Versions Compared

Old Version 32

changes.mady.by.user Former user

Saved on

compared with

New Version 33

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
minLevel2
maxLevel2
typeflat

Purpose

This Activeboard allows you to monitor Devo Web Activity of all users in your Devo domain. It gives you a high-level audit about:

  • Users: login, location, activity, change of role, etc.

  • Alerts: changes in the alerts.

  • Others: Relay, Lookups, Aggregation tasks, Synthesis Tables, and Reinjection activity

Pre-requisites

To use the Devo Web Activity Monitoring Activeboard, you must have the following data sources available on your domain:

  • siem.logtrust.web.activity

  • siem.logtrust.web.navigation

Open Devo Web Activity Monitoring

Once you have installed the application, you can access the Activeboard in the following ways:

Go to Exchange in the navigation pane and look for the Activeboard you want to open. Click Open.

Go to Activeboards in the navigation paneand use the filter to open the Activeboard you downloaded.

Info

Know more about Activeboards

Refer to Manage and filter Activeboards article to know how to work with Activeboards.

Exploring the Activeboard

When opening the Devo Web Activity Monitoring Activeboard, the following info displays:

Note

Load data takes too long

Sometimes some widgets take time to upload the data, it is possible to speed up the process by creating aggregation tasks. Refer to Aggregation tasks article to learn how to do it.

The Activeboard is divided into 9 sections:

Expand
titleClick here to see the details of each section

Global filters

Anchor
Global-filters
Global-filters

Widget

Details

Filter by User

Filter by Company

User audit

Anchor
User-audit
User-audit

Widget

Details

Logins

User Location

Logins by Location

Logins by Credentials

Activities

User Activity

Filter for changes on roles/IDP mapping

Global changes in roles

Global changes in IDP Role Mapping

Filter for users actions

Users Actions

Alerts audit

Anchor
Alerts-audit
Alerts-audit

Widget

Details

Filter action for alerts audit widgets

Changes in Alerts Timeline by User

Changes in Alerts

Changes in Alerts by UserEmail

Relay Audit

Anchor
Relay-Audit
Relay-Audit

Widget

Details

Changes in Relay Timeline by User

Global changes in the relays

Rule changes in the relays

Lookup audit

Anchor
Lookup-audit
Lookup-audit

Widget

Details

Filter action for lookup audit

Changes in Lookup Timeline by User

Lookups Actions

Lookups Changed Summary

Aggregation task audit

Anchor
Aggregation-task-audit
Aggregation-task-audit

Widget

Details

Filter action for aggregation task audit

Aggregation Task

Aggegation Task Actions

Synthesis Audit

Anchor
Synthesis-Audit
Synthesis-Audit

Widget

Details

Filter action for synthesis table audit

Changes in Synthesis Tables Timeline by User

Synthesis tables user action

Synthesis tables action

Finders audit

Anchor
Finders-audit
Finders-audit

Widget

Details

Filter action for finders audit

Finder actions timeline

Finders user action

Finders actions

Reinjections audit

Anchor
Reinjections-audit
Reinjections-audit

Widgets

Details

Filter action for reinjections audit

Reinjections actions timeline

Reinjections user action

Reinjections action