Active Directory Auditing is the first step towards access log monitoring.
Monitoring of domain controllers in real time ensure that we capture any configuration changes to the Active Directory by unauthorized users – typically a malicious code or malware.
User Reports
Logon/logoff activity – during and off office hours.