Configuring Compliance Reports Settings

EventLog Analyzer provides a framework that lets you configure a new compliance type with required reports from the set of default reports. There are 13 default reports available to choose. These reports are derived based on the Event IDs. The framework provides required default reports for four regulatory compliance acts and allows you to modify the default list of reports as per your requirement. You can also edit the description of various reports.

The four regulatory compliance acts:

HIPAA
GLBA
SOX
PCI

Configuring Compliance Reports Settings

Compliance Reports page

Click the Compliance Reports link to view the details and descriptions of the default compliances and the selected list of reports, configure new or existing compliances. You can find this link on the Reports menu of the sub-tab. Clicking the Compliance Reports link opens the Compliance Reports page. On the right side top of the page, Add New and Edit links are present. With the Add New link, you can add a new compliance and select a set of reports for the compliance. With Edit link, you can edit the default compliances available in the EventLog Analyzer. The Compliance Reports page displays the four default compliance reports. The page displays the Compliance, its description, provides scheduling of the compliance report with Schedule link, allows you to initmate EventLog Analyzer Support for adding more reports to the existing list of default reports with More Reports? Tell us here link, all the reports selected for the compliance and their description. Clicking on the compliance report, displays all the selected reports of the compliance in the <Compliance Name> Compliance Report page. Clicking on the individual report under a compliance, displays the selected report of the compliance in the <Compliance Name> Compliance Report page.

Compliance Settings page

Click the Compliance Reports link to configure new or existing compliances. You can find this link on the System Settings section of the Settings tab. Clicking the Compliance Reports link opens the Compliance Settings page. On the right side top of the page, Add new Compliance link is present. The page lists the default compliances, with pre-selected reports provided by EventLog Analyzer, in the Edit Compliance section of the page. The Edit Compliance section lists the compliance and the number of reports selected for each compliance from the 13 default reports provided by EventLog Analyzer.

The details of the four default compliances and the pre-selected reports are given below:

You can add a new compliance and select a list of reports, for the new compliance, from the 13 default reports provided by EventLog Analyzer. To add a new compliance, click the Add new Compliance link is present on the right side top of the Compliance Settings page.

HIPAA Compliance Reports

EventLog Analyzer provides the following reports to help comply with the HIPAA regulations:

Reports on Successful User Logons
Reports on Successful User Logoffs
Reports on Logon Attempts
Reports on Audit Logs Cleared
Reports on Object Access
Reports on System Events
Reports on Host Session Status
Reports on Successful User Account Validation
Reports on UnSuccessful User Account Validation

All these reports are accessible from the HIPAA Compliance Reports section.

By default, EventLog Analyzer provides 9 reports. You have the option to modify the list of reports. You can select a report from the available reports and add it to the list or remove a report from the list. You can configure the description of the reports specific to this compliance.

Sarbanes-Oxley Compliance Reports

EventLog Analyzer provides the following reports to help comply with the SOX regulations:

Reports on Successful User Logons
Reports on Successful User Logoffs
Reports on Logon Attempts
Reports on Audit Logs Cleared
Reports on Object Access
Reports on System Events
Reports on Host Session Status
Reports on Successful User Account Validation
Reports on UnSuccessful User Account Validation
Reports on User Account Changes
Reports on User Group Changes
Reports on Audit Policy Changes
Reports on Individual User Action

All these reports are accessible from the SOX Compliance Reports section.

By default, EventLog Analyzer provides all the 13 reports. You have the option to modify the list of reports. You can remove a report from the list. You can configure the description of the reports specific to this compliance.

GLBA Compliance Reports

EventLog Analyzer provides the following reports to help comply with the GLBA regulations:

Reports on Successful User Logons
Reports on Successful User Logoffs
Reports on Logon Attempts
Reports on Audit Logs Cleared

All these reports are accessible from the GLBA Compliance Reports section.

By default, EventLog Analyzer provides 4 reports. You have the option to modify the list of reports. You can select a report from the available reports and add it to the list or remove a report from the list. You can configure the description of the reports specific to this compliance.

PCI Compliance Reports

EventLog Analyzer provides the following reports to help organizations to comply with the PCI regulations. The following reports cover Requirements 10.1, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 10.2.6, 10.2.7

Reports on Successful User Logons
Reports on Successful User Logoffs
Reports on Logon Attempts
Reports on Audit Logs Cleared
Reports on Object Access
Reports on Audit Policy Changes
Reports on Individual User Action

All these reports are accessible from the PCI Compliance Reports section.

By default, EventLog Analyzer provides 7 reports. You have the option to modify the list of reports. You can select a report from the available reports and add it to the list or remove a report from the list. You can configure the description of the reports specific to this compliance.

Adding a New Compliance

Click the Add new Compliance link to configure a new compliance and the required reports. You can find this link present on the right side top of the Compliance Settings page. Select the Settings tab, System Settings > Compliance Reports link.

Click the Add new Compliance link opens the New Policy page. Enter the name of the new compliance policy in the Enter the Policy Name field.

On entering the policy name, edit link is displayed. Click the edit link to edit the description of the compliance policy. Clicking the edit link opens the Enter the description: window with the default description. Edit the existing or enter the new description and click Save button to save the description and Cancel button to cancel the edit description operation.

In the Reports under this Compliance section, all the 13 default reports provided by EventLog Analyzer are listed, with check boxes to select. Select the reports as required.

Editing the Report Description

Hovering on the rows of the reports display edit link. Click the edit link to edit the description of the report for this compliance policy. Clicking the edit link opens the Enter the description: window with the default description. Edit the existing or enter the new description and click Save button to save the description and Cancel button to cancel the edit description operation.

Click Add button to add the new compliance and its reports and Cancel to cancel the add new compliance operation.

The new compliance report will be listed under the Edit Compliance section below the default compliances.

Adding New Default Report

If you to add more reports to the existing list of default reports, Want more reports? Tell us here link is provided at the bottom of the New Policy page. Clicking Tell us here link opens the Add Report in New Compliance window. This window collects the details and sends out a mail to EventLog Analyzer Support.

The details are given below:

Your Name
Email ID
To support@eventloganalyzer.com
Compliance Report
Your Report for above compliance
Description

Enter the details and click Send button to send the details as mail to EventLog Analyzer Support. Click Close button to close the window.