A Material-UI SPA to quickly and easily view and search active directory event logs.
Clone repository, and install dependencies:
git clone https://github.com/richardbristow/event-auditor.git
cd event-auditor
npm install
The API serves the saved Active Directory audit logs from a mongo database, this will have to be setup first.
To populate the database a powerhsell script is included that can be run via a scheduled task (saveEventsToDb.ps1). This script collects the specified Events (via Event ID) that occurred since the last run from the Windows Event History, and saves them to the database using the PowerShell module Mdbc.
The script will most likely have to be customised to run in your specific environment, and can also be edited to save other events in addition to the three included (Account Locked, Account Enabled, Account Disabled).
Start the API:
npm run start-api
Before starting the app the below environemnt variables need to be specified in a .env file in the root directory.
The express ports being the port the API server will run on.
The API urls will be in the format http://server:port/api, for example if running locally the URL might be http://localhost:3001/api.
The database name and mongo connection url variables are the name given to the mongo database and the url for the API server to connect to the database respectively.
EXPRESS_PORT_DEV=<API_DEV_PORT>
EXPRESS_PORT_PROD=<API_PROD_PORT>
REACT_APP_API_URL_DEV=<API_URL_DEV>
REACT_APP_API_URL_PROD=<API_URL_PROD>
DATABASE_NAME=<DATABASE_NAME>
MONGO_CONNECTION_URL=<MONGO_DB_URL>
SERVE_PORT=<SERVE_PROD_PORT>
Start the app:
npm start
Run tests:
npm test
Lint code:
npm run lint # lint javascript and css
npm run lint:js # lint javascript
npm run lint:css # lint css
Build:
npm run build
This project was bootstrapped with Create React App.
Create React App documentation.