The MetaFlows Security System allows organizations to grant access to multiple users for online collaboration in sharing sensor data and intelligence. This is a big advantage because it helps distribute workloads across departments and at different levels of the incident response process. One issue customers brought up was the lack of ability to know who took what action, and at what time they did the action. This is why we added the Account Audit Log feature. You can find this feature under Account -> Account Audit Log. With this new Audit Log, you can track most account actions, including:
- Changes to contact information and subscription
- All account access
- Sensor restarts
- Creating, changing, or deleting:
- Snort Rules
- Report Specifications
For every logged action, we track the user, time, and IP address from which these actions originated. We also provide extra details if available.