Skip to main content
Start a Conversation

Unsolved

Sasquash1

1 Message

2406

October 30th, 2018 07:00

How to enable filesystem level audit logs for specific files or directories in a CIFS share

Good afternoon,

We own a Unity300D storage appliance. I can't find if there might be a way to get audit logs (filesystem level) to monitor directories and/or file accesses on CIFS shares (eg. read/writes/delete...) to identify operation executed by users (Active Directory users). Is that feature available for this appliance and how to enable it?

Thanks

Rainer_EMC

8.6K Posts

October 31st, 2018 04:00

Hi,

Windows (CIFS) auditing is available either through Windows style security.evt logs or via CEPA

There are also 3rd party applications - some in the Unity support matrix - some others not to do that.

To enable CIFS auditing start with Chapter 3 of the Configuring Hosts to access SMB file systems PDF manual which is called "Auditing SMB Users and Objects"

View More

View All

No Events found!

Top