Discussion:
Auditing in Sharepoint
(too old to reply)
pablo
2004-11-01 11:47:33 UTC
Permalink
Hi All,

My understanding of the auditing that Sharepoint provides out of the box is
that there is none.

Can any one recommend any third party products that would allow us to better
audit Sharepoint or has Microsoft any plans to provide auditing facilities in
future releases.

Regards,

Paul
Steve Smith
2004-11-01 12:33:12 UTC
Permalink
Hi Paul , Syntergy do an auditing tool

http://www.syntergy.com/sharepoint/products/current/audit/index.html

you could add a Workflow add in that also supports an audit trail such as
LMR solutions

http://www.lmrsolutions.com

You can also get a certain amount of auditing by turning on your IIS logging
on you web front end servers. You can audit many functions from IIS logs
such as deletion from the logs it just takes a bit of configuring and
filtering to find the stuff. By sending your logs to SQL and using a tool
like crystal reports this could be good enough for you.

Hope this helps

Steve Smith
Post by pablo
Hi All,
My understanding of the auditing that Sharepoint provides out of the box is
that there is none.
Can any one recommend any third party products that would allow us to better
audit Sharepoint or has Microsoft any plans to provide auditing facilities in
future releases.
Regards,
Paul
Manny Borges
2004-11-01 14:06:05 UTC
Permalink
Hi Steve and Pablo,

I looked at the tool you mentioned it seems more of a usage auditing tool. I
think Pablo may be searching for the same thing that I have been searching
for, a tool to document security settings and permissions.

I know in my security audits I usually don't much pay attention to who is
actually getting to documents, but who possibly could get to documents. None
of the tools I have seen addresses this need.

Not that usage tracking is not important, it is. But personally I have a
massive site with multinational contributors and ::sigh:: administrators.
This makes security a nightmare. A good tool to list out security as well as
usage would be great.
Post by Steve Smith
Hi Paul , Syntergy do an auditing tool
http://www.syntergy.com/sharepoint/products/current/audit/index.html
you could add a Workflow add in that also supports an audit trail such as
LMR solutions
http://www.lmrsolutions.com
You can also get a certain amount of auditing by turning on your IIS logging
on you web front end servers. You can audit many functions from IIS logs
such as deletion from the logs it just takes a bit of configuring and
filtering to find the stuff. By sending your logs to SQL and using a tool
like crystal reports this could be good enough for you.
Hope this helps
Steve Smith
Post by pablo
Hi All,
My understanding of the auditing that Sharepoint provides out of the box
is
Post by pablo
that there is none.
Can any one recommend any third party products that would allow us to
better
Post by pablo
audit Sharepoint or has Microsoft any plans to provide auditing facilities
in
Post by pablo
future releases.
Regards,
Paul
Steve Smith
2004-11-01 16:40:37 UTC
Permalink
Hi Manny ,

I have done a quick look into this and like you have not been able to find a
tool that does what you are after. Hopefully someone else out there knows of
such a tool.

Steve
Post by Manny Borges
Hi Steve and Pablo,
I looked at the tool you mentioned it seems more of a usage auditing tool. I
think Pablo may be searching for the same thing that I have been searching
for, a tool to document security settings and permissions.
I know in my security audits I usually don't much pay attention to who is
actually getting to documents, but who possibly could get to documents. None
of the tools I have seen addresses this need.
Not that usage tracking is not important, it is. But personally I have a
massive site with multinational contributors and ::sigh:: administrators.
This makes security a nightmare. A good tool to list out security as well as
usage would be great.
Post by Steve Smith
Hi Paul , Syntergy do an auditing tool
http://www.syntergy.com/sharepoint/products/current/audit/index.html
you could add a Workflow add in that also supports an audit trail such as
LMR solutions
http://www.lmrsolutions.com
You can also get a certain amount of auditing by turning on your IIS logging
on you web front end servers. You can audit many functions from IIS logs
such as deletion from the logs it just takes a bit of configuring and
filtering to find the stuff. By sending your logs to SQL and using a tool
like crystal reports this could be good enough for you.
Hope this helps
Steve Smith
Post by pablo
Hi All,
My understanding of the auditing that Sharepoint provides out of the box
is
Post by pablo
that there is none.
Can any one recommend any third party products that would allow us to
better
Post by pablo
audit Sharepoint or has Microsoft any plans to provide auditing facilities
in
Post by pablo
future releases.
Regards,
Paul
pablo
2004-11-01 17:38:02 UTC
Permalink
Hi Manny and Steve,

Thanks for your replies! Primarily we are more concerned with usage, from a
security point of view to identify misuse or inappropriate use of resources.
We would be reactive, i.e. only acting when a problem has been identified
through reviewing the audit logs.

Manny, is the solution your looking for a more proactive solution, i.e.
trying to identify possible security / permissions problems before they occur
by producing reports on who can access what? I only ask as I hadn't really
thought of this as my back ground is more development than security. If your
approach is proactive, that may also be useful for us to be able to report on
and something for us to consider. Could you explain your requirement a
little more for my own understanding?

Best Regards,

Paul
Post by Manny Borges
Hi Steve and Pablo,
I looked at the tool you mentioned it seems more of a usage auditing tool. I
think Pablo may be searching for the same thing that I have been searching
for, a tool to document security settings and permissions.
I know in my security audits I usually don't much pay attention to who is
actually getting to documents, but who possibly could get to documents. None
of the tools I have seen addresses this need.
Not that usage tracking is not important, it is. But personally I have a
massive site with multinational contributors and ::sigh:: administrators.
This makes security a nightmare. A good tool to list out security as well as
usage would be great.
Post by Steve Smith
Hi Paul , Syntergy do an auditing tool
http://www.syntergy.com/sharepoint/products/current/audit/index.html
you could add a Workflow add in that also supports an audit trail such as
LMR solutions
http://www.lmrsolutions.com
You can also get a certain amount of auditing by turning on your IIS logging
on you web front end servers. You can audit many functions from IIS logs
such as deletion from the logs it just takes a bit of configuring and
filtering to find the stuff. By sending your logs to SQL and using a tool
like crystal reports this could be good enough for you.
Hope this helps
Steve Smith
Post by pablo
Hi All,
My understanding of the auditing that Sharepoint provides out of the box
is
Post by pablo
that there is none.
Can any one recommend any third party products that would allow us to
better
Post by pablo
audit Sharepoint or has Microsoft any plans to provide auditing facilities
in
Post by pablo
future releases.
Regards,
Paul
Loading...