How to audit CIFS share deletes from a client with CIFS Auditing
Applies to
- ONTAP 9
- Clustered Data ONTAP 8
Description
This article describes CIFS\SMB shares that can be deleted if a user has proper permissions over MSRPC(Microsoft Remote Procedure Call) and how can this be audited to know who and where the delete originated from?