Audit activites

EPM administrator might periodically want to go back and check some of the activities carried out by endpoint users. Activities such as who has checked out passwords for accounts and also applications where privileges were elevated are good examples of auditing.

Viewing Password Checkout history

To view EPM password checkout history, follow the below recommended steps:

Login to EPM as an administrator
Navigate to Session → Password Checkout
Click on the Filter button and provide the necessary details to search for a particular session.
Click on the Refresh button to apply the filter
You will see the list of all the password checkout operations displayed on the screen

Viewing Windows Privileged Activities

To view EPM Windows privileged activities, follow the below recommended steps:

Login to EPM as an administrator
Navigate to Session → Windows Privileged Activity
Click on the Filter button and provide the necessary details to search for a particular session.
Click on the Refresh button to apply the filter
You will see the list of all the Windows privileged activities displayed on the screen

User can copy the records by clicking on the Copy button, export the records in CSV format by clicking on the CSV button and export the records in Excel format by clicking on the Excel button located at the top right corner of the screen.

Viewing Blocked Activities

To view EPM blocked activities, follow the below recommended steps:

Login to EPM as an administrator
Navigate to Session → Windows Activity Blocked
Click on the Filter button and provide the necessary details to search for a particular session.
Click on the Refresh button to apply the filter
You will see the list of all the blocked activities displayed on the screen

User can copy the records by clicking on the Copy button, export the records in CSV format by clicking on the CSV button and export the records in Excel format by clicking on the Excel button located at the top right corner of the screen.