DA Audit Trail?

Question

Is Audit Trail available in DA? For example, I changed the role and permissions, is it logged?
Thank you.

tonysterling · Accepted Answer

Permissions are logged in the table tblHistCasePermission.
You could use a query like this to see what permissions where added then removed.
SELECT c.name as CaseName
	&nbsp;&nbsp; &nbsp;, p.PrincipalLogin as DomainUser
	&nbsp;&nbsp; &nbsp;, tp.name as PermissionName
	&nbsp;&nbsp; &nbsp;, hc.startdate as StartDate
	&nbsp;&nbsp; &nbsp;, hc.enddate as EndDate
	FROM tblHistCasePermission hc
	JOIN tblPrincipal p on p.PrincipalID = hc.PrincipalID
	JOIN tblPermission tp on tp.PermissionID = hc.PermissionID
	JOIN tblCase c on c.CaseID = hc.CaseID
	--WHERE c.Name = 'CASENAME'
	GROUP BY c.name, p.PrincipalLogin, tp.name, hc.StartDate, hc.EndDate
You can change the WHERE clause to only run it on a specific case.
Then you could use these articles and create your own SQL Report.
https://www-secure.symantec.com/connect/articles/creating-custom-report-symantec-enterprise-vault-discovery-accelerator-80-and-higher-part-1
https://www-secure.symantec.com/connect/articles/creating-custom-report-symantec-enterprise-vault-discovery-accelerator-80-and-higher-part-2

Forum Discussion

DA Audit Trail?

1 Reply

Related Content

OpsCenter Audit Trails user info

EV Auditing - Audit Trail

Audit within DA use

Audit Trails - cannot find it

How to audit Discovery Accelerator ?

Recent Discussions

Exporting and recreating split PST files

Discovery Accelerator Automatically accept search results issue

Exporting mail details without restoring

can we run any reports to pull the details of all the historical cases which are also deleted?

Moving DA databases