28. 08. 2012 Tobias Goller NetEye

File access monitor

Many companies use shared directories or files to allow different users to access the information and if necessary modify them.

When I am on customer site implementing new NetEye projects, it happens very often that there is the need to monitor the accesses on these shared files.

To satisfy this requirement it is necessary  to enable the “Audit Object Access” in the group policy of the domain or of the machine itself.
Based on the different configurations, in fact, all the activities (listen, read or write) performed on these files can be monitored.

The results can later be viewed in the Event Viewer of NetEye and in particular all the logs are stored in the security container. In addition, by identifying the event id it is also possible to configure the Agent Safed that collects and send these logs to the NetEye syslog server that archives and indexes them.

Tobias Goller

Tobias Goller

NetEye Solution Architect at Würth IT Italy
I started my professional career as a system administrator. Over the years, my area of responsibility changed from administrative work to the architectural planning of systems. During my activities at Würth IT Italy, the focus of my area of responsibility changed to the installation and consulting of the IT system management solution WÜRTHPHOENIX NetEye. In the meantime, I take care of the implementation and planning of customer projects in the area of our unified monitoring solution.

Author

Tobias Goller

I started my professional career as a system administrator. Over the years, my area of responsibility changed from administrative work to the architectural planning of systems. During my activities at Würth IT Italy, the focus of my area of responsibility changed to the installation and consulting of the IT system management solution WÜRTHPHOENIX NetEye. In the meantime, I take care of the implementation and planning of customer projects in the area of our unified monitoring solution.

Latest posts by Tobias Goller

13. 10. 2025 Log-SIEM, Unified Monitoring
Elastic Defend: Experiences
18. 07. 2025 Automation, Cloud
Running SOS Berlin JobScheduler in Containers: A Step Toward Cloud-Native Scheduling
16. 04. 2025 NetEye, Unified Monitoring
Application Performance Monitoring in NetEye with Elastic APM and OpenTelemetry
20. 01. 2025 NetEye
Icinga Director Self Service API Not Working After Keycloak Activation
25. 10. 2024 Log-SIEM
Enhancing Cybersecurity with Elastic Defend: A Technical Consultant’s Perspective
See All

Related Content

Tags: , , , ,

11. 02. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.46

Fixing Misplaced Plugin Output in Icinga Web Interface When plugin output contained HTML content (like links), it was incorrectly displayed near the service name instead of in the Plugin Output section. The plugin output section now correctly renders all content. Read More
10. 02. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.46

Icinga Director Now Responsive During Configuration Deployments Previously, users were unable to interact with Icinga Director while configuration deployments were running. Any attempt to access the interface or API would be blocked until the deployment completed, causing unnecessary delays in Read More
20. 01. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.45

Bug Fix We updated the version of GLPI in order to fix some relevant vulnerabilities. List of updated packages The following packages have been updated for NetEye 4.45: glpi, glpi-autosetup, glpi-configurator, glpi-neteye-config to version 10.0.22_neteye1.17.5-1.
17. 01. 2026 Bug Fixes, NetEye

Bug Fixes for NetEye 4.45

Bug Fix in Tornado Module We solved an issue in Tornado's rule configuration where the action_name field in director actions was being cleared after saving and deploying. When users created a rule with a director action and filled in both Read More
28. 12. 2025 Automation, Business Service Monitoring, Icinga Web 2, NetEye, Service Management

Automating Notifications in NetEye

Today we continue our journey into monitoring automation in NetEye. In my previous post we discussed the possibility of automating Business Processes. As you may remember, for those of us working on NetEye Cloud monitoring dozens of clients, it's important Read More

One Reply to “File access monitor”

  1. Antonio Moletta says:
    August 29, 2012 at 07:24

    Hi Tobias, I’m working on this solution but unfortunately Syslog View doesn’t send notifications.

    Of course, it’s a really good repository to store audit events.

    I’m trying a different way like enabling snmp trap on the server and manage the “Audit Object Access” with Trap Handler module in NetEye.

    It works quite good!

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive