× NETGEAR will be terminating ReadyCLOUD service by July 1st, 2023. For more details click here.
Orbi WiFi 7 RBE973
Reply

ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

witto17
Tutor

ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

We have a new security requirement from the government to log downloads, deletions, file moves etc (all activities) performed on our NAS by active directory users. The smb logs only show authentication. Is there any way to get this information from the system? Or perhaps an app that can accomplish that? 

Model: RN31661D|ReadyNAS 316 6-Bay 6x1TB Desktop Drive
Message 1 of 5

Accepted Solutions
witto17
Tutor

Re: ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

So after carefully reviewing the capabilities of our ReadyNAS we approached our problem differently and found a solution that works really well for us.

 

We ended up setting up 3TB in a iSCSI LUN, added that LUN as a Windows server disk and used Windows Auditing (object access) to see who access the drive/folders etc and also their actions (create, read, delete etc). Below is the Youtube video describing everything.

 

 

Youtube article:
How to setup iSCSI on a Netgear ReadyNAS and share storage with a Windows Server
https://www.youtube.com/watch?v=lNn_2LjwQGY

 

Thanks to all for your help.

View solution in original post

Message 4 of 5

All Replies
FramerV
NETGEAR Employee Retired

Re: ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

Hi witto17,

 

I am assuming the ReadyNAS is in Active Directory mode also? As far as I know, the NAS will only be logging activities done within the ReadyNAS GUI and by the ReadyNAS itself like (back-up jobs, snapshot, share creation and deletion). I am try to check if we have apps that can do what you need. I will get in touch again.

 

Regards,

Message 2 of 5
FramerV
NETGEAR Employee Retired

Re: ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

Hi witto17,

 

We’d greatly appreciate hearing your feedback letting us know if the information we provided has helped resolve your issue or if you need further assistance. 

If your issue is now resolved, we encourage you to mark the appropriate reply as the “Accept as Solution” or post what resolved it and mark it as solution so others can be confident in benefiting from the solution. 
 
The Netgear community looks forward to hearing from you and being a helpful resource in the future!
 
Regards,

Message 3 of 5
witto17
Tutor

Re: ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

So after carefully reviewing the capabilities of our ReadyNAS we approached our problem differently and found a solution that works really well for us.

 

We ended up setting up 3TB in a iSCSI LUN, added that LUN as a Windows server disk and used Windows Auditing (object access) to see who access the drive/folders etc and also their actions (create, read, delete etc). Below is the Youtube video describing everything.

 

 

Youtube article:
How to setup iSCSI on a Netgear ReadyNAS and share storage with a Windows Server
https://www.youtube.com/watch?v=lNn_2LjwQGY

 

Thanks to all for your help.

Message 4 of 5
FramerV
NETGEAR Employee Retired

Re: ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)

Hi witto17,

 

This is really great. Thank you very much for sharing.

 

 

Regards,

Message 5 of 5
Top Contributors
Discussion stats
  • 4 replies
  • 4278 views
  • 1 kudo
  • 2 in conversation
Announcements