Configuring Auditing
Auditing is configured in the Users section of Repository Administration. Audit configuration has two parts. First, specify what actions you want to audit and whether you want to audit success, failure, or both. Second, optionally, you can require users to provide a reason for actions such as document deletion or export.
Determine Which Events to Log
Most actions performed in Laserfiche can be logged. Individual actions are grouped into event groups based on the event type—for instance, the Session event group includes the Log On and Log Off events. In addition to logging events that have occurred, you can also choose to log unsuccessful attempts to perform a specific action and events performed by a particular user or group. The effects of assigning audit configuration to users and groups are explained below.
Audit events are collected into event classes, allowing you to quickly select categories of events to audit. For a complete list of audit event classes and the events they contain, see Audit Events.
Auditing determines which events will be logged by first checking who is logged into the repository. Once it knows which user has logged into the repository, it will check that user's audit settings for two possible types.
- Group membership: If the logged in user has been configured to inherit its audit settings by group membership, and any of the groups to which the user belongs have been configured to audit an event, that event will be audited for the user.
- User configuration: If events have been specifically assigned to the logged in user, only those events will be audited. The selected auditing events for the groups to which the user belongs to will be ignored.
In addition, auditing configured on the Everyone group will be applied to all users. If a user or group already has auditing configured, the audit settings of both will be combined.
- If you are not already in the repository administration section of Laserfiche, click the app picker in the upper right corner and select Repository Administration.
- On the Overview page, under Users and Groups, click Users to configure auditing for a specific user, Groups to configure auditing for a specific group, or click Everyone to configure auditing for all users. You can also click Users or Everyone on the left to configure auditing on users, groups, or all users.
- If you clicked Users or Groups, click the name of the user or group whose audit settings you want to configure.
- Select the Auditing tab.
- If you selected a user, clear Inherit audit settings from group membership to configure audit settings for the user independent of group membership; if you want the user's audit settings to be determined by group membership, leave this option selected. (This setting does not affect audit settings configured on the Everyone group.)
- For each audit event class, select Success to audit when the relevant actions are successfully performed, and/or Failure to audit when the relevant actions are attempted but fail. See Audit Events for explanations of the event classes.
- Click Save to save your changes. Repeat steps 2-6 for each user or group you want to configure.
Prompting Users for Reasons
You can configure auditing to require a reason before a user deletes, exports, or prints a document. Reasons can be configured by user, by group, and/or for everyone in the repository using the Everyone group. If a reason is required, the user will be prompted to select from a list of reasons when he or she tries to perform one of these actions. Users can also provide optional comments, which will be stored in the audit logs with the selected reason.
- If you are not already in the repository administration section of Laserfiche, click the app picker in the upper right corner and select Repository Administration.
- On the left, select Users to configure auditing for a specific user or group, or Everyone to configure auditing for all users.
- If you selected Users, click the name of the user or group whose audit settings you want to configure.
- Select the Auditing tab.
- Under Reasons, select the event (Delete, Export, or Print) for which you want to require a reason.
- In the Add Reasons option, type a reason and click Create. Repeat until you have added as many reasons as you want for that event.
- Click Save. Repeat steps 2-6 for each user or group you want to configure.