AnsweredAssumed Answered

SA internal audit

Question asked by RSA Admin Employee on Jul 9, 2014
Latest reply on Oct 1, 2014 by Leonard Chvilicek

Hi all,

Is there an internal mechanism of user actions audit in SA? As I see in reporting/SA server/other modules log, only debug log is available.

For example I cannot see that user Bob tested rule#1 or changed some reports or schedules or created some users, etc.

There was such audit in envision and customers demand the same functionality in SA, while I cannot see how can we achieve this.

BTW, I use this nice parcerSecurity Analytics Log Parser 1.4.zip but it only covers the system debug.

Any ideas on this? Or there will be an additional auditing module for 100500$?

Outcomes