Identity and privilege management and auditing on the same computer
If you have enabled audit and monitoring service together with identity and privilege management on the same computer and defined access and audit roles:
- Users will be able to log on if they are assigned to a role where audit and monitoring service is required as long as the agent is running. If the agent is stopped for any reason, the user will be allowed to log on only if also assigned a role with a rescue system right.
- Users will be able to log on if they are assigned to a role where the audit if possible option is set. If the audit and monitoring service service is active and you have enabled video capture auditing, both audit trail events and user activity are captured. For example, the agent records successful and failed logons and user activity when users change from one role to another. If the audit and monitoring service service is not enabled or not currently active, the agent does not capture a video record of all user activity.
- Users will be able to log on if they are assigned to a role that does not require audit and monitoring service. In this case, only audit trail events are captured.
- Auditors will be able to review user activity associated with specific roles on these computers, and you can define audit roles to control who has access to the captured user sessions based on the criteria you specify.