Go Up
You are here: DeploymentAzure AD

Configure IT Infrastructure for Auditing and Monitoring

Netwrix Auditor relies on native logs for collecting audit data. Therefore, successful change and access auditing requires a certain configuration of native audit settings in the audited environment and on the computer where Netwrix Auditor Server resides. Configuring your IT infrastructure may also include enabling certain built-in Windows services, etc. Proper audit configuration is required to ensure audit data integrity, otherwise your change reports may contain warnings, errors or incomplete audit data.

The table below lists the native audit settings that must be adjusted to ensure collecting comprehensive and reliable audit data. You can enable Netwrix Auditor to continually enforce the relevant audit policies or configure them manually.

Data source Required configuration

Active Directory (including Group Policy)

Azure AD

No configuration required


Exchange Online

Window File Servers

EMC Isilon



Oracle Database


SharePoint Online (including OneDrive for Business)

No configuration required

SQL Server

No configuration required


No configuration required

Windows Server (including DNS, DHCP and removable media)

Event Log (including Cisco)


Logon Activity

User Activity

Refer to the following topics for detailed instructions depending on the system you are going to audit:

Go Up