Agents Administration - Tests
 

Default Parameters for AudShrdFoldTest

This test auto-discovers all shared folders on the Microsoft File server and for each shared folder, reports the number of succesful and failed delete events logged in the Security event log. In addition, the detailed diagnosis provided by the test sheds light on the details of the delete events and status, the user who performed the activity, name of the shared folder and affected path, date and time of the event. This helps administrators to keep a track on the delete events to ensure data security and also to easily detect and investigate malicious or erroneous file deletions on the target file server.

This page depicts the default parameters that need to be configured for the AudShrdFoldTest.

  • The TEST PERIOD list box helps the user to decide how often this test needs to be executed.

  • To monitor the shared folders in the Microsoft file server, eG agent needs to be configured with the SHARED FOLDERS available on the file server that is to be monitored. For this, click on the “+” icon given, and then add the shared folders that need to be monitored from the Available shared folders list to the Associated shared folders column, and then click Update. Before monitoring the shared folders, a set of pre-requisites should be fulfilled, to know the pre-requistes Click here .

  • By default, IS DD REQUIRED FOR SUCCESS flag is set to Yes, indicating that detailed diagnosis is reported for Successful delete attempts measure. If you do not want this test to report detailed diagnosis for Successful delete attempts measure, then set this flag to No.

  • By default, IS DD REQUIRED FOR FAILURE flag is set to Yes, indicating that detailed diagnosis is reported for Failure delete attempts measure. If you do not want this test to report detailed diagnosis for Failure delete attempts measure, then set this flag to No.

  • DD FREQUENCY refers to the frequency with which detailed diagnosis measures are to be generated for this test. The default is 1:1. This indicates that, by default, detailed measures will be generated every time this test runs, and also every time the test detects a problem. You can modify this frequency, if you so desire. Also, if you intend to disable the detailed diagnosis capability for this test, you can do so by specifying none against DD FREQUENCY.

  • Once the necessary values have been provided, clicking on the UPDATE button will register the changes made.

When changing default configurations of tests, the values with “$” indicate variables that will be replaced by the eG system according to the specific server being managed - for instance, $hostName is the host/nickname of the target host, $port is the port number of the server being monitored. E.g., for a server xyz:80, $hostName will be changed automatically by the eG manager to “xyz*” and $port will be changed to “80” when configuring a test.