Audit Reports

Auditing reports are based on data generated by database activity auditing and user interaction auditing. To access auditing reports:

1. Select Auditing tab and select from the following reports:

Report name Description
Configuration Management Auditing Report

Use this report to list all the configuration changes made in GFI Archiver. Information displayed includes:

  • User who made the changes
  • Changes effected

NOTE

Clicking on any configuration change in the list will bring up a window with further detailed information.

Access Control Auditing Report

Use this report to list all the changes made to the access control configuration of GFI Archiver. Information displayed includes:

  • User who made the changes
  • The user affected by the change
  • What permissions were changed
Archived items Auditing Report

Use this report to list the number of items archived in GFI Archiver Archive StoresA collection of email sources, email metadata and search indexes within GFI Archiver per day. Information displayed includes:

  • Date
  • Name of archive store
  • Number of archived items
Bulk Import Auditing Report

Use this report to list the amount of items imported into the archive stores through the bulk import service, for each import. Information displayed includes:

  • Date of import
  • Name of archive store
  • Number of items imported
Retention Policy Auditing Report

Use this report to list the retention policies executed and the amount of items deleted. Information displayed includes:

  • Date on which the policy was executed
  • Name of archive store
  • Name of retention policy
  • Number of items deleted

Clicking on any executed retention policy in the list will bring up a window with detailed information on the policy executed.

Data Leakage Prevention Auditing Report

Use this report to list which users performed actions that could lead to data leakage, such as forwarding of emails from the archive stores. Information displayed includes:

  • User that performed the action
  • Action performed
  • Number of items affected.
User Audit Trail Auditing Report

Use this report to list the actions taken by users whilst using the GFI Archiver web interface. Information displayed includes:

  • User name
  • Action taken
  • Date/time action was taken

The following report options are available:

  • To group the list by user, click on the Group by user button, located at the top of the report page.
  • To group the list by date, click on the Group by date button, located at the top of the report page.
  • Clicking on any user action in the list will bring up a window with detailed information on the action taken.

Data Integrity Auditing Report

Use this report to list all the changes made to the GFI Archiver archive stores and auditing databases, which were not carried out through the GFI Archiver services. Information displayed includes:

  • Event type
  • Microsoft® SQL server and database affected
  • Database user affected
  • Action taken
  • Machine from which action originated.

The following report options are available:

  • To group the list by event type, click on the Group by event type button, located at the top of the report page.
  • To group the list by date, click on the Group by date button, located at the top of the report page.
  • Clicking on any database change in the list will bring up a window with detailed information on that change.

2. Perform the following actions:

Option Description
Filter reports: Use the Filter by: area by selecting a value to filter by and providing the details that a record has to match to be displayed on screen. The Filter by: area is located at the top of each report page.
Print reports: Click on the print report button , located at the top of each report page to print the report.