Maintaining Audit Trails - Symantec PCANYWHERE - ADMINISTRATOR GUIDE V12.1 Administrator's Manual

Maintaining audit trails

Session security options (continued)
Table 6-4
Option
Time limits for individual users or
user groups
Secure end-of-session options
For more information, see the Symantec pcAnywhere User's Guide.
Event logging helps you monitor session activities and track information for
auditing purposes. You can track who connected to a host and session duration,
as well as important security information such as authentication or logon failures.
Depending on your environment, you can send information about events that
occurred during a session to a pcAnywhere generated log file, the Windows Event
Log, or a Simple Network Management Protocol (SNMP) console. Symantec
pcAnywhere supports centralized logging, so you can archive the logs on a secure,
central server.
Although logging can be a useful tool, be aware that tracking some types of events
can degrade performance. You should also remember to periodically archive log
files.
For more information, see the Symantec pcAnywhere User's Guide.
Managing security in Symantec pcAnywhere
Description
Protect the host from a malicious user's intent on
disrupting service, as well as from innocent users who
inadvertently forget to end a session, by setting time
limits for sessions and configuring the host to
automatically end the session after a specified length
of inactivity. These options are configured at the caller
level.
Securely end host sessions to prevent potential
security breaches. You can handle normal end of
sessions and abnormal end of sessions differently.
You can do the following:
Cancel the host or continue to wait for
connections.
Log off the host user.
Restart the host computer.
Lock the computer.
Maintaining audit trails
97