Configuring auditing

The auditing tool isn't enabled or visible by default. Before you can see the auditing tool or make auditing configuration changes, an administrator must give you the auditor or auditing configuration role.

There are two auditing roles:

  • Auditing configuration: Users with this role can configure what gets audited. This role also includes the auditor role rights, so users with this role can also see the auditing tool and view auditing data.
  • Auditor: Users with this role can view auditing data and create auditing custom queries, but they can't change what gets audited.

There are three main steps to configuring auditing:

  1. Give a user the auditing configuration role
  2. Configure what gets audited
  3. Assign the auditor role to additional users if necessary
To give a user the auditing configuration role
  1. Click Tools > Administration > User management.
  2. In the Roles tree, double-click Auditing configuration.
  3. On the Users and groups page, select users that will have the auditing configuration role.
  4. Click OK.
  5. Have the console user that you gave the auditing role restart their console so that they can see the auditing tool. A user's rights and roles are loaded once when the console starts, making a console restart necessary.
To configure what you want to audit
  1. Click Tools > Configure services.
  2. In the Configure Ivanti software services dialog box, click the Auditing configuration tab. If you don't see this tab, make sure you have the auditing configuration role and that you've restarted the console after being assigned that role.

  3. Select the console features or sub-features that you want to audit.
  4. Click OK.
  5. Click Tools > Administration > Auditing to view the auditing data.

NOTE: It can take up to two minutes for changes to the Write auditing events to the event log option to take effect. You can restart the console if you don't want to wait.

To assign the auditor roles to other users
  1. Click Tools > Administration > User management.
  2. In the Roles tree, double-click Auditor.
  3. On the Users and groups page, select the users that will have the auditor role.
  4. Click OK.
  5. Have those users restart their consoles so that they can see the auditing tool.