What Activity types are reported when file or folder is moved via Windows client?
Applies to
- Cloud Insights Storage Workload Security
- Monitor CIFS access
Answer
All Activity in Forensics screen of Workload Security reports activities:
- Move file:
- Within the same share: Rename, Read and Change Permission
- Between different shares: Delete and Create
- Move folder:
- Within the same share:
- The folder to be moved: Rename and Change Permission
- Files contained in the folder: Read and Change Permission
- Subfolders contained in the folder: Not reported
- Between different shares:
- The folder to be moved: Delete and Create
- Files contained in the folder: Delete, Create, Write and Read
- Subfolders contained in the folder: Delete and Create
- Within the same share:
Note:
Change Permission may not be reported depending on the caching status of the Windows client.
Additional Information
additionalInformation_text