Was this page helpful?
Your feedback about this content is important. Let us know what you think.
Additional feedback?
1500 characters remaining
Export (0) Print
Expand All

Auditing Feature Overview

[Applies to: Microsoft Dynamics CRM 2011]

Organizations often need to be in compliance with various regulations to ensure availability of customer interaction history, audit logs, access reports, and security incident tracking reports. Organizations may want to track changes in Microsoft Dynamics CRM data for security and analytical purpose.

Microsoft Dynamics CRM supports an auditing capability where entity and attribute data changes within an organization can be recorded over time for use in analysis and reporting purposes. Auditing is supported on all custom and most customizable entities and attributes. Auditing is not supported on metadata changes, retrieve operations, export operations, or during authentication.

The following table lists the supported and unsupported auditing features for Microsoft Dynamics CRM 2011.

 

Supported Feature Unsupported Feature

Audit of customizable entities

Audit of read operations

Audit of custom entities

Audit of metadata changes

Configure entities for audit

Audit of text blobs, notes, and attachments

Configure attributes for audit

Area wise auditing

Privilege based audit trail viewing

Privilege based audit summary viewing

Audit log deletion for a partitioned SQL database

Audit log deletion for a non-partitioned SQL database

Microsoft Dynamics CRM SDK programming support

Audit of record create, update, and delete operations

Audit of relationships (1:N, N:N)

Audit of audit events

Audit of user access

Adherence to regulatory standards

Key Concepts

The following bullets identify some key auditing concepts:

  • You can enable or disable auditing at the organization, entity, and attribute levels. If auditing is not enabled at the organization level, auditing of entities and attributes, even if it is enabled, does not occur. By default, auditing is enabled on all auditable entity attributes but is disabled at the entity and organization level.

  • For Microsoft Dynamics CRM 2011 servers that use Microsoft SQL ServerEnterprise editions, auditing data is recorded over time (quarterly) in partitions. A partition is called an audit log in the Microsoft Dynamics CRM Web application. Partitions are not supported, and therefore, not used, on a Microsoft Dynamics CRM 2011server that is running Microsoft SQL ServerStandard edition.

  • The ability to retrieve and display the audit history is restricted to users who have certain security privileges: View Audit History, and View Audit Summary. There are also privileges specific to partitions: View Audit Partitions, and Delete Audit Partitions. See the specific message request documentation for information about the required privileges for each message.

  • Audited data changes are stored in records of the audit entity.

Data that can be Audited

The following list identifies the data and operations that can be audited.

  • Create, update, and delete operations on records.

  • Changes to the shared privileges of a record.

  • N:N association or disassociation of records.

  • Changes to security roles.

  • Audit changes at the entity, attribute, and organization level. For example, enabling audit on an entity.

  • Deletion of audit logs.

  • When (date/time) a user accesses Microsoft Dynamics CRM data, for how long, and from what client.

Enabling or disabling of field level security by setting the IsSecured attribute cannot be audited.

See Also

Microsoft Dynamics CRM 2011
Send comments about this topic to Microsoft.
© 2013 Microsoft Corporation. All rights reserved.

Community Additions

ADD
Show:
© 2015 Microsoft