plus trust store.
Solution: Restart the ADAudit Plus service to reflect the already updated certificate in the ADAudit Plus trust store.
Note: The required certificate will be automatically updated to the ADAudit Plus trust store.
Issue: Details of sign-ins can be obtained only if the tenant has an Azure Active Directory P1 or P2 license.
Solution: Upgrade your Azure license. For more details here.
Issue: The application configured for O365 API does not have the necessary privileges required to audit the cloud directory.
Solution: Grant the minimum required permissions for application created to audit Azure AD using the steps listed on this page.
Issue: The configured proxy server is not running.
Solution: Check the proxy server's running status. If it's running, configure it in ADAudit Plus' proxy setting.
If the issue persists contact support.
Issue: The server that ADAudit Plus is installed on can’t connect to the internet.
Solution: Check the server’s internet connection and provide internet connectivity if you haven’t done so already.
Issue: Although an authenticated proxy server is available, an unauthenticated setup is configured in the ADAudit Plus console.
Solution: Configure the right username and password on the ADAudit Plus proxy setting page, using these steps:
Issue: There is a sudden spike in the number of requests to Azure AD.
Solution: The issue will be fixed automatically when you upgrade to build 7080 or above.
Find the service pack to upgrade to build 7080 on this page.
Issue: The event fetch has been running for a long time.
Solution: Click run-now. If it keeps throwing the same error, contact support.
Issue: The Azure AD premium license does not have the required privileges to analyze risky sign-in activities.
Solution: Find the minimum required permissions for application created to populate information about risky sign-in action in Azure AD using the steps listed on this page.
Issue: Data unavailable for the reports under Azure AD
Solution: This issue could stem from multiple factors. One of which is insufficient privileges, i.e., the account used to logon to ADAudit Plus does not have necessary privileges to audit Azure. In such cases, there will be an in-product notification as shown in the screenshot below.
To resolve this, check if the account you have used to logon has privileges to view Cloud Directory reports using the steps below:
Now verify if you can view the Azure AD reports by logging on using that user account.
If you have the necessary privileges and are still not able to populate any reports under the Cloud Directory, contact support.
