KBI 310297 Argent for Security Shows Incorrect User In Reports


Argent for Security


10 Jan 2012


When Argent for Security detects changes within a shared folder or drive on machine A, the logged-in user on machine A is incorrectly saved as the person who made the change.

In reality, this file could have been changed remotely by a completely different user from another machine via UNC paths or mapped drives.

In any case, Argent for Security only detects and displays the current logged-in user into all reports.

Technical Background

This is a known limitation of Microsoft’s file change APIs


Argent is working on a solution for this.

Customers interested in following the progress of this issue can check the latest Argent AT Release Notes for updates.