Managing archive reports
You can create and run reports on the data in the archive audit database.
To manage archive reports
1 Select Auditing & Alerting | Archives.All Events (Last 24 Hours) is a snapshot of the archive audit database. The Applied Filters area displays displays the last 1000 events collected based on the applied filters and selected report.
Managing audit agents
You can manage audit agents from the Audit Agent page. Initially the display is blank. You must install and activate the audit agent to begin collection of audit events.
The bottom half of the display shows the tasks that pertain to audit agents. To manage all tasks in Active Administrator, see Managing tasks. Click the chevron to hide the Tasks area.
A warning message displays to inform that domain controllers do not have audit agents installed. To suppress this display, click the check box. You can manage the display of the message using Configuration | Agent Installation Settings. See Setting agent installation options. Alternatively, you can exclude selected domain controllers to suppress this message. See Excluding domain controllers.
To manage audit agents
1 Select Auditing & Alerting | Agents.
NOTE: When you select Remove, Start, Stop, or Move, you are asked to select the account to use to manage the agent. You can use the Active Administrator Foundation Service (AFS) account, or indicate a specific user account.
Excluding domain controllers
You can exclude domain controllers from Active Administrator® so you do not see the information banner at the bottom of the display that indicates a domain controller does not have an audit agent installed.
To exclude domain controllers from Active Administrator
1 Select Auditing & Alerting | Agents.
2 Select More | Excluded Domain Controllers.
3
4 Click OK.
Setting up auditing on domain controllers
To set up auditing on a domain controller
2 Select Group Policy | Group Policy Objects.
3
4 Expand Computer Configuration | Windows Settings | Security Settings | Local Policies, and select Audit Policy.
6 Close the Group Policy window.
7 From the command prompt, refresh the Group Policies by typing gpupdate /force.
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Nutzungsbedingungen Datenschutz Cookie Preference Center