Audit activites
EPM administrator might periodically want to go back and check some of the activities carried out by endpoint users. Activities such as who has checked out passwords for accounts and also applications where privileges were elevated are good examples of auditing. This page contains the following sections:
Viewing Password Checkout history
To view EPM password checkout history, follow the below recommended steps:
Login to the system and select EPM from the product navigator.
Navigate to Track → select Password Checkout from the sidebar.
Viewing Windows Privileged Activities
To view EPM Windows privileged activities, follow the below recommended steps:
Login to the system and select EPM from the product navigator.
Navigate to Track → Windows Privileged Activity
Click on the Filter button and provide the necessary details to search for a particular session.
Click on the Refresh button to apply the filter
You will see the list of all the Windows privileged activities displayed on the screen
User can copy the records by clicking on the Copy button, export the records in CSV format by clicking on the CSV button and export the records in Excel format by clicking on the Excel button located at the top right corner of the screen.
Viewing Blocked Activities
To view EPM blocked activities, follow the below recommended steps:
Login to the system and select EPM from the product navigator.
Navigate to Track → Windows Activity Blocked
Click on the Filter button and provide the necessary details to search for a particular session.
Click on the Refresh button to apply the filter
You will see the list of all the blocked activities displayed on the screen
User can copy the records by clicking on the Copy button, export the records in CSV format by clicking on the CSV button and export the records in Excel format by clicking on the Excel button located at the top right corner of the screen.