diff --git a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md index 54a0a6c98b..094489891f 100644 --- a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md +++ b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md @@ -20,8 +20,8 @@ knowledge_article_id: ka0Qk000000GIqbIAG # Upgrading Access Information Center (AIC) > **NOTE:** -> - Return to the main workflow page: [Access Analyzer Upgrade Workflow](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md). -> - Return to the previous section: [Access Analyzer Upgrade Workflow — Post-Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md). +> - Return to the main workflow page: [Access Analyzer Upgrade Workflow Articles](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md). +> - Return to the previous section: [Completing Access Analyzer Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md). ## Overview diff --git a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md index 19bd1602ed..3b5a9716b3 100644 --- a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md +++ b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md @@ -20,9 +20,9 @@ knowledge_article_id: ka0Qk000000GIozIAG # Completing Access Analyzer Upgrade > **NOTE:** -> - Return to the main workflow page: [Access Analyzer Upgrade Workflow](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md). -> - Return to the previous section: [Access Analyzer Upgrade Workflow — Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md). -> - Proceed to the next section: [Access Analyzer Upgrade Workflow — Access Information Center](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md). +> - Return to the main workflow page: [Access Analyzer Upgrade Workflow Articles](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md). +> - Return to the previous section: [Upgrading Access Analyzer](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md). +> - Proceed to the next section: [Upgrading Access Information Center (AIC)](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md). diff --git a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md index 939381739c..83c2f3bb7b 100644 --- a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md +++ b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md @@ -20,8 +20,8 @@ knowledge_article_id: ka0Qk000000GIllIAG # Preparing for Access Analyzer Upgrade -> **NOTE:** Return to the main workflow page here: [Access Analyzer Upgrade Workflow](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md). -> Proceed to the next section: [Access Analyzer Upgrade Workflow — Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md). +> **NOTE:** Return to the main workflow page here: [Access Analyzer Upgrade Workflow Articles](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md). +> Proceed to the next section: [Upgrading Access Analyzer](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md). ## Overview diff --git a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md index 4871a5babd..c694aacc4f 100644 --- a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md +++ b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md @@ -20,9 +20,9 @@ knowledge_article_id: ka0Qk000000GInNIAW # Upgrading Access Analyzer > **NOTE:** -> - Return to the main workflow page: [Access Analyzer Upgrade Workflow](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md) -> - Return to the previous section: [Access Analyzer Upgrade Workflow — Preparations](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md) -> - Proceed to the next section: [Access Analyzer Upgrade Workflow — Post-Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md) +> - Return to the main workflow page: [Access Analyzer Upgrade Workflow Articles](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md) +> - Return to the previous section: [Preparing for Access Analyzer Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md) +> - Proceed to the next section: [Completing Access Analyzer Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md) ## Overview diff --git a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md index c96acedfa6..982350e10b 100644 --- a/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md +++ b/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow.md @@ -22,7 +22,7 @@ knowledge_article_id: ka0Qk000000DYiDIAW This article outlines the upgrade workflow for **Netwrix Access Analyzer**. Refer to the following articles for detailed steps: -1. [Access Analyzer Upgrade Workflow — Preparations](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md) -2. [Access Analyzer Upgrade Workflow — Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md) -3. [Access Analyzer Upgrade Workflow — Post-Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md) -4. [Access Analyzer Upgrade Workflow — Access Information Center](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md) +1. [Preparing for Access Analyzer Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-preparations.md) +2. [Upgrading Access Analyzer](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-upgrade.md) +3. [Completing Access Analyzer Upgrade](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-post-upgrade.md) +4. [Upgrading Access Information Center (AIC)](/docs/kb/accessanalyzer/access-analyzer-upgrade-workflow-aic.md) diff --git a/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md b/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md index 67b0c24b88..7960890c2f 100644 --- a/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md +++ b/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md @@ -38,7 +38,7 @@ This article lists the steps to prepare the Netwrix Access Analyzer database for For Host Management and Host List Replication, follow these steps to restore the backup of the Access Analyzer console to a new server. -> **IMPORTANT:** This only applies if the new server name differs from the old server name; otherwise, skip to [Access Analyzer Console Migration Workflow: Step 3 - Rebuild the Console](https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA0Qk0000001T1ZKAU.html). +> **IMPORTANT:** This only applies if the new server name differs from the old server name; otherwise, skip to [Access Analyzer Console Migration Workflow: Step 3 - Rebuild the Console](/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md). On the Access Analyzer Database, copy the script below and configure the `OldServer` and `NewServer` values (lines 5 & 6, below), then run: diff --git a/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md b/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md index 09a5e27ee8..d5e5346308 100644 --- a/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md +++ b/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md @@ -24,10 +24,9 @@ knowledge_article_id: kA0Qk0000002Or3KAE > **NOTE:** Return to the main workflow page via this link: [Console Migration Workflow](/docs/kb/accessanalyzer/console-migration-workflow.md). > -> Return to the previous section via this link: [Console Migration Workflow: Step 2—Prepare the Database](/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md). +> Return to the previous section via this link: [Console Migration Workflow: Step 2—Prepare the Database](/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md) > -> Proceed to the next section via this link: [Console Migration Workflow: Step 4—Validating the Migration](/docs/kb/accessanalyzer/console-migration-workflow-step-4-validate-the-migration.md) - +> Proceed to the next section via this link: [Console Migration Workflow: Step 4—Validate the Migration](/docs/kb/accessanalyzer/console-migration-workflow-step-4-validate-the-migration.md). ## Overview This article lists the steps for rebuilding the Netwrix Access Analyzer console during the Access Analyzer Migration. @@ -37,7 +36,7 @@ This article lists the steps for rebuilding the Netwrix Access Analyzer console Follow the steps below to rebuild the Access Analyzer Console on the new server. Before installation, ensure that the `NAA_Migration` folder with the `StealthAUDIT.lic` license file is stored locally on the new Access Analyzer Console so it can be referenced during the installation process. 1. Confirm that the prerequisites have been met on the Access Analyzer Console Server. - - Netwrix Help Center | Netwrix Access Analyzer 12.0 System Requirements: https://docs.netwrix.com/docs/accessanalyzer/12_0 + - [Netwrix Access Analyzer 12.0 System Requirements](https://docs.netwrix.com/docs/accessanalyzer/12_0) 2. Install the Access Analyzer application, as well as the Access Information Center (AIC) application if the server will host both. > IMPORTANT: Do **NOT** start the Access Analyzer or AIC applications at this time. @@ -64,36 +63,36 @@ Follow the steps below to rebuild the Access Analyzer Console on the new server. | `%SAInstallDir%\FSAA` | Contains short-term data related to file server collections | | `C:\Windows\System32\Tasks` | Specifically task names beginning with `SA*.job` | -2. After you have copied the Reports folder from the old server to the new one, change the report hostname path to show it in the web server: +2. After you have copied the Reports folder from the old server to the new one, change the report hostname path to show it in the web server: ` %SAInstallDir%Reports\v3\` 3. After you have copied the Scheduled Tasks to `C:\Windows\System32\Tasks`, run the script below from an Admin PowerShell to register them: ```powershell -$InstallPath=Get-ItemPropertyValue -Path HKLM:\SOFTWARE\WOW6432Node\STEALTHbits\StealthAUDIT -Name 'InstallPath' -$NewServerInstallerPath =$InstallPath+'StealthAuditStart.exe' -$ScheduledTaskFilePath="C:\Windows\System32\Tasks" - -Get-ChildItem -Path $ScheduledTaskFilePath -Filter SA*.job | Foreach-Object { - -$content = [xml] (Get-Content $_.FullName) -$oldServerInstallerPath= $content.Task.Actions.Exec.Command - -If($oldServerInstallerPath -ne $NewServerInstallerPath) -{ - $Content.Task.Actions.Exec.Command = $NewServerInstallerPath - $Content.Save($_.FullName) -} - -$taskName = ([System.IO.Path]::GetFileNameWithoutExtension($_.FullName)) -$TaskExist=Get-ScheduledTask -TaskName $taskName -ErrorAction SilentlyContinue - -if (!$TaskExist) -{ -$UserID=$Content.Task.Principals.Principal.UserId -Register-ScheduledTask -Xml (get-content $_.FullName | out-string) -TaskName $taskName -User $UserID -Force -} - } +$InstallPath=Get-ItemPropertyValue -Path HKLM:\SOFTWARE\WOW6432Node\STEALTHbits\StealthAUDIT -Name 'InstallPath' +$NewServerInstallerPath =$InstallPath+'StealthAuditStart.exe' +$ScheduledTaskFilePath="C:\Windows\System32\Tasks" + +Get-ChildItem -Path $ScheduledTaskFilePath -Filter SA*.job | Foreach-Object { + +$content = [xml] (Get-Content $_.FullName) +$oldServerInstallerPath= $content.Task.Actions.Exec.Command + +If($oldServerInstallerPath -ne $NewServerInstallerPath) +{ + $Content.Task.Actions.Exec.Command = $NewServerInstallerPath + $Content.Save($_.FullName) +} + +$taskName = ([System.IO.Path]::GetFileNameWithoutExtension($_.FullName)) +$TaskExist=Get-ScheduledTask -TaskName $taskName -ErrorAction SilentlyContinue + +if (!$TaskExist) +{ +$UserID=$Content.Task.Principals.Principal.UserId +Register-ScheduledTask -Xml (get-content $_.FullName | out-string) -TaskName $taskName -User $UserID -Force +} + } ``` 4. Open `\NAA_Migration\NAA\Web\webserver.exe.config` and copy the content between `` and paste it in place of the `` block in `%SAInstallDir%Web\webserver.exe.config`. @@ -118,7 +117,7 @@ Register-ScheduledTask -Xml (get-content $_.FullName | out-string) -TaskName $ta ![Configuration Wizard image](images/ka0Qk000000FDY1_0EMQk00000CFxaL.png) - 1. See the following for more information on the Netwrix Access Analyzer Configuration Wizard: Access Analyzer Initial Configuration — https://docs.netwrix.com/docs/accessanalyzer/12_0 + 1. See the following for more information on the Netwrix Access Analyzer Configuration Wizard: [Access Analyzer Initial Configuration](https://docs.netwrix.com/docs/accessanalyzer/12_0) 7. After completing the Configuration Wizard, the Access Analyzer Application should open automatically. @@ -132,19 +131,18 @@ Register-ScheduledTask -Xml (get-content $_.FullName | out-string) -TaskName $ta If using any of the below, please recreate the certificate for the new NAA Console Server: -- Netwrix Access Analyzer for SharePoint Online: https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Netwrix Access Analyzer for Exchange Online: https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Secured Published Reports Site (HTTPS): https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Secured AIC Site (HTTPS): https://docs.netwrix.com/docs/accessanalyzer/12_0 - +- [Netwrix Access Analyzer for SharePoint Online](https://docs.netwrix.com/docs/accessanalyzer/12_0/requirements/sharepoint/sharepoint/sharepointonline/activity) +- [Netwrix Access Analyzer for Exchange Online](https://docs.netwrix.com/docs/accessanalyzer/12_0/requirements/exchange/exchangeonline/access) +- [Secured Published Reports Site (HTTPS)](https://docs.netwrix.com/docs/accessanalyzer/12_0/admin/settings/access/rolebased/securereports) +- [Secured AIC Site (HTTPS)](https://docs.netwrix.com/docs/accessinformationcenter/12_0/installation/secure) ## Related Links -- Console Migration Workflow: /docs/kb/accessanalyzer/console-migration-workflow -- Console Migration Workflow: Step 2—Prepare the Database: /docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database -- Console Migration Workflow: Step 4—Validating the Migration: /docs/kb/accessanalyzer/console-migration-workflow-step-4-validate-the-migration -- Netwrix Help Center | Netwrix Access Analyzer 12.0 System Requirements: https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Access Analyzer Initial Configuration: https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Netwrix Access Analyzer for SharePoint Online: https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Netwrix Access Analyzer for Exchange Online: https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Secured Published Reports Site (HTTPS): https://docs.netwrix.com/docs/accessanalyzer/12_0 -- Secured AIC Site (HTTPS): https://docs.netwrix.com/docs/accessanalyzer/12_0 +- [Console Migration Workflow](/docs/kb/accessanalyzer/console-migration-workflow.md) +- [Console Migration Workflow: Step 2—Prepare the Database](/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md) +- [Console Migration Workflow: Step 4—Validate the Migration](/docs/kb/accessanalyzer/console-migration-workflow-step-4-validate-the-migration.md) +- [Netwrix Access Analyzer 12.0 System Requirements](https://docs.netwrix.com/docs/accessanalyzer/12_0) +- [Access Analyzer Initial Configuration](https://docs.netwrix.com/docs/accessanalyzer/12_0) +- [Netwrix Access Analyzer for SharePoint Online](https://docs.netwrix.com/docs/accessanalyzer/12_0/requirements/sharepoint/sharepoint/sharepointonline/activity) +- [Netwrix Access Analyzer for Exchange Online](https://docs.netwrix.com/docs/accessanalyzer/12_0/requirements/exchange/exchangeonline/access) +- [Secured Published Reports Site (HTTPS)](https://docs.netwrix.com/docs/accessanalyzer/12_0/admin/settings/access/rolebased/securereports) +- [Secured AIC Site (HTTPS)](https://docs.netwrix.com/docs/accessinformationcenter/12_0/installation/secure) diff --git a/docs/kb/accessanalyzer/console-migration-workflow.md b/docs/kb/accessanalyzer/console-migration-workflow.md index 62a21ae686..31809244c1 100644 --- a/docs/kb/accessanalyzer/console-migration-workflow.md +++ b/docs/kb/accessanalyzer/console-migration-workflow.md @@ -27,7 +27,7 @@ knowledge_article_id: kA0Qk0000002OmDKAU This article outlines the upgrade workflow for Netwrix Access Analyzer. Refer to the following list of articles: -1. [Access Analyzer Console Migration Workflow: Step 1 - Staging the Backup](/docs/kb/accessanalyzer/console-migration-workflow-step-1-staging-the-backup.md) -2. [Access Analyzer Console Migration Workflow: Step 2 - Prepare the Database](/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md) -3. [Access Analyzer Console Migration Workflow: Step 3 - Rebuild the Console](/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md) -4. [Access Analyzer Console Migration Workflow: Step 4 - Validate the Migration](/docs/kb/accessanalyzer/console-migration-workflow-step-4-validate-the-migration.md) +1. [Console Migration Workflow: Step 1—Staging the Backup](/docs/kb/accessanalyzer/console-migration-workflow-step-1-staging-the-backup.md) +2. [Console Migration Workflow: Step 2—Prepare the Database](/docs/kb/accessanalyzer/console-migration-workflow-step-2-prepare-the-database.md) +3. [Console Migration Workflow: Step 3—Rebuild the Console](/docs/kb/accessanalyzer/console-migration-workflow-step-3-rebuild-the-console.md) +4. [Console Migration Workflow: Step 4—Validate the Migration](/docs/kb/accessanalyzer/console-migration-workflow-step-4-validate-the-migration.md) diff --git a/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md b/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md index c47b7bb493..317ed32aa0 100644 --- a/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md +++ b/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md @@ -27,7 +27,7 @@ You have used the **Remove host data** option in the **FILESYSTEMACCESS** Data C Re-run the job used to remove the host data against the full **!Removed-…** name. -- This is typically a custom job that was created. If you are unsure what job was run, please see the following article for how to create a custom job to drop File Server host data: [How to Drop Data for Decommissioned File Servers](/docs/kb/activitymonitor/dropping_file_system_data.md). +- This is typically a custom job that was created. If you are unsure what job was run, please see the following article for how to create a custom job to drop File Server host data: [How to Drop File System Data from Netwrix Access Analyzer](/docs/kb/activitymonitor/dropping_file_system_data.md). - If you have already rerun the job and it throws a timeout error, then change the job timeout to a longer value. @@ -37,4 +37,4 @@ Re-run the job used to remove the host data against the full **!Removed-…** na ## Related Article -- [How to Drop Data for Decommissioned File Servers](/docs/kb/activitymonitor/dropping_file_system_data.md) \ No newline at end of file +- [How to Drop File System Data from Netwrix Access Analyzer](/docs/kb/activitymonitor/dropping_file_system_data.md) \ No newline at end of file diff --git a/docs/kb/accessanalyzer/out-of-scope_resources_still_appear_in_the_aic_or_reporting_console_after_scoping_changes.md b/docs/kb/accessanalyzer/out-of-scope_resources_still_appear_in_the_aic_or_reporting_console_after_scoping_changes.md index ec631a68d1..19c384dd1f 100644 --- a/docs/kb/accessanalyzer/out-of-scope_resources_still_appear_in_the_aic_or_reporting_console_after_scoping_changes.md +++ b/docs/kb/accessanalyzer/out-of-scope_resources_still_appear_in_the_aic_or_reporting_console_after_scoping_changes.md @@ -28,7 +28,7 @@ Scoping options are applied at the time of a scan and are used to determine whic If you no longer want to retain or see data for out-of-scope resources: 1. **Delete all File System data** for the specific host from the database. - - See the following article for instructions to drop data for a specific file server: [Dropping File System Data](/docs/kb/activitymonitor/dropping_file_system_data.md). + - See the following article for instructions to drop data for a specific file server: [How to Drop File System Data from Netwrix Access Analyzer](/docs/kb/activitymonitor/dropping_file_system_data.md). 2. **Rescan the host** with the updated scoping rules in place. - This will ensure that only resources matching the current scoping criteria are imported and retained going forward. @@ -37,4 +37,4 @@ If you no longer want to retain or see data for out-of-scope resources: ## Related Link -- [Dropping File System Data](/docs/kb/activitymonitor/dropping_file_system_data.md) \ No newline at end of file +- [How to Drop File System Data from Netwrix Access Analyzer](/docs/kb/activitymonitor/dropping_file_system_data.md) \ No newline at end of file diff --git a/docs/kb/activitymonitor/displays_data_for_resources_that_are_out_of_scope.md b/docs/kb/activitymonitor/displays_data_for_resources_that_are_out_of_scope.md index 40f88e42a9..474d87a6ba 100644 --- a/docs/kb/activitymonitor/displays_data_for_resources_that_are_out_of_scope.md +++ b/docs/kb/activitymonitor/displays_data_for_resources_that_are_out_of_scope.md @@ -33,7 +33,7 @@ There are two options for removing out-of-scope data: Netwrix Support can assist with dropping all file system data for the specified host. This removes all collected data for that host, not just the out-of-scope folders. -Refer to [Dropping File System Data](/docs/kb/activitymonitor/dropping_file_system_data.md) for detailed instructions. +Refer to [How to Drop File System Data from Netwrix Access Analyzer](/docs/kb/activitymonitor/dropping_file_system_data.md) for detailed instructions. **Considerations:** @@ -55,4 +55,4 @@ For more granular removal (e.g., specific folders or paths), a one-time cleanup ## Related Link -- [Dropping File System Data](/docs/kb/activitymonitor/dropping_file_system_data.md) \ No newline at end of file +- [How to Drop File System Data from Netwrix Access Analyzer](/docs/kb/activitymonitor/dropping_file_system_data.md) \ No newline at end of file diff --git a/docs/kb/activitymonitor/dropping_file_system_data.md b/docs/kb/activitymonitor/dropping_file_system_data.md index 9561417cae..f6e0b89eab 100644 --- a/docs/kb/activitymonitor/dropping_file_system_data.md +++ b/docs/kb/activitymonitor/dropping_file_system_data.md @@ -75,9 +75,9 @@ A file server has been decommissioned, and/or its data is no longer needed in th 19. Navigate to the **`%SAInstallDir%FSAA`** folder on the Access Analyzer console and remove the folder for the dropped host. > **NOTE:** If using an applet or proxy for file system scanning, the host folder should also be removed from the same location on the applet/proxy server. -> **IMPORTANT:** If this job returns a time-out error, refer to the following article to resolve it: [!REMOVED-...Host Name in AIC and/or FSAA Host Table](/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md). +> **IMPORTANT:** If this job returns a time-out error, refer to the following article to resolve it: [Error: !REMOVED- Host Name in AIC and/or FSAA Host Table](/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md). ## Related Links - [How to Remove Servers from Host Lists](/docs/kb/accessanalyzer/how-to-remove-servers-from-host-lists.md) -- [!REMOVED-...Host Name in AIC and/or FSAA Host Table](/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md) \ No newline at end of file +- [Error: !REMOVED- Host Name in AIC and/or FSAA Host Table](/docs/kb/accessanalyzer/error-removed-host-name-in-aic-andor-fsaa-host-table.md) \ No newline at end of file diff --git a/docs/kb/auditor/active-directory-exchange-and-group-policy-changes-reported-as-made-by-system.md b/docs/kb/auditor/active-directory-exchange-and-group-policy-changes-reported-as-made-by-system.md index 8109a11ac2..6e55ec7dff 100644 --- a/docs/kb/auditor/active-directory-exchange-and-group-policy-changes-reported-as-made-by-system.md +++ b/docs/kb/auditor/active-directory-exchange-and-group-policy-changes-reported-as-made-by-system.md @@ -24,11 +24,10 @@ knowledge_article_id: kA00g000000H9SmCAK This article contains references to the most popular Active Directory, Exchange, and Group Policy changes which may be reported as made by **System** by Netwrix Auditor: -- [Who Changed Shows System for Real Time Alerts](/docs/kb/auditor/alert-reported-change-made-by-system.md). +- [Alert Reported Change Made by System](/docs/kb/auditor/alert-reported-change-made-by-system.md). - [System Changed Object Path after Account Name Change](/docs/kb/auditor/system-changed-object-path-after-account-name-change.md). - [System Changed Client Operating System](/docs/kb/auditor/system-changed-client-operating-system.md). -- [Active Directory Changes Duplicated in Reports with System and Unknown](https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA00g000000H9RyCAK.html). - [System Changed Directory Objects for Foreign Security Principals](/docs/kb/auditor/system-changed-directory-objects-for-foreign-security-principals.md). -- Workstation Field Reported as Unknown. +- [Workstation Field Reported as Unknown](/docs/kb/auditor/workstation-field-reported-as-unknown.md) - [Duplicate Configuration and Schema Changes for All Monitored Domains in Forest Made by System](/docs/kb/auditor/duplicate-configuration-and-schema-changes-for-all-monitored-domains-in-forest-made-by-system.md). - [System Changed Service Principle Name Attribute](/docs/kb/auditor/system-changed-service-principle-name-attribute.md). diff --git a/docs/kb/auditor/archive-service-is-busy-processing-activity-records.md b/docs/kb/auditor/archive-service-is-busy-processing-activity-records.md index 9bab8d2e06..a25169f7f3 100644 --- a/docs/kb/auditor/archive-service-is-busy-processing-activity-records.md +++ b/docs/kb/auditor/archive-service-is-busy-processing-activity-records.md @@ -53,8 +53,7 @@ Refer to the following steps to troubleshoot the SQL Server-based causes: 1. In the main Netwrix Auditor screen, select **Health Status** and click **View details** in the **Database Statistics** pane. 2. Review the database states. If a database state reads **Failed to store data**, review the database details. - > **IMPORTANT:** The SQL Server Express databases have a 10 GB size limit. In case the affected database states **Failed to store data** with the size limit of **10 GB**, refer to the following article: /docs/kb/auditor/sql-server-express-database-size-reached-10gb (SQL Server Express Database Size Reached 10GB). - + > **IMPORTANT:** The SQL Server Express databases have a 10 GB size limit. In case the affected database states **Failed to store data** with the size limit of **10 GB**, refer to the following article: [SQL Server Express Database Size Reached 10GB](/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md) 3. If multiple or all databases state **Failed to store data** with no size limits, refer to the following troubleshooting steps. 2. Verify that the SQL Server instance is available. 3. Verify the credentials of the SQL Server instance account: @@ -75,14 +74,14 @@ Refer to the following steps to troubleshoot the Long-Term Archive-based causes: 1. In the main Netwrix Auditor screen, select **Settings** > **Long-Term Archive**. 2. Click **Modify** under the **Location and Retention Settings** section. 3. Verify the account credentials. Click **OK** to save the changes. -3. If using a custom account to connect to the Long-Term Account, assign the permissions to the account used. Refer to the following article for additional information on required permissions: https://docs.netwrix.com/docs/auditor/10_8 Repository for Long-Term Archive — Assign Permissions on the Long-Term Archive Folder · v10.6). +3. If using a custom account to connect to the Long-Term Account, assign the permissions to the account used. Refer to the following article for additional information on required permissions: [Configure Long-Term Archive Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/longtermarchive#configure-long-term-archive-account). ### Other Causes -Verify that the Audit Database account has the correct permissions—refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8 for SQL Server to Store Audit Data — Configure Audit Database Account · v10.6). +Verify that the Audit Database account has the correct permissions—refer to the following article for additional information: [Configure Audit Database Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserver#configure-audit-database-account). ## Related Articles -- /docs/kb/auditor/sql-server-express-database-size-reached-10gb (SQL Server Express Database Size Reached 10GB) -- https://docs.netwrix.com/docs/auditor/10_8 for SQL Server to Store Audit Data — Configure Audit Database Account · v10.6) -- https://docs.netwrix.com/docs/auditor/10_8 Repository for Long-Term Archive — Assign Permissions on the Long-Term Archive Folder · v10.6) +- [SQL Server Express Database Size Reached 10GB](/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md) +- [Configure Audit Database Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserver#configure-audit-database-account) +- [Configure Long-Term Archive Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/longtermarchive#configure-long-term-archive-account) diff --git a/docs/kb/auditor/backup-recommendations.md b/docs/kb/auditor/backup-recommendations.md index 19c9824a79..9d85342fcc 100644 --- a/docs/kb/auditor/backup-recommendations.md +++ b/docs/kb/auditor/backup-recommendations.md @@ -46,9 +46,9 @@ configserverDbProcessor.exe export -target "C:\NA_Backups\naconfig.xml" 4. Once the components are backed up, you can store them in any location to use once needed. -For additional information on import, refer to the following article: Migrating Netwrix Auditor to New Server /docs/kb/auditor/migrating-auditor-to-new-server). +For additional information on import, refer to the following article: [Migrating Auditor to New Server](/docs/kb/auditor/migrating-auditor-to-new-server.md). ## Related articles -- Migrating Netwrix Auditor to New Server: /docs/kb/auditor/migrating-auditor-to-new-server -- How to Move Long-Term Archive to a New Location: /docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location +- [Migrating Auditor to New Server](/docs/kb/auditor/migrating-auditor-to-new-server.md) +- [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) diff --git a/docs/kb/auditor/cannot-establish-a-connection-to-a-windows-file-server-compression-service.md b/docs/kb/auditor/cannot-establish-a-connection-to-a-windows-file-server-compression-service.md index fd29373b56..9bd884c2d6 100644 --- a/docs/kb/auditor/cannot-establish-a-connection-to-a-windows-file-server-compression-service.md +++ b/docs/kb/auditor/cannot-establish-a-connection-to-a-windows-file-server-compression-service.md @@ -40,12 +40,12 @@ The error appears when the **Remote Registry Service** was disabled on the targe To resolve the error, do the following: -1. Enable the **Remote Registry Service** referencing the following article: https://docs.netwrix.com/docs/auditor/10_8 — Windows File Servers — Enable Remote Registry Service — v10.6). +1. Enable the **Remote Registry Service** referencing the following article: [Windows File Servers — Enable Remote Registry Service — v10.8.](https://docs.netwrix.com/docs/auditor/10_8/configuration/fileservers/windows/remoteregistryservice) 2. Reboot Netwrix Auditor Server. After that, the **Netwrix Auditor Application Deployment Service** appears on the target file server. Depending on the amount of audited data, further data collection may take a while. ### Related Articles -- /docs/kb/auditor/how-to-investigate-compression-services-errors — How to Investigate Compression Services Errors. -- https://docs.netwrix.com/docs/auditor/10_8 Configuration — Windows File Servers — Enable Remote Registry Service — v10.6. +- [How to Investigate Compression Services Errors](/docs/kb/auditor/how-to-investigate-compression-services-errors.md) +- [Windows File Servers — Enable Remote Registry Service — v10.8.](https://docs.netwrix.com/docs/auditor/10_8/configuration/fileservers/windows/remoteregistryservice) diff --git a/docs/kb/auditor/cannot-generate-sspi-context-error-in-sql-server-monitoring-plan.md b/docs/kb/auditor/cannot-generate-sspi-context-error-in-sql-server-monitoring-plan.md index 9ad6ea2517..f181d99de4 100644 --- a/docs/kb/auditor/cannot-generate-sspi-context-error-in-sql-server-monitoring-plan.md +++ b/docs/kb/auditor/cannot-generate-sspi-context-error-in-sql-server-monitoring-plan.md @@ -53,7 +53,7 @@ This error may also affect the state-in-time snapshot collection, the SQL Server ### Cause #1 – Firewall Settings -Verify the firewall settings in your environment. For additional information on ports required for SQL Server monitoring, see SQL Server – SQL Server Ports · v10.7: https://docs.netwrix.com/docs/auditor/10_8/configuration/sqlserver/overview +Verify the firewall settings in your environment. For additional information on ports required for SQL Server monitoring, see SQL Server – [SQL Server Ports](https://docs.netwrix.com/docs/auditor/10_8/configuration/sqlserver/ports) ### Cause #2 – SQL Server Service Accounts and SPN Registration @@ -98,16 +98,16 @@ If you are unable to resolve the issue with SPN registration, and if your scenar ### Cause #3 – Different TLS Protocol Versions -Allow the operating systems to select the protocol for incoming and outgoing communication on both your Netwrix Auditor and SQL servers. For more information, see Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm: /docs/kb/auditor/client-and-server-cannot-communicate-because-they-do-not-possess-a-common-algorithm +Allow the operating systems to select the protocol for incoming and outgoing communication on both your Netwrix Auditor and SQL servers. For more information, see Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm: [Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm](/docs/kb/auditor/client-and-server-cannot-communicate-because-they-do-not-possess-a-common-algorithm.md) ### Cause #4 – SQL and Netwrix Auditor Servers Time Difference -Synchronize the time on both SQL and Netwrix Auditor servers to eliminate clock skew. For more information, see Clock Skew Is Too Great: /docs/kb/auditor/clock-skew-is-too-great +Synchronize the time on both SQL and Netwrix Auditor servers to eliminate clock skew. For more information, see Clock Skew Is Too Great: [Clock Skew Is Too Great](/docs/kb/auditor/clock-skew-is-too-great.md) ## Related Articles -- SQL Server – SQL Server Ports · v10.7: https://docs.netwrix.com/docs/auditor/10_8/configuration/sqlserver/overview +- [SQL Server Ports](https://docs.netwrix.com/docs/auditor/10_8/configuration/sqlserver/ports) - Cannot Generate SSPI Context – Fix the Error with Kerberos Configuration Manager · Microsoft: https://learn.microsoft.com/en-US/troubleshoot/sql/database-engine/connect/cannot-generate-sspi-context-error#fix-the-error-with-kerberos-configuration-manager-recommended - Register Service Principal Name for Kerberos Connections – Automatic SPN Registration · Microsoft: https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/register-a-service-principal-name-for-kerberos-connections?view=sql-server-ver16#Auto -- Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm: /docs/kb/auditor/client-and-server-cannot-communicate-because-they-do-not-possess-a-common-algorithm -- Clock Skew Is Too Great: /docs/kb/auditor/clock-skew-is-too-great +- [Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm](/docs/kb/auditor/client-and-server-cannot-communicate-because-they-do-not-possess-a-common-algorithm.md) +- [Clock Skew Is Too Great](/docs/kb/auditor/clock-skew-is-too-great.md) diff --git a/docs/kb/auditor/change-data-collecting-account-password-in-netwrix-auditor.md b/docs/kb/auditor/change-data-collecting-account-password-in-netwrix-auditor.md index 7c8c4a9c45..9056d6642d 100644 --- a/docs/kb/auditor/change-data-collecting-account-password-in-netwrix-auditor.md +++ b/docs/kb/auditor/change-data-collecting-account-password-in-netwrix-auditor.md @@ -37,4 +37,4 @@ Refer to the following steps to update the password for your data-collection acc 5. Provide a new password, and click **OK** to save changes. 6. In some cases, you might need to restart Netwrix services for the changes to take effect. -> **NOTE:** A new password won't be applied to Netwrix Password Reset, Event Log Manager, or Inactive User Tracker data-collection accounts. Refer to the following article for additional information: /docs/kb/auditor/failed-logon-attempts-after-recent-service-account-password-change (Failed Logon Attempts after Recent Service Account Password Change). +> **NOTE:** A new password won't be applied to Netwrix Password Reset, Event Log Manager, or Inactive User Tracker data-collection accounts. Refer to the following article for additional information: [Failed Logon Attempts after Recent Service Account Password Change](/docs/kb/auditor/failed-logon-attempts-after-recent-service-account-password-change.md). diff --git a/docs/kb/auditor/compression-service-encountered-an-internal-error-in-windows-server-monitoring-plan.md b/docs/kb/auditor/compression-service-encountered-an-internal-error-in-windows-server-monitoring-plan.md index f355ae1677..889a0b30fb 100644 --- a/docs/kb/auditor/compression-service-encountered-an-internal-error-in-windows-server-monitoring-plan.md +++ b/docs/kb/auditor/compression-service-encountered-an-internal-error-in-windows-server-monitoring-plan.md @@ -58,15 +58,15 @@ The Windows Server Auditing host and compression service cannot operate due to d [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v2.0.50727] "SystemDefaultTlsVersions"=dword:00000001 "SchUseStrongCrypto"=dword:00000001 - + [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319] "SystemDefaultTlsVersions"=dword:00000001 "SchUseStrongCrypto"=dword:00000001 - + [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727] "SystemDefaultTlsVersions"=dword:00000001 "SchUseStrongCrypto"=dword:00000001 - + [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319] "SystemDefaultTlsVersions"=dword:00000001 "SchUseStrongCrypto"=dword:00000001 @@ -107,5 +107,5 @@ The Windows Server Auditing host and compression service cannot operate due to d ## Related articles -- Сonnection Issue when TLS 1.2 Is Required: /docs/kb/auditor/сonnection_issue_when_tls_1.2_is_required -- Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm: /docs/kb/auditor/client-and-server-cannot-communicate-because-they-do-not-possess-a-common-algorithm +- [Сonnection Issue when TLS 1.2 Is Required](/docs/kb/auditor/сonnection_issue_when_tls_1.2_is_required.md) +- [Client and Server Cannot Communicate, Because They Do Not Possess a Common Algorithm](/docs/kb/auditor/client-and-server-cannot-communicate-because-they-do-not-possess-a-common-algorithm.md) diff --git a/docs/kb/auditor/could-not-allocate-space-for-object-objectname-in-database-databasename.md b/docs/kb/auditor/could-not-allocate-space-for-object-objectname-in-database-databasename.md index ec6a09cf49..331323cdab 100644 --- a/docs/kb/auditor/could-not-allocate-space-for-object-objectname-in-database-databasename.md +++ b/docs/kb/auditor/could-not-allocate-space-for-object-objectname-in-database-databasename.md @@ -28,8 +28,8 @@ knowledge_article_id: kA00g000000H9WsCAK The following error message appears in the Netwrix Auditor Health Log or under the database status on the Database Statistics page: ```text -Error in reports stating Could not allocate space for object '*' in database '*' because the 'PRIMARY' filegroup is full. -Create disk space by deleting unneeded files, dropping objects in the filegroup, adding additional files to the filegroup, +Error in reports stating Could not allocate space for object '*' in database '*' because the 'PRIMARY' filegroup is full. +Create disk space by deleting unneeded files, dropping objects in the filegroup, adding additional files to the filegroup, or setting autogrowth on for existing files in the filegroup ``` @@ -68,9 +68,9 @@ To help prevent recurring database storage issues and support long-term stabilit The following solutions can temporarily offer more database storage and disk space but do not address the root cause of database size constraints. - Disable state-in-time data collection for the File Server monitoring plan by unselecting the **Collect data for state-in-time reports** option in the monitoring plan settings (**Edit monitoring plan** > **Edit Data Source**). -- Allocate additional disk space to Netwrix Auditor and SQL Server. Hardware Requirements: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +- Allocate additional disk space to Netwrix Auditor and SQL Server. [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) - Change the **Database Retention** period via the Netwrix Auditor Console (**Settings** > **Audit Database**) to reduce the amount of time collected data is stored. -- Recreate the database associated with the problematic Monitoring Plan. Since all collected data is also stored in the Long-Term Archive, no data loss is expected. However, recreating the database will remove its data from Searching and Reporting. To access this data, use the Netwrix Auditor Settings – Investigations (v10.6) feature: https://docs.netwrix.com/docs/auditor/10_8 +- Recreate the database associated with the problematic Monitoring Plan. Since all collected data is also stored in the Long-Term Archive, no data loss is expected. However, recreating the database will remove its data from Searching and Reporting. To access this data, use the [Netwrix Auditor Settings – Investigations (v10.6) feature](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/investigations). To recreate the database, follow these steps: @@ -87,5 +87,6 @@ To recreate the database, follow these steps: - 'PRIMARY' Filegroup Is Full: https://learn.microsoft.com/en-us/answers/questions/555422/primary-filegroup-is-full - Resolving SQL Server Errors: The Primary Filegroup Is Full: https://www.sqlshack.com/resolving-sql-server-errors-the-primary-filegroup-is-full/ - Considerations for the Autogrow and Autoshrink Settings in SQL Server: https://learn.microsoft.com/en-us/troubleshoot/sql/database-engine/database-file-operations/considerations-autogrow-autoshrink -- Netwrix Auditor Settings – Investigations ⸱ v10.6: https://docs.netwrix.com/docs/auditor/10_8 -- SQL Server Express Database Size Reached 10GB: /docs/kb/auditor/sql-server-express-database-size-reached-10gb +- [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) +- [Netwrix Auditor Settings – Investigations (v10.6) feature](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/investigations) +- [SQL Server Express Database Size Reached 10GB](/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md) diff --git a/docs/kb/auditor/could-not-find-stored-procedure-getallproperties.md b/docs/kb/auditor/could-not-find-stored-procedure-getallproperties.md index 9f2b5fa4d7..8b2fffaee6 100644 --- a/docs/kb/auditor/could-not-find-stored-procedure-getallproperties.md +++ b/docs/kb/auditor/could-not-find-stored-procedure-getallproperties.md @@ -46,6 +46,6 @@ The ReportServer database is corrupted and has to be rebuilt. 1. Once you've opened SSMS, unfold the **Databases** folder in the **Object Explorer** pane on the left. 2. Right-click each (`ReportServer` and `ReportServerTemp`) database and select **Delete**. 3. Before confirming the deletion, make sure to check the **Close existing connections** checkbox. -3. Once the databases are deleted, regenerate the `ReportServer` database. Refer to the following article for additional information: /docs/kb/auditor/deploying-the-report-server-database (Deploying the Report Server Database). -4. After you've configured the `ReportServer` database, grant the roles to the SSRS service account the roles required. Refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserverreportingservice (Configure SSRS Account). +3. Once the databases are deleted, regenerate the `ReportServer` database. Refer to the following article for additional information: [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) +4. After you've configured the `ReportServer` database, grant the roles to the SSRS service account the roles required. Refer to the following article for additional information: [Configure SSRS Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserverreportingservice#configure-ssrs-account) 5. Restart **Netwrix Auditor Archive Service** and **Netwrix Auditor Management Service** via **Services**. diff --git a/docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier.md b/docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier.md index 0594f8d7ae..b5a20a8b92 100644 --- a/docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier.md +++ b/docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier.md @@ -104,7 +104,7 @@ You can edit and customize the notification and report templates in Netwrix Pass ### Include an attribute in the email template -> **NOTE:** You can use other attributes in your Netwrix Password Reset emails. Learn more about Active Directory attributes in All attributes ⸱ Microsoft 🡺: https://learn.microsoft.com/en-us/windows/win32/adschema/attributes-all +> **NOTE:** You can use other attributes in your Netwrix Password Reset emails. Learn more about Active Directory attributes in [All attributes ⸱ Microsoft 🡺](https://learn.microsoft.com/en-us/windows/win32/adschema/attributes-all) 1. Select the appropriate template and click **Customize**. 2. Add the following attribute to the template body: @@ -117,9 +117,9 @@ You can edit and customize the notification and report templates in Netwrix Pass ### Edit email header and footer -You can disable header and footer in Netwrix Password Reset emails. Refer to the following article for additional information: [Hide and Disable Header and Footer in Password Expiration Notifier Emails](/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md). +You can disable header and footer in Netwrix Password Reset emails. Refer to the following article for additional information: [Hide and Disable Header and Footer in Netwrix Password Reset Emails](/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md). ## Related articles -- [Hide and Disable Header and Footer in Password Expiration Notifier Emails](/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md) +- [Hide and Disable Header and Footer in Netwrix Password Reset Emails](/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md) - [All attributes ⸱ Microsoft 🡺](https://learn.microsoft.com/en-us/windows/win32/adschema/attributes-all) diff --git a/docs/kb/auditor/error-503-reports-and-subscriptions-not-working.md b/docs/kb/auditor/error-503-reports-and-subscriptions-not-working.md index e9e3b141e5..5d4174ceb9 100644 --- a/docs/kb/auditor/error-503-reports-and-subscriptions-not-working.md +++ b/docs/kb/auditor/error-503-reports-and-subscriptions-not-working.md @@ -56,12 +56,10 @@ HTTP Error 503. The service is unavailable. ## Resolutions -- Review Web Service and Web Portal URLs — refer to the following article for additional information: Deploying the Report Server Database. - - /docs/kb/auditor/deploying-the-report-server-database +- Review Web Service and Web Portal URLs — refer to the following article for additional information: [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) - Verify the `SQL Server Reporting Services` service on your SSRS server is running. You can also run **Report Server Configuration Manager** > the **Report Server Status** tab to verify the report server status. - IMPORTANT: Refer to the following article if you're unable to start the `SQL Server Reporting Services` service: Error: Service Did Not Respond to Start or Control Request in SSRS. - - /docs/kb/auditor/error-service-did-not-respond-to-start-or-control-request-in-ssrs + IMPORTANT: Refer to the following article if you're unable to start the `SQL Server Reporting Services` service: [Error: Service Did Not Respond to Start or Control Request in SSRS](/docs/kb/auditor/error-service-did-not-respond-to-start-or-control-request-in-ssrs.md) - Remove the SSRS account from the Protected Users security group. Learn more about Protected Users in Protected Users Security Group ⸱ Microsoft. - https://learn.microsoft.com/en-us/windows-server/security/credentials-protection-and-management/protected-users-security-group @@ -80,16 +78,14 @@ If your SSRS instance edition is **Evaluation**, check the install date for the Review the SSRS logs in `C:\Program Files\Microsoft SQL Server Reporting Services\SSRS\LogFiles:`: ``` -The report server has encountered a configuration error. +The report server has encountered a configuration error. Microsoft.ReportingServices.Diagnostics.EvaluationCopyExpiredException: -The evaluation period for this instance of Microsoft SQL Server Reporting Services has expired. +The evaluation period for this instance of Microsoft SQL Server Reporting Services has expired. A license is now required. ``` ## Related articles -- Deploying the Report Server Database - /docs/kb/auditor/deploying-the-report-server-database +- [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) -- Error: Service Did Not Respond to Start or Control Request in SSRS - /docs/kb/auditor/error-service-did-not-respond-to-start-or-control-request-in-ssrs +- [Error: Service Did Not Respond to Start or Control Request in SSRS](/docs/kb/auditor/error-service-did-not-respond-to-start-or-control-request-in-ssrs.md) diff --git a/docs/kb/auditor/error-can-not-process-sql-commands-for-the-netwrix-auditor-self-audit-database.md b/docs/kb/auditor/error-can-not-process-sql-commands-for-the-netwrix-auditor-self-audit-database.md index 294403f974..7dc167112b 100644 --- a/docs/kb/auditor/error-can-not-process-sql-commands-for-the-netwrix-auditor-self-audit-database.md +++ b/docs/kb/auditor/error-can-not-process-sql-commands-for-the-netwrix-auditor-self-audit-database.md @@ -27,8 +27,8 @@ knowledge_article_id: kA0Qk0000000LhBKAU You see the following error in the Netwrix Auditor System Health log: ```text - - Error: can not process SQL commands for the Netwrix Auditor Self Audit database. + + Error: can not process SQL commands for the Netwrix Auditor Self Audit database. ``` ## Cause @@ -53,4 +53,4 @@ Follow the steps below to turn off the **Recovery** mode for the database: ### Related Article: -- Recovery Mode Changes in SQL Databases: /docs/kb/auditor/recovery-mode-changes-in-sql-databases +- [Recovery Mode Changes in SQL Databases](/docs/kb/auditor/recovery-mode-changes-in-sql-databases.md) diff --git a/docs/kb/auditor/error-could-not-connect-to-server.md b/docs/kb/auditor/error-could-not-connect-to-server.md index 2222ec7cb9..c2f1dabe66 100644 --- a/docs/kb/auditor/error-could-not-connect-to-server.md +++ b/docs/kb/auditor/error-could-not-connect-to-server.md @@ -50,16 +50,16 @@ Refer to the list of possible causes for the error: ## Resolutions -1. Verify the SQL Server instance name specified in the Audit Database settings. Refer to the following article for additional information: <https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA0Qk0000001D01KAE.html> (Specifying the SQL Server Instance Name). -2. Configure your SQL Server instance to allow remote connections. Learn more in Microsoft's documentation: <https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-the-remote-access-server-configuration-option?view=sql-server-ver16#SSMSProcedure> (Configure remote access (server configuration option) — Use SQL Server Management Studio ⸱ Microsoft). -3. Enable the TCP/IP protocol in the SQL Server—refer to the following article for additional information: </docs/kb/auditor/enable_tcpip_protocol_in_sql_server (Enable TCP/IP Protocol in SQL Server). +1. Verify the SQL Server instance name specified in the Audit Database settings. Refer to the following article for additional information:[Specifying the SQL Server Instance Name](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/auditdatabase) +2. Configure your SQL Server instance to allow remote connections. Learn more in Microsoft's documentation: [Configure remote access (server configuration option) — Use SQL Server Management Studio ⸱ Microsoft](https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-the-remote-access-server-configuration-option?view=sql-server-ver16#SSMSProcedure) +3. Enable the TCP/IP protocol in the SQL Server—refer to the following article for additional information: [Enable TCP/IP Protocol in SQL Server](/docs/kb/auditor/enable_tcpip_protocol_in_sql_server.md) -> **NOTE:** Alternatively, review the TCP port used for SQL Server communication—learn more in Microsoft's documentation: https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-a-server-to-listen-on-a-specific-tcp-port?view=sql-server-ver15#assign-a-tcpip-port-number-to-the-sql-server-database-engine (Configure SQL Server to listen on a specific TCP port — Assign a TCP/IP port number to the SQL Server Database Engine ⸱ Microsoft). For additional information on setting a custom TCP port in Netwrix Auditor, refer to the following article: /docs/kb/auditor/specify-custom-sql-server-port-for-netwrix-auditor-audit-database (Specify Custom SQL Server Port for Netwrix Auditor Audit Database). +> **NOTE:** Alternatively, review the TCP port used for SQL Server communication—learn more in Microsoft's documentation: [Configure SQL Server to listen on a specific TCP port — Assign a TCP/IP port number to the SQL Server Database Engine ⸱ Microsoft](https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-a-server-to-listen-on-a-specific-tcp-port?view=sql-server-ver15#assign-a-tcpip-port-number-to-the-sql-server-database-engine). For additional information on setting a custom TCP port in Netwrix Auditor, refer to the following article: [Specify Custom SQL Server Port for Netwrix Auditor Audit Database](/docs/kb/auditor/specify-custom-sql-server-port-for-netwrix-auditor-audit-database.md). ## Related Articles -- https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA0Qk0000001D01KAE.html — Specifying the SQL Server Instance Name -- https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-the-remote-access-server-configuration-option?view=sql-server-ver16#SSMSProcedure — Configure remote access (server configuration option) — Use SQL Server Management Studio ⸱ Microsoft -- /docs/kb/auditor/enable_tcpip_protocol_in_sql_server — Enable TCP/IP Protocol in SQL Server -- https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-a-server-to-listen-on-a-specific-tcp-port?view=sql-server-ver15#assign-a-tcpip-port-number-to-the-sql-server-database-engine — Configure SQL Server to listen on a specific TCP port — Assign a TCP/IP port number to the SQL Server Database Engine ⸱ Microsoft -- /docs/kb/auditor/specify-custom-sql-server-port-for-netwrix-auditor-audit-database — Specify Custom SQL Server Port for Netwrix Auditor Audit Database +- [Specifying the SQL Server Instance Name](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/auditdatabase) +- [Configure remote access (server configuration option) — Use SQL Server Management Studio ⸱ Microsoft](https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-the-remote-access-server-configuration-option?view=sql-server-ver16#SSMSProcedure) +- [Enable TCP/IP Protocol in SQL Server](/docs/kb/auditor/enable_tcpip_protocol_in_sql_server.md) +- [Configure SQL Server to listen on a specific TCP port — Assign a TCP/IP port number to the SQL Server Database Engine ⸱ Microsoft](https://learn.microsoft.com/en-us/sql/database-engine/configure-windows/configure-a-server-to-listen-on-a-specific-tcp-port?view=sql-server-ver15#assign-a-tcpip-port-number-to-the-sql-server-database-engine) +- [Specify Custom SQL Server Port for Netwrix Auditor Audit Database](/docs/kb/auditor/specify-custom-sql-server-port-for-netwrix-auditor-audit-database.md) diff --git a/docs/kb/auditor/error-during-report-processing-rserrorimpersonatinguser-running-reports.md b/docs/kb/auditor/error-during-report-processing-rserrorimpersonatinguser-running-reports.md index d84b49b940..723f7fb6bf 100644 --- a/docs/kb/auditor/error-during-report-processing-rserrorimpersonatinguser-running-reports.md +++ b/docs/kb/auditor/error-during-report-processing-rserrorimpersonatinguser-running-reports.md @@ -39,19 +39,19 @@ SQL Server Reporting Services (SSRS) connection issues or insufficient permissio ## Resolution -1. Make sure you are using a supported SQL Server edition. Refer to the following article: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +1. Make sure you are using a supported SQL Server edition. Refer to the following article: [SQL Server Requirements](https://docs.netwrix.com/docs/auditor/10_6/requirements/sqlserver) -2. Check the permissions for your Audit Database account. Refer to the following article: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +2. Check the permissions for your Audit Database account. Refer to the following article: [Configure Audit Database Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserver#configure-audit-database-account) -3. Check the permissions for the account used to collect data in your environment. Refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 +3. Check the permissions for the account used to collect data in your environment. Refer to the following article: [Data Collecting Accounts](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/dataaccounts) > **IMPORTANT:** The account should be a member of the local Administrators group. - If you use a `gMSA` account for data collection, refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview + If you use a `gMSA` account for data collection, refer to the following article for additional information: [GMSA](https://docs.netwrix.com/docs/auditor/10_8/requirements/gmsa) -4. Check your Report Services configuration. Refer to the following article: /docs/kb/auditor/deploying-the-report-server-database +4. Check your Report Services configuration. [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) -5. Check the permissions for your SSRS Account. Refer to the following article: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +5. Check the permissions for your SSRS Account. Refer to the following article:[Configure SSRS Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserverreportingservice#configure-ssrs-account) > **IMPORTANT:** The account should be a member of the local Administrators group. @@ -63,9 +63,9 @@ SQL Server Reporting Services (SSRS) connection issues or insufficient permissio ## Related Links -- Requirements for SQL Server to Store Audit Data: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- Requirements for SQL Server to Store Audit Data: Configure Audit Database Account: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- Monitoring Plans – Data Collecting Account: https://docs.netwrix.com/docs/auditor/10_8 -- Requirements – Use Group Managed Service Account (gMSA): https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- Deploying the Report Server Database: /docs/kb/auditor/deploying-the-report-server-database -- SQL Server Reporting Services: Configure SSRS Account: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +- [SQL Server Requirements](https://docs.netwrix.com/docs/auditor/10_6/requirements/sqlserver) +- [Configure Audit Database Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserver#configure-audit-database-account) +- [Data Collecting Accounts](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/dataaccounts) +- [Requirements – Use Group Managed Service Account (gMSA](https://docs.netwrix.com/docs/auditor/10_8/requirements/gmsa) +- [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) +- [Configure SSRS Account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserverreportingservice#configure-ssrs-account) diff --git a/docs/kb/auditor/error-failed-to-load-registry-hive-file-is-used-by-another-process.md b/docs/kb/auditor/error-failed-to-load-registry-hive-file-is-used-by-another-process.md index 8e87613efc..33689282e3 100644 --- a/docs/kb/auditor/error-failed-to-load-registry-hive-file-is-used-by-another-process.md +++ b/docs/kb/auditor/error-failed-to-load-registry-hive-file-is-used-by-another-process.md @@ -29,13 +29,13 @@ knowledge_article_id: kA00g000000H9ahCAC The following warning appears during each data collection in the Netwrix Auditor Health Log: ``` -%timestamp%: %server%: +%timestamp%: %server%: The Add/Remove Software data provider failed to load the user %SID%.bak registry hive on the computer %server% due to the following error: The process cannot access the file because it is being used by another process. ``` ``` -%timestamp%: %server%: +%timestamp%: %server%: The Add/Remove Software data provider failed to load the user %domain\\user% registry hive on the computer %server% due to the following error: The process cannot access the %PATH%\ntuser.dat file because it is being used by another process. ``` @@ -53,7 +53,7 @@ This issue may be caused by one or more of the following factors: Apply one or more of the following solutions to resolve this error: -- Configure antivirus exclusions in your Netwrix Auditor environment. For details, see the following article: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor (Antivirus Exclusions for Netwrix Auditor). +- Configure antivirus exclusions in your Netwrix Auditor environment. For details, see the following article: [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) - Follow these steps if excluding Auditor-related folders did not resolve the issue: @@ -89,4 +89,4 @@ Apply one or more of the following solutions to resolve this error: ## Related Article -- Antivirus Exclusions for Netwrix Auditor: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor +- [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) diff --git a/docs/kb/auditor/error-memory-limit-is-reached.md b/docs/kb/auditor/error-memory-limit-is-reached.md index 0afaae7dc7..7200f634b4 100644 --- a/docs/kb/auditor/error-memory-limit-is-reached.md +++ b/docs/kb/auditor/error-memory-limit-is-reached.md @@ -40,11 +40,10 @@ The default memory limit has been reached for the process. ## Resolution -Increase the resource pool on your Netwrix Auditor server. Refer to the following article for additional information on hardware requirements for different deployment scenarios: https://docs.netwrix.com/docs/auditor/10_8 — Hardware Requirements · v10.7). - -> **IMPORTANT:** Verify that the antivirus exclusions are in place on your Netwrix Auditor server. Review the following article for recommendations on antivirus exclusions in the Auditor environment: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor (Antivirus Exclusions for Netwrix Auditor). +Increase the resource pool on your Netwrix Auditor server. Refer to the following article for additional information on hardware requirements for different deployment scenarios: [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console). +> **IMPORTANT:** Verify that the antivirus exclusions are in place on your Netwrix Auditor server. Review the following article for recommendations on antivirus exclusions in the Auditor environment: [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md). ## Related Articles -- https://docs.netwrix.com/docs/auditor/10_8 — Hardware Requirements · v10.7) -- /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor (Antivirus Exclusions for Netwrix Auditor) +- [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) +- [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) diff --git a/docs/kb/auditor/error-the-remote-procedure-call-failed.md b/docs/kb/auditor/error-the-remote-procedure-call-failed.md index 81233b1e97..64ea3d55d6 100644 --- a/docs/kb/auditor/error-the-remote-procedure-call-failed.md +++ b/docs/kb/auditor/error-the-remote-procedure-call-failed.md @@ -40,8 +40,8 @@ The "Remote procedure call failed" error can have a number of root causes such a Depending on the error cause, follow the resolution steps below: -1. Make sure you have all required ports opened. For additional information on configuring ports for Netwrix Auditor, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 — Protocols and Ports Required — v10.6). -2. Review your Antivirus exclusions. For additional information on required exclusions for your antivirus, refer to the following article: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor (Antivirus Exclusions for Netwrix Auditor). +1. Make sure you have all required ports opened. For additional information on configuring ports for Netwrix Auditor, refer to the following article: [Protocols and Ports Required](https://docs.netwrix.com/docs/auditor/10_8/requirements/ports) +2. Review your Antivirus exclusions. For additional information on required exclusions for your antivirus, refer to the following article: [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) 3. If the issue occurs during Logon Activity data collection, try to follow the steps in these articles: - - /docs/kb/auditor/system-cannot-find-the-path-specified-in-logon-activity-monitoring-plan (System Cannot Find the Path Specified in Logon Activity Monitoring Plan) - - /docs/kb/auditor/error-size-of-collected-data-files-exceeded-limit-in-logon-activity-monitoring-plan (Size of Collected Data Files Exceeded Limit in Logon Activity Monitoring Plan) + - [System Cannot Find the Path Specified in Logon Activity Monitoring Plan](/docs/kb/auditor/system-cannot-find-the-path-specified-in-logon-activity-monitoring-plan.md) + - [Error: Size of Collected Data Files Exceeded Limit in Logon Activity Monitoring Plan](/docs/kb/auditor/error-size-of-collected-data-files-exceeded-limit-in-logon-activity-monitoring-plan.md) diff --git a/docs/kb/auditor/event-id-1000-application-errors-in-netwrix-auditor-server.md b/docs/kb/auditor/event-id-1000-application-errors-in-netwrix-auditor-server.md index 0950058e12..71ecc8f13c 100644 --- a/docs/kb/auditor/event-id-1000-application-errors-in-netwrix-auditor-server.md +++ b/docs/kb/auditor/event-id-1000-application-errors-in-netwrix-auditor-server.md @@ -54,7 +54,7 @@ The **Faulting module name** dynamic-link library file was corrupted. This could ## Resolutions -1. Set up antivirus exclusions to prevent both your antivirus solution and Netwrix Auditor from conflicting — refer to the following article for additional information: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor (Antivirus Exclusions for Netwrix Auditor). +1. Set up antivirus exclusions to prevent both your antivirus solution and Netwrix Auditor from conflicting — refer to the following article for additional information: [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) 2. Establish the scope of affected `.dll` files. In case the **Faulting module path** links the system folder (e.g., `C:\Windows\System32`), follow these steps: @@ -80,9 +80,9 @@ The **Faulting module name** dynamic-link library file was corrupted. This could 3. Once the commands are completed and components are restored, restart the server. -3. In case the **Faulting module path** links a Netwrix-related folder (e.g., `C:\Program Files (x86)\Netwrix Auditor\Active Directory Auditing`), repair your Netwrix Auditor installation. Refer to the following article for additional information: /docs/kb/auditor/how-to-repair-netwrix-auditor-installation (How to Repair Netwrix Auditor Installation). +3. In case the **Faulting module path** links a Netwrix-related folder (e.g., `C:\Program Files (x86)\Netwrix Auditor\Active Directory Auditing`), repair your Netwrix Auditor installation. Refer to the following article for additional information: [How to Repair Netwrix Auditor Installation](/docs/kb/auditor/how-to-repair-netwrix-auditor-installation.md) ## Related articles -- Antivirus Exclusions for Netwrix Auditor: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor -- How to Repair Netwrix Auditor Installation: /docs/kb/auditor/how-to-repair-netwrix-auditor-installation +- [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) +- [How to Repair Netwrix Auditor Installation](/docs/kb/auditor/how-to-repair-netwrix-auditor-installation.md) diff --git a/docs/kb/auditor/event-id-1208-in-health-log.md b/docs/kb/auditor/event-id-1208-in-health-log.md index 7e469cd8a2..232be68ad1 100644 --- a/docs/kb/auditor/event-id-1208-in-health-log.md +++ b/docs/kb/auditor/event-id-1208-in-health-log.md @@ -34,87 +34,87 @@ Refer to the entries below for possible causes and resolutions based on event de ### `Fatal error during installation` - Cause: The **Timeout expired** error is prompted after SharePoint Core Service installation has taken over 10 minutes. - **Resolution:** Refer to the following article for additional information: /docs/kb/auditor/timeout-expired-error-on-sharepoint-core-service-deployment (Timeout Expired Error on SharePoint Core Service Deployment). + **Resolution:** Refer to the following article for additional information: [Timeout Expired Error on SharePoint Core Service Deployment](/docs/kb/auditor/timeout-expired-error-on-sharepoint-core-service-deployment.md) -- Cause: An invalid SharePoint Central Administration URL was specified during monitoring plan creation. +- Cause: An invalid SharePoint Central Administration URL was specified during monitoring plan creation. **Resolution:** 1. Edit the Item URL via **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > modify the SharePoint Central Administration URL > click **Save & Close**. -- Cause: An invalid SharePoint Central Administration server was specified during monitoring plan creation. The specified server does not belong to the audited farm. +- Cause: An invalid SharePoint Central Administration server was specified during monitoring plan creation. The specified server does not belong to the audited farm. **Resolution:** 1. Edit the SharePoint Central Administration server FQDN in **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > **Core Service** tab > modify the FQDN and click **Save & Close**. -- Cause: SharePoint solution or SharePoint Core Service has already been installed in the SharePoint farm, but the solution has not been deployed yet. +- Cause: SharePoint solution or SharePoint Core Service has already been installed in the SharePoint farm, but the solution has not been deployed yet. **Resolution:** - 1. Make sure that the list of installed programs on the target computer does not contain **Netwrix Auditor for SharePoint Core Service**, and uninstall it if it does. - 2. If not, open the SharePoint Central Administration site and navigate to **System Settings** > **Manage farm solutions**. Locate the `netwrix.sharepoint.audit.wsp` solution and delete it. + 1. Make sure that the list of installed programs on the target computer does not contain **Netwrix Auditor for SharePoint Core Service**, and uninstall it if it does. + 2. If not, open the SharePoint Central Administration site and navigate to **System Settings** > **Manage farm solutions**. Locate the `netwrix.sharepoint.audit.wsp` solution and delete it. 3. Update the monitoring plan. -- Cause: The data collecting account does not have the required rights and permissions for automatic Core Service deployment. +- Cause: The data collecting account does not have the required rights and permissions for automatic Core Service deployment. **Resolution:** 1. Specify a different data collecting account for the affected monitoring plan or grant corresponding permissions to the current account: - Navigate to your SharePoint monitoring plan > **Edit Item** > **General**, and enter user name and password for the custom account. - - Grant the current account the necessary rights and permissions — refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8 (SharePoint − Permissions for SharePoint Auditing · v10.6). + - Grant the current account the necessary rights and permissions — refer to the following article for additional information: [Permissions for SharePoint Auditing](https://docs.netwrix.com/docs/auditor/10_8/configuration/sharepoint/permissions) -- Cause: SharePoint Central Administration is not functioning properly due to connection problems with the SharePoint Configuration Database, or some other unexpected error. +- Cause: SharePoint Central Administration is not functioning properly due to connection problems with the SharePoint Configuration Database, or some other unexpected error. **Resolution:** 1. Make sure SharePoint Central Administration is functioning properly. -- Cause: SharePoint Central Administration URL has been specified without a port number (`Fatal error during installation`). +- Cause: SharePoint Central Administration URL has been specified without a port number (`Fatal error during installation`). **Resolution:** 1. Verify the Administration URL — Edit the Item URL via **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > modify the SharePoint Central Administration URL > click **Save & Close**. ### `Unable to connect to the remote server.` -- Cause: An invalid SharePoint Central Administration port has been specified. +- Cause: An invalid SharePoint Central Administration port has been specified. **Resolution:** 1. Verify the Administration URL — Edit the Item URL via **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > modify the SharePoint Central Administration URL > click **Save & Close**. -- Cause: The port of SharePoint Central Administration is blocked in the Windows Firewall settings in the target server, or in the Netwrix Auditor host. +- Cause: The port of SharePoint Central Administration is blocked in the Windows Firewall settings in the target server, or in the Netwrix Auditor host. **Resolution:** - 1. Refer to the following article for additional information on required ports: https://docs.netwrix.com/docs/auditor/10_8 (SharePoint − SharePoint Ports · v10.6). + 1. Refer to the following article for additional information on required ports: [SharePoint Ports](https://docs.netwrix.com/docs/auditor/10_8/configuration/sharepoint/ports) -- Cause: The computer that hosts SharePoint Central Administration is not reachable. +- Cause: The computer that hosts SharePoint Central Administration is not reachable. **Resolution:** 1. Make sure there is network connection to the Central Administration host. ### `The remote name could not be resolved.` -- Cause: An invalid SharePoint Central Administration host has been specified. +- Cause: An invalid SharePoint Central Administration host has been specified. **Resolution:** 1. Verify the Administration URL — Edit the Item URL via **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > modify the SharePoint Central Administration URL > click **Save & Close**. ### `The network path was not found.` -- Cause: The target server for Core Service deployment has been specified incorrectly. +- Cause: The target server for Core Service deployment has been specified incorrectly. **Resolution:** 1. Edit the SharePoint Central Administration server FQDN in **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > **Core Service** tab > modify the FQDN and click **Save & Close**. ### `Access is denied.` -- Cause: The data collecting account used to install Core Service does not have the required rights and permissions in the target server. +- Cause: The data collecting account used to install Core Service does not have the required rights and permissions in the target server. **Resolution:** 1. Specify a different data collecting account for the affected monitoring plan or grant corresponding permissions to the current account: - Navigate to your SharePoint monitoring plan > **Edit Item** > **General**, and enter user name and password for the custom account. - - Grant the current account the necessary rights and permissions — refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8 (SharePoint − Permissions for SharePoint Auditing · v10.6). + - Grant the current account the necessary rights and permissions — refer to the following article for additional information: [Permissions for SharePoint Auditing](https://docs.netwrix.com/docs/auditor/10_8/configuration/sharepoint/permissions) ### `The system cannot find the file specified.` -- Cause: The target server for Core Service deployment has been specified as an alias that is not specified in the DNS and that cannot be authenticated in the local admin share (`\serveradmin$`) in the target Core Service deployment server. +- Cause: The target server for Core Service deployment has been specified as an alias that is not specified in the DNS and that cannot be authenticated in the local admin share (`\serveradmin$`) in the target Core Service deployment server. **Resolution:** 1. Edit the SharePoint Central Administration server FQDN in **Monitoring Plans** > select ` %SharePoint_plan% ` > **Edit** > select the item and click **Edit item** > **Core Service** tab > modify the FQDN and click **Save & Close**. ### `The pipe has been ended.` -- Cause: The SharePoint Central Administration server was restarted or shut down during the automatic Core Service deployment. Unable to install Netwrix Auditor for SharePoint Core Service on the target server. +- Cause: The SharePoint Central Administration server was restarted or shut down during the automatic Core Service deployment. Unable to install Netwrix Auditor for SharePoint Core Service on the target server. **Resolution:** 1. Retry installation: - To retry the automatic deployment, update the SharePoint monitoring plan. - - For additional information on manual installation of SharePoint Core Service, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 − Install for SharePoint Core Service · v10.6). + - For additional information on manual installation of SharePoint Core Service, refer to the following article: [Install for SharePoint Core Service](https://docs.netwrix.com/docs/auditor/10_8/install/sharepointcoreservice) ## Related articles -- Timeout Expired Error on SharePoint Core Service Deployment — /docs/kb/auditor/timeout-expired-error-on-sharepoint-core-service-deployment -- SharePoint − Permissions for SharePoint Auditing · v10.6 — https://docs.netwrix.com/docs/auditor/10_8 -- SharePoint − SharePoint Ports · v10.6 — https://docs.netwrix.com/docs/auditor/10_8 -- Installation − Install for SharePoint Core Service · v10.6 — https://docs.netwrix.com/docs/auditor/10_8 +- [Timeout Expired Error on SharePoint Core Service Deployment](/docs/kb/auditor/timeout-expired-error-on-sharepoint-core-service-deployment.md) +- [Permissions for SharePoint Auditing](https://docs.netwrix.com/docs/auditor/10_8/configuration/sharepoint/permissions) +- [SharePoint Ports](https://docs.netwrix.com/docs/auditor/10_8/configuration/sharepoint/ports) +- [Install for SharePoint Core Service](https://docs.netwrix.com/docs/auditor/10_8/install/sharepointcoreservice) diff --git a/docs/kb/auditor/event-id-1225-in-health-log.md b/docs/kb/auditor/event-id-1225-in-health-log.md index 9d8354cac6..b1007f0190 100644 --- a/docs/kb/auditor/event-id-1225-in-health-log.md +++ b/docs/kb/auditor/event-id-1225-in-health-log.md @@ -41,10 +41,10 @@ Netwrix Auditor is unable to collect farm configuration changes due to network c Refer to the corresponding article for additional information on resolution: -- Event ID 1204 in Health Log: /docs/kb/auditor/event-id-1204-in-health-log -- Event ID 1205 in Health Log: /docs/kb/auditor/event-id-1205-in-health-log +- [Event ID 1204 in Health Log](/docs/kb/auditor/event-id-1204-in-health-log.md) +- [Event ID 1205 in Health Log](/docs/kb/auditor/event-id-1205-in-health-log.md) ## Related articles -- Event ID 1204 in Health Log: /docs/kb/auditor/event-id-1204-in-health-log -- Event ID 1205 in Health Log: /docs/kb/auditor/event-id-1205-in-health-log +- [Event ID 1204 in Health Log](/docs/kb/auditor/event-id-1204-in-health-log.md) +- [Event ID 1205 in Health Log](/docs/kb/auditor/event-id-1205-in-health-log.md) diff --git a/docs/kb/auditor/event-id-1274-in-health-log.md b/docs/kb/auditor/event-id-1274-in-health-log.md index 34df46cba7..0534f9b8b1 100644 --- a/docs/kb/auditor/event-id-1274-in-health-log.md +++ b/docs/kb/auditor/event-id-1274-in-health-log.md @@ -43,11 +43,11 @@ because the product is unable to detect the forest where the audited SharePoint - Cause #1 − Verify the **SharePoint Central Administration** site is reachable by opening the URL in a browser. - Cause #2 − Refer to the following articles for additional information: - - Event ID 1204 in Health Log: /docs/kb/auditor/event-id-1204-in-health-log - - Event ID 1205 in Health Log: /docs/kb/auditor/event-id-1205-in-health-log + - [Event ID 1204 in Health Log](/docs/kb/auditor/event-id-1204-in-health-log.md) + - [Event ID 1205 in Health Log](/docs/kb/auditor/event-id-1205-in-health-log.md) - Cause #3 − Verify the global catalog domain controller is reachable. ## Related articles -- Event ID 1204 in Health Log: /docs/kb/auditor/event-id-1204-in-health-log -- Event ID 1205 in Health Log: /docs/kb/auditor/event-id-1205-in-health-log +- [Event ID 1204 in Health Log](/docs/kb/auditor/event-id-1204-in-health-log.md) +- [Event ID 1205 in Health Log](/docs/kb/auditor/event-id-1205-in-health-log.md) diff --git a/docs/kb/auditor/event-id-2002-the-term-get-help-is-not-recognized.md b/docs/kb/auditor/event-id-2002-the-term-get-help-is-not-recognized.md index ca00ad7201..5db37aba0e 100644 --- a/docs/kb/auditor/event-id-2002-the-term-get-help-is-not-recognized.md +++ b/docs/kb/auditor/event-id-2002-the-term-get-help-is-not-recognized.md @@ -35,7 +35,7 @@ The term 'get-help' is not recognized as the name of a cmndlet, function, script ## Cause -The issue caused by Microsoft cumulative update for multiple editions of MS Exchange. Learn more in Description of the security update for Microsoft Exchange Server 2019 and 2016: October 10, 2023 (KB5030877) ⸱ Microsoft 📝: https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-and-2016-october-10-2023-kb5030877-ec769ff1-f60f-411e-a7ed-b63b42a686eb +The issue caused by Microsoft cumulative update for multiple editions of MS Exchange. Learn more in Description of the security update: [Microsoft Exchange Server 2019 and 2016: October 10, 2023 (KB5030877) ⸱ Microsoft 📝](https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-and-2016-october-10-2023-kb5030877-ec769ff1-f60f-411e-a7ed-b63b42a686eb) ## Resolution @@ -43,4 +43,4 @@ To resolve the issue, upgrade Netwrix Auditor to the version 10.6 build 12322 an ### Related article: -- Administrator Audit Logging (AAL) configuration details: /docs/kb/auditor/administrator-audit-logging-aal-configuration-details +- [Administrator Audit Logging (AAL) configuration details](/docs/kb/auditor/administrator-audit-logging-aal-configuration-details.md) diff --git a/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md b/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md index b06c690bb6..6c5660d976 100644 --- a/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md +++ b/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md @@ -28,7 +28,7 @@ You'd like to remove the Netwrix header and footer from emails sent to users and ## Resolution -> **IMPORTANT:** In some cases both header and footer reset after your Netwrix Auditor instance has been upgraded to v10.6. For additional information, refer to the following article: /docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade (Password Expiration Notifier Email Header and Footer Reset After Upgrade). +> **IMPORTANT:** In some cases both header and footer reset after your Netwrix Auditor instance has been upgraded to v10.6. For additional information, refer to the following article: [Netwrix Password Reset Email Header and Footer Reset After Upgrade](/docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade.md) 1. Open Registry Editor on the Netwrix Auditor Server host. 2. Navigate to `HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Netwrix Auditor\Password Expiration Notifier`. @@ -47,9 +47,9 @@ You'd like to remove the Netwrix header and footer from emails sent to users and > **NOTE:** If you'd like to re-enable the header and footer, simply change the value data to `0`. -To further customize Netwrix Password Reset emails, refer to the following article: /docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier (Customize Notifications and Reports in Password Expiration Notifier). +To further customize Netwrix Password Reset emails, refer to the following article: [Customize Notifications and Reports in Netwrix Password Reset](/docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier.md). ### Related articles -- /docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier - Customize Notifications and Reports in Netwrix Password Reset -- /docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade - Password Expiration Notifier Email Header and Footer Reset After Upgrade +- [Customize Notifications and Reports in Netwrix Password Reset](/docs/kb/auditor/customize-notifications-and-reports-in-password-expiration-notifier.md) +- [Netwrix Password Reset Email Header and Footer Reset After Upgrade](/docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade.md) diff --git a/docs/kb/auditor/how-to-add-additional-space-to-long-term-archive.md b/docs/kb/auditor/how-to-add-additional-space-to-long-term-archive.md index 878c16c3c9..c14b65c1fa 100644 --- a/docs/kb/auditor/how-to-add-additional-space-to-long-term-archive.md +++ b/docs/kb/auditor/how-to-add-additional-space-to-long-term-archive.md @@ -51,6 +51,6 @@ Follow the steps below to decrease the retention period for the archive: It is up to you to decide how long you want to keep historical data. If you know that no historical data will be needed past one year, decrease the retention to `12 months`. The historical data can be imported from the Archive back to your Audit Database when needed via the **Investigations** feature. -Learn more about Investigations in the following article: https://docs.netwrix.com/docs/auditor/10_8 +Learn more about Investigations in the following article: [Investigations](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/investigations) -Review additional recommendations for preventing Long-Term Archive overflow in the following article: /docs/kb/auditor/how-to-prevent-long-term-archive-overflow +Review additional recommendations for preventing Long-Term Archive overflow in the following article: [How to Prevent Long-Term Archive Overflow](/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md) diff --git a/docs/kb/auditor/how-to-assign-db-owner-permissions.md b/docs/kb/auditor/how-to-assign-db-owner-permissions.md new file mode 100644 index 0000000000..46f65e51cb --- /dev/null +++ b/docs/kb/auditor/how-to-assign-db-owner-permissions.md @@ -0,0 +1,34 @@ +--- +title: How to Assign db_owner Permissions +sidebar_label: How to Assign db_owner Permissions +description: how to assign db_owner permissions to the Netwrix Auditor service account using SQL Server Management Studio to ensure proper access to audit databases. +keywords: +- Netwrix Auditor +- SQL Server +- db_owner +- database permissions +- SQL Server Management Studio + +products: +- auditor + +--- + +## Overview + +The account used by Netwrix Auditor to collect and store audit data must have **db_owner** permissions on all target audit databases. Without this level of access, certain audit operations or data retrieval tasks may fail. + +This article provides step-by-step instructions for granting **db_owner** rights to the Netwrix Auditor service account in **SQL Server Management Studio**. + +## Instructions + +To assign **db_owner** permissions to a Netwrix Auditor account: + +1. On the computer where the SQL Server instance resides, navigate to **Start** > **All Programs** > **Microsoft SQL Server** > **SQL Server Management Studio**. +2. Connect to the SQL Server instance using an account that has sufficient privileges to modify database roles. +3. In the **Object Explorer** pane, expand **Security**, then expand **Logins**. +4. Locate and right-click the login account used by Auditor, and select **Properties**. +5. In the **Login Properties** window, select **User Mapping** in the left pane. +6. In the **Users mapped to this login** section, select all databases that the Auditor account must access. +7. In the **Database role membership for:** section, select **db_owner**. +8. Click **OK** to save the changes. diff --git a/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md b/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md index 9d436b21ea..b5bedd2524 100644 --- a/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md +++ b/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md @@ -46,7 +46,7 @@ There is also the chance that the Health Log is relaying an error received from The Health Log also provides the option for filtering, allowing administrators to view messages from specific data sources/monitoring plans, as well as different types of messages (Information, warning, errors). -There may be times where Netwrix Auditor Technical Support requests a copy of your Health Log. To provide this file, please view the steps [here](/docs/kb/auditor/how-to-save-and-zip-netwrix-auditor-system-health-event-log.md). More details on the Health Log can be obtained here. +There may be times where Netwrix Auditor Technical Support requests a copy of your Health Log. To provide this file, please view the steps [How to Save and Zip Netwrix Auditor System Health Event Log](/docs/kb/auditor/how-to-save-and-zip-netwrix-auditor-system-health-event-log.md). More details on the Health Log can be obtained here. ### Database Statistics @@ -58,8 +58,8 @@ This dashboard can assist with troubleshooting in instances where data may not b ### Long Term Archive -This simple, yet effective, tile gives administrators insight on Long Term Archive storage usage. You may hear Technical Support refer to this as the "LTA". If you notice rapid growth and you have not placed the Long Term Archive on a drive independent of the System Drive, please follow the steps [here](https://kb.netwrix.com/247) to migrate your Long Term Archive. +This simple, yet effective, tile gives administrators insight on Long Term Archive storage usage. You may hear Technical Support refer to this as the "LTA". If you notice rapid growth and you have not placed the Long Term Archive on a drive independent of the System Drive, please follow the steps [here](https://docs.netwrix.com/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location) to migrate your Long Term Archive. ### Working Folder -The Working Folder is a structure of files that plays an integral part in event processing. Similar to the LTA tile, this tile will provide visibility on Working Folder growth. Expect this directory to grow and shrink periodically as it receives data, processes, and then sends it off for storage in SQL and the LTA. This directory can also be migrated to a drive independent to the system drive. The steps to migrate the Working Folder can be viewed [here](/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md). +The Working Folder is a structure of files that plays an integral part in event processing. Similar to the LTA tile, this tile will provide visibility on Working Folder growth. Expect this directory to grow and shrink periodically as it receives data, processes, and then sends it off for storage in SQL and the LTA. This directory can also be migrated to a drive independent to the system drive. The steps to migrate the Working Folder can be viewed [How to Migrate Netwrix Auditor Working Folder to a New Location](/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md). diff --git a/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md b/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md index aba044883e..2fc3ff43a6 100644 --- a/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md +++ b/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md @@ -36,7 +36,7 @@ Refer to the following steps to configure Netwrix Auditor in failover mode: > **NOTE:** If Netwrix Auditor is already installed on a physical machine, consider migrating it to a virtual box. Some vendors support "physical to VM" migration." -2. Configure the Long-Term Archive (LTA) to be stored on a remote location, such as a shared iSCSI volume. Refer to the following Netwrix knowledge base article for instructions on how to move LTA to a new location: /docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location +2. Configure the Long-Term Archive (LTA) to be stored on a remote location, such as a shared iSCSI volume. Refer to the following Netwrix knowledge base article for instructions on how to move LTA to a new location: [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) 3. For setting up backup and failover, ensure that the volume under LTA and Working Folder is redundant enough to survive failure. @@ -60,4 +60,4 @@ For alternative backup and failover options, refer to the steps below. ## Related Articles -- How to Move Long-Term Archive to a New Location: /docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location +- How to Move Long-Term Archive to a New Location: [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) diff --git a/docs/kb/auditor/how-to-control-the-size-of-netwrixsqlcraudit-databases-on-sql-instances-and-what-it-is-needed-for.md b/docs/kb/auditor/how-to-control-the-size-of-netwrixsqlcraudit-databases-on-sql-instances-and-what-it-is-needed-for.md index b6ea6541b2..942bfc4211 100644 --- a/docs/kb/auditor/how-to-control-the-size-of-netwrixsqlcraudit-databases-on-sql-instances-and-what-it-is-needed-for.md +++ b/docs/kb/auditor/how-to-control-the-size-of-netwrixsqlcraudit-databases-on-sql-instances-and-what-it-is-needed-for.md @@ -31,4 +31,4 @@ If you enable the **Audit data changes** option as part of SQL Server audit, Net 1. Disable the **Audit data changes** option if you are not interested in content changes, and delete the `NetwrixSQLCRAudit` database(s) from the SQL Server(s). 2. Shrink the `NetwrixSQLCRAudit` database(s) via MSSQL Management Studio. -For additional information about how Netwrix Auditor for SQL Server works, please refer to the following KB: /docs/kb/auditor/how-netwrix-auditor-for-sql-server-collects-data +For additional information about how Netwrix Auditor for SQL Server works, please refer to the following KB: [How Netwrix Auditor for SQL Server Collects Data](/docs/kb/auditor/how-netwrix-auditor-for-sql-server-collects-data.md) diff --git a/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md b/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md index 1fb10017d0..9376987eaf 100644 --- a/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md +++ b/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md @@ -37,14 +37,14 @@ You can exclude specific users and objects from your monitoring scope using the 1. In the main Netwrix Auditor menu, select **Monitoring plans** under **Configuration**. 2. Select the relevant monitoring plan, select the data source and click **Edit**. -3. Select the data source and click **Edit data source**. - +3. Select the data source and click **Edit data source**. + ![bM2zhsogPP.png](images/ka04u000000Qmg4_0EM4u000007cgGr.png) 4. In the left pane, select **Users**. Check the **Exclude these users:** checkbox and click **Add** to add users to be excluded from the monitoring plan. Once all the users are added, click **Save & Close** in the bottom left corner. - + ![UwJqLVpUZx.png](images/ka04u000000Qmg4_0EM4u000007cgOC.png) -5. For objects, select the **Objects** tab in the left pane, check the **Exclude these objects** checkbox and click **Add** to exclude objects from the monitoring scope. Once you've added the objects, click **Save & Close**. - +5. For objects, select the **Objects** tab in the left pane, check the **Exclude these objects** checkbox and click **Add** to exclude objects from the monitoring scope. Once you've added the objects, click **Save & Close**. + ![RmVD0BXEc0.png](images/ka04u000000Qmg4_0EM4u000007cgPy.png) The following examples explain how the exclusion rules work for **Objects**. Same logic applies to the inclusion rules: @@ -53,4 +53,4 @@ The following examples explain how the exclusion rules work for **Objects**. Sam - `dc11.local/OU/*` will exclude objects within the OU. However, the OU itself will not be excluded. - `dc11.local/OU*` will exclude the OU itself, all objects within it, and also all objects whose path begins with `dc11.local/OU` (like `dc11.local/OU_HQ`). -For additional information on omit lists and excluding data sources, refer to the following article: Exclude Objects from Monitoring Scope. +For additional information on omit lists and excluding data sources, refer to the following article: [How to Use Omit Lists](https://docs.netwrix.com/docs/kb/auditor/how-to-use-omit-lists) diff --git a/docs/kb/auditor/how-to-find-destination-of-failed-ntlm-logons.md b/docs/kb/auditor/how-to-find-destination-of-failed-ntlm-logons.md index ef0ae20bcd..8d8abcb944 100644 --- a/docs/kb/auditor/how-to-find-destination-of-failed-ntlm-logons.md +++ b/docs/kb/auditor/how-to-find-destination-of-failed-ntlm-logons.md @@ -44,4 +44,4 @@ To find the actual source of failed logons, enable NTLM auditing temporarily. Fo ## Related Articles: -- /docs/kb/auditor/why-do-i-have-incomplete-information-on-failed-logons — Why Do I Have Incomplete Information on Failed Logons?. +- [Why Do I Have Incomplete Information on Failed Logons?](/docs/kb/auditor/why-do-i-have-incomplete-information-on-failed-logons.md) diff --git a/docs/kb/auditor/how-to-investigate-compression-services-errors.md b/docs/kb/auditor/how-to-investigate-compression-services-errors.md index cbfceb6d56..ab5c142c93 100644 --- a/docs/kb/auditor/how-to-investigate-compression-services-errors.md +++ b/docs/kb/auditor/how-to-investigate-compression-services-errors.md @@ -32,19 +32,14 @@ In the Netwrix Auditor health log, some error events mention issues with the com 2. Log in to the Netwrix server with **Data Collection Account** credentials (monitoring plan – settings – data collection) and check that you can open this path via File Explorer: - `\*audited_server*\c$\Windows\` - Check if you can add or remove files from this folder. If not, check the permissions for the Data Collection account: - - - MonitoringPlans – Data Collecting Account ⸱ v10.6 (opens in a new window) + Check if you can add or remove files from this folder. If not, check the permissions for the Data Collection account: [Data Collecting Account](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/dataaccounts) **Note:** Pay attention to which collector you're going to adjust permissions. 3. Test the ports required for the problematic monitoring plan: - - Requirements – Protocols and Ports ⸱ v10.6 (choose the problematic monitoring plan on the left). - - Here is an article on how to check ports: - - - [How to check TCP, UDP and Dynamic ports required for Netwrix Auditor monitoring plans](/docs/kb/auditor/check-tcp-and-udp-ports-required.md) (opens in a new window) + - [Protocols and Ports](https://docs.netwrix.com/docs/auditor/10_8/requirements/ports) + - [Check TCP and UDP Ports Required](/docs/kb/auditor/check-tcp-and-udp-ports-required.md) 4. Check Remote Registry and Windows Management Instrumentation Services: - - For File Servers Auditing: Windows File Servers – Enable Remote Registry Service ⸱ v10.6 (opens in a new window) - - For Windows Server Auditing: Windows Server – Enable Remote Registry and Windows Management Instrumentation Services ⸱ v10.6 (opens in a new window) + - [Enable Remote Registry and Windows Management Instrumentation Services for Windows Server](https://docs.netwrix.com/docs/auditor/10_8/configuration/windowsserver/remoteregistry) + - [Enable Remote Registry Services for File Server](https://docs.netwrix.com/docs/auditor/10_8/configuration/fileservers/windows/remoteregistryservice) 5. Add antivirus exclusions on the Netwrix and target servers for folders: - - See the article on how to do it: [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) (opens in a new window) + - [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) diff --git a/docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance.md b/docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance.md index 298cf8bf09..76eb0e7889 100644 --- a/docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance.md +++ b/docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance.md @@ -33,7 +33,7 @@ Yes, you are able to migrate audit databases to another Microsoft SQL Server ins ### Prerequisites -- Required Permissions: The account used by Netwrix Auditor must have **db_owner** rights on the target audit databases. For SQL Server Reporting Services (SSRS), the account must have the **Content Manager** role on the Home folder, and users must have the **Browser** role on the Report Server. For detailed steps on assigning these permissions, see Requirements – SQL Server Reporting Services · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +- Required Permissions: The account used by Netwrix Auditor must have **db_owner** rights on the target audit databases. For SQL Server Reporting Services (SSRS), the account must have the **Content Manager** role on the Home folder, and users must have the **Browser** role on the Report Server. For detailed steps on assigning these permissions, see [How to Assign db_owner Permissions](docs/kb/auditor/how-to-assign-db-owner-permissions.md) and [SQL Server Reporting Services](https://docs.netwrix.com/docs/auditor/10_8/requirements/overview) - SQL Server and SSRS must be installed and configured on the new server. ### Instructions @@ -50,15 +50,15 @@ Yes, you are able to migrate audit databases to another Microsoft SQL Server ins 3. Under the **Source** section, select the **Device** option, and click **...** to browse for databases. 4. In the **Specify Backup Devices** window, click **Add** and select the backup database file. Click **OK**. 5. Specify the database name and check the **Restore** checkbox under the **Backup sets to restore** section. -5. Deploy the new Report Database. For more information, see Deploying the Report Server Database: /docs/kb/auditor/deploying-the-report-server-database +5. Deploy the new Report Database. For more information, see [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) 6. Stop the old **SQL Server (%instance_name%)** service. 7. Start `Netwrix Auditor Archive Service` and `Netwrix Auditor Management Service`. 8. In the main Netwrix Auditor menu, select **Settings** > **Audit Database** tab, and specify the new SQL Server and Reporting Service settings. -> **NOTE:** If you receive the following pop-up message, click **Yes** to proceed with modifying the Audit Database settings: +> **NOTE:** If you receive the following pop-up message, click **Yes** to proceed with modifying the Audit Database settings: > ![Audit Database modification prompt](images/servlet_image_3823966b1661.png) -9. Click **Yes** when the following message appears: +9. Click **Yes** when the following message appears: ![Confirmation dialog: Data will become unavailable until the new database is configured](images/servlet_image_3823966b1661.png) 10. In the main Netwrix Auditor menu, select **Settings** > **Investigations** tab. Click **Modify** to specify the new SQL Server settings. 11. Run a search with the filter **When | Equals | Last 7 days**. If you see the relevant data, the databases were migrated successfully and the new SQL Server is being used. @@ -66,6 +66,7 @@ Yes, you are able to migrate audit databases to another Microsoft SQL Server ins ## Related Links -- Requirements – SQL Server Reporting Services · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- How to Prepare the Netwrix Server for a SQL Upgrade: /docs/kb/auditor/how-to-prepare-the-netwrix-server-for-a-sql-upgrade -- Deploying the Report Server Database: /docs/kb/auditor/deploying-the-report-server-database +- [How to Assign db_owner Permissions](docs/kb/auditor/how-to-assign-db-owner-permissions.md) +- [SQL Server Reporting Services](https://docs.netwrix.com/docs/auditor/10_8/requirements/overview) +- [How to Prepare the Netwrix Server for a SQL Upgrade](/docs/kb/auditor/how-to-prepare-the-netwrix-server-for-a-sql-upgrade.md) +- [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) diff --git a/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md b/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md index 31edd9fd66..deb9fcd7bb 100644 --- a/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md +++ b/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md @@ -32,15 +32,15 @@ The size of your Working Folder may grow significantly (up to 1 TB) depending on > **NOTE:** Netwrix Auditor has two file storages used for different purposes: > -> - Long-Term Archive, a repository of collected audit data stored in proprietary Netwrix format (activity records). Audit data is kept in the Long-Term Archive for 10 years as per default settings. The default Long-Term Archive location is ` %ProgramData%\Netwrix Auditor\Data`. For more information on setting Long-Term Archive up, refer to the following article: Netwrix Auditor Settings – Long-Term Archive · v10.6. +> - Long-Term Archive, a repository of collected audit data stored in proprietary Netwrix format (activity records). Audit data is kept in the Long-Term Archive for 10 years as per default settings. The default Long-Term Archive location is ` %ProgramData%\Netwrix Auditor\Data`. For more information on setting Long-Term Archive up, refer to the following article: [Long-Term Archive](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/longtermarchive) > -> If you would like to move Long-Term Archive to another location, refer to the following article: [How to Move Long-Term Archive to a New location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md). +> If you would like to move Long-Term Archive to another location, refer to the following article: [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md). > > - Working Folder, a repository for Netwrix Auditor to store operational information (configuration files for product components, log files, and other data). To ensure the audit trail continuity, Netwrix Auditor also caches some audit data locally in the Working Folder prior to placing it to the Long-Term Archive or any audit database. Audit data is kept in the Working Folder for a shorter period of up to several weeks. The default Working Folder location is ` %ProgramData%\Netwrix Auditor\`. ### Planning and preparation -1. To track your current Working Folder capacity and estimate the disk space you will need on the new target drive, use the **Working Folder** widget of the Health Status dashboard. Refer to the following articles for additional information: Netwrix Auditor Operations and Health − Health Status Dashboard · v10.6 and [How to Check the Netwrix Auditor Health Status](/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md). +1. To track your current Working Folder capacity and estimate the disk space you will need on the new target drive, use the **Working Folder** widget of the Health Status dashboard. Refer to the following articles for additional information: [Netwrix Auditor Operations and Health − Health Status Dashboard](https://docs.netwrix.com/docs/auditor/10_8/admin/healthstatus/dashboard/overview) and [How to Check the Netwrix Auditor Health Status](/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md). 2. The Working Folder can be stored only locally on the Netwrix server — prepare a local folder for the migration process. Make sure the target folder location differs from the Long-Term Archive location. > **NOTE:** Network shares are not supported. @@ -93,8 +93,8 @@ If migration was completed with any errors, refer to the following steps: ## Related articles and links -- Netwrix Auditor Settings – Long-Term Archive · v10.6 -- [How to Move Long-Term Archive to a New location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) -- Netwrix Auditor Operations and Health − Health Status Dashboard · v10.6 +- [Long-Term Archive](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/longtermarchive) +- [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) +- [Netwrix Auditor Operations and Health − Health Status Dashboard](https://docs.netwrix.com/docs/auditor/10_8/admin/healthstatus/dashboard/overview) - [How to Check the Netwrix Auditor Health Status](/docs/kb/auditor/how-to-check-the-netwrix-auditor-health-status.md) - [Open a Ticket · Netwrix 🧭](https://www.netwrix.com/tickets.html#/open-a-ticket) diff --git a/docs/kb/auditor/how-to-move-netwrix-auditor-to-the-cloud.md b/docs/kb/auditor/how-to-move-netwrix-auditor-to-the-cloud.md index 5aeb458665..09bb1559d1 100644 --- a/docs/kb/auditor/how-to-move-netwrix-auditor-to-the-cloud.md +++ b/docs/kb/auditor/how-to-move-netwrix-auditor-to-the-cloud.md @@ -30,12 +30,12 @@ How to move an on-premises Netwrix Auditor installation to a VM running on a clo Consider it to simply be an installation on another network. Netwrix recommends the following scenario: -1. Spin up a new Windows Server VM in your cloud environment, provision it based on the Auditor Requirements: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +1. Spin up a new Windows Server VM in your cloud environment, provision it based on the Auditor Requirements: [Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/overview) -2. After that, migrate your old instance according to the following article: Migrating Netwrix Auditor to New Server: /docs/kb/auditor/migrating-auditor-to-new-server. +2. After that, migrate your old instance according to the following article: Migrating Netwrix Auditor to New Server: [Migrating Auditor to New Server](/docs/kb/auditor/migrating-auditor-to-new-server.md). > **NOTE:** When you go to migrate, both the old and new instances of Netwrix Auditor must be exactly the same version and build. In Netwrix Auditor, navigate to **Settings** -> **About Netwrix Auditor** and check the build number. 3. Make sure you applied the license. You will need a license for Netwrix Auditor no matter where it is used. -If you are using an internal file server, make sure Netwrix Auditor is able to access it across the internet or a VPN if you have a tunnel set up. For additional information on required protocols and ports that must be opened, refer to the following article: Requirements – Protocols and Ports Required: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +If you are using an internal file server, make sure Netwrix Auditor is able to access it across the internet or a VPN if you have a tunnel set up. For additional information on required protocols and ports that must be opened, refer to the following article: [Protocols and Ports](https://docs.netwrix.com/docs/auditor/10_8/requirements/ports) diff --git a/docs/kb/auditor/how-to-prepare-netwrix-server-for-os-upgrade.md b/docs/kb/auditor/how-to-prepare-netwrix-server-for-os-upgrade.md index e34a5da8a2..ae27fdcde8 100644 --- a/docs/kb/auditor/how-to-prepare-netwrix-server-for-os-upgrade.md +++ b/docs/kb/auditor/how-to-prepare-netwrix-server-for-os-upgrade.md @@ -33,7 +33,7 @@ This article provides preparation steps for upgrading an operating system (Windo Taking a snapshot or creating a backup of the Netwrix Auditor Server is recommended for data protection and recovery. The method to be used depends on the approach used for Auditor installation, whether it's on a virtual or physical machine. -> **TIP:** You can configure Netwrix Auditor in the failover mode. To learn about failover and backup scenarios, read [How to configure Netwrix Auditor in the Failover Mode?](/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md) +> **TIP:** You can configure Netwrix Auditor in the failover mode. To learn about failover and backup scenarios, read [How to Configure Netwrix Auditor in Failover Mode](/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md) Stop all Netwrix services running in your server − run the following line in elevated PowerShell: @@ -55,4 +55,4 @@ After the upgrade, you might notice warnings in the Health log. These warnings o ## Related articles -- [How to configure Netwrix Auditor in the Failover Mode?](/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md) +- [How to Configure Netwrix Auditor in Failover Mode](/docs/kb/auditor/how-to-configure-netwrix-auditor-in-failover-mode.md) diff --git a/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md b/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md index 09fe488f10..8cceebc283 100644 --- a/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md +++ b/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md @@ -34,9 +34,9 @@ You can deal with this issue in one of the following ways: 1. Modify Long-Term Archive retention period. For that: - In Netwrix Auditor, navigate to **Settings**. - Select the **Long-Term Archive** page and modify the archive retention settings – provide the value in months. -2. Move the archive to another drive. Learn more in the following article: /docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location (How to Move Long-Term Archive to a New Location). -3. Exclude Data from the Auditing Scope. For additional information, refer to the following article: /docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui (How to Exclude Users and Objects from Monitoring Scope in Netwrix Auditor UI). +2. Move the archive to another drive. Learn more in the following article: [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) +3. Exclude Data from the Auditing Scope. For additional information, refer to the following article: [How to Exclude Users and Objects from Monitoring Scope in Netwrix Auditor UI](/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md) -You can also fine tune your monitoring scope via omit lists — this allows you to proactively decrease the DB loads as changes for omitted items are not recorded. For additional information on available omit lists, review the corresponding article applicable to your target system. For example, for Active Directory omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 Plans — Active Directory Plans — Active Directory Monitoring Scope). +You can also fine tune your monitoring scope via omit lists — this allows you to proactively decrease the DB loads as changes for omitted items are not recorded. For additional information on available omit lists, review the corresponding article applicable to your target system. For example, for Active Directory omit lists, refer to the following article: [Active Directory Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/activedirectory/scope) > **NOTE:** If you are using a virtual machine, either add another drive or expand your current drive. diff --git a/docs/kb/auditor/how-to-properly-remove-auditor-components-prior-to-further-clear-installation.md b/docs/kb/auditor/how-to-properly-remove-auditor-components-prior-to-further-clear-installation.md index 77dbb7abeb..c15e850d6e 100644 --- a/docs/kb/auditor/how-to-properly-remove-auditor-components-prior-to-further-clear-installation.md +++ b/docs/kb/auditor/how-to-properly-remove-auditor-components-prior-to-further-clear-installation.md @@ -53,4 +53,4 @@ In most cases, yes it does. However, for the proper uninstallation of all compre ### Related Article -- [Migrating Netwrix Auditor to New Server](/docs/kb/auditor/migrating-auditor-to-new-server.md) +- [Migrating Auditor to New Server](/docs/kb/auditor/migrating-auditor-to-new-server.md) diff --git a/docs/kb/auditor/how-to-send-netwrix-auditor-logs.md b/docs/kb/auditor/how-to-send-netwrix-auditor-logs.md index a58670cd0e..2efb2e89c4 100644 --- a/docs/kb/auditor/how-to-send-netwrix-auditor-logs.md +++ b/docs/kb/auditor/how-to-send-netwrix-auditor-logs.md @@ -34,7 +34,7 @@ knowledge_article_id: kA00g000000H9efCAC Netwrix Technical Support might request a collection of your Netwrix Auditor logs for troubleshooting purposes. Make sure you gather the following items to help your Technical Support Engineer resolve your issue. -- **Netwrix Auditor System Health event log**. Refer to the following article for additional information on exporting the System Health event log: /docs/kb/auditor/how-to-save-and-zip-netwrix-auditor-system-health-event-log (How to Save and Zip Netwrix Auditor System Health Event Log). +- **Netwrix Auditor System Health event log**. Refer to the following article for additional information on exporting the System Health event log: [How to Save and Zip Netwrix Auditor System Health Event Log](/docs/kb/auditor/how-to-save-and-zip-netwrix-auditor-system-health-event-log.md) - **Netwrix Auditor configuration files**. Navigate to ` %Working Folder%\AuditCore\ConfigServer ` and copy the **ConfigServer** folder. The default location of the **ConfigServer** folder is `C:\ProgramData\Netwrix Auditor\AuditCore\ConfigServer`. @@ -66,17 +66,17 @@ Netwrix Technical Support might request a collection of your Netwrix Auditor log 1. Once you have located all the required logs, copy them to a single folder and compress it by right-clicking the folder and selecting **Send to** > **Compressed (zipped) folder**. -2. Log in to the Customer Portal and attach the archived logs to the opened ticket. Use the following link to open the **Open tickets** page: https://www.netwrix.com/tickets.html#/tickets/open (My Tickets — Open Tickets). +2. Log in to the Customer Portal and attach the archived logs to the opened ticket. Use the following link to open the **Open tickets** page: [Netwrix Customer Portal](https://www.netwrix.com/tickets.html#/tickets/open) > **NOTE:** Once you have opened the **Open Tickets** page and identified the corresponding ticket (with a matching ticket #), you can attach the logs via one of the following ways: > -> - Click the **Add attachments** button located under the **Actions** column of the ticket. +> - Click the **Add attachments** button located under the **Actions** column of the ticket. > ![Customer Portal Attachments 1](images/ka0Qk000000Bei5_00N0g000004CA0p_0EMQk000008M3Qr.png) > -> - Expand the ticket details by clicking the **down carat (▼)** button and click the **plus (+)** button next to **Attachments**. +> - Expand the ticket details by clicking the **down carat (▼)** button and click the **plus (+)** button next to **Attachments**. > ![Customer Portal Attachments 2](images/ka0Qk000000Bei5_00N0g000004CA0p_0EMQk000008M3U5.png) ## Related links -- How to Save and Zip Netwrix Auditor System Health Event Log: /docs/kb/auditor/how-to-save-and-zip-netwrix-auditor-system-health-event-log -- My Tickets — Open Tickets: https://www.netwrix.com/tickets.html#/tickets/open +- [How to Save and Zip Netwrix Auditor System Health Event Log](/docs/kb/auditor/how-to-save-and-zip-netwrix-auditor-system-health-event-log.md) +- [Netwrix Customer Portal](https://www.netwrix.com/tickets.html#/tickets/open) diff --git a/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md b/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md index 9549f0dd2e..9ebc87e02f 100644 --- a/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md +++ b/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md @@ -37,27 +37,22 @@ How to update Netwrix Auditor? > ``` > > This will stop all Netwrix services and prevent complications during the upgrade. - -### Netwrix Auditor v.9.96 and later - -Refer to the following video for step-by-step instructions on upgrading to the latest Netwrix Auditor version: - -- Video: https://www.youtube.com/embed/M_IfPaf_7ig - -For the text version of the guide, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 - ### Netwrix Auditor v.9.95 and earlier -> **NOTE:** For additional information on upgrade increments, refer to the following article: /docs/kb/auditor/upgrade-increments-for-netwrix-auditor +Older versions of Netwrix Auditor must be upgraded incrementally. You must wait 24 hours in between each incremental upgrade. +> **NOTE:** For additional information on upgrade increments, refer to the following article: [Upgrade Increments for Netwrix Auditor](/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md) + +If you are upgrading from a version earlier than 9.96, view the additional steps under **Post Upgrade** > **Legacy Steps** further in this article. -The following steps represent a scenario for upgrading from v.9.95 to v.9.96. The upgrade progress for Netwrix Auditor version 8.0 up to 9.96 will be similar. If you are upgrading from an earlier version, view the additional steps under **Post Upgrade** > **Legacy Steps** further in this article. +### Netwrix Auditor v.9.96 and later 1. When upgrading, it is recommended to log in via your data collection service account. Right-click the installer and choose **Run as administrator**. The following window will include options to view documentation for the new version. 2. Click the **Install** button to continue the upgrade. You will confirm the version you’re upgrading to in the next window. 3. Confirm the version and click **Next**. 4. Read the EULA, check the **I accept the terms of the License Agreement** checkbox and click **Next**. 5. Click **Install**. Once the installation process is complete, you should see the confirmation. -6. Congratulations, you have successfully upgraded! + +For more detailed steps and information, see [Upgrading to the Latest Version](https://docs.netwrix.com/docs/auditor/10_8/install/upgrade) ## Post Upgrade @@ -73,5 +68,5 @@ Upon completion, Netwrix Auditor will launch. To confirm integrity, run the foll ## Related articles -- Upgrade to the Latest Version ⸱ 10.7 — https://docs.netwrix.com/docs/auditor/10_8 -- Upgrade Increments for Netwrix Auditor — /docs/kb/auditor/upgrade-increments-for-netwrix-auditor +- [Upgrading to the Latest Version](https://docs.netwrix.com/docs/auditor/10_8/install/upgrade) +- [Upgrade Increments for Netwrix Auditor](/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md) diff --git a/docs/kb/auditor/how-to-use-omit-lists.md b/docs/kb/auditor/how-to-use-omit-lists.md index 788ec7b470..8b3d271a37 100644 --- a/docs/kb/auditor/how-to-use-omit-lists.md +++ b/docs/kb/auditor/how-to-use-omit-lists.md @@ -32,64 +32,64 @@ Omit lists serve as tools for filtering data. It is important to take careful co ### Active Directory -Active Directory omit lists are found under `\%Netwrix Auditor installation folder%\Active Directory Auditing`. For additional information on Active Directory omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 Directory Plans – Monitoring Scope · v10.7). +Active Directory omit lists are found under `\%Netwrix Auditor installation folder%\Active Directory Auditing`. For additional information on Active Directory omit lists, refer to the following documentation article: [Active Directory Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/activedirectory/scope) ### Microsoft Entra ID (formerly Azure AD) -Microsoft Entra ID omit lists are found under `\%Netwrix Auditor installation folder%\Azure AD Auditing`. For additional information on Microsoft Entra ID omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 Entra ID Plans – Monitoring Scope · v10.7). +Microsoft Entra ID omit lists are found under `\%Netwrix Auditor installation folder%\Azure AD Auditing`. For additional information on Microsoft Entra ID omit lists, refer to the following documentation article: [Entra ID Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/microsoftentraid/scope) ### Event Log Manager -Event Log Manager omit lists are found under `\%Netwrix Auditor installation folder%\Event Log Management`. For additional information on Event Log Manager omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (Windows Server Plans – Windows Server Monitoring Scope: Event Log · v10.7). +Event Log Manager omit lists are found under `\%Netwrix Auditor installation folder%\Event Log Management`. For additional information on Event Log Manager omit lists, refer to the following documentation article: [Event Log Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/tools/eventlogmanager/eventlog) ### Exchange -Exchange omit lists are found under `\%Netwrix Auditor installation folder%\Active Directory Auditing`. For additional information on Exchange omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (Exchange Plans – Monitoring Scope · v10.7). +Exchange omit lists are found under `\%Netwrix Auditor installation folder%\Active Directory Auditing`. For additional information on Exchange omit lists, refer to the following documentation article: [Exchange Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/exchange/scope) ### Exchange Online -Exchange Online omit lists are found under `\%Netwrix Auditor installation folder%\Exchange Online Auditing`. For additional information on Exchange Online omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (Exchange Online Plans – Monitoring Scope · v10.7). +Exchange Online omit lists are found under `\%Netwrix Auditor installation folder%\Exchange Online Auditing`. For additional information on Exchange Online omit lists, refer to the following documentation article: [Exchange Online Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/exchangeonline/scope) ### File Servers -File Servers omit lists are found under `\%Netwrix Auditor installation folder%\File Server Auditing`. For additional information on File Servers omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (File Servers Plans – Monitoring Scope · v10.7). +File Servers omit lists are found under `\%Netwrix Auditor installation folder%\File Server Auditing`. For additional information on File Servers omit lists, refer to the following documentation article: [File Server Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/fileservers/scope) ### Group Policy -Group Policy omit lists are found under `\%Netwrix Auditor installation folder%\Active Directory Auditing`. For additional information on Group Policy omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (Group Policy Plans – Monitoring Scope · v10.7). +Group Policy omit lists are found under `\%Netwrix Auditor installation folder%\Active Directory Auditing`. For additional information on Group Policy omit lists, refer to the following documentation article: [Group Policy Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/grouppolicy/scope) ### Inactive User Tracker -Inactive User Tracker omit lists are found under `\%Working Folder%\Inactive Users Tracker`. For additional information on Inactive User Tracker omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 Objects from Monitoring Scope – Inactive Users · v10.7). +Inactive User Tracker omit lists are found under `\%Working Folder%\Inactive Users Tracker`. For additional information on Inactive User Tracker omit lists, refer to the following article: [Inactive Users Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/tools/inactiveusertracker#monitoring-scope) ### Logon Activity -Logon Activity omit lists are found under `\%Working Folder%\NLA\Settings`. For additional information on Group Policy omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (Logon Activity Plans – Monitoring Scope · v10.7). +Logon Activity omit lists are found under `\%Working Folder%\NLA\Settings`. For additional information on Group Policy omit lists, refer to the following documentation article: [Logon Activity Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/logonactivity/scope) ### Oracle Database -For additional information on Oracle Database omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 (Oracle Database Plans – Monitoring Scope · v10.7). +For additional information on Oracle Database omit lists, refer to the following article: [Oracle Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/oracle/scope) -### Netwrix Password Reset +### Netwrix Password Expiration -Netwrix Password Reset omit lists are found under `\%Netwrix Auditor installation folder%\Password Expiration Alerting`. For additional information on Netwrix Password Reset omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 Directory Plans – AD Monitoring Scope: Password Expiration · v10.7). +Netwrix Password Expiration Notifier omit lists are found under `\%Netwrix Auditor installation folder%\Password Expiration Alerting`. For additional information on Netwrix Password Expiration Notifier omit lists, refer to the following documentation article: [Password Expiration Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_7/tools/passwordexpirationnotifier/monitoringscope) ### SharePoint -SharePoint omit lists are found under `\%Working Folder%\Netwrix Auditor for SharePoint\Configuration\GUID\`. For additional information on SharePoint omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 (SharePoint Plans – Monitoring Scope · v10.7). +SharePoint omit lists are found under `\%Working Folder%\Netwrix Auditor for SharePoint\Configuration\GUID\`. For additional information on SharePoint omit lists, refer to the following article: [SharePoint Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/sharepoint/scope) ### SharePoint Online -SharePoint Online omit lists are found under `\%Working Folder%\Netwrix Auditor for SharePoint Online\Configuration\GUID`. For additional information on SharePoint Online omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 (SharePoint Online Plans – Monitoring Scope · v10.7). +SharePoint Online omit lists are found under `\%Working Folder%\Netwrix Auditor for SharePoint Online\Configuration\GUID`. For additional information on SharePoint Online omit lists, refer to the following article: [SharePoint Online Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/sharepointonline/scope) ### SQL Server Auditing -SQL Server omit lists are found under `\%Netwrix Auditor installation folder%\SQL Server Auditing`. For additional information on SQL Server omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (SQL Server Plans – Monitoring Scope · v10.7). +SQL Server omit lists are found under `\%Netwrix Auditor installation folder%\SQL Server Auditing`. For additional information on SQL Server omit lists, refer to the following documentation article: [SQL Server Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/sqlserver/scope) ### VMWare -VMWare omit lists are found under `\%Netwrix Auditor installation folder%\VMware Auditing`. For additional information on VMWare omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 (VMware Plans – Monitoring Scope · v10.7). +VMWare omit lists are found under `\%Netwrix Auditor installation folder%\VMware Auditing`. For additional information on VMWare omit lists, refer to the following article: [VMWare Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/vmware/scope) ### Windows Server -Windows Server omit lists are found under `\%Netwrix Auditor installation folder%\Windows Server Auditing`. For additional information on Windows Server omit lists, refer to the following documentation article: https://docs.netwrix.com/docs/auditor/10_8 (Windows Server Plans – Monitoring Scope · v10.7). +Windows Server omit lists are found under `\%Netwrix Auditor installation folder%\Windows Server Auditing`. For additional information on Windows Server omit lists, refer to the following documentation article: [Windows Server Monitoring Scope](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/windows/scope) diff --git a/docs/kb/auditor/invalid-character-value-for-cast-specification-error-occurs-when-trying-to-store-audit-data.md b/docs/kb/auditor/invalid-character-value-for-cast-specification-error-occurs-when-trying-to-store-audit-data.md index 1cd55a2429..3c6594c66e 100644 --- a/docs/kb/auditor/invalid-character-value-for-cast-specification-error-occurs-when-trying-to-store-audit-data.md +++ b/docs/kb/auditor/invalid-character-value-for-cast-specification-error-occurs-when-trying-to-store-audit-data.md @@ -57,7 +57,7 @@ The source of the issue was resolved in newer versions, and since you are on 9.9 2. Select a data source, check the desired monitoring plan, and set the dates. 3. Click **Run**. - For additional information on how to import previously collected data, refer to the following article: Investigations https://docs.netwrix.com/docs/auditor/10_8. + For additional information on how to import previously collected data, refer to the following article: [Investigations](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/investigations) 2. Resolution 2 @@ -67,4 +67,4 @@ The source of the issue was resolved in newer versions, and since you are on 9.9 After the database retention period passes, you will be able to remove the old database from the SQL Server completely and will not need this empty plan anymore (stale data would be cleared according to database retention settings, and all the current data will be in the new database). -**IMPORTANT:** If, after these workarounds, you will have the *Archive Service is busy processing activity records* error, refer to the following article: Archive Service is busy processing activity records /docs/kb/auditor/archive-service-is-busy-processing-activity-records). +**IMPORTANT:** If, after these workarounds, you will have the *Archive Service is busy processing activity records* error, refer to the following article: [Archive Service is Busy Processing Activity Records](/docs/kb/auditor/archive-service-is-busy-processing-activity-records.md). diff --git a/docs/kb/auditor/is-it-possible-to-have-ndc-sql-database-and-auditor-databases-on-the-same-sql-server.md b/docs/kb/auditor/is-it-possible-to-have-ndc-sql-database-and-auditor-databases-on-the-same-sql-server.md index 380a69d173..0837b5736a 100644 --- a/docs/kb/auditor/is-it-possible-to-have-ndc-sql-database-and-auditor-databases-on-the-same-sql-server.md +++ b/docs/kb/auditor/is-it-possible-to-have-ndc-sql-database-and-auditor-databases-on-the-same-sql-server.md @@ -32,4 +32,4 @@ Is it possible to have both: Netwrix Data Classification (NDC) SQL database and Netwrix strongly recommends **do not keep** these databases on the same SQL Server. This may lead to significant performance loss. -If, for some reasons, you need to migrate your Netwrix Data Classification (NDC) SQL database to another server, refer to the following article for additional information: [How to Migrate Netwrix Data Classification Database](/docs/kb/dataclassification/how-to-migrate-the-netwrix-data-classification-database.md). +If, for some reasons, you need to migrate your Netwrix Data Classification (NDC) SQL database to another server, refer to the following article for additional information: [How to Migrate the Netwrix Data Classification Database](/docs/kb/dataclassification/how-to-migrate-the-netwrix-data-classification-database.md). diff --git a/docs/kb/auditor/long-data-collection-improving-the-performance.md b/docs/kb/auditor/long-data-collection-improving-the-performance.md index 8d0bc591b3..68ea7bc5bc 100644 --- a/docs/kb/auditor/long-data-collection-improving-the-performance.md +++ b/docs/kb/auditor/long-data-collection-improving-the-performance.md @@ -44,27 +44,27 @@ For the initial setup and post-setup stages, it is highly recommended to stick t > - Average number of activity records of your single data source. > - Hardware limitations. -In general, it is recommended to use different databases for different data sources to avoid rapid database size growth and ease the troubleshooting process. For additional information on creation of monitoring plans, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 +In general, it is recommended to use different databases for different data sources to avoid rapid database size growth and ease the troubleshooting process. For additional information on creation of monitoring plans, refer to the following article: [Monitoring Plans](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/overview) ### Hardware limitations -In case of recent changes to your environment that led to hindered performance, refer to the following article for reference on hardware requirements for your infrastructure: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +In case of recent changes to your environment that led to hindered performance, refer to the following article for reference on hardware requirements for your infrastructure: [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) ### Network traffic compression -To reduce network traffic in distributed deployments, multi-site networks, and other environments with remote locations that have limited bandwidth, it is recommended to use network traffic compression. This option also helps reduce the CPU load for the Netwrix Auditor host — for additional information on setting up traffic compression, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 +To reduce network traffic in distributed deployments, multi-site networks, and other environments with remote locations that have limited bandwidth, it is recommended to use network traffic compression. This option also helps reduce the CPU load for the Netwrix Auditor host — for additional information on setting up traffic compression, refer to the following article: [Settings for Data Collection](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/create#settings-for-data-collection) ### Decrease database retention period -Depending on your environment and needs, the Audit Database retention period can be either increased or decreased. It should be noted, that higher retention period for any database will also lead to greater database sizes and longer times to search for stored data. For additional information on setting a database retention period, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 +Depending on your environment and needs, the Audit Database retention period can be either increased or decreased. It should be noted, that higher retention period for any database will also lead to greater database sizes and longer times to search for stored data. For additional information on setting a database retention period, refer to the following article: [Configure Database Retention](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/auditdatabase#configure-database-retention) ### Exclude Netwrix-related folders from antivirus scans -As Netwrix Auditor creates and writes audit data in smaller portions, your antivirus suite will attempt to check every new or edited file to complete the threat check. Full file reads might take extra time to complete, hindering the writing capability of Netwrix Auditor, in some cases leading to timeouts and additional RAM and CPU loads. Refer to the following article for additional information on folders to be excluded from regular antivirus checks: /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor +As Netwrix Auditor creates and writes audit data in smaller portions, your antivirus suite will attempt to check every new or edited file to complete the threat check. Full file reads might take extra time to complete, hindering the writing capability of Netwrix Auditor, in some cases leading to timeouts and additional RAM and CPU loads. Refer to the following article for additional information on folders to be excluded from regular antivirus checks: [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) ### Set up data collection for State-in-Time reports -Some collectors allow for scheduling of State-in-Time data collection — increasing the time window between these events will help to avoid resource consumption spikes. Same applies to Activity Summary reports — increasing the time window between these reports will allow you to decrease the momentary loads. Both these changes won't affect the overall resource consumption, they will distribute the consumption evenly. Refer to the following article for additional information on editing data sources: https://docs.netwrix.com/docs/auditor/10_8 +Some collectors allow for scheduling of State-in-Time data collection — increasing the time window between these events will help to avoid resource consumption spikes. Same applies to Activity Summary reports — increasing the time window between these reports will allow you to decrease the momentary loads. Both these changes won't affect the overall resource consumption, they will distribute the consumption evenly. Refer to the following article for additional information on editing data sources: [Manage Data Sources](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/datasources) ### Specify domain controllers and Exchange servers for data collection @@ -89,15 +89,15 @@ In case you have an Event Log Manager plan set up, make sure it doesn't monitor ### Omit lists -You can limit the monitoring scope in your environment via omit lists — this allows to proactively decrease the DB loads as changes for omitted items are not recorded. For additional information on how to exclude users and objects via Netwrix Auditor UI, refer to the following article: /docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui. For additional information on available omit lists, review the corresponding article applicable to your target system. For example, for Active Directory omit lists, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 +You can limit the monitoring scope in your environment via omit lists — this allows to proactively decrease the DB loads as changes for omitted items are not recorded. For additional information on how to exclude users and objects via Netwrix Auditor UI, refer to the following article: [How to Exclude Users and Objects from Monitoring Scope in Netwrix Auditor UI](/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md). For additional information on how to use omit lists, refer to the following article: [How to Use Omit Lists](https://docs.netwrix.com/docs/kb/auditor/how-to-use-omit-lists) ### Related articles -- https://docs.netwrix.com/docs/auditor/10_8 -- https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- https://docs.netwrix.com/docs/auditor/10_8 -- https://docs.netwrix.com/docs/auditor/10_8 -- /docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor -- https://docs.netwrix.com/docs/auditor/10_8 -- /docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui -- https://docs.netwrix.com/docs/auditor/10_8 +- [Monitoring Plans](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/overview) +- [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) +- [Settings for Data Collection](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/create#settings-for-data-collection) +- [Configure Database Retention](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/auditdatabase#configure-database-retention) +- [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) +- [Manage Data Sources](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/datasources) +- [How to Exclude Users and Objects from Monitoring Scope in Netwrix Auditor UI](/docs/kb/auditor/how-to-exclude-users-and-objects-from-monitoring-scope-in-netwrix-auditor-ui.md) +- [How to Use Omit Lists](https://docs.netwrix.com/docs/kb/auditor/how-to-use-omit-lists) diff --git a/docs/kb/auditor/manually-update-user-activity-core-service.md b/docs/kb/auditor/manually-update-user-activity-core-service.md index 88c884545c..8873727be3 100644 --- a/docs/kb/auditor/manually-update-user-activity-core-service.md +++ b/docs/kb/auditor/manually-update-user-activity-core-service.md @@ -29,7 +29,7 @@ The Netwrix Auditor User Activity Core Service version in a target server does n ## Answer -> **NOTE:** Refer to the following article for additional information on establishing the version of your Auditor server: /docs/kb/auditor/how-to-find-out-my-netwrix-auditor-version (How to Find Out My Netwrix Auditor Version). +> **NOTE:** Refer to the following article for additional information on establishing the version of your Auditor server: [How to Find Out My Netwrix Auditor Version](/docs/kb/auditor/how-to-find-out-my-netwrix-auditor-version.md) > **IMPORTANT:** It is recommended to stop User Activity services in the Netwrix server before making changes to installed Core Services in targets. Run the following command in elevated PowerShell to stop User Activity Core Service and Audit Service: > @@ -59,7 +59,7 @@ User Activity Core Service is designed to be deployed automatically when adding ### Manually update Core Service in multiple target servers − Option #1 -1. Download the following PowerShell script: https://www.netwrix.com/download/products/KnowledgeBase/Uninstall-NetwrixProduct.ps1 (Uninstall-NetwrixProduct.ps1). +1. Download the following PowerShell script: [Uninstall Netwrix Product](https://www.netwrix.com/download/products/KnowledgeBase/Uninstall-NetwrixProduct.ps1). 2. In elevated PowerShell in your Netwrix server, run the script to uninstall Core Service from all target servers in the User Activity monitoring plan: ```powershell @@ -117,5 +117,5 @@ User Activity Core Service is designed to be deployed automatically when adding ## Related links -- How to Find Out My Netwrix Auditor Version: /docs/kb/auditor/how-to-find-out-my-netwrix-auditor-version -- Uninstall-NetwrixProduct.ps1: https://www.netwrix.com/download/products/KnowledgeBase/Uninstall-NetwrixProduct.ps1 +- [How to Find Out My Netwrix Auditor Version](/docs/kb/auditor/how-to-find-out-my-netwrix-auditor-version.md) +- [Uninstall Netwrix Product](https://www.netwrix.com/download/products/KnowledgeBase/Uninstall-NetwrixProduct.ps1) diff --git a/docs/kb/auditor/migrating-auditor-to-new-server.md b/docs/kb/auditor/migrating-auditor-to-new-server.md index 4f70f24bab..1363013f25 100644 --- a/docs/kb/auditor/migrating-auditor-to-new-server.md +++ b/docs/kb/auditor/migrating-auditor-to-new-server.md @@ -43,8 +43,8 @@ This article outlines a step-by-step process for how to migrate a Netwrix Audito When moving Netwrix Auditor to a new server, ensure the version and build of the Netwrix Auditor instance on your new server matches the old server version and build. Your new server should meet the Software Requirements and Hardware Requirements for the appropriate version: -- Software Requirements · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- Hardware Requirements · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview +- [Software Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/software) +- [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) ### Exporting the Netwrix Auditor configuration file @@ -73,13 +73,12 @@ By default, Long-Term Archive is located at `C:\ProgramData\Netwrix Auditor\Data Navigate to your Long-Term Archive location and copy the entire folder. Proceed by transferring Long-Term Archive to the new Netwrix Auditor server. While you can migrate it to the default location, it is recommended to keep Long-Term Archive on a separate drive. This will prevent rapid storage consumption on the C drive. Take note of where you have placed Long-Term Archive on the new Netwrix Auditor server. -> **NOTE:** You can split the Long-Term Archive migration into two steps if the size of your ActivityRecords folder doesn't allow for a quick migration. For additional information, refer to the following article: How to Move Long-Term Archive to a New Location: /docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location +> **NOTE:** You can split the Long-Term Archive migration into two steps if the size of your ActivityRecords folder doesn't allow for a quick migration. For additional information, refer to the following article: How to Move Long-Term Archive to a New Location: [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) ### SQL Databases -It is important to decide on migration of your SQL databases or keeping them in your current SQL Server instance during the Netwrix Auditor migration. In case you'd like to migrate your SQL Server databases, refer to the following article for additional information: Migrating Netwrix Databases: /docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance - -Once SQL migration is complete, refer to the following article for additional information on Report Server Database deployment: Deploying the Report Server Database: /docs/kb/auditor/deploying-the-report-server-database +It is important to decide on migration of your SQL databases or keeping them in your current SQL Server instance during the Netwrix Auditor migration. In case you'd like to migrate your SQL Server databases, refer to the following article for additional information:[How to Migrate Netwrix Auditor Databases to Another SQL Server Instance](/docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance.md) +Once SQL migration is complete, refer to the following article for additional information on Report Server Database deployment:[Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) ### Final Steps @@ -110,17 +109,17 @@ Start-Service -Displayname Netwrix* 2. Click **Properties** for the instance name. 3. In Netwrix Auditor **Settings** menu, select **Audit Databse** in the left pane and click **Modify** under **Audit database settings**. 4. Specify the SQL Server instance name and credentials of the account used to write data to SQL databases. Refer to the following articles for additional information on SQL permissions and report server database deployment: - - Requirements for SQL Server to Store Audit Data – Configure Audit Database Account · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview - - Deploying the Report Server Database: /docs/kb/auditor/deploying-the-report-server-database + - [Requirements for SQL Server to Store Audit Data](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserver) + - [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) ### Important Notes Post-Migration -- If you've previously had any omit lists configured, you will have to either copy the contents of these omit lists or copy the files to the new server. For additional information on omit lists and their locations, refer to the following article: How to Use Omit Lists: /docs/kb/auditor/how-to-use-omit-lists +- If you've previously had any omit lists configured, you will have to either copy the contents of these omit lists or copy the files to the new server. For additional information on omit lists and their locations, refer to the following article: [How to Use Omit Lists](/docs/kb/auditor/how-to-use-omit-lists.md) - You cannot migrate Event Log Manager or its configuration files. Remember to manually copy the configuration over to the new server. Event Log Manager data will be migrated in case you've migrated SQL databases. -- Netwrix Password Reset and Netwrix Inactive Users Tracker do not store any data — their reports are sent daily via email. For more information on how to migrate these Netwrix tools, refer to the following articles: - - Migrate Netwrix Password Reset to a Different Server: /docs/kb/auditor/migrate-netwrix-password-expiration-notifier-to-a-different-server - - How to migrate Netwrix Inactive Users Tracker to other servers: /docs/kb/auditor/how-to-migrate-netwrix-inactive-users-tracker-to-other-servers -- User Activity data will not be collected until the Core Service is redeployed after migration. For more information on how to reset Netwrix Auditor User Activity Core Service to allow the monitoring plan to redeploy with the new configuration settings and registry keys, review the following article: Uninstalling User Activity Monitoring Agents: /docs/kb/auditor/uninstalling-user-activity-monitoring-agents +- Netwrix Password Expiration Notifier and Netwrix Inactive Users Tracker do not store any data — their reports are sent daily via email. For more information on how to migrate these Netwrix tools, refer to the following articles: + - [Migrate PEN to a Different Server](/docs/kb/auditor/migrate-netwrix-password-expiration-notifier-to-a-different-server.md) + - How to migrate Netwrix Inactive Users Tracker to other servers: [How to Migrate Netwrix Inactive Users Tracker to Other Servers](/docs/kb/auditor/how-to-migrate-netwrix-inactive-users-tracker-to-other-servers.md) +- User Activity data will not be collected until the Core Service is redeployed after migration. For more information on how to reset Netwrix Auditor User Activity Core Service to allow the monitoring plan to redeploy with the new configuration settings and registry keys, review the following article: [Uninstalling User Activity Monitoring Agents](/docs/kb/auditor/uninstalling-user-activity-monitoring-agents.md) ### Validation Checklist @@ -129,20 +128,22 @@ Run the following checks for your migrated Netwrix Auditor instance: - Run a search with blank parameters (an open search). - Run a report on a data source you are auditing. - Confirm your monitoring plans have carried over. -- Apply the Auditor license. Refer to the following article for additional information: How to Apply Netwrix Auditor License: /docs/kb/auditor/how-to-apply-netwrix-auditor-license +- Apply the Auditor license. Refer to the following article for additional information:[How to Apply Netwrix Auditor License](/docs/kb/auditor/how-to-apply-netwrix-auditor-license.md) -> **IMPORTANT:** The SSL certificate previously used for Integration API will be missing from the certificate store in your new Netwrix Auditor server. Generate a new SSL certificate for Netwrix Auditor Integration API − refer to the following article for additional information: Integration API − Security ⸱ v10.7: https://docs.netwrix.com/docs/auditor/10_8 +> **IMPORTANT:** The SSL certificate previously used for Integration API will be missing from the certificate store in your new Netwrix Auditor server. Generate a new SSL certificate for Netwrix Auditor Integration API − refer to the following article for additional information: [Integration API](https://docs.netwrix.com/docs/auditor/10_8/api/overview) Monitor the system over the next few days to confirm the migration has been completed successfully. As long as the system is operable and you can view migrated data, you can delete all traces of Netwrix Auditor from your former server, including the software uninstallation. ## Related Articles -- Software Requirements · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- Hardware Requirements · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- How to Move Long-Term Archive to a New Location: /docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location -- Migrating Netwrix Databases: /docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance -- Deploying the Report Server Database: /docs/kb/auditor/deploying-the-report-server-database -- Requirements for SQL Server to Store Audit Data – Configure Audit Database Account · v10.7: https://docs.netwrix.com/docs/auditor/10_8/requirements/overview -- Integration API − Security ⸱ v10.7: https://docs.netwrix.com/docs/auditor/10_8 -- Specified Logon Session Does Not Exist Error in Netwrix Auditor: /docs/kb/auditor/specified-logon-session-does-not-exist-error-in-netwrix-auditor -- How to Apply Netwrix Auditor License: /docs/kb/auditor/how-to-apply-netwrix-auditor-license +- [Software Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/software) +- [Hardware Requirements](https://docs.netwrix.com/docs/auditor/10_8/requirements/console) +- [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) +- [How to Migrate Netwrix Auditor Databases to Another SQL Server Instance](/docs/kb/auditor/how-to-migrate-netwrix-auditor-databases-to-another-sql-server-instance.md) +- [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) +- [Requirements for SQL Server to Store Audit Data](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserver) +[Integration API](https://docs.netwrix.com/docs/auditor/10_8/api/overview) +- [Specified Logon Session Does Not Exist Error in Netwrix Auditor](/docs/kb/auditor/specified-logon-session-does-not-exist-error-in-netwrix-auditor.md) +- [How to Apply Netwrix Auditor License](/docs/kb/auditor/how-to-apply-netwrix-auditor-license.md) +- [Migrate PEN to a Different Server](/docs/kb/auditor/migrate-netwrix-password-expiration-notifier-to-a-different-server.md) +- [How to Migrate Netwrix Inactive Users Tracker to Other Servers](/docs/kb/auditor/how-to-migrate-netwrix-inactive-users-tracker-to-other-servers.md) diff --git a/docs/kb/auditor/netwrix-auditor-consumes-disk-space-recommendations.md b/docs/kb/auditor/netwrix-auditor-consumes-disk-space-recommendations.md index 3b0e87390c..cc94f8e9c7 100644 --- a/docs/kb/auditor/netwrix-auditor-consumes-disk-space-recommendations.md +++ b/docs/kb/auditor/netwrix-auditor-consumes-disk-space-recommendations.md @@ -43,19 +43,19 @@ The following recommendations will allow you to reduce disk space consumption: Follow these Knowledge Base articles for additional information: - [How to Move Long-Term Archive to a New Location](/docs/kb/auditor/how-to-move-long-term-archive-to-a-new-location.md) - - [How to Prevent Overflow on the Drive Where the Long-Term Archive is Located?](/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md) + - [How to Prevent Long-Term Archive Overflow](/docs/kb/auditor/how-to-prevent-long-term-archive-overflow.md) 3. Migrate Working Folder to a new location. The size of your Working Folder may grow significantly (normally, up to `10 – 20GB`) depending on the workload, especially during activity peaks. If your system drive capacity is limited, you might want to keep the temporary files and trace logs on another drive, i.e. change the Working Folder default location. - For additional information on how to move the Working Folder, refer to the following article: [How to Migrate Netwrix Auditor Working Folder to a New Location?](/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md). + For additional information on how to move the Working Folder, refer to the following article: [How to Migrate Netwrix Auditor Working Folder to a New Location](/docs/kb/auditor/how-to-migrate-netwrix-auditor-working-folder-to-a-new-location.md). 4. Remove the **Netwrix Backup** folder. Netwrix strongly recommends keeping the backups for supported product versions. For additional information about the Backup folder, refer to the following article: [Backups Folder in Netwrix Auditor](/docs/kb/auditor/backups-folder-in-netwrix-auditor.md). -5. Additional space might be consumed by the **Local DB** in the **ShortTerm** folder; this can occur when the SQL communication is not working properly or the DB files getting corrupted. Follow the resolution steps in the article: [Netwrix Auditor System Health Log Contains EventID 2002](https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA04u000000wnpOCAQ.html). +5. Additional space might be consumed by the **Local DB** in the **ShortTerm** folder; this can occur when the SQL communication is not working properly or the DB files getting corrupted. Follow the resolution steps in the article: [Netwrix Auditor System Health Log Contains EventID 2002](https://docs.netwrix.com/docs/kb/auditor/netwrix-auditor-health-log-contains-eventid-2002). 6. Check the size of the Windows page file. If it grows big, this indicates lack of RAM and Windows tries to compensate it with disk space. Adding more RAM helps fixing disk space consumption by page files. @@ -75,5 +75,5 @@ The following recommendations will allow you to reduce disk space consumption: - [Error: Netwrix Auditor for File Servers Audit Service Terminated Unexpectedly](/docs/kb/auditor/error-netwrix-auditor-for-file-servers-audit-service-terminated-unexpectedly.md) - [Antivirus Exclusions for Netwrix Auditor](/docs/kb/auditor/antivirus-exclusions-for-netwrix-auditor.md) -- [How to Add Additional Space to Long-Term Archive?](/docs/kb/auditor/how-to-add-additional-space-to-long-term-archive.md) -- [Netwrix Auditor System Health Log Contains EventID 2002](https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA04u000000wnpOCAQ.html) +- [How to Add Additional Space to Long-Term Archive](/docs/kb/auditor/how-to-add-additional-space-to-long-term-archive.md) +- [Netwrix Auditor System Health Log Contains EventID 2002](https://docs.netwrix.com/docs/kb/auditor/netwrix-auditor-health-log-contains-eventid-2002) diff --git a/docs/kb/auditor/netwrix-auditor-licensing-faqs.md b/docs/kb/auditor/netwrix-auditor-licensing-faqs.md index a84c086b5c..536af1ffee 100644 --- a/docs/kb/auditor/netwrix-auditor-licensing-faqs.md +++ b/docs/kb/auditor/netwrix-auditor-licensing-faqs.md @@ -41,8 +41,8 @@ Most Netwrix Auditor applications are licensed per enabled AD user. Review the t | Netwrix Auditor for Windows File Servers | Per enabled AD user | | Netwrix Auditor for Qumulo File Servers | Per enabled AD user | | Netwrix Auditor for Synology File Servers | Per enabled AD user | -| Netwrix Auditor for Windows Server | Per enabled AD user -or +| Netwrix Auditor for Windows Server | Per enabled AD user +or Per server | | Netwrix Auditor for Access Reviews | Per enabled AD user | @@ -59,51 +59,50 @@ Per server | | Netwrix Auditor for MS Teams | Per enabled Microsoft Entra ID user | ## How Can I Count Enabled AD Users? -To count the number of licenses, you should provide the number of `enabled AD user accounts`, that is, calculate the number of your Active Directory user accounts in the Enabled state. Follow the instructions provided in this Netwrix Auditor Knowledge Base article: /docs/kb/auditor/determining-the-number-of-enabled-active-directory-user-accounts. Then round up the calculation result to reserve some space for growth and to prevent scalability issues. For example: +To count the number of licenses, you should provide the number of `enabled AD user accounts`, that is, calculate the number of your Active Directory user accounts in the Enabled state. Follow the instructions provided in this Netwrix Auditor Knowledge Base article: [Determining the Number of Enabled Active Directory User Accounts](/docs/kb/auditor/determining-the-number-of-enabled-active-directory-user-accounts.md). Then round up the calculation result to reserve some space for growth and to prevent scalability issues. For example: - If the calculation script returns 214, round up this value to 220 when applying for the license. - If the calculation script returns 1841, round up this value to 2000 when applying for the license. -> **IMPORTANT:** -> - Service accounts are also counted. The accounts under which the services run in your infrastructure are included in the license count and, eventually, in the cost of a license. -> - Deleted, disabled, group, or computer accounts are not included in the license count. -> - You can use either `Omitallowedpathlist` omit list to reduce user count by omitting certain OUs from being audited or specify omitted OUs in the Netwrix Auditor UI. You will not gain any information from these OUs; however, the amount of licenses will be reduced. For additional information on reducing the user count via Netwrix Auditor UI, refer to the following article: /docs/kb/auditor/reducing-the-used-active-directory-and-entra-id-license-counts. For additional information on omit lists, refer to the following article: /docs/kb/auditor/how-to-use-omit-lists. +> **IMPORTANT:** +> - Service accounts are also counted. The accounts under which the services run in your infrastructure are included in the license count and, eventually, in the cost of a license. +> - Deleted, disabled, group, or computer accounts are not included in the license count. +> - You can use either `Omitallowedpathlist` omit list to reduce user count by omitting certain OUs from being audited or specify omitted OUs in the Netwrix Auditor UI. You will not gain any information from these OUs; however, the amount of licenses will be reduced. For additional information on reducing the user count via Netwrix Auditor UI, refer to the following article: [Reducing the Used Active Directory and Entra ID License Counts](/docs/kb/auditor/reducing-the-used-active-directory-and-entra-id-license-counts.md). For additional information on omit lists, refer to the following article: [How to Use Omit Lists](/docs/kb/auditor/how-to-use-omit-lists.md). ## What Should I Provide for Netwrix Auditor for Network Devices Licensing? -You should provide the number of `source IP addresses` of your network devices. This count is used to estimate the number of licenses required to audit the Network Devices data source. To learn more, read the How to Count the Number of Your Network Devices in Your Configuration article: /docs/kb/auditor/how-to-count-the-number-of-your-network-devices-in-your-configuration. - +You should provide the number of `source IP addresses` of your network devices. This count is used to estimate the number of licenses required to audit the Network Devices data source. To learn more, read the How to Count the Number of Your Network Devices in Your Configuration article: [How to count the number of your network devices in your configuration?](/docs/kb/auditor/how-to-count-the-number-of-your-network-devices-in-your-configuration.md). > **IMPORTANT:** You should count all physical devices regardless of your forwarding configuration. ## What Should I Provide for Netwrix Auditor for Oracle Database Licensing? -The licensing for Netwrix Auditor for Oracle Database is based on the number of processor licenses utilized by the entire Oracle Database deployment, that is, the number of processor licenses you purchased from Oracle. -Oracle defines the number of processor licenses as follows: +The licensing for Netwrix Auditor for Oracle Database is based on the number of processor licenses utilized by the entire Oracle Database deployment, that is, the number of processor licenses you purchased from Oracle. +Oracle defines the number of processor licenses as follows: “The number of required licenses shall be determined by multiplying the total number of cores of the processor by a core processor licensing factor specified on the Oracle Processor Core Factor Table.” -If you are unsure how many Oracle processor licenses you have, check your processor type, find the corresponding factor in the Oracle Processor Core Factor Table: http://www.oracle.com/us/corporate/contracts/processor-core-factor-table-070634.pdf, and multiply it by the number of CPU cores on your Oracle Database deployment. +If you are unsure how many Oracle processor licenses you have, check your processor type, find the corresponding factor in the [Oracle Processor Core Factor Table](http://www.oracle.com/us/corporate/contracts/processor-core-factor-table-070634.pdf), and multiply it by the number of CPU cores on your Oracle Database deployment. To obtain the `number of CPU cores`, go to the How to Count Number of CPU Cores on Your Oracle Database Deployment article: /docs/kb/auditor/how-to-count-number-of-cpu-cores-on-your-oracle-database-deployment. ## What Should I Provide for Netwrix Auditor for Windows Server Licensing? -Netwrix Auditor for Windows Server is licensed either by the number of enabled AD users or the total number of virtual and physical servers. -Refer to the questions above for more information on how to count the number of AD accounts in the Enabled state. +Netwrix Auditor for Windows Server is licensed either by the number of enabled AD users or the total number of virtual and physical servers. +Refer to the questions above for more information on how to count the number of AD accounts in the Enabled state. For per-server licensing, count and provide the total number of the servers (physical or virtual) you are going to monitor with Netwrix Auditor. ## What Should I Provide for Netwrix Auditor for Microsoft Entra ID Licensing? You should provide the number of `enabled Microsoft Entra ID user accounts`. Starting from version 9.96, guest/external users are not included in the license count. Follow the instructions outlined in the How to Determine the Count of Enabled Microsoft Entra ID Accounts article: /docs/kb/auditor/determining-the-number-of-enabled-microsoft-entra-id-accounts. -You can use `omitUPNlist.txt` omit list to reduce user count by omitting certain user UPNs from being audited. You will not gain any information on these users; however, the amount of licenses will be reduced. For additional information on reducing the user count via Netwrix Auditor UI, refer to the following article: /docs/kb/auditor/reducing-the-used-active-directory-and-entra-id-license-counts. For additional information on omit lists, refer to the following article: /docs/kb/auditor/how-to-use-omit-lists. +You can use `omitUPNlist.txt` omit list to reduce user count by omitting certain user UPNs from being audited. You will not gain any information on these users; however, the amount of licenses will be reduced. For additional information on reducing the user count via Netwrix Auditor UI, refer to the following article: [Reducing the Used Active Directory and Entra ID License Counts](/docs/kb/auditor/reducing-the-used-active-directory-and-entra-id-license-counts.md). For additional information on omit lists, refer to the following article: [How to Use Omit Lists](/docs/kb/auditor/how-to-use-omit-lists.md). ## What Should I Provide for Netwrix Auditor for Exchange Licensing? -For the Exchange data source, Netwrix Auditor offers a convenient hybrid pricing model specifically designed for prospects with a hybrid Exchange (on-premises Exchange Server and Exchange Online) deployment. You can also have an on-premises-only or a cloud-only Exchange environment. +For the Exchange data source, Netwrix Auditor offers a convenient hybrid pricing model specifically designed for prospects with a hybrid Exchange (on-premises Exchange Server and Exchange Online) deployment. You can also have an on-premises-only or a cloud-only Exchange environment. To get a hybrid Exchange license, you need to provide the `total number of user mailboxes, both on-premises and online`. For example, if you have 200 online mailboxes and 300 on-premises Exchange mailboxes, you need to purchase a license for 500 mailboxes. -To calculate the number of user mailboxes used in your Microsoft Office 365 tenants, refer to the guidelines presented in the article titled How to Count Number of Licenses Required for Auditing a Microsoft Office 365 Tenant: /docs/kb/auditor/how-to-count-number-of-licenses-required-for-auditing-a-microsoft-office-365-tenant. +To calculate the number of user mailboxes used in your Microsoft Office 365 tenants, refer to the guidelines presented in the article titled How to Count Number of Licenses Required for Auditing a Microsoft Office 365 Tenant: [How to count number of licenses required for auditing a Microsoft Office 365 tenant?](/docs/kb/auditor/how-to-count-number-of-licenses-required-for-auditing-a-microsoft-office-365-tenant.md). > **IMPORTANT:** A **user mailbox** can be a personal mailbox, an Online Archive mailbox, or both. Shared and resource mailboxes do not count. For example, if an Exchange Online user has one personal mailbox and one Online Archive mailbox, this user will be counted as a single licensed object. If a user has no Online Archive mailbox but three personal mailboxes, this will be counted as three licensed objects. ## What Should I Provide for Netwrix Auditor for SharePoint Licensing? -For the SharePoint data source, Netwrix Auditor offers a convenient hybrid pricing model specifically designed for prospects with a hybrid SharePoint (on-premises SharePoint and SharePoint Online) deployment. You can also have an on-premises-only or a cloud-only SharePoint environment. +For the SharePoint data source, Netwrix Auditor offers a convenient hybrid pricing model specifically designed for prospects with a hybrid SharePoint (on-premises SharePoint and SharePoint Online) deployment. You can also have an on-premises-only or a cloud-only SharePoint environment. To get a hybrid SharePoint license, you need to provide the `total number of AD users` (both enabled AD users on-premises and cloud-only Microsoft Entra ID users). For example, if you have 450 enabled on-premises AD users and 50 active Microsoft Entra ID users, you need to purchase a license for 500 users. @@ -112,11 +111,11 @@ For example, if you have 450 enabled on-premises AD users and 50 active Microsof When Netwrix Auditor is running, the number of `enabled AD user accounts` (license count that applies to the corresponding monitoring areas) is refreshed by the Netwrix Auditor component responsible for AD data collection. If this count is exceeded, your SQL Server audit gets out of compliance with the existing license. Moreover, you have no opportunity to start auditing any other data source that depends on this count (for example, VMware or Windows Server). ## How Can I Obtain a License? -To obtain a proper license for your infrastructure, you should provide the corresponding counts to Netwrix. Then you will receive the license key to address your auditing needs, based on the numbers you provided. +To obtain a proper license for your infrastructure, you should provide the corresponding counts to Netwrix. Then you will receive the license key to address your auditing needs, based on the numbers you provided. For evaluation purposes, you can use a free trial version of Netwrix Auditor that has a bundled trial license. ### To update or add a license in Netwrix Auditor Console: -1. Go to **Settings** > **Licenses** and click **Update**. +1. Go to **Settings** > **Licenses** and click **Update**. 2. In the dialog that opens, do one of the following: - Select **Load from file**, click **Browse**, and point to a license file received from your sales representative. - Select **Enter manually** and type in your company name, license count, and license codes. @@ -124,7 +123,7 @@ For evaluation purposes, you can use a free trial version of Netwrix Auditor tha To request more licensing information, please contact licensing@netwrix.com. ## What Is Displayed in the License Window of the Product UI? -You can use the **Licenses** window to review the status of your current licenses, update them, and add new licenses. +You can use the **Licenses** window to review the status of your current licenses, update them, and add new licenses. On the Netwrix Auditor main screen, click the **Settings** tile and then select **Licenses**. The window will look as shown below. ![Licenses window in Auditor UI showing license status and counts](images/ka0Qk000000DbzR_0EM4u000002PbUM.png) @@ -140,11 +139,11 @@ Here: You may choose to no longer audit a data source, and thus not renew the license for the corresponding application. Unused licenses do not need to be removed from Netwrix Auditor, with the exception of one special case. This case is upgrading a Netwrix Auditor installation that has some expired licenses. Most recent (9.95 and up) versions of Netwrix Auditor allow you to remove a license directly from the user interface. If you have an older version of Netwrix Auditor and need to remove an expired license as it blocks your upgrade, contact Netwrix Technical Support. ## Related Articles -- How to Determine the Number of Enabled User Accounts for Auditor: /docs/kb/auditor/determining-the-number-of-enabled-active-directory-user-accounts -- Reducing the Used License Count: /docs/kb/auditor/reducing-the-used-active-directory-and-entra-id-license-counts -- How to Use Omit Lists: /docs/kb/auditor/how-to-use-omit-lists -- How to Count the Number of Your Network Devices in Your Configuration: /docs/kb/auditor/how-to-count-the-number-of-your-network-devices-in-your-configuration -- Oracle Processor Core Factor Table ⸱ Oracle: http://www.oracle.com/us/corporate/contracts/processor-core-factor-table-070634.pdf -- How to Count Number of CPU Cores on Your Oracle Database Deployment: /docs/kb/auditor/how-to-count-number-of-cpu-cores-on-your-oracle-database-deployment -- How to Determine the Count of Enabled Microsoft Entra ID Accounts: /docs/kb/auditor/determining-the-number-of-enabled-microsoft-entra-id-accounts -- How to Count Number of Licenses Required for Auditing a Microsoft Office 365 Tenant: /docs/kb/auditor/how-to-count-number-of-licenses-required-for-auditing-a-microsoft-office-365-tenant +- [Determining the Number of Enabled Active Directory User Accounts](/docs/kb/auditor/determining-the-number-of-enabled-active-directory-user-accounts.md) +- [Reducing the Used Active Directory and Entra ID License Counts](/docs/kb/auditor/reducing-the-used-active-directory-and-entra-id-license-counts.md) +- [How to Use Omit Lists](/docs/kb/auditor/how-to-use-omit-lists.md) +- [How to count the number of your network devices in your configuration?](/docs/kb/auditor/how-to-count-the-number-of-your-network-devices-in-your-configuration.md) +- [Oracle Processor Core Factor Table](http://www.oracle.com/us/corporate/contracts/processor-core-factor-table-070634.pdf) +- [How to Count Number of CPU Cores on Your Oracle Database Deployment](https://docs.netwrix.com/docs/kb/auditor/how-to-count-number-of-cpu-cores-on-your-oracle-database-deployment) +- [How to Determine the Count of Enabled Microsoft Entra ID Accounts](https://docs.netwrix.com/docs/kb/auditor/determining-the-number-of-enabled-microsoft-entra-id-accounts#instructions) +- [How to count number of licenses required for auditing a Microsoft Office 365 tenant?](/docs/kb/auditor/how-to-count-number-of-licenses-required-for-auditing-a-microsoft-office-365-tenant.md) diff --git a/docs/kb/auditor/no-monitoring-plans-found-in-netwrix-auditor.md b/docs/kb/auditor/no-monitoring-plans-found-in-netwrix-auditor.md index 51462bab1f..f35dcbe2e5 100644 --- a/docs/kb/auditor/no-monitoring-plans-found-in-netwrix-auditor.md +++ b/docs/kb/auditor/no-monitoring-plans-found-in-netwrix-auditor.md @@ -42,7 +42,8 @@ NO MONITORING PLANS FOUND ## Resolutions -- Create a new monitoring plan for the data source. Refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8 (Monitoring Plans – Create a New Plan). +- Create a new monitoring plan for the data source. Refer to the following article for additional information: [Monitoring Plans](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/overview) + - Review the corresponding data source settings: - Review your Health Log for errors related to the monitoring plan containing the data source. @@ -94,8 +95,8 @@ NO MONITORING PLANS FOUND > > - The account specified in **Audit database settings** for Report Server should have local admin permissions, as well as permissions to create folders, and upload folders. > - Any folder/report access permissions set up in Report Manager directly instead of monitoring plans delegation will have to be reconfigured. Alternatively, you can delete a particular affected report instead of deleting the entire **Netwrix Auditor** reports folder. -> - In case you've previously added a custom report, you will have to manually set it up again. This could apply to the report provided in the following article: /docs/kb/auditor/how-to-monitor-print-service-activity (How to Monitor Print Service Activity). +> - In case you've previously added a custom report, you will have to manually set it up again. This could apply to the report provided in the following article: [How to Monitor Print Service Activity](/docs/kb/auditor/how-to-monitor-print-service-activity.md). ## Related articles -- https://docs.netwrix.com/docs/auditor/10_8 (Monitoring Plans – Create a New Plan) +- [Monitoring Plans](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/overview) diff --git a/docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade.md b/docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade.md index 8c71a88638..8a2588edee 100644 --- a/docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade.md +++ b/docs/kb/auditor/password-expiration-notifier-email-header-and-footer-reset-after-upgrade.md @@ -26,7 +26,7 @@ knowledge_article_id: kA04u000001116CCAQ ## Symptoms -- The Netwrix Password Reset (PEN) email header and footer were reset after the recent upgrade. They were previously disabled as per the following article: /docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails (Hide and Disable Header and Footer in Password Expiration Notifier Emails). +- The Netwrix Password Expiration Notifier (PEN) email header and footer were reset after the recent upgrade. [Hide and Disable Header and Footer in PEN Emails](/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md). - The **HideEmailAdditionalInfo** key in `HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Netwrix Auditor\Password Expiration Notifier` is still present. ## Resolution @@ -42,4 +42,4 @@ knowledge_article_id: kA04u000001116CCAQ ## Related articles -- Hide and Disable Header and Footer in Password Expiration Notifier Emails: /docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails +- [Hide and Disable Header and Footer in PEN Emails](/docs/kb/auditor/hide-and-disable-header-and-footer-in-password-expiration-notifier-emails.md) diff --git "a/docs/kb/auditor/remote_certificate_is_invalid_according_to_validation_procedure_\342\200\224_subscriptions_error_in_netwrix_aud.md" "b/docs/kb/auditor/remote_certificate_is_invalid_according_to_validation_procedure_\342\200\224_subscriptions_error_in_netwrix_aud.md" index 2ca5b991be..184bd3a0f6 100644 --- "a/docs/kb/auditor/remote_certificate_is_invalid_according_to_validation_procedure_\342\200\224_subscriptions_error_in_netwrix_aud.md" +++ "b/docs/kb/auditor/remote_certificate_is_invalid_according_to_validation_procedure_\342\200\224_subscriptions_error_in_netwrix_aud.md" @@ -36,7 +36,7 @@ Error: The remote certificate is invalid according to the validation procedure. If enforced certificate validation is intended, refer to the following steps to troubleshoot the issue: - Ensure your SSL certificate is still valid. Netwrix Auditor stops generating reports once your certificate expires. In case you’re using a self-signed certificate in your environment, you can reboot your Netwrix Auditor server to reissue the certificate. -- If you would like to set up a secure connection between your Netwrix Auditor instance and SQL Server Reporting Services, refer to the following article for additional information: [Set Up Secure Connection Between Netwrix Auditor and SSRS via SSL/TLS Channel](/docs/kb/auditor/set_up_secure_connection_between_auditor_and_ssrs_via_ssltls_channel.md). +- If you would like to set up a secure connection between your Netwrix Auditor instance and SQL Server Reporting Services, refer to the following article for additional information: [Set Up Secure Connection Between Auditor and SSRS via SSL/TLS Channel](/docs/kb/auditor/set_up_secure_connection_between_auditor_and_ssrs_via_ssltls_channel.md). - Make sure the FQDN of your SMTP server is stated instead of the IP address in **Netwrix Auditor settings** > **Notifications**. If certificate validation was not intended, refer to the following steps: @@ -47,4 +47,4 @@ If certificate validation was not intended, refer to the following steps: ### Related Articles -[Set Up Secure Connection Between Netwrix Auditor and SSRS via SSL/TLS Channel](/docs/kb/auditor/set_up_secure_connection_between_auditor_and_ssrs_via_ssltls_channel.md) \ No newline at end of file +[Set Up Secure Connection Between Auditor and SSRS via SSL/TLS Channel](/docs/kb/auditor/set_up_secure_connection_between_auditor_and_ssrs_via_ssltls_channel.md) \ No newline at end of file diff --git a/docs/kb/auditor/some-accounts-were-not-moved-or-deleted-in-inactive-user-tracker-report.md b/docs/kb/auditor/some-accounts-were-not-moved-or-deleted-in-inactive-user-tracker-report.md index c4bb3b0fb7..c1e2e51260 100644 --- a/docs/kb/auditor/some-accounts-were-not-moved-or-deleted-in-inactive-user-tracker-report.md +++ b/docs/kb/auditor/some-accounts-were-not-moved-or-deleted-in-inactive-user-tracker-report.md @@ -28,7 +28,7 @@ Your report states some accounts were not moved or deleted. Why were they not af ## Answer -Since Inactive User Tracker (IUT) in Netwrix Auditor has the ability to make actual changes within your Active Directory, it has requirements to meet to introduce these changes. IUT requires all DCs to be operating, otherwise it cannot verify that a user is truly inactive. In case there are non-operable or decommissioned domain controllers in your network, you can omit them — refer to the following article for additional information: [Exclude Non-operable Domain Controllers from Monitoring](/docs/kb/auditor/how-to-exclude-non-operable-domain-controllers-from-monitoring-in-netwrix-auditor.md). +Since Inactive User Tracker (IUT) in Netwrix Auditor has the ability to make actual changes within your Active Directory, it has requirements to meet to introduce these changes. IUT requires all DCs to be operating, otherwise it cannot verify that a user is truly inactive. In case there are non-operable or decommissioned domain controllers in your network, you can omit them — refer to the following article for additional information: [How to Exclude Non-operable Domain Controllers from Monitoring in Netwrix Auditor](/docs/kb/auditor/how-to-exclude-non-operable-domain-controllers-from-monitoring-in-netwrix-auditor.md). If you still encounter reports showing the `Cannot delete the account` status for accounts after omitting the inoperable DCs, refer to the following steps: diff --git a/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md b/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md index c6b8560e20..0a95b11eb2 100644 --- a/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md +++ b/docs/kb/auditor/sql-server-express-database-size-reached-10gb.md @@ -44,7 +44,7 @@ While it is highly recommended to implement either a SQL Server Standard or Ente - Recreate the database for the monitoring plan: - > **IMPORTANT:** The monitoring plan data collected previously will be available in the Long-Term Archive. Refer to the following article for additional information on investigations: https://docs.netwrix.com/docs/auditor/10_8 Auditor Settings − Investigations · v10.6). + > **IMPORTANT:** The monitoring plan data collected previously will be available in the Long-Term Archive. Refer to the following article for additional information on investigations:[Investigations](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/investigations) 1. Confirm the name of the affected database − it should be stated both in the error message and **Database Statistics**. The **Database Statistics** data will also include the affected monitoring plan name. 2. Disable the data collection for the affected monitoring plan − in the main Netwrix Auditor screen, select **Monitoring Plans** > **%affected_monitoring_plan%** > **Edit** > **Edit data source** > switch the **Monitor this data source and collect activity data** switch off > click **Save & Close**. @@ -68,10 +68,10 @@ While it is highly recommended to implement either a SQL Server Standard or Ente - Split items in multiple monitoring plans to decrease the amount of data written to a single database. -- Decrease the database retention period. Refer to the following article for additional information: /docs/kb/auditor/how-to-reduce-audit-database-size-for-netwrix-auditor (How to Reduce Audit Database Size for Netwrix Auditor). +- Decrease the database retention period. Refer to the following article for additional information: [How to Reduce Audit Database Size for Netwrix Auditor](/docs/kb/auditor/how-to-reduce-audit-database-size-for-netwrix-auditor.md) ## Related Articles -- https://docs.netwrix.com/docs/auditor/10_8 Auditor Settings − Investigations · v10.6) -- /docs/kb/auditor/how-to-reduce-audit-database-size-for-netwrix-auditor (How to Reduce Audit Database Size for Netwrix Auditor) -- /docs/kb/auditor/could-not-allocate-space-for-object-objectname-in-database-databasename)_in_database_(databasename) (Could not allocate space for object (ObjectName) in database (DatabaseName)) +- [Investigations](https://docs.netwrix.com/docs/auditor/10_8/admin/settings/investigations) +- [How to Reduce Audit Database Size for Netwrix Auditor](/docs/kb/auditor/how-to-reduce-audit-database-size-for-netwrix-auditor.md) +- [Could Not Allocate Space for Object (ObjectName) in Database (DatabaseName)](/docs/kb/auditor/could-not-allocate-space-for-object-objectname-in-database-databasename.md) diff --git a/docs/kb/auditor/ssl-exception-failed-to-deliver-netwrix-auditor-health-summary-email.md b/docs/kb/auditor/ssl-exception-failed-to-deliver-netwrix-auditor-health-summary-email.md index 43f1c0bce0..e2a6c519c4 100644 --- a/docs/kb/auditor/ssl-exception-failed-to-deliver-netwrix-auditor-health-summary-email.md +++ b/docs/kb/auditor/ssl-exception-failed-to-deliver-netwrix-auditor-health-summary-email.md @@ -36,4 +36,4 @@ Your TLS\SSL certificate has expired — Netwrix Auditor stops generating report ## Resolution -To establish whether your certificate has expired, check the Microsoft Management Console (MMC) Certificates Snap-in (your certificate store). For additional information on setting up the SSL\TLS channel communication, refer to the following article: /docs/kb/auditor/set_up_secure_connection_between_auditor_and_ssrs_via_ssltls_channel (Set Up Secure Connection Between Netwrix Auditor and SSRS via SSL/TLS Channel). +To establish whether your certificate has expired, check the Microsoft Management Console (MMC) Certificates Snap-in (your certificate store). For additional information on setting up the SSL\TLS channel communication, refer to the following article: [Set Up Secure Connection Between Auditor and SSRS via SSL/TLS Channel](/docs/kb/auditor/set_up_secure_connection_between_auditor_and_ssrs_via_ssltls_channel.md) diff --git a/docs/kb/auditor/the-remote-procedure-call-failed-error-when-collecting-logs.md b/docs/kb/auditor/the-remote-procedure-call-failed-error-when-collecting-logs.md index 6bc4b1591a..929554cb15 100644 --- a/docs/kb/auditor/the-remote-procedure-call-failed-error-when-collecting-logs.md +++ b/docs/kb/auditor/the-remote-procedure-call-failed-error-when-collecting-logs.md @@ -44,8 +44,8 @@ Here are the possible causes for the issue: Review the possible resolutions depending on you cause: -- For cause 1. Make sure you configured Firewall rules. For additional information on the Firewall rules configuration, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 – Protocols and Ports Required — v10.6). +- For cause 1. Make sure you configured Firewall rules. For additional information on the Firewall rules configuration, refer to the following article: [Protocols and Ports Required](https://docs.netwrix.com/docs/auditor/10_8/requirements/ports) -- For cause 2. Make sure you assigned all required rights and permissions to the account used for data collection. For additional information on the data collecting account configuration, refer to the following article: https://docs.netwrix.com/docs/auditor/10_8 (Monitoring Plans – Data Collecting Account — v10.6). +- For cause 2. Make sure you assigned all required rights and permissions to the account used for data collection. For additional information on the data collecting account configuration, refer to the following article: [Data Collecting Account](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/dataaccounts) -- For cause 3. For additional information on the data collecting account configuration, refer to the following article: /docs/kb/auditor/error-0x800706ba-rpc-server-is-unavailable (Error: The RPC server is unavailable). +- For cause 3. For additional information on the data collecting account configuration, refer to the following article: [Error 0x800706BA − RPC Server Is Unavailable](/docs/kb/auditor/error-0x800706ba-rpc-server-is-unavailable.md) diff --git a/docs/kb/auditor/troubleshoot_sharepoint_serveron-premise_errors.md b/docs/kb/auditor/troubleshoot_sharepoint_serveron-premise_errors.md index e4945cf93e..caece417a3 100644 --- a/docs/kb/auditor/troubleshoot_sharepoint_serveron-premise_errors.md +++ b/docs/kb/auditor/troubleshoot_sharepoint_serveron-premise_errors.md @@ -22,10 +22,10 @@ This is a reference list of articles on troubleshooting errors in SharePoint Ser ### Related Articles - [SharePoint Core Service Deployment Failed](/docs/kb/auditor/sharepoint-core-service-deployment-failed.md) -- [Timeout Expired Error on SharePoint Core Service Deployment](/docs/kb/auditor/timeout-expired-error-on-sharepoint-core-service-deployment.md) +- [Timeout Expired Error on SharePoint Core Service D](/docs/kb/auditor/timeout-expired-error-on-sharepoint-core-service-deployment.md) - [Event ID 1204 in Health Log](/docs/kb/auditor/event-id-1204-in-health-log.md) - [Event ID 1205 in Health Log](/docs/kb/auditor/event-id-1205-in-health-log.md) -- [Event ID 1206 in Health Log](/docs/kb/auditor/error-event-id-1206-in-health-log.md) +- [Error: Event ID 1206 in Health Log](/docs/kb/auditor/error-event-id-1206-in-health-log.md) - [Event ID 1208 in Health Log](/docs/kb/auditor/event-id-1208-in-health-log.md) - [Event ID 1209 in Health Log](/docs/kb/auditor/event-id-1209-in-health-log.md) - [Event ID 1210 in Health Log](/docs/kb/auditor/event-id-1210-in-health-log.md) diff --git a/docs/kb/auditor/unable-to-process-item-error-when-using-gmsa-in-netwrix-auditor.md b/docs/kb/auditor/unable-to-process-item-error-when-using-gmsa-in-netwrix-auditor.md index 253e4df255..72dceca070 100644 --- a/docs/kb/auditor/unable-to-process-item-error-when-using-gmsa-in-netwrix-auditor.md +++ b/docs/kb/auditor/unable-to-process-item-error-when-using-gmsa-in-netwrix-auditor.md @@ -35,10 +35,10 @@ Unable to process item: A logon request contained an invalid logon type value. ## Causes -On January 10th 2023 Microsoft has released a security update affecting the pre-10.5.11041 Netwrix Auditor versions ability to impersonate gMSA. Refer to the following article for additional information on the update: https://support.microsoft.com/en-us/topic/january-10-2023-kb5022291-os-build-20348-1487-38772acf-103f-463e-9d60-486174e806b2 (Update KB5022291). +On January 10th 2023 Microsoft has released a security update affecting the pre-10.5.11041 Netwrix Auditor versions ability to impersonate gMSA. Refer to the following article for additional information on the update: [Update KB5022291](https://support.microsoft.com/en-us/topic/january-10-2023-kb5022291-os-build-20348-1487-38772acf-103f-463e-9d60-486174e806b2) -In Netwrix Auditor version 9.96 group managed service accounts can be used instead of regular service accounts in a limited number of cases. Refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8 – Use Group Managed Service Account(gMSA) ⸱ v10.6). Permissions for gMSA are the same as for regular service accounts, refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8 (Monitoring Plans – Data Collecting Account ⸱ v10.6). +In Netwrix Auditor version 9.96 group managed service accounts can be used instead of regular service accounts in a limited number of cases. Refer to the following article for additional information: [Use Group Managed Service Account(gMSA)](https://docs.netwrix.com/docs/auditor/10_8/requirements/gmsa). Permissions for gMSA are the same as for regular service accounts, refer to the following article for additional information: [Data Collecting Account](https://docs.netwrix.com/docs/auditor/10_8/admin/monitoringplans/dataaccounts) ## Solution -For the pre-10.5.11041 Netwrix Auditor version, make sure to update your Netwrix Auditor instance — refer to the following articles for additional information: /docs/kb/auditor/how-to-upgrade-netwrix-auditor (How to Upgrade Netwrix Auditor) and /docs/kb/auditor/upgrade-increments-for-netwrix-auditor (Upgrade Increments for Netwrix Auditor). +For the pre-10.5.11041 Netwrix Auditor version, make sure to update your Netwrix Auditor instance — refer to the following articles for additional information: [How to Upgrade Netwrix Auditor](/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md) and [Upgrade Increments for Netwrix Auditor](/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md) diff --git a/docs/kb/auditor/unable-to-run-reports-system-cannot-find-the-file-specified.md b/docs/kb/auditor/unable-to-run-reports-system-cannot-find-the-file-specified.md index e786e6eac2..529aec7189 100644 --- a/docs/kb/auditor/unable-to-run-reports-system-cannot-find-the-file-specified.md +++ b/docs/kb/auditor/unable-to-run-reports-system-cannot-find-the-file-specified.md @@ -3,7 +3,7 @@ description: >- This article explains how to resolve the "System cannot find the file specified" (0x80070002) rsInternalError when running reports in Netwrix Auditor, typically caused by a missing report server database. It lists - symptoms, cause, and step-by-step resolution. + symptoms, cause, and step-by-step resolution. keywords: - report server - rsInternalError @@ -49,6 +49,6 @@ A report server database is missing. Refer to the following steps to resolve the issue: 1. In your Netwrix Auditor server, disable **Netwrix Auditor Archive Service** and **Netwrix Auditor Management Service** via **Services**. -2. Deploy the report server database — refer to the following article for in-depth instructions: /docs/kb/auditor/deploying-the-report-server-database (Deploying the Report Server Database). -3. Once you've configured the report server database, grant the roles to the SSRS service account the roles required. Refer to the following article for additional information: https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserverreportingservice (Configure SSRS Account). +2. Deploy the report server database — refer to the following article for in-depth instructions: [Deploying the Report Server Database](/docs/kb/auditor/deploying-the-report-server-database.md) +3. Once you've configured the report server database, grant the roles to the SSRS service account the roles required. Refer to the following article for additional information: [Configure SSRS account](https://docs.netwrix.com/docs/auditor/10_8/requirements/sqlserverreportingservice) and [How to Assign db_owner Permissions](docs\kb\auditor\how-to-assign-db-owner-permissions.md) 4. Restart **Netwrix Auditor Archive Service** and **Netwrix Auditor Management Service** on your Netwrix Auditor server via **Services**. diff --git a/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md b/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md index 88d4676fe8..55346a6961 100644 --- a/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md +++ b/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md @@ -67,7 +67,7 @@ This will stop all Netwrix Services and prevent complications during the upgrade | 8.5 / 9.0 | 9.5 | Not recommended! | | 9.5 | 9.7 | [Download](https://www.netwrix.com/my_products.html) | | 9.7 / 9.8 | 9.9 | [Download](https://www.netwrix.com/my_products.html) | -| 9.9 | 9.96 | [Download](https://www.netwrix.com/my_products.html)
Refer to the following article for additional information:
[Upgrade to from 9.9 to 9.96 if I get the error “Your Netwrix Auditor version cannot be upgraded”](https://docs.netwrix.com/docs/kb/auditor/upgrade_from_9.9_to_9.96_with_your_netwrix_auditor_version_cannot_be_upgraded_error) | +| 9.9 | 9.96 | [Download](https://www.netwrix.com/my_products.html)
Refer to the following article for additional information:
[Upgrade from 9.9 to 9.96 with Your Netwrix Auditor Version Cannot Be Upgraded Error](/docs/kb/auditor/upgrade_from_9.9_to_9.96_with_your_netwrix_auditor_version_cannot_be_upgraded_error.md)| | 9.96 / 10.0 | 10.5 | [Download](https://www.netwrix.com/my_products.html) | | 10 / 10.5 | 10.6 | [Download](https://www.netwrix.com/my_products.html) | | 10.5 / 10.6 | 10.7 | [Download](https://www.netwrix.com/my_products.html) | @@ -75,4 +75,4 @@ This will stop all Netwrix Services and prevent complications during the upgrade ### Related articles -[How To Upgrade Netwrix Auditor](/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md) +[How to Upgrade Netwrix Auditor](/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md) diff --git a/docs/kb/auditor/upgrade_from_9.9_to_9.96_with_your_netwrix_auditor_version_cannot_be_upgraded_error.md b/docs/kb/auditor/upgrade_from_9.9_to_9.96_with_your_netwrix_auditor_version_cannot_be_upgraded_error.md index bcc3145c74..a3a2a45579 100644 --- a/docs/kb/auditor/upgrade_from_9.9_to_9.96_with_your_netwrix_auditor_version_cannot_be_upgraded_error.md +++ b/docs/kb/auditor/upgrade_from_9.9_to_9.96_with_your_netwrix_auditor_version_cannot_be_upgraded_error.md @@ -36,4 +36,4 @@ To upgrade to v9.96, contact Technical Support for download links for the latest ## Related Articles - [Upgrade Increments for Netwrix Auditor](/docs/kb/auditor/upgrade-increments-for-netwrix-auditor.md) -- [How To Upgrade Netwrix Auditor](/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md) \ No newline at end of file +- [How to Upgrade Netwrix Auditor](/docs/kb/auditor/how-to-upgrade-netwrix-auditor.md) \ No newline at end of file diff --git a/docs/kb/dataclassification/antivirus-exclusions-for-netwrix-data-classification.md b/docs/kb/dataclassification/antivirus-exclusions-for-netwrix-data-classification.md index 55d2cd2498..ffb9aab01a 100644 --- a/docs/kb/dataclassification/antivirus-exclusions-for-netwrix-data-classification.md +++ b/docs/kb/dataclassification/antivirus-exclusions-for-netwrix-data-classification.md @@ -47,4 +47,4 @@ During data collection, a collector uses a specific to store copies of the files ## Related articles -- [How to back up Netwrix Data Classification Index](/docs/kb/dataclassification/how-to-back-up-the-ndc-index.md) +- [How to back up the Netwrix Data Classification Index](/docs/kb/dataclassification/how-to-back-up-the-ndc-index.md) diff --git a/docs/kb/dataclassification/classification-troubleshooting.md b/docs/kb/dataclassification/classification-troubleshooting.md index 1279a389e1..8f97fc7137 100644 --- a/docs/kb/dataclassification/classification-troubleshooting.md +++ b/docs/kb/dataclassification/classification-troubleshooting.md @@ -35,7 +35,7 @@ Identify a document with incorrect classifications: Go to the workflow logs (`https://[YourNDCServerName]/NDC/Workflows/Logs`) on your Netwrix Data Classification server and check the status: - If it's **negative**, then there was an error. Enable collector tracing and reindex the file, then view the event logs for details of the issue. You will usually see either the `PageID`, `PageURL`, or both in the logs to know which errors are related. -- If it's less than 400, it means that it is not classified and needs to finish processing first. Check codes in the `Netwrix Data Classification Page Status Codes` article: /docs/kb/dataclassification/ndc_page_status_codes +- If it's less than 400, it means that it is not classified and needs to finish processing first. Verify codes in the [NDC Page Status Codes](/docs/kb/auditor/ndc-page-status-codes.md) article. - If the status is **Classified (400)** and the **ReindexStatus** is 3, then it means it hasn't been reindexed or reclassified. This means that a change was detected or the user manually requested reprocessing. Give Netwrix Data Classification time to reprocess the document. - If the status is 400 and the reindex status is 0, check the **Text** and **Metadata** tabs. This is an easy way to confirm issues where Optical Character Recognition (OCR) has failed to extract the text you're looking for or if there was an issue processing text extraction for the document. If it doesn't match, enable collector tracing and reindex the document for details in the logs. diff --git a/docs/kb/dataclassification/workflow-isn-t-running-or-is-running-unexpectedly.md b/docs/kb/dataclassification/workflow-isn-t-running-or-is-running-unexpectedly.md index 83718d0367..cb97eaaee8 100644 --- a/docs/kb/dataclassification/workflow-isn-t-running-or-is-running-unexpectedly.md +++ b/docs/kb/dataclassification/workflow-isn-t-running-or-is-running-unexpectedly.md @@ -36,7 +36,7 @@ This article offers step-by-step guidance for resolving common workflow issues. - **Failed to run the workflow** – A basic error message will be displayed that may assist you with troubleshooting the issue. If it doesn't give enough details, then enable workflow trace logging and reclassify the document. Check the Windows Event Logs for details of any issues. - - **No attempts to run the workflow** – Check that the conditions are configured correctly for the workflow and workflow rule. If the workflow and workflow rules are configured correctly, then check the classifications of the document. If the classifications aren't as expected, then please reference the following documentation for the troubleshooting steps: /docs/kb/dataclassification/classification_troubleshooting (Classification Troubleshooting). + - **No attempts to run the workflow** – Check that the conditions are configured correctly for the workflow and workflow rule. If the workflow and workflow rules are configured correctly, then check the classifications of the document. If the classifications aren't as expected, then please reference the following documentation for the troubleshooting steps: [Classification Troubleshooting](/docs/kb/dataclassification/classification-troubleshooting.md) 3. Filter the workflow logs and check if there are other workflows being run for the document. Workflows run in a priority order. If there is more than one migration action, then the second migration will fail as the document has already been moved. @@ -46,4 +46,4 @@ This typically means that the document has a classification that isn't expected 1. Check the workflow rule conditions. Pay attention to the parameters. Learn more about rule configuration and description of classification rules: https://docs.netwrix.com/docs/dataclassification/5_7 (Configure a Workflow using Advanced dialog ⸱ v5.7) -2. Check the document's classifications. If there is a classification that is not intended, then reference the following documentation for troubleshooting steps: /docs/kb/dataclassification/classification_troubleshooting (Document isn't classified as expected) +2. Check the document's classifications. If there is a classification that is not intended, then reference the following documentation for troubleshooting steps: [Classification Troubleshooting](/docs/kb/dataclassification/classification-troubleshooting.md) diff --git a/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership.md b/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership.md index 974adb3b0d..19504baa34 100644 --- a/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership.md +++ b/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership.md @@ -50,11 +50,11 @@ The following best practices act as preemptive and reactive measures to guard gr These settings enable you to specify the maximum number of members a group can have. - You can also set up a group membership update threshold, that compares the existing member count to the new member count in order to detect unusual and large changes to group membership. In the event of a threshold violation, Netwrix Directory Manager notifies the group owner or administrator via email, who can approve or deny the change. Click here for more: https://support.imanami.com/knowledgebase/article/KA-01200/en-us?how-to-prevent-massive-changes-to-group-membership + You can also set up a group membership update threshold, that compares the existing member count to the new member count in order to detect unusual and large changes to group membership. In the event of a threshold violation, Netwrix Directory Manager notifies the group owner or administrator via email, who can approve or deny the change. - Define a workflow that is triggered when a user makes a change to the query of a Smart Group or Dynasty. - In Netwrix Directory Manager, the Query Designer enables you to define membership update queries for Smart Groups and Dynasties. As a proactive measure, create a workflow for an identity store, that routes an approval request to an authorized approver when a user makes a change to this query in the Query Designer. The request must be approved for changes to take effect. Click here for more: https://imanami.microsoftcrmportals.com/knowledgebase/article/KA-01201/en-us + In Netwrix Directory Manager, the Query Designer enables you to define membership update queries for Smart Groups and Dynasties. As a proactive measure, create a workflow for an identity store, that routes an approval request to an authorized approver when a user makes a change to this query in the Query Designer. The request must be approved for changes to take effect. - For a Netwrix Directory Manager portal, use the Visibility and Access controls to restrict user roles from viewing and updating Smart Group and Dynasty queries. @@ -63,7 +63,7 @@ The following best practices act as preemptive and reactive measures to guard gr - **Visibility level** determines the security roles who can view a field in the portal. - **Access level** determines the security roles that can update the value of a field using the portal. - You can hide the Smart Group query and Dynasty query fields or render them as read-only in the portal for all except an authoritative user role. Click here for more: https://support.imanami.com/knowledgebase/article/KA-01199/en-us?how-to-control-access-and-visibility-on-the-group-query-in-the-self-service-portal + You can hide the Smart Group query and Dynasty query fields or render them as read-only in the portal for all except an authoritative user role. - Allow selective security roles to access Netwrix Directory Manager Management Shell. @@ -75,36 +75,28 @@ The following best practices act as preemptive and reactive measures to guard gr These practices make use of workflows, access controls, and alerts to offer foolproof security for your groups, which in turn secure your organization. -## References: -- Netwrix Directory Manager Online Help topic: Workflows - https://docs.netwrix.com/docs/directorymanager/11_1 -- Netwrix Directory Manager Online Help topic: Query Designer dialog box - https://docs.netwrix.com/docs/directorymanager/11_1 -- Netwrix Directory Manager Online Help topic: Group Membership Settings - https://docs.netwrix.com/docs/directorymanager/11_1 - -- Netwrix Directory Manager Online Help topic: Customize Object Properties - https://docs.netwrix.com/docs/directorymanager/11_1 ### Related Articles: -- Walkthrough Search Policy - Define Scope and Filter Results - /docs/kb/directorymanager/walkthrough_search_policy_-_define_scope_and_filter_results +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) + +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) + +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) + +- [How to Trigger a workflow When a User Сreates a Group](/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group.md) + +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) -- How To Enforce Users to Create Groups in a Specific OU - /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou +- [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md) +- [Directory Manager Workflows](https://docs.netwrix.com/docs/directorymanager/11_0/signin/workflow/overview) -- How To Import Members to a Group Using Self-Service Import Wizard - /docs/kb/directorymanager/how_to_import_members_to_a_group_using_self-service_import_wizard -- How to Trigger a workflow When a User Сreates a Group - /docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group +- [Query Designer](https://docs.netwrix.com/docs/directorymanager/11_0/welcome/group/querydesigner/overview#) -- How To Add Message Approvers in Group Properties in Self-Service - /docs/kb/directorymanager/how_to_add_message_approvers_in_group_properties_in_groupid_portal +- [Group Membership Settings](https://docs.netwrix.com/docs/directorymanager/11_1/admincenter/identitystore/configure/outofbounds) -- Best Practices for Preventing Accidental Data Leakage - /docs/kb/directorymanager/best_practices_for_preventing_accidental_data_leakage +- [Customize Object Properties](https://docs.netwrix.com/docs/directorymanager/11_0/signin/service/mobileservice/design/objectproperties) diff --git a/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md b/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md index 29b9634f90..2ca14d6791 100644 --- a/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md +++ b/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md @@ -37,14 +37,14 @@ Netwrix Directory Manager uses an RBAC model through which you can define Securi For more information on how to set up a limit on the search scope for a particular Security Role, visit the following KB article: -- /docs/kb/directorymanager/walkthrough_search_policy_-_define_scope_and_filter_results (Walkthrough Search Policy - Define Scope and Filter Results) +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) ### Using Security Roles to Specify Specific Area Where Groups Can be Created or Have a Fixed and Hidden Path. In Netwrix Directory Manager, you can apply policies to security roles so that role members use Netwrix Directory Manager in keeping with the policy restrictions. Netwrix Directory Manager’s New Object policy enables you to restrict role members to create new groups in a specific OU only. For more information on how to set up a New Object policy for specific security roles, visit the following KB article: -- /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou (How To Enforce Users to Create Groups in a Specific OU) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) ### Importing Membership via Netwrix Directory Manager Bulk Membership Import Feature for Groups Many times, organizations create groups (Security and Distribution) in advance, i.e., before the actual usage of groups. To avoid any critical information being leaked out, it is recommended that such groups be created without populating membership upon creation. @@ -53,7 +53,7 @@ Instead, you can use the **Bulk Import Membership** feature of Netwrix Directory In Netwrix Directory Manager, bulk import of memberships is possible using the Import Wizard available in the Netwrix Directory Manager Portal. The following KB article provides step-by-step instructions to bulk import members into a group: -- /docs/kb/directorymanager/how_to_import_members_to_a_group_using_self-service_import_wizard (How To Import Members to a Group Using Self-Service Import Wizard) +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) ### Creating Smart Group Without Updating Memberships Another way to ensure that the group memberships do not update beforehand, if a group has been created in advance, is by just previewing the query results of a Smart group without updating the group memberships. @@ -97,17 +97,17 @@ Another way to ensure that no unauthorized message is sent to critical groups is For more information on customization to the portal, visit the following KB article: -- /docs/kb/directorymanager/how_to_add_message_approvers_in_group_properties_in_groupid_portal (How To Add Message Approvers in Group Properties in Self-Service) +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) ### Other Best Practices to Improve Compliance. In addition to the above-mentioned best practices for making sure the production environment is secure and compliant with company policy, visit the following KB article to learn about best practices for controlling changes to group memberships after creation: -- /docs/kb/directorymanager/best_practices_for_controlling_changes_to_group_membership (Best Practices for Controlling Changes to Group Membership) +- [Best Practices for Controlling Changes to Group Membership](/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership.md) ## Related Articles: -- /docs/kb/directorymanager/walkthrough_search_policy_-_define_scope_and_filter_results (Walkthrough Search Policy - Define Scope and Filter Results) -- /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou (How To Enforce Users to Create Groups in a Specific OU) -- /docs/kb/directorymanager/how_to_import_members_to_a_group_using_self-service_import_wizard (How To Import Members to a Group Using Self-Service Import Wizard) -- /docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group (How to Trigger a workflow When a User Сreates a Group) -- /docs/kb/directorymanager/how_to_add_message_approvers_in_group_properties_in_groupid_portal (How To Add Message Approvers in Group Properties in Self-Service) -- /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou (Best Practices for Controlling Changes to Group Membership) +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) +- [How to Trigger a workflow When a User Сreates a Group](/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group.md) +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) diff --git a/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md b/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md index 0f67f70afa..0afb794c2b 100644 --- a/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md +++ b/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md @@ -36,13 +36,13 @@ We have set up message approvers/moderators for various distribution lists in ou To enable Netwrix Directory Manager portal customization for displaying Message Approvers for Distribution Lists using Microsoft Exchange-based Active Directory attributes, you can utilize the following Active Directory attributes associated with Message Moderation for On-Premises MS Exchange: -- **msExchEnableModeration** +- **msExchEnableModeration** This attribute is used in Microsoft Exchange to enable or disable message moderation for a specific distribution group. When this attribute is set to true, it indicates that messages sent to the distribution group will be subject to moderation, which means they will need approval from a moderator before being delivered to the group members. -- **msExchModeratedByLink** +- **msExchModeratedByLink** This attribute is used to associate a distribution list or security group that contains the list of moderators for a moderated recipient. When this attribute is configured, it links the moderated recipient to the specified distribution list or security group, allowing the members of that group to act as moderators for the recipient. -- **msExchBypassModerationLink** +- **msExchBypassModerationLink** This attribute is used to associate a distribution list or security group that contains the list of senders who can bypass the moderation process for a moderated recipient. When this attribute is set, it links the moderated recipient to the specified distribution list or security group, allowing the members of that group to send messages that bypass the moderation process. By leveraging these attributes, you can create a customized view in the Netwrix Directory Manager portal that shows the appropriate Message Approvers for the Distribution Lists. This customization enables you to manage message moderation effectively and efficiently within your organization's Exchange environment. @@ -89,27 +89,21 @@ Follow the below-provided instructions to customize the portal: ![User-added image](images/ka0Qk000000D2Dh_0EMQk000001gb0z.png) -## Reference: -- Admin Center — Applications — Customize Properties Pages — v11.0 - https://docs.netwrix.com/docs/directorymanager/11_1 + + ## Related Articles: -- Walkthrough Search Policy - Define Scope and Filter Results - /docs/kb/directorymanager/walkthrough_search_policy_-_define_scope_and_filter_results +- [Customize Properties Pages](https://docs.netwrix.com/docs/directorymanager/11_0/signin/service/mobileservice/design/objectproperties) +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) -- How To Enforce Users to Create Groups in a Specific OU - /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) -- How To Import Members to a Group Using Self-Service Import Wizard - /docs/kb/directorymanager/how_to_import_members_to_a_group_using_self-service_import_wizard +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) -- How to Trigger a workflow When a User Сreates a Group - /docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group +- [How to Trigger a workflow When a User Сreates a Group](/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group.md) -- Best Practices for Controlling Changes to Group Membership - /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou +- [Best Practices for Controlling Changes to Group Membership](https://docs.netwrix.com/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership#netwrix-directory-manager-best-practices) -- Best Practices for Preventing Accidental Data Leakage - /docs/kb/directorymanager/best_practices_for_preventing_accidental_data_leakage +- [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md) diff --git a/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md b/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md index ff80349111..c26aa794fc 100644 --- a/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md +++ b/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md @@ -51,20 +51,12 @@ Netwrix Directory Manager’s **New Object** policy enables you to restrict role Now when members of the security role try to create groups, they will be created in the default OU that you specified in the **New Object** policy. -## Reference: -- Admin Center — Security Roles — New Object Policy for Security Roles — v11.0 - https://docs.netwrix.com/docs/directorymanager/11_1 ## Related Articles: -- Walkthrough Search Policy - Define Scope and Filter Results - /docs/kb/directorymanager/walkthrough_search_policy_-_define_scope_and_filter_results -- How To Import Members to a Group Using Self-Service Import Wizard - /docs/kb/directorymanager/how_to_import_members_to_a_group_using_self-service_import_wizard -- How to Trigger a workflow When a User Сreates a Group - /docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group -- How To Add Message Approvers in Group Properties in Self-Service - /docs/kb/directorymanager/how_to_add_message_approvers_in_group_properties_in_groupid_portal -- Best Practices for Controlling Changes to Group Membership - /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou -- Best Practices for Preventing Accidental Data Leakage - /docs/kb/directorymanager/best_practices_for_preventing_accidental_data_leakage +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) +- [How to Trigger a workflow When a User Сreates a Group](/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group.md) +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) +- [Best Practices for Controlling Changes to Group Membership](https://docs.netwrix.com/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership#netwrix-directory-manager-best-practices) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) +- [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md) diff --git a/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md b/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md index fd7d0511af..0c00bfd5b3 100644 --- a/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md +++ b/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md @@ -74,7 +74,7 @@ The process to import members is discussed in these steps: ![User-added image](images/ka0Qk000000Dfzp_0EMQk000001fc8n.png) -5. Click **Next**. +5. Click **Next**. ![User-added image](images/ka0Qk000000Dfzp_0EMQk000001fcDd.png) 6. On the **Import Options** step, select the search option and map the data source fields to the corresponding Active Directory fields. The wizard matches the values of the mapped fields to determine the objects to import. @@ -92,8 +92,9 @@ The process to import members is discussed in these steps: ### Related Articles: - [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) +- [How to Trigger a workflow When a User Сreates a Group](/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group.md) +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) +- [Best Practices for Controlling Changes to Group Membership](https://docs.netwrix.com/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership#netwrix-directory-manager-best-practices) - [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) -- How to Trigger a workflow When a User Сreates a Group -- [How To Add Message Approvers in Group Properties in Self-Service](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) -- [Best Practices for Controlling Changes to Group Membership](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) - [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md) diff --git "a/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_\321\201reates_a_group.md" "b/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_\321\201reates_a_group.md" index abc44e9c3c..77a8880005 100644 --- "a/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_\321\201reates_a_group.md" +++ "b/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_\321\201reates_a_group.md" @@ -85,9 +85,9 @@ Admin Center — Workflows — Overview — v11.0 ### Related Articles -- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md). -- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md). -- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md). -- [How To Add Message Approvers in Group Properties in Self-Service](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md). -- [Best Practices for Controlling Changes to Group Membership](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md). -- [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md). \ No newline at end of file +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) +- [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md) diff --git a/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md b/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md index 91c3ada997..fd7df4b1de 100644 --- a/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md +++ b/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md @@ -96,20 +96,13 @@ A down arrow appears in the applied operator's icon. Click it to display the con ![User-added image](images/ka0Qk000000Dg1R_0EMQk000001f1KX.png) -## Reference: -Admin Center — Security Roles — Search Policy for Security Roles — v11.0 -https://docs.netwrix.com/docs/directorymanager/11_1 + ### Related Articles: -- How To Enforce Users to Create Groups in a Specific OU. - /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou -- How To Import Members to a Group Using Self-Service Import Wizard. - /docs/kb/directorymanager/how_to_import_members_to_a_group_using_self-service_import_wizard -- How to Trigger a workflow When a User Сreates a Group. - /docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group -- How To Add Message Approvers in Group Properties in Self-Service. - /docs/kb/directorymanager/how_to_add_message_approvers_in_group_properties_in_groupid_portal -- Best Practices for Controlling Changes to Group Membership. - /docs/kb/directorymanager/how_to_enforce_users_to_create_groups_in_a_specific_ou -- Best Practices for Preventing Accidental Data Leakage. - /docs/kb/directorymanager/best_practices_for_preventing_accidental_data_leakage +- [Walkthrough Search Policy - Define Scope and Filter Results](/docs/kb/directorymanager/walkthrough-search-policy-define-scope-and-filter-results.md) +- [How To Import Members to a Group Using Self-Service Import Wizard](/docs/kb/directorymanager/how-to-import-members-to-a-group-using-self-service-import-wizard.md) +- [How to Trigger a workflow When a User Сreates a Group](/docs/kb/directorymanager/how_to_trigger_a_workflow_when_a_user_сreates_a_group.md) +- [How To Add Message Approvers in Group Properties in Netwrix Directory Manager Portal](/docs/kb/directorymanager/how-to-add-message-approvers-in-group-properties-in-groupid-portal.md) +- [Best Practices for Controlling Changes to Group Membership](https://docs.netwrix.com/docs/kb/directorymanager/best-practices-for-controlling-changes-to-group-membership#netwrix-directory-manager-best-practices) +- [How To Enforce Users to Create Groups in a Specific OU](/docs/kb/directorymanager/how-to-enforce-users-to-create-groups-in-a-specific-ou.md) +- [Best Practices for Preventing Accidental Data Leakage](/docs/kb/directorymanager/best-practices-for-preventing-accidental-data-leakage.md) diff --git a/docs/kb/endpointprotector/troubleshoot_two-factor_authentication_issues.md b/docs/kb/endpointprotector/troubleshoot_two-factor_authentication_issues.md index 87fd872d51..74d705e23a 100644 --- a/docs/kb/endpointprotector/troubleshoot_two-factor_authentication_issues.md +++ b/docs/kb/endpointprotector/troubleshoot_two-factor_authentication_issues.md @@ -26,11 +26,11 @@ To troubleshoot issues with 2FA, try one or more of the following steps: 1. Ensure that the **Endpoint Protector** server date/time matches exactly with the date/time on the phone used to scan the QR code. This can be checked by following these steps: 1. In the **Endpoint Protector** console, go to **Appliance** > **Server Maintenance** and click **Synchronize time**. 2. Check the date and time on the phone. -2. Disable Two-Factor Authentication (2FA) in **Endpoint Protector**, then re-enable it. For detailed steps on enabling or disabling 2FA, see [Enable Two-Factor Authentication](/docs/kb/endpointprotector/enable_two-factor_authentication_for_system_admins_with_google_authenticator_app.md). +2. Disable Two-Factor Authentication (2FA) in **Endpoint Protector**, then re-enable it. For detailed steps on enabling or disabling 2FA, see [Enable Two-Factor Authentication for System Admins with Google Authenticator App](/docs/kb/endpointprotector/enable_two-factor_authentication_for_system_admins_with_google_authenticator_app.md). 3. Instead of scanning the QR code, manually enter the code in the **Google Authenticator** app. ## Related Links -- [Enable Two-Factor Authentication](/docs/kb/endpointprotector/enable_two-factor_authentication_for_system_admins_with_google_authenticator_app.md) +- [Enable Two-Factor Authentication for System Admins with Google Authenticator App](/docs/kb/endpointprotector/enable_two-factor_authentication_for_system_admins_with_google_authenticator_app.md) - [Managing System Administrators and Administrator Groups](/docs/kb/endpointprotector/managing-system-administrators-and-administrator-groups.md) -- [Two-Factor Authentication Overview – Endpoint Protector Documentation](https://docs.netwrix.com/docs/endpointprotector/5_9_4_2/admin/systemconfiguration/overview) \ No newline at end of file +- [Two-Factor Authentication](https://docs.netwrix.com/docs/endpointprotector/admin/systemconfiguration/adminandaccess#two-factor-authentication) diff --git a/docs/kb/endpointprotector/user_remediation_reporting.md b/docs/kb/endpointprotector/user_remediation_reporting.md index 48ca951a61..6230aec904 100644 --- a/docs/kb/endpointprotector/user_remediation_reporting.md +++ b/docs/kb/endpointprotector/user_remediation_reporting.md @@ -30,5 +30,5 @@ This article explains how to locate and review logs of end user responses to **U ## Related Links -- [How to Configure User Remediation for Device Control](/docs/kb/endpointprotector/how-to-configure-user-remediation-for-device-control.md) +- [How to Configure User Remediation for Device Contr](/docs/kb/endpointprotector/how-to-configure-user-remediation-for-device-control.md) - [Enabling User Remediation in Content Aware Protection Policies](/docs/kb/endpointprotector/enabling-user-remediation-in-content-aware-protection-policies.md) \ No newline at end of file diff --git a/docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations.md b/docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations.md index 4781047c82..42099b836a 100644 --- a/docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations.md +++ b/docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations.md @@ -88,8 +88,8 @@ Perform the following steps to configure an HA pair: > > **IMPORTANT:** Do not proceed to the next step until both servers have a green check mark in the HA Manager. -5. Follow the instructions in How to Configure Encryption Keys in Multiple Netwrix Privilege Secure Server Environments ⸱ Netwrix to export the encryption keys from the primary server to the secondary server. - /docs/kb/privilegesecure/how_to_configure_encryption_keys_in_multiple_nps_server_environments) +5. Follow the instructions in How to Configure Encryption Keys in Multiple Netwrix Privilege Secure Server Environments ⸱ Netwrix to export the encryption keys from the primary server to the secondary server. + [How to Configure Encryption Keys in Multiple NPS Server Environments](/docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments.md) 6. On the primary server, locate the `appsettings.json` file at `C:\ProgramData\Stealthbits\PAM\HA\appsettings.json` and copy it to the same path on the secondary server. 7. Run the HA tool on the secondary server. Specify the **Primary IP**, **Primary Port**, and **Secondary IP**. diff --git a/docs/kb/privilegesecure/how-to-configure-a-multi-server-nps-environment-with-a-shared-database-server.md b/docs/kb/privilegesecure/how-to-configure-a-multi-server-nps-environment-with-a-shared-database-server.md index fc41269583..fa05fc7fe8 100644 --- a/docs/kb/privilegesecure/how-to-configure-a-multi-server-nps-environment-with-a-shared-database-server.md +++ b/docs/kb/privilegesecure/how-to-configure-a-multi-server-nps-environment-with-a-shared-database-server.md @@ -28,7 +28,7 @@ knowledge_article_id: kA04u0000000JyXCAU This article will guide the user through the process of setting up a deployment with multiple Netwrix Privilege Secure servers communicating with a single Postgres server. Instructions are included for configuring TLS for all network traffic to the Postgres server. Optional migration steps are included for users who wish to use a Postgres database from an existing Netwrix Privilege Secure deployment. -This diagram illustrates the desired network architecture. +This diagram illustrates the desired network architecture. ![nps_diagram.png](images/ka0Qk0000009L21_0EMQk000006FKxR.png) ## Instructions @@ -103,8 +103,8 @@ Edit this file so that the `Database` key references the hostname of the Postgre ``` 3. Obtain a copy of the `\ProgramData\Stealthbits\PAM\tls\cacerts\sbpam-region.crt` certificate from the Postgres server. Open the **Certificate Manager**. Import the `sbpam-region.crt` certificate into the **Trusted Root** of the local machine. -You should now be able to access the Netwrix Privilege Secure console at `https://[yourNPSServerIP]:6500`, and all traffic should be TLS encrypted. *Note: if you are receiving an IIS certificate warning from your browser, install an IIS certificate using [this KB article](https://kb.netwrix.com/5872).* +You should now be able to access the Netwrix Privilege Secure console at `https://[yourNPSServerIP]:6500`, and all traffic should be TLS encrypted. *Note: if you are receiving an IIS certificate warning from your browser, install an IIS certificate using [Install an IIS Certificate](https://docs.netwrix.com/docs/kb/privilegesecure/installing-an-iis-certificate) ### Key Export/Import -*In order to ensure that encryption keys are in agreement between Netwrix Privilege Secure servers, please follow the instructions outlined in [this article](/docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments.md).* +*In order to ensure that encryption keys are in agreement between Netwrix Privilege Secure servers, please follow the instructions outlined in [How to Configure Encryption Keys in Multiple NPS Server Environments](/docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments.md).* diff --git a/docs/kb/privilegesecure/how-to-create-a-service-mesh-between-app-servers.md b/docs/kb/privilegesecure/how-to-create-a-service-mesh-between-app-servers.md index d20529e8c2..40011a2811 100644 --- a/docs/kb/privilegesecure/how-to-create-a-service-mesh-between-app-servers.md +++ b/docs/kb/privilegesecure/how-to-create-a-service-mesh-between-app-servers.md @@ -27,12 +27,12 @@ knowledge_article_id: kA04u0000000JqxCAE This article outlines the steps to configure a service mesh in Netwrix Privilege Secure for Access Management. Follow these instructions to ensure proper setup and high availability. -- If you have two application servers with internal PostgreSQL on each, you must configure high availability (HA) before configuring a service mesh. For additional information on the HA setup, see Configure and Upgrade Netwrix Privilege Secure in High Availability Mode and Using Remote Services Configurations: /docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations -- In both PostgreSQL and SQL Server deployments, you must complete the key exchange in your environment before configuring a service mesh. For additional information on the key exchange setup, see How to Configure Encryption Keys in Multiple Netwrix Privilege Secure Server Environments: /docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments +- If you have two application servers with internal PostgreSQL on each, you must configure high availability (HA) before configuring a service mesh. For additional information on the HA setup, see Configure and Upgrade Netwrix Privilege Secure in High Availability Mode and Using Remote Services Configurations: [Configuring and Upgrading in High Availability Mode and Using Remote Services Configurations](/docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations.md) +- In both PostgreSQL and SQL Server deployments, you must complete the key exchange in your environment before configuring a service mesh. For additional information on the key exchange setup, see [How to Configure Encryption Keys in Multiple NPS Server Environments](/docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments.md) > **IMPORTANT:** Multi-factor authentication should be disabled for the Netwrix Privilege Secure Administrator account, if used. While this will be indicated by an error message when running `sbpam-proxy.exe`, the error will not indicate the missing 2FA or the need to disable it prior to running. -For additional information on used protocols and ports, see Installation — System Architecture · v4.2: https://docs.netwrix.com/docs/privilegesecure/4_2 +For additional information on used protocols and ports, see [Port, Firewall, and Datacenter Requirements](https://docs.netwrix.com/docs/privilegesecurediscovery/requirements/portsandfirewalls#firewall-rules) ## Instructions @@ -130,11 +130,10 @@ To enable replication of session recordings (`.webm` files for web sessions, `.i 3. Once the file is saved, restart the proxy service and recording replication should occur. -For detailed steps on moving the recording locations, see How to Change the Path Where Session Recordings Are Stored: /docs/kb/privilegesecure/how-to-change-the-path-where-session-recordings-are-stored +For detailed steps on moving the recording locations, see How to Change the Path Where Session Recordings Are Stored: [How to Change the Path Where Session Recordings Are Stored](/docs/kb/privilegesecure/how-to-change-the-path-where-session-recordings-are-stored.md) ## Related Articles -- Configure and Upgrade Netwrix Privilege Secure in High Availability Mode and Using Remote Services Configurations: /docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations -- How to Configure Encryption Keys in Multiple Netwrix Privilege Secure Server Environments: /docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments -- Installation — System Architecture · v4.2: https://docs.netwrix.com/docs/privilegesecure/4_2 -- How to Change the Path Where Session Recordings Are Stored: /docs/kb/privilegesecure/how-to-change-the-path-where-session-recordings-are-stored +- [Configuring and Upgrading in High Availability Mode and Using Remote Services Configurations](/docs/kb/privilegesecure/configuring-and-upgrading-in-high-availability-mode-and-using-remote-services-configurations.md) +- [How to Configure Encryption Keys in Multiple NPS Server Environments](/docs/kb/privilegesecure/how-to-configure-encryption-keys-in-multiple-nps-server-environments.md) +- [Port, Firewall, and Datacenter Requirements](https://docs.netwrix.com/docs/privilegesecurediscovery/requirements/portsandfirewalls#firewall-rules)- [How to Change the Path Where Session Recordings Are Stored](/docs/kb/privilegesecure/how-to-change-the-path-where-session-recordings-are-stored.md) diff --git a/docs/kb/privilegesecure/invoking-desktop-ssh-client-automatically.md b/docs/kb/privilegesecure/invoking-desktop-ssh-client-automatically.md index 94470cfa44..6fd4cb70fa 100644 --- a/docs/kb/privilegesecure/invoking-desktop-ssh-client-automatically.md +++ b/docs/kb/privilegesecure/invoking-desktop-ssh-client-automatically.md @@ -54,8 +54,6 @@ To automatically invoke a local SSH client for sessions, you need to register a ![Setting Netwrix Privilege Secure URL Handler as the default app by protocol](./images/ka0Qk000000E5z7_0EM4u000008M1Gl.png) -7. If none of these built-in command files are successful, then you may refer to the following provided options: Registering and Using the sbpam-url SSH Protocol Handler /docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler). +7. If none of these built-in command files are successful, then you may refer to the following provided options: [Registering and Using the sbpam-url SSH Protocol Handler](/docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler.md) -## Related Article -- Registering and Using the sbpam-url SSH Protocol Handler — /docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler diff --git a/docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler.md b/docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler.md index 6ec972bace..4668d87ee1 100644 --- a/docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler.md +++ b/docs/kb/privilegesecure/registering-and-using-the-sbpam-url-ssh-protocol-handler.md @@ -28,7 +28,7 @@ knowledge_article_id: kA0Qk0000002VvlKAE The `sbpam-url` utility, located in the **Extras** folder of the download package, registers an SSH URL handler. This utility helps you automatically connect to an NPS-proxied SSH session. -For additional information, refer to the following article: /docs/kb/privilegesecure/invoking_desktop_ssh_client_automatically (How to Invoke a Desktop SSH Client Automatically). +For additional information, refer to the following article: [Invoking Desktop SSH Client Automatically](/docs/kb/privilegesecure/invoking-desktop-ssh-client-automatically.md) At the time this article was written, the referenced KB article instructed users to download the utility from a static link, which may provide an outdated version. Use the utility bundled in the **Extras** folder to ensure you have the latest version. @@ -110,8 +110,8 @@ Use the following syntax to register a handler: You can use WinSCP to install an SSH handler as an alternative to `sbpam-url`. Note that WinSCP requires Putty to be installed first. -- https://www.putty.org/ (Download Putty ⸱ PuTTY 🐍) -- https://winscp.net/eng/download.php (Download WinSCP ⸱ WinSCP 🐘) +- [Download Putty ⸱ PuTTY 🐍](https://www.putty.org/) +- [Download WinSCP ⸱ WinSCP 🐘](https://winscp.net/eng/download.php) ### Registry Keys Modified by sbpam-url @@ -164,6 +164,6 @@ The `sbpam-url` utility updates the following registry keys to register the prot ## Related Links -- /docs/kb/privilegesecure/invoking_desktop_ssh_client_automatically (How to Invoke a Desktop SSH Client Automatically) -- https://www.putty.org/ (Download Putty ⸱ PuTTY 🐍) -- https://winscp.net/eng/download.php (Download WinSCP ⸱ WinSCP 🐘) +- [Invoking Desktop SSH Client Automatically](/docs/kb/privilegesecure/invoking-desktop-ssh-client-automatically.md) +- [Download Putty ⸱ PuTTY 🐍](https://www.putty.org/) +- [Download WinSCP ⸱ WinSCP 🐘](https://winscp.net/eng/download.php) diff --git a/docs/kb/privilegesecurediscovery/troubleshooting-linux-registration.md b/docs/kb/privilegesecurediscovery/troubleshooting-linux-registration.md index 633f756b43..4e22cc8d1f 100644 --- a/docs/kb/privilegesecurediscovery/troubleshooting-linux-registration.md +++ b/docs/kb/privilegesecurediscovery/troubleshooting-linux-registration.md @@ -36,8 +36,8 @@ Netwrix Privilege Secure Discovery (formerly SecureONE) ## Common Error Messages -- [Invalid SSH Credentials: Authentication Failed](/docs/kb/privilegesecurediscovery/error-invalid-ssh-credentials-authentication-failed.md) +- [Error: Invalid SSH Credentials Authentication Failed](/docs/kb/privilegesecurediscovery/error-invalid-ssh-credentials-authentication-failed.md) - UnprocessableEntityError: SSH Connection Error: Encountered RSA Key, Expected OPENSSH Key - UnprocessableEntityError: Missing Result for Task checkAdminPrivilege. Code:9999 - Unhandled Error: there has been an Error Processing the Registration Request: 'ascii' Codec can't Encode Character u -- [Unhandled Error: MODULE FAILURE See stdout/stderr for the Exact Error](/docs/kb/privilegesecurediscovery/unhandled-error-module-failure.md) \ No newline at end of file +- [Unhandled Error: Module Failure](/docs/kb/privilegesecurediscovery/unhandled-error-module-failure.md) \ No newline at end of file diff --git a/docs/kb/recoveryad/how-to-reset-multi-factor-authentication.md b/docs/kb/recoveryad/how-to-reset-multi-factor-authentication.md index 5ce2569cc6..f66e0311e6 100644 --- a/docs/kb/recoveryad/how-to-reset-multi-factor-authentication.md +++ b/docs/kb/recoveryad/how-to-reset-multi-factor-authentication.md @@ -39,6 +39,4 @@ Yes, you can reset MFA in Netwrix Recovery for Active Directory (NRAD) by follow 5. Change the `TwoFactorEnabled` column value from `True` to `False` and save the changes. 6. After resetting MFA, users can log in to the console without an authenticator code. To re-enable MFA, refer to the steps in the Configure MFA guide. -## Related Articles -- [Configure MFA](/docs/kb/recoveryad/how-to-reset-multi-factor-authentication.md)