IFsrmSetting::get_EnableScreeningAudit method (fsrm.h)

Retrieves or sets a value that determines whether FSRM keeps audit records of the file screen violations.

This property is read/write.

Syntax

HRESULT get_EnableScreeningAudit(
  VARIANT_BOOL *enableScreeningAudit
);

Parameters

enableScreeningAudit

Return value

None

Remarks

The records are included in a File Screen Audit report. An audit record contains the following items:

  • Folder path
  • Id
  • Blocked file group name
  • File screen mode
  • Time stamp of when the violation occurred
  • The name of the process image that generated the prohibited IO, if available
  • The SID of the user principal that issued the prohibited IO, if available
  • The full path of the prohibited file
  • The server name
If this property is false and a report specifies the FsrmReportType_FileScreenAudit report type, the report will succeed but will not contain any audit information (or will contain audits that were done before auditing was disabled).

Examples

For an example, see IFsrmSetting.

Requirements

Requirement Value
Minimum supported client None supported
Minimum supported server Windows Server 2008
Target Platform Windows
Header fsrm.h (include FsrmPipeline.h, FsrmQuota.h, FsrmReports.h, FsrmScreen.h, FsrmTlb.h)
DLL SrmSvc.dll

See also

FsrmSetting

IFsrmSetting