Agents Administration - Tests
 

Configuration of AudShrdFoldTest

This test auto-discovers all shared folders on the Microsoft File server and for each shared folder, reports the number of succesful and failed delete events logged in the Security event log. In addition, the detailed diagnosis provided by the test sheds light on the details of the delete events and status, the user who performed the activity, name of the shared folder and affected path, date and time of the event. This helps administrators to keep a track on the delete events to ensure data security and also to easily detect and investigate malicious or erroneous file deletions on the target file server.

The default parameters associated with this test are:

  • The TEST PERIOD list box helps the user to decide how often this test needs to be executed.

  • In the HOST text box, specify the HOST for which this test is to be configured.

  • To monitor the shared folders in the Microsoft file server, eG agent needs to be configured with the SHARED FOLDERS available on the file server that is to be monitored. For this, click on the “+” icon given, and then add the shared folders that need to be monitored from the Available shared folders list to the Associated shared folders column, and then click Update. Before monitoring the shared folders, a set of pre-requisites should be fulfilled, to know the pre-requistes Click here .

  • By default, IS DD REQUIRED FOR SUCCESS flag is set to Yes, indicating that detailed diagnosis is reported for Successful delete attempts measure. If you do not want this test to report detailed diagnosis for Successful delete attempts measure, then set this flag to No.

  • By default, IS DD REQUIRED FOR FAILURE flag is set to Yes, indicating that detailed diagnosis is reported for Failure delete attempts measure. If you do not want this test to report detailed diagnosis for Failure delete attempts measure, then set this flag to No.

  • DD FREQUENCY refers to the frequency with which detailed diagnosis measures are to be generated for this test. The default is 1:1. This indicates that, by default, detailed measures will be generated every time this test runs, and also every time the test detects a problem. You can modify this frequency, if you so desire. Also, if you intend to disable the detailed diagnosis capability for this test, you can do so by specifying none against DD FREQUENCY.

  • To make diagnosis more efficient and accurate, eG embeds an optional detailed diagnostic capability. With this capability, the eG agents can be configured to run detailed, more elaborate tests as and when specific problems are detected. To enable the detailed diagnosis capability of this test, by default, for a particular server, choose the On option against DETAILED DIAGNOSIS. To disable the capability, click on the Off option.

    The option to selectively enable/disable the detailed diagnosis capability will be available only if the following conditions are fulfilled:

    • The eG manager license should allow the detailed diagnosis capability.

    • Both the bad and normal frequencies configured for the detailed diagnosis measures should not be 0.

  • If multiple components of the same component type are awaiting configuration, then an APPLY TO OTHER COMPONENTS button will appear in this page. Clicking on this button will allow you to apply the configuration to all/selected components of that type.

  • Once the necessary values have been provided, clicking on the UPDATE button will register the changes made.

When changing the configuration for specific servers, a “*” beside the text box corresponding to the parameter signifies that these values have to be manually configured by the user. The parameter values that require to be configured will typically be prefixed with a “$” or contain a series of “*”. A value of “none” in the parameter value indicates that the corresponding parameter value can be changed if required.