Kaspersky Industrial CyberSecurity for Networks

Viewing user activity audit entries

March 22, 2024

ID 140034

Expand all | Collapse all

Kaspersky Industrial CyberSecurity for Networks can save information about actions performed by users in the application. Information is saved in the audit log if user activity audit is enabled.

You can view audit entries when connected to the Server through the web interface. If necessary, you can also configure forwarding of application messages to recipient systems via connectors.

Only users with the Administrator role can view audit entries.

To view audit entries:

  1. Connect to the Kaspersky Industrial CyberSecurity for Networks Server through the web interface using the Administrator account.
  2. Select Settings → Audit.

The table will display the audit entries that match the defined filter and search settings.

The columns of the audit entries table contain the following information:

  • Date and time – date and time when the user activity data was registered.
  • Action – registered action performed by the user.
  • Result – result of the registered action (successful or unsuccessful).
  • User – name of the user that performed the registered action.
  • User node – IP address of the node on which the registered action was performed.
  • Description – additional information about the registered action.

When viewing the audit entries table, you can use the following functions:

  • Configure the display and order of columns in the audit entries table
  • Filtering based on standard periods
  • Filtering based on a specified period
  • Filtering based on table columns
  • Searching for audit entries
  • Resetting the defined filter and search settings
  • Sorting audit entries

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.