01-25-2014 09:34 PM
Hellow Experts,
We are using EV 10.0.2 with DA. The requirement is to audit the use of cases and searches within DA. Is there any way we can do this? I want to know who accessed a perticular case and when did he perform searches based on it.
Thanks
Solved! Go to Solution.
01-29-2014 01:45 PM
Hi Sym-Guy,
Have a look at the admin guide for DA 10.0.2, chapter 12.
It revolves around reporting on cases, searches carried out and by whom etc, sounds like this is what you need:-
http://www.symantec.com/docs/DOC5995
Im not exactly sure if it will go into the depth of detail you are after but it is a start.
I know in DA, in earlier versions of EV, the searches used to be run under the service account, as it needs access to all archives that are searchable, therefore auditing access/searches on the archives wouldnt pull back the information that you require, I do not think that this has changed but I havent confirmed this myself yet.
01-29-2014 01:45 PM
Hi Sym-Guy,
Have a look at the admin guide for DA 10.0.2, chapter 12.
It revolves around reporting on cases, searches carried out and by whom etc, sounds like this is what you need:-
http://www.symantec.com/docs/DOC5995
Im not exactly sure if it will go into the depth of detail you are after but it is a start.
I know in DA, in earlier versions of EV, the searches used to be run under the service account, as it needs access to all archives that are searchable, therefore auditing access/searches on the archives wouldnt pull back the information that you require, I do not think that this has changed but I havent confirmed this myself yet.
01-31-2014 01:34 AM
Thanks Ben
01-31-2014 01:36 AM
Pleasure, happy to help.