This topic has been marked solved and closed to new posts due to inactivity. We hope you'll join the conversation by posting to an open topic or starting a new one.
ReadyNAS 316 - User actions monitoring (for Insider Threat requirement)
We have a new security requirement from the government to log downloads, deletions, file moves etc (all activities) performed on our NAS by active directory users. The smb logs only show authentication. Is there any way to get this information from the system? Or perhaps an app that can accomplish that?
So after carefully reviewing the capabilities of our ReadyNAS we approached our problem differently and found a solution that works really well for us.
We ended up setting up 3TB in a iSCSI LUN, added that LUN as a Windows server disk and used Windows Auditing (object access) to see who access the drive/folders etc and also their actions (create, read, delete etc). Below is the Youtube video describing everything.
I am assuming the ReadyNAS is in Active Directory mode also? As far as I know, the NAS will only be logging activities done within the ReadyNAS GUI and by the ReadyNAS itself like (back-up jobs, snapshot, share creation and deletion). I am try to check if we have apps that can do what you need. I will get in touch again.
We’d greatly appreciate hearing your feedback letting us know if the information we provided has helped resolve your issue or if you need further assistance.
If your issue is now resolved, we encourage you to mark the appropriate reply as the “Accept as Solution” or post what resolved it and mark it as solution so others can be confident in benefiting from the solution.
The Netgear community looks forward to hearing from you and being a helpful resource in the future!
So after carefully reviewing the capabilities of our ReadyNAS we approached our problem differently and found a solution that works really well for us.
We ended up setting up 3TB in a iSCSI LUN, added that LUN as a Windows server disk and used Windows Auditing (object access) to see who access the drive/folders etc and also their actions (create, read, delete etc). Below is the Youtube video describing everything.
