Report on temporary group memberships

AD Logga closes a number of important security gaps. One of the most important gaps is temporary group memberships. Insider threats can grant themselves access to secret directories, copy the data, performing their desired actions, and revert back to the original state. Without the AD Logga, these types of activities can remain undetected.

1. Log in to the Access Rights Manager application.

2. Click Start in the toolbar.

3. Under Security Monitoring, click AD Logga Report.

   

4. Configure the AD Logga Report settings.

   

   1. In the Title and Comment fields, enter a title and comment for this report.

   2. In the Event Type box, define the report range.

      For the event type select Member added and Member removed.

   3. Click the Settings drop-down menu and select the desired output settings.

   4. Click Start to generate the report.

See the following sections for more information.

• Analyze AD Logga events with the logbook

• Set alerts for groups

• Set alerts for user accounts