How to audit when a CIFS share is deleted from a client with CIFS Auditing
Applies to
- ONTAP 9
- CIFS
Description
This article describes CIFS\SMB shares that can be deleted if a user has proper permissions over Microsoft Remote Procedure Call (MSRPC) and how can this be audited to know who and where the delete originated from?