Unsolved
1 Message
0
2406
How to enable filesystem level audit logs for specific files or directories in a CIFS share
Good afternoon,
We own a Unity300D storage appliance. I can't find if there might be a way to get audit logs (filesystem level) to monitor directories and/or file accesses on CIFS shares (eg. read/writes/delete...) to identify operation executed by users (Active Directory users). Is that feature available for this appliance and how to enable it?
Thanks
Rainer_EMC
8.6K Posts
1
October 31st, 2018 04:00
Hi,
Windows (CIFS) auditing is available either through Windows style security.evt logs or via CEPA
There are also 3rd party applications - some in the Unity support matrix - some others not to do that.
To enable CIFS auditing start with Chapter 3 of the Configuring Hosts to access SMB file systems PDF manual which is called "Auditing SMB Users and Objects"