| Table of Contents | ||||||
|---|---|---|---|---|---|---|
|
Purpose
The Windows System Audit Activeboard performs detailed system-level analysis on the Windows host by analyzing system events, account login statuses, and policy changes.
| Expand | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| |||||||||||||||||||||
|
Prerequisites
To run this Activeboard, you must have the following data sources available on your domain:
box.all.winlearn more
Open
Windows System AuditActiveboard
Once you have installed the applicationActiveboard, you can access the Activeboard in the following ways:
Go to Exchange in the navigation and look for the Activeboard you want to open. Click Open.
Go to Activeboards in the navigation pane and use the filter to open the Activeboard you downloaded.
| Info |
|---|
Know more about Activeboards Refer to Manage and filter Activeboards article to know how to work with Activeboards. |
Exploring the Activeboard
When opening the Windows System Audit Activeboard, the following info display:
use the Open button at the top right of the card in Exchange to access it and see the different widgets populated with the relevant data. You can also access the Activeboard area via the Navigation pane.
| Info | ||
|---|---|---|
Data loading takes too long? Sometimes some widgets take time to upload the data, it is possible to speed up the process by creating aggregation tasks. Refer to the Aggregation tasks article to learn how to do it. | ||
| Expand | ||
| ||
Widget | Details | |
Filter by Host | ||
Total Audit Success | ||
Total Audit Failures | ||
Events Over Time | ||
Account logons | ||
Accounts with 10 or more failed loggons per hour | ||
More Recent Audit Events | ||
Processes created |
Use Activeboard
After installing and opening the Activeboard, you can use its widgets to visualize and monitor data. To do this, each widget offers a variety of customization and visualization options. Refer to Using widgets and Using inputs to know them all.