Veritas Data Insight 6.1 Administrator's Guide
- Section I. Getting started
- Introduction to Veritas Data Insight administration
- Configuring Data Insight global settings
- Overview of Data Insight licensing
- About scanning and event monitoring
- About filtering certain accounts, IP addresses, and paths
- About archiving data
- About Data Insight integration with Symantec Data Loss Prevention (DLP)
- Configuring advanced analytics
- About open shares
- About bulk assignment of custodians
- Section II. Configuring Data Insight
- Configuring Data Insight product users
- Configuring Data Insight product servers
- About node templates
- About automated alerts for patches and upgrades
- Configuring saved credentials
- Configuring directory service domains
- Adding a directory service domain to Data Insight
- Configuring containers
- Section III. Configuring native file systems in Data Insight
- Configuring NetApp file server monitoring
- Configuring clustered NetApp file server monitoring
- About configuring secure communication between Data Insight and cluster-mode NetApp devices
- Configuring EMC Celerra or VNX monitoring
- Configuring EMC Isilon monitoring
- Configuring Hitachi NAS file server monitoring
- Configuring Windows File Server monitoring
- Configuring Veritas File System (VxFS) file server monitoring
- Configuring monitoring of a generic device
- Managing file servers
- Adding filers
- Adding shares
- Renaming storage devices
- Configuring NetApp file server monitoring
- Section IV. Configuring SharePoint data sources
- Configuring monitoring of SharePoint web applications
- About the Data Insight web service for SharePoint
- Adding web applications
- Adding site collections
- Configuring monitoring of SharePoint Online accounts
- About SharePoint Online account monitoring
- Adding SharePoint Online accounts
- Adding site collections to SharePoint Online accounts
- Configuring monitoring of SharePoint web applications
- Section V. Configuring cloud data sources
- Section VI. Configuring ECM data sources
- Section VII. Health and monitoring
- Section VIII. Alerts and policies
- Section IX. Remediation
- Section X. Reference
- Appendix A. Backing up and restoring data
- Appendix B. Data Insight health checks
- Appendix C. Command File Reference
- Appendix D. Data Insight jobs
- Appendix E. Troubleshooting
- Troubleshooting FPolicy issues on NetApp devices
Prerequisites for configuring SharePoint Online account
For Data Insight to access the SharePoint Online account, make sure that the following prerequisites are met:
The Collector node is configured on Windows Server 2012 R2 or Windows Server 2016.
Ensure that you are aware of the SharePoint Online Account Administration Center Site URL that you want Data Insight to monitor.
The SharePoint Online Management PowerShell installer is installed on the machine with the role as Collector. You can download the installable from the following location:
https://www.microsoft.com/en-in/download/details.aspx?id=35588
The SharePoint Online Client Components SDK is installed on the Collector. You can download the installable from the following location:
https://www.microsoft.com/en-in/download/details.aspx?id=42038
The SharePoint administrator account is configured in the Office 365 admin center. This account should have administrative privileges on the target site collections.
The DataInsightSPOnline service is configured and running on the Collector node. This service is responsible for discovering the site collections and scanning the Online account hierarchy to gather the audit events.
See Configuring Data Insight services. for information about the Data Insight services.
Create a role with View-only audit log privilege. This user credentials are used by Data Insight to collect SharePoint Online audit logs.
Do the following:
In the Office 365 Admin Center, navigate to Security and Compliance >Add role.
Note:
Only an Office 365 Global Admin can log in to the Security and Compliance view.
Provide View-Only Audit Logs privilege to the role , and add the user with role SharePoint administrator role to newly-created role.
In the Office 365 Admin Center, navigate to Exchange > Permissions >Add admin role.
Ensure that you use the same user credentials with role as SharePoint administrator.
For more information, see
https://support.office.com/en-us/article/Turn-off-audit-log-search-in-Office-365
On the Windows Server, ensure that the execution policy is set to RemoteSigned. This permits running of PowerShell scripts for device discovery and audit data collection. To configure the policy, start Windows PowerShell as administrator, and run the following commands:
To view the configured execution policy:
Get-ExecutionPolicy
To configure the execution policy to RemoteSigned:
Set-ExecutionPolicy -ExecutionPolicy RemoteSigned -Scope LocalMachine
Enable auditing in Office 365 Admin Center.
To enable auditing, in Office 365 Admin Center navigate to Security and Compliance > Search and investigation > Audit log search. Click Start recording user and admin activities.
Note that it takes 24 hours for the audit logs to start appearing on the Audit log search page.