IT Asset Tool può monitorare e registrare l'accesso degli utenti. L'audit deve essere fatto dopo aver impostato per mezzo di una GPO il log degli eventi di login/logout. (vedi F.A.Q.)
IT Asset Tool rileva i seguenti eventi in ciascun sistema monitorato.
Id | Description |
528 | Successful Logon |
529 | Logon Failure - Unknown user name or bad password |
538 | User Logoff |
551 | User initiated logoff |
644 | User Account Locked Out |
4624 | An account was successfully logged on |
4625 | An account failed to log on |
4634 | An account was logged off |
4647 | User initiated logoff |
4720 | A user account was created |
4722 | A user account was enabled |
4723 | An attempt was made to change an account's password |
4724 | An attempt was made to reset an account's password |
4725 | A user account was disabled |
4726 | A user account was deleted |
4727 | A security-enabled global group was created |
4728 | A member was added to a security-enabled global group |
4729 | A member was removed from a security-enabled global group |
4730 | A security-enabled global group was deleted |
4740 | An account was successfully logged on |
4767 | A user account was unlocked |
In fase di report filtrare le utenze Amministrative è possibile inserire dal menu "Config" tali utenti amministratori:
Nel caso di un'installazione "Enterprise edition" non saranno necessarie ulteriori configurazioni, mentre nel caso di un'installazione Client/Server, l'audit di sistema deve essere configurato aggiungendo il parametro di avvio "admin" seguendo la seguente guida.
Esempio:
"\\server-it-asset-tool\client\ClientIAT.exe " server=192.168.0.100 port=18888 senddelay=3600000 admin=Brian
N.B. nel caso ci fossero più amministratori da monitorare sarà necessario separarli con una "virgola". Es: admin=Brian,John