Identity and privilege management only

If you have only enabled identity and privilege management on a computer and defined access roles:

  • Users will not be able to log on if they are assigned to a role where is audit and monitoring service required.
  • Users will be able to log on if they are assigned to a role where the audit if possible option is set. In this case, only identity and privilege management audit trail events are captured. For example, the agent records successful and failed logons and when users change from one role to another. Because audit and monitoring service is not enabled, the agent does not capture a video record of all user activity. You also are not able to define audit roles to control who can read or delete audit trail records.
  • Users will be able to log on if they are assigned to a role that does not require audit and monitoring service. In this case, only identity and privilege management audit trail events are captured.
  • Auditors will not be able to review user activity on these computers. You also are not able to define audit roles to control who can read or delete audit trail records.

If no audit and monitoring service components are installed, you must use the Windows Event Viewer to search for and review audit trail events.