Previous Topic: Types of Intercepted EventsNext Topic: Set Up Audit Only Mode


Audit Only Mode

Audit Only mode records all intercepted events without checking or enforcing access rules. Use this mode to collect data for compliance requirements or regulations. In Audit Only mode, CA ControlMinder intercepts the event and writes an audit event but does not process the request for authorization and does not enforce rules. As a result, CA ControlMinder permits all access requests it intercepts. This means that the authorization result recorded in the audit log for all events is P (permitted).

The following restrictions apply to Audit Only mode: