Purpose
This Activeboard allows you to monitor Devo Web Activity of all users in your Devo domain. It gives you a high-level audit about:
Users: login, location, activity, change of role, etc.
Alerts: changes in the alerts.
Others: Relay, Lookups, Aggregation tasks, Synthesis Tables, and Reinjection activity
Pre-requisites
To use the Devo Web Activity Monitoring Activeboard, you must have the following data sources available on your domain:
siem.logtrust.web.activitysiem.logtrust.web.navigation
Open Devo Web Activity Monitoring
Once you have installed the application, you can access the Activeboard in the following ways:
Go to Exchange in the navigation pane and look for the Activeboard you want to open. Click Open.
Go to Activeboards in the navigation pane and use the filter to open the Activeboard you downloaded.
Know more about Activeboards
Refer to Manage and filter Activeboards article to know how to work with Activeboards.
Exploring the Activeboard
When opening the Devo Web Activity Monitoring Activeboard, the following info displays:
Load data takes too long
Sometimes some widgets take time to upload the data, it is possible to speed up the process by creating aggregation tasks. Refer to Aggregation tasks article to learn how to do it.
The Activeboard is divided into 9 sections:
Global filters
Widget | Details |
|---|---|
Filter by User | |
| Filter by Company
|
User audit
Widget | Details |
|---|---|
Logins | |
User Location | |
| Logins by Location |
| Logins by Credentials |
| Activities |
| User Activity |
| Filter for changes on roles/IDP mapping |
| Global changes in roles |
| Global changes in IDP Role Mapping |
| Filter for users actions |
| Users Actions |
Alerts audit
Widget | Details |
|---|---|
| Filter action for alerts audit widgets
|
| Changes in Alerts Timeline by User |
| Changes in Alerts |
| Changes in Alerts by UserEmail |
Relay Audit
Widget | Details |
|---|---|
| Changes in Relay Timeline by User |
| Global changes in the relays |
| Rule changes in the relays |
Lookup audit
Widget | Details |
|---|---|
| Filter action for lookup audit |
| Changes in Lookup Timeline by User |
| Lookups Actions |
| Lookups Changed Summary |
Aggregation task audit
Widget | Details |
|---|---|
| Filter action for aggregation task audit |
| Aggregation Task |
| Aggegation Task Actions |
Synthesis Audit
Widget | Details |
|---|---|
| Filter action for synthesis table audit |
| Changes in Synthesis Tables Timeline by User |
| Synthesis tables user action |
| Synthesis tables action |
Finders audit
Widget | Details |
|---|---|
| Filter action for finders audit |
| Finder actions timeline |
| Finders user action |
| Finders actions |
Reinjections audit
Widgets | Details |
|---|---|
| Filter action for reinjections audit |
| Reinjections actions timeline |
| Reinjections user action |
| Reinjections action |