Using the advanced monitoring reports

These reports provide details on what your advanced monitoring configuration has tracked:

  • Monitored execution report

    If you have configured your auditing installation for advanced monitoring, then this Monitored Execution Report provides a detailed record of the sessions where a user ran one of the commands that you’ve configured to monitor. This report shows who ran one of the monitored commands even if that person is not an audited user. Also, this report includes information on commands that are run individually or as part of scripts.

  • Detailed execution report

    If you have configured your auditing installation to perform advanced monitoring, then this Detailed Execution report shows all of the commands being executed on the audited machines—including commands that are run as part of scripts or other commands.

  • File monitor report

    The File Monitor report shows the sensitive files being modified by users on the audited machines. The File Monitor report includes any activity by any user (except root) in the following protected areas on audited computers:

    • /etc/
    • /var/centrifydc/
    • /var/centrifyda/
    • /var/centrify/