Chat now with support
Chat with Support

ControlPoint 8.8 - Administration Guide

Preface Configuring the Environment in Which ControlPoint Will Run The ControlPoint Configuration Site Managing Your Farm List Managing Your ControlPoint License Granting ControlPoint Access to Web Applications and Content Databases Configuring ControlPoint Services Using Discovery to Collect Information for the ControlPoint Database Cache Using Sensitive Content Manager Services Managing ControlPoint Configuration and Permissions Modifying ControlPoint Configuration Settings
Changing Default Settings for Actions and Analyses Changing Default Settings to Improve Application Performance Audit Log Configuration Settings Changing Settings for Anomalous Activity Detection Restricting Functionality for Members of the Business Administrators Group Changing Default Settings for ControlPoint User Groups Changing Settings to Improve Discovery Performance Changing Settings to Accommodate Special Environmental Factors Changing Default Settings for Navigation Managing Site Provisioning Settings Specifying Global Settings for ControlPoint Policies Setting Preferences for the ControlPoint Scheduler Miscellaneous and Custom Configuration Settings Special-Purpose Configuration Settings
Changing Trace Switch Logging Levels Archiving SharePoint Audit Log Data Troubleshooting
ControlPoint Log Files Troubleshooting Configuration Errors Troubleshooting the ControlPoint Application Interface Troubleshooting Discovery Troubleshooting SharePoint Users and Permissions Troubleshooting Site Provisioning Troubleshooting ControlPoint Operations

Specifying Whether to Display Site Names in Audit Log Analyses (PROCESSAUDITNAMES)

By default, ControlPoint Audit Log analysis results include name of the Site on which audited activity occurred.  The process required for ControlPoint to collect this information is time-consuming and may affect performance, especially if the scope of the analysis is large.

PROCESSAUDITNAMEStrue

ControlPoint Application Administrators can, however, prevent this process from being carried out by changing the ControlPoint Configuration Setting PROCESSAUDITNAMES from True to False.

Config Setting PROCESSAUDITNAMES

Note that, if PROCESSAUDITNAMES is set to false, you can use the url to identify the site where audited activity occurred.

PROCESSAUDITNAMESfalse

 

Changing Settings for Anomalous Activity Detection

The following ControlPoint Sentinel Anomalous Activity Detection settings display under the category Audit Log.

·Enabling Anomalous Activity Detection via the ControlPoint Scheduled Job Review

·Changing the Subject and/or Body of Anomalous Activity Detection Emails

Enabling Anomalous Activity Detection via the ControlPoint Scheduled Job Review

As part of preparing your environment for using ControlPoint Sentinel, Anomalous Activity Detection must be enabled to run:

·via the ControlPoint Anomalous Activity Detection job in Central Administration

OR

·as part of the ControlPoint Scheduled Job Review, by changing the ControlPoint Setting Enable Options That Require Anomalous Activity Detection from False to True.

NOTE:  This is an Advanced Setting in the Audit Log category.

Config Setting AADENABLED

See also "Preparing Your Environment for Using ControlPoint Sentinel" in the ControlPoint User Guide.

Changing the Subject and/or Body of Anomalous Activity Detection Emails

When a ControlPoint Sentinel Anomalous Activity Rule specifies that an email alert be sent when an Anomalous Activity Limit has been exceeded, ControlPoint automatically sends an email for the to the appropriate user(s).

ControlPoint Application Administrators can, however, modify the default subject and/or body text, as described in the following table.

If you want to change the text of the ...

Then change the Parameter of the ControlPoint Setting ....

From the default text...

email Subject

Subject Line for ControlPoint Anomalous activity Detection email
(AADActivityLevelEmail Subject)

ControlPoint Anomalous activity Detection.

email body

ControlPoint Anomalous activity Detection Email Message

(AADActvityLevelEmailBody)

 

@@UserName@@ has exceeded the personal daily activity limit of @@limit@@ by @@overage@@.

 

Where the following variables are used:

·@@UserName@@ is the account name of the user who has exceeded his/her daily activity limit

·@@limit@@ is the daily activity limit characterized by ControlPoint Sentinel

·@@overage@@ is the amount by which the user has exceeded the activity limit for that day.

No

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating