Monitoring and Reporting

Monitoring and reporting is available through different technical solutions for several purposes including security auditing, forensics, and operational needs.

Monitoring

Monitoring reports on server real-time activity (for example, the number of successful authentication over a period of time) are accessible by direct connection to the server.

The monitoring alerts concern the following components:

  • Appliance hardware components, to track equipment failure concerning fan, disk, power supply, RAID system
  • Operating system, network
  • Applicative third parties such as the application server, database, GoldenGate®
  • Authentication Server components

You can send audit events and system notifications to an external Syslog server to be analyzed.

You can configure and manage resources across the network using the Simple Network Management Protocol (SNMP) service. It also helps troubleshoot any issues, such as bad requests or hack attempts.

You can manage the appliance and monitor its operations using the Intelligent Platform Management Interface (IPMI). Most system monitoring tools support IPMI plug-ins to directly retrieve hardware metrics and receive IPMI traps. Therefore, IPMI metrics and traps are provided through IPMI only.

Reporting

Data reports can be generated from the Configuration (authentication policies, external systems connectivity, etc.) and Administration (Users, group, devices etc.) database views.

You can view the online audit data by querying the audit database using the Reporting function of the ActivID Management Console.

Data can also be exported from the views using the Report Data function of the ActivID Console. The data export can be configured for one or several of these views and either in real-time or according to a defined schedule.

Forensic/investigation reports are available using ActivID Appliance database audit log archives.

Topics in this section