Chat now with support
Chat with Support

Change Auditor for Active Directory 7.0.4 - User Guide

Introduction

Using custom attribute auditing, you can specify individual schema attributes to audit and assign a severity to the audited attributes. A new event will be added for each attribute selected for auditing. Once set, these events are identified with “Custom” in the facility name.

To eliminate duplicate events, you can remove the user attribute from the Active Directory Attribute Auditing page which will prevent the custom attribute event from being generated.

Active Directory Attribute Auditing page

The Active Directory Attribute auditing page displays when you select Active Directory | Attributes from the Auditing task list in the navigation pane of the Administration Tasks page. From here you can specify individual schema attributes to audit and assign the severity.

This page consists of the following information/controls:

In addition to the attribute, the assigned severity is also displayed. To change the severity level assigned to an attribute, place your cursor in the Severity cell and use the drop-down arrow to select the severity you want to assign to the selected attribute.
Select one or more attributes from the Unmonitored Attribute list and click Add to select them for auditing. The selected attributes are moved to the Monitored Attribute list box.
Select one or more attributes from the Monitored Attribute list and click Remove to remove them from auditing. The selected attributes are moved back to the Unmonitored Attribute list box.

Custom Active Directory attribute auditing

2
Click Auditing.
3
Select Attributes under Active Directory in the Auditing task list.
6
To change the severity level assigned to an attribute, in the right-hand list box, place your cursor in the Severity cell and use the drop-down arrow to select the severity you want to assign to the selected attribute.
7
To remove an attribute from auditing, select the attribute from the right-pane and click Remove. This moves the selected attribute back into the Unmonitored Attribute list.

 

Member of Group Auditing

Related Documents