Account Management

    Last updated on:

    In this page

    Domains

    1. Adding a Domain
    2. Update a Domain
    3. Reload domain objects
    4. Configuring object level auditing
    5. Configuring audit policies
    6. Schedule reload domain objects
    7. Managed Domain Computers

    Domains and Workgroups page lists all the Active Directory domains and workgroups discovered by Log360 Cloud Agent. You have the option to update, reload and delete a domain by clicking on the respective icons.

    Adding a Domain

    To add a new domain, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then, navigate to Account Settings under Admin.
      Account Management
    • Choose the Configure Domains tab and click the + Add new domain button. This will open the Add Domain window.
      Account Management
    • Choose a Agent and provide a desired Domain Name in the respective fields.
      Account Management
    • Enter the desired Domain Controllers in the given field. Use comma ',' separator for entering multiple domain controllers. Alternatively, you may click on Discover to auto-discover the domain controllers.
    • If you select Authentication you will need to provide the credentials (Login Name and Password) with admin privileges. Note that the agent login credentials are used when no authentication credentials are provided.
      Account Management
    • Click the Add button.

    Update a Domain

    To update a domain, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then navigate to Domains and Workgroups under Configuration.
      Account Management
    • Choose the Configure Domains tab and click the icon-edit icon corresponding to the desired domain.
      Account Management
    • In the window that pops-up, choose a Agent from the drop-down list.
      Account Management
    • Enter the desired Domain Controllers in the given field. Use comma ',' separator for entering multiple domain controllers. Alternatively, you may click on Discover to auto-discover the domain controllers.
    • To modify the authentication credentials, tick the box corresponding to Authentication and provide a Username and Password in the respective fields. Note that the agent login credentials are used when no authentication credentials are provided.
      Account Management
    • After making the desired modifications, click the Update button.

    Reload domain objects

    To reload domain objects in a domain, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then navigate to Domains and Workgroups under Configuration.
      Account Management
    • Choose the Configure Domains tab and click the icon corresponding to the desired domain.
      Account Management
    • In the window that pops-up, select the required objects and click Reload.
      Account Management
    • Now the domain objects will be reloaded successfully.

    Schedule reload domain objects

    To configure schedule reload domain objects, follow the steps below.

    1. Open Log360 Cloud and select the Settings tab. Then navigate to Account Settings under Admin
    2. Choose the Configure Domains tab and click the reload icon to open the reload domain objects.
      Account Management
    3. Then, click on the Schedule icon to go to the schedule domain objects synchronization page. The schedule icon will turn green icon-scheduler if the scheduler is previously enabled for that domain, or else it will turn red icon-delete.
      Account Management
    4. To configure the page, enable the Schedule Sync toggle icon.
      Account Management
    5. Fill in the required details and click on Save.
      Account Management
    6. Monitor the 'Scheduled Sync Status' column for updates. This column displays the latest sync status: 'Success,' 'Failed,' or 'Scheduled Sync.' If a sync is scheduled during working hours, it will activate, and the initial sync will take place at the next available time outside working hours. The status will appear as 'Scheduled Sync' until the first sync completes. If scheduled outside working hours or on a non-working day, the first sync initiates immediately. The status will then update to 'Success' or 'Failed' based on the outcome.
      Account Management
    7. Detailed information is available on the Scheduled Domain Objects Synchronization page, including the time, date, and status of the last sync, and causes for any failure.
      Account Management
      Account Management
    8. If the scheduler is enabled successfully, the icon changes from to .
    9. You can disable the scheduled sync by toggling off the icon in the Schedule domain object synchronization page.
      Account Management
      Account Management
    Note
    • Only one schedule can be created per domain.
    • If a domain is being configured, users will receive a warning message when they try to set up another schedule. Schedule configuration is disabled until the current configuration completes.
    • Scheduled sync runs during the non-working hours of the agent's machine. The displayed time in the UI is converted to the user's time zone set on the Accounts Page.
    • If "00:00 to 24:00" (full day) working hours are configured, the scheduler operates regardless of working hours.
    • Once a schedule is configured, syncs run according to the working hours set at that time. Updating working hours will adjust subsequent scheduled syncs accordingly.

    Managed Domain Computers

    Log360 Cloud allows users to easily view all the devices configured within their account settings, including domain controllers, member servers, and workstations. With this enhanced domain settings, users can access detailed information about each device, filter them based on their roles, and manage devices that are yet to be configured.

    Viewing and Managing Devices

    In Log360 Cloud, you can view the configured devices by following these steps:

    1. Login to your Log360 Cloud account.
    2. Go to Admin → Account Settings → Account Management.
    3. Under Account Management, click on Configure Domains.
    4. Click on Managed Domain Computers to view all the configured devices.
      Account Management
    5. In the pop-up that appears, you will be able to view the number of configured and unconfigured devices which includes domain controllers, member servers, and workstations along with the total number of hosts.
      Account Management
    6. To view more details about the devices under each domain controller, you can click on the number displayed under configured and not configured.
    7. Clicking on the Configured count will redirect you to the Account Management page, where you can view more details about each configured Windows device.
      Account Management
    8. You can use the filter under Select Category to categorize and manage the devices by their roles (Domain Controllers, Member Servers, Workstations).
      Account Management
    9. Clicking on the Not Configured count will redirect you to the Add device pop-up, where you can add/configure each unconfigured Windows device.
      Account Management

    Adding/Configuring New Devices

    In Log360 Cloud, you can add or configure the unconfigured devices by following these steps:

    1. Login to your Log360 Cloud account.
    2. Go to Admin → Account Settings → Account Management.
    3. Under Account Management, click on Configure Domains.
    4. Click on Managed Domain Computers to view all the unconfigured devices.
      Account Management
    5. To add/configure the unconfigured device(s), click on the Not Configured count under the specific domain controller.
      Account Management
    6. In the Add device pop-up that appears, use the filter next to Device to choose the specific domain controller of the unconfigured device(s) you wish to configure.
      Account Management
    7. From the filtered list of devices, click on the specific device(s) you wish to add/configure.
      Account Management
    8. Select the Category, the Agent, and click on Add to configure the device.
    9. The device has been configured successfully.
      Account Management
    Note You can configure the audit policies with the steps outlined here.

    Workgroups

    1. Update a Workgroup
    2. Delete a Workgroup
    3. Re-discover workgroup devices

    Update a Workgroup

    To update a workgroup, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then navigate to Account Settings under Admin.
      Account Management
    • Choose the Configure Workgroups tab and click the icon-edit icon corresponding to the desired workgroup.
      Account Management
    • To modify the authentication credentials, select the Authentication checkbox and provide a Username and Password in the respective fields. Note that the agent's login credentials are used when no authentication credentials are provided.
      Account Management
    • Click the Update button.

    Delete a Workgroup

    To delete a workgroup, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then navigate to Account Settings under Admin.
      Account Management
    • Choose the Configure Workgroups tab and click the icon-delete icon corresponding to the desired workgroup.
      Account Management
    • Click Yes to confirm the action.
      Account Management

    The workgroup is deleted successfully.

    Re-discover workgroup devices

    To re-discover workgroup devices, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then navigate to Account Settings under Admin.
      Account Management
    • Choose the Configure Workgroups tab and click the icon-refresh icon corresponding to the desired workgroup.
      Account Management

    Discovery of workgroup devices will take place in the background.

    Cloud accounts

    1. Add a cloud account
    2. Update a cloud account
    3. Delete a cloud account

    Adding a cloud account

    To add a new cloud account, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then, navigate to Account Settings under Admin Settings.
      Account Management
    • Choose the Configure Cloud Accounts tab and click the + Add Cloud Account button. This will open the Add Cloud Account window.
      Account Management
    • Select a Cloud Account Type from the drop-down menu.
    • For AWS accounts:
      • Enter the Display name and Access Key ID.
      • Enter the Secret Access Key value.
      • To add a Cloud Trail account, please follow the configuration instructions.
      • Click Save.
    • For Microsoft 365 accounts:
      • Enter the Tenant Name, Application ID, Application Object ID, and Application Secret.
      • Click Save to add the new Microsoft 365 account for monitoring.

    Updating a cloud account

    To edit a cloud account, follow the steps given below.

    • Open Log360 Cloud and select the Settings tab. Then, navigate to Account Settings under Admin Settings.
      Account Management
    • Choose the Configure Cloud Accounts tab and click the icon corresponding to the desired cloud account.
    • Enter the new credentials for the cloud account such as the Access Key ID and Secret Access Key and click Save.

    Deleting a cloud account

    • Open Log360 Cloud and select the Settings tab. Then, navigate to Account Settings under Admin Settings.
      Account Management
    • Choose the Configure Cloud Accounts tab and click the delete icon corresponding to the desired cloud account.
    • Select Yes in the dialogue box that prompts you to confirm the action.
      Account Management