Settings for Data Collection

At this step of the wizard, specify the account that Netwrix Auditor will use to access the data source, and general settings for data collection.

Option Description

Specify the account for collecting data

Provide a user name and a password for the account that Netwrix Auditor will use to collect data. By default, the user name is prepopulated with your account name.

Make sure the account has sufficient permissions to collect data. For a full list of the rights and permissions, and instructions on how to configure them, refer to Data Collecting Account. Netwrix recommends creating a special service account with extended permissions.

NOTE: If you want to audit network devices or Azure AD/Office 365 infrastructure, you can use any account here.

When you configure a monitoring plan for the first time, the account you specify for data collection will be set as default.

Enable network traffic compression

If selected, this option instructs Netwrix Auditor to deploy a special utility that will run on the audited computers and do the following:

  • collect and pre-filter audit data
  • compress data and forward it to Netwrix Auditor Server

This approach helps to optimize load balance and reduce network traffic. So, using this option can be recommended especially for distributed networks with remote locations that have limited bandwidth. See Network Traffic Compression for more information.

Adjust audit settings automatically

Netwrix Auditor can configure audit settings in your environment automatically. Select Adjust audit settings automatically. In this case, Netwrix Auditor will continually check and enforce the relevant audit policies. For some data sources (currently, Active Directory and Logon Activity) you will be offered to launch a special utility that will detect current audit settings, check them against requirements and then adjust them automatically. See Audit Configuration Assistant for details.

You may also want to apply audit settings via GPO (for example, for Windows Servers).

NOTE: Netwrix Auditor has certain limitations when configuring audit settings for NetApp and EMC. See File Servers for more information.

For a full list of audit settings and instructions on how to configure them manually, refer to Configure IT Infrastructure for Auditing and Monitoring.

Launch Audit Configuration AssistantConfiguration Assistant Click to launch a specially intended utility that will assess your environment readiness for monitoring and adjust audit settings, if necessary. The tool will be launched in a new window. See Audit Configuration Assistant for details.
Collect data for state-in-time reports

State-in-time reports are based on the daily configuration snapshots of your audited systems; they help you to analyze particular aspects of the environment. State-in-time configuration snapshots are also used for IT risks assessment metrics and reports.

This data collection option is available if you are creating a monitoring plan for any of the following data sources:

  • Active Directory
  • File Servers
  • Windows Server
  • Group Policy
  • SharePoint
  • SharePoint Online
  • Exchange Online
  • SQL Server
  • VMware

To read more, refer to State–in–Time Reports and IT Risk Assessment Overview .