Arctera™ Insight Management Console Help

Last Published:
Product(s): Veritas Alta eDiscovery (1.0)
  1. Getting started
    1.  
      About Arctera Insight Management Console
    2.  
      Prerequisites for using Arctera Insight Management Console
    3.  
      Arctera Insight Management Console web browser support
    4.  
      What's new in this release
    5.  
      Signing in to Arctera Insight Management Console
    6.  
      Signing out from Arctera Insight Management Console
    7.  
      Resetting a forgotten password
    8.  
      Changing your profile password
  2. Archive Overview
    1. About Archive Overview
      1.  
        Archive Usage
      2.  
        Sync Activity
      3.  
        Roles
    2.  
      Viewing the Archive Usage Snapshot report
  3. Working with Dashboard
    1.  
      About dashboard
    2.  
      Monitoring a status of active archives
    3.  
      Monitoring storage consumption
    4.  
      Monitoring a status of Insight Capture collectors activities
    5.  
      Monitoring a status of AI Wallet usage
  4. Managing Configurations
    1.  
      About the Configuration page
    2. Viewing provisioned services
      1.  
        Managing Domains
    3.  
      Selecting options to provision and manage user accounts
    4. About Provisioning
      1.  
        Configuring the Insight Personal Archive deployment options
      2.  
        Configuring the administrator notification options
    5.  
      CloudLink Sync Summary
    6. About Managed Tags
      1.  
        Creating a managed tag
      2.  
        Editing managed tags
      3.  
        Changing the retention policy associated with a managed tag
      4.  
        Deleting a managed tag
    7. About Account Management
      1.  
        Searching for archive accounts
      2.  
        Using search filters
      3.  
        Creating an archive account
      4.  
        Viewing and editing the archive account details
      5. About the Account Details page
        1.  
          Archive Detail
        2.  
          Status
        3.  
          Services
        4.  
          Archive Aliases
        5.  
          Delegate Access
        6.  
          History
      6.  
        Editing an archive account
      7.  
        Deleting an archive account
      8.  
        Deploying users
      9.  
        Enabling services for existing archive accounts
      10. Configuring the Manage Your Own Keys (MYOK) Feature
        1.  
          Enabling a customer for the MYOK feature
        2.  
          Installing the Azure App and assigning it the Admin role
        3.  
          Generating a Storage Key URI
        4.  
          Acknowledging a successful configuration
        5.  
          Configuring key rotation policy
      11.  
        Removing user access
      12.  
        Disabling bulk user accounts
      13.  
        Editing Mobile Web Access permission for existing archive accounts
      14.  
        Unlocking an archive account
      15.  
        Exporting archive account information
      16.  
        Editing contact details of a system administrator
      17.  
        Managing InsightBooks permissions
  5. Managing Archive Collectors
    1.  
      About Archive Collectors
    2.  
      Adding new archive collectors
    3.  
      Updating configuration of existing archive collectors
    4.  
      Stopping or restarting import job of archive collectors
    5.  
      Viewing the latest status of Archive Collectors
    6.  
      Cloning archive collectors
    7.  
      Deleting an existing archive collector
    8.  
      Deleting a history of archive collectors
    9. About Exchange Online Archiving
      1.  
        Setting up modern authentication in Azure AD for Exchange Online sync
      2.  
        Configuring Exchange Online sync
      3.  
        About Exchange Online folder synchronization
      4.  
        Prerequisite for migrating Exchange Online Users configured with Folder Sync to Exchange Online Folder Synchronization
      5.  
        Configuring Exchange Online folder synchronization
      6.  
        Configuring Microsoft Azure Active Directory Group synchronization
    10.  
      About Bloomberg Archiving
    11. About Google Chat Archiving
      1.  
        Configuring Google Chat Archiving
    12. About Google Workspace Archiving
      1.  
        Configuring Google Workspace for SAML and SSO authentication to your custom SAML app
      2.  
        Enabling the Google Workspace service
      3.  
        Configuring Google Workspace Archiving Collector
    13. About ChatGPT conversation data Archiving
      1.  
        Configuring ChatGPT archive collectors
    14. About Google Messages Archiving
      1.  
        Configuring Google Messages archiving collectors
    15. About SCIM Archiving
      1.  
        Configuring SCIM collectors by using SCIM provisioning
      2.  
        Configuring SCIM archiving by using Azure Active Directory
    16. About Import Collector
      1.  
        Configuring an Import collector
    17. About Insight Capture Services Archiving
      1.  
        Enabling Insight Capture Services for Archiving
      2.  
        Configuring Capture Services for Archiving
    18. About Microsoft Teams (Audio Video) Archiving
      1.  
        Configuring Microsoft Teams (Audio Video) archiving collectors
    19. About Audio-Video Archiving
      1.  
        Configuring audio-video archiving collectors
    20. About Audio-Video Archiving using NTR-X Collectors
      1.  
        Configuring audio-video archiving using NTR-X collectors
    21. About Dubber Speik SMS Archiving
      1.  
        Configuring Dubber Speik SMS archiving collectors
    22. About Dubber Speik Recordings Archiving
      1.  
        Configuring Dubber Speik Recordings archive collectors
    23. About Text-Delimited Archiving
      1.  
        Configuring Text-Delimited archiving collectors
    24. About XSLT-XML Archiving
      1.  
        Configuring XSLT-XML archiving collectors
    25. About JSON Archiving
      1.  
        Configuring JSON archiving collectors
    26. About iMessage Archiving
      1.  
        Configuring iMessage archiving collectors
    27. About LinkedIn Archiving
      1.  
        Configuring LinkedIn archiving collectors
    28. About Signal Archiving
      1.  
        Configuring Signal archiving collectors
    29. About Verint Archiving
      1.  
        Configuring Verint archiving collectors
    30. About WeChat Archiving
      1.  
        Configuring WeChat archiving collectors
    31. About WhatsApp Archiving
      1.  
        Configuring WhatsApp archiving collectors
    32. About Cloud9 Archiving
      1.  
        Configuring Cloud9 archiving collectors
    33. About Verba Archiving
      1.  
        Configuring Verba archiving collectors
    34. About Copilot Archiving
      1.  
        Configuring Copilot archiving collectors
    35. About Zoom Phone Archiving
      1.  
        Configuring Zoom Phone archiving collectors
  6. Managing Roles and Permissions
    1.  
      About Role Management
    2.  
      Editing the built-in administrator roles
    3.  
      Creating custom administrator roles
    4.  
      Assigning administrator roles to an archive account
    5.  
      Assigning the reviewer role to an archive account
    6.  
      Assigning multiple archive accounts for monitoring
    7.  
      Assigning the Department Reviewer Role
    8.  
      Assigning roles, privileges, and monitored accounts to Azure Active Directory groups
  7. Managing Policies
    1.  
      About Policy Management
    2.  
      Configuring archive options
    3.  
      Enabling and disabling account archiving
    4.  
      Configuring the InsightAI feature
    5.  
      Configuring an advanced password policy
    6.  
      Configuring trusted networks for Arctera Insight Archiving access
    7.  
      Managing Custom Headers
    8.  
      Managing Discard Rules
    9.  
      Managing Index Exclusion
  8. Managing Authentication
    1.  
      Configuring the Arctera Insight Archiving authentication service
    2.  
      Enabling the Authentication Settings permission for the Policy Manager role
    3.  
      Assigning the Policy Manager role to an administrator
    4.  
      Selecting an authentication method
    5.  
      Uploading a -signing certificate
    6.  
      Validating the Identity Provider URL
    7.  
      Activating single sign-on
  9. Managing Retention Policies
    1.  
      About Retention Management
    2.  
      Supported retention scenarios for WORM and non-WORM Insight Archiving customers
    3.  
      Configuring the default retention period
    4.  
      Creating a retention policy
    5.  
      Editing a retention policy
    6.  
      Deleting a retention policy
    7.  
      Associating a retention policy with a policy target
    8.  
      Disassociating a retention policy from a policy target
    9.  
      Enabling and disabling the storage expiry setting
    10.  
      Viewing the storage expiry status table
  10. Managing Email Continuity Services
    1.  
      About Email Continuity
    2.  
      Email Continuity prerequisites
    3.  
      Configuring Email Continuity
    4.  
      Provisioning the Email Continuity service for your mail servers
    5.  
      Adding the Email Continuity IP ranges to your firewall and mail server allowlists
    6.  
      Updating your email security provider routing configuration
    7.  
      Testing the Email Continuity configuration
    8.  
      Managing Email Continuity
    9.  
      Email Continuity FAQ
  11. Managing Reports and Notifications
    1.  
      About Arctera Insight Archiving reports and notifications
    2. Reports
      1.  
        Generating Messaging reports
      2.  
        Generating Insight Personal Archive reports
      3.  
        Generating Insight eDiscovery reports
      4.  
        Generating Transcription reports
      5.  
        Generating Mobile Web Access reports
      6.  
        Generating message reconciliation report
      7.  
        Generating an Insight Surveillance specific Report
    3. Usage
      1.  
        Generating a service usage report
      2.  
        Generating a mailbox statistics report
      3.  
        Generating an archived message size report
      4.  
        Generating a capacity trend report
      5.  
        Generating a transcription trend report
      6.  
        Generating a AI units trend report
      7.  
        Generating the AI Wallet Statement
    4. Logs
      1.  
        Viewing the Activity Log
      2.  
        Viewing the Message Log
      3.  
        Viewing the Usage Log
      4.  
        Creating a Retention Log Report
      5.  
        Viewing the Mobile Browser Log
      6.  
        Viewing the Personal Browser Log
      7.  
        Viewing the Discovery Browser Log
      8.  
        Subscribing to receive SIEM/SOAR Logs
    5. Notifications
      1. Usage Notification
        1.  
          Configuring the usage notifications feature
      2. Retention Notifications
        1.  
          Enabling or disabling retention notifications
        2.  
          Adding or excluding email addresses for retention notifications
        3.  
          Viewing retention notification configuration history
      3. Reconciliation Report Notifications
        1.  
          Enabling or disabling reconciliation report notifications
        2.  
          Adding or removing email addresses for reconciliation report notifications
      4.  
        Capture Notifications
    6. Insight Capture
      1.  
        Generating Insight Capture-specific reports
  12. Classification
    1.  
      About classification
    2.  
      Which emails get classified?
    3.  
      Steps for setting up classification
    4.  
      Accessing the Arctera Insight Classification
    5.  
      Arctera Insight Archiving item properties for use in custom classification policies
  13. Managing Data Import
    1.  
      About Import Data
    2.  
      Importing data into archives
  14. AD FS Configuration Guide
    1.  
      Configuring AD FS to work with Arctera Insight Archiving
    2.  
      Adding a relying party trust for Arctera Insight Archiving
    3.  
      Generating a -signing certificate

Assigning roles, privileges, and monitored accounts to Azure Active Directory groups

The Management Console supports synchronizing Azure Active Directory groups through SCIM or Active Directory Sync. This capability allows administrators to centrally manage access to Active Directory groups.

The Assign Active Directory Groups feature enables administrators to assign roles and privileges to Active Directory groups directly from the Management Console. This reduces the need to manage reviewer roles on individual users-basis.

Before you use this feature, note the following facts:

  • By default, all synchronized Active Directory groups are assigned the None role. At this stage, effective role and privileges of each member will be either their individual user role or other Active Directory groups the user belongs to.

  • When administrators assign the Reviewer role at the Active Directory group level, all direct members of the Active Directory group automatically inherit the assigned reviewer privileges. A maximum of 100 members (user accounts) from a single Active Directory group can be assigned case-level reviewer privileges.

  • Only the direct group members can be assigned the Reviewer role. The nested groups and their members cannot be assigned the Reviewer role.

  • The administrator can add, remove, and import monitored accounts while assigning roles and privileges to the Active Directory group.

  • The Expiry date for monitored accounts will be highest date assigned from Individual user and all Active Directory groups.

  • Active Directory groups assigned with the Reviewer role can be selected as reviewers in Insight eDiscovery. However, the Active Directory group role cannot be changed using Insight eDiscovery.

  • Administrators can assign case-level reviewer privileges to an Active Directory group. All direct members of the Active Directory group automatically inherit the assigned reviewer privileges for the selected case. When an Active Directory group is added as a case reviewer, all its members are added as reviewers for the case.

  • If an Active Directory group is deleted during synchronization, members of that Active Directory group no longer retain the roles and privileges that were assigned to them through that Active Directory group. In this scenario, each member's effective role and privileges will be either their individual user role or other Active Directory groups the user belongs to.

  • If an Active Directory group with case-level reviewer privileges is removed, the expiry date for its members is set to the group removal date. The members still remain listed as case reviewers. However, when such members log in to Insight eDiscovery with an expired reviewer role, the associated cases are not displayed to them.

To assign roles to Azure Active Directory groups

  1. In the left navigation pane, select Role Management > Assign Active Directory Groups.

    The application displays a list of available Active Directory groups synchronized from identity sources such as SCIM and Microsoft 365. To view the members of a group, click the Download icon next to the required group name. The downloaded file contains the names of all users who are members of the selected Active Directory group.

  2. Search for and select the Active Directory group. You can use Advanced Search to filter the list of Active Directory groups or enter the keywords of Active Directory group name.

    Perform the following as needed:

    If the selected Active Directory group has no assigned roles, the Role drop-down on the Role Change page displays None by default.

  3. From the Role drop-down menu, select Reviewer, and then click Save.

    When you view the list, Active Directory groups are displayed with their assigned roles. The Role column displays Reviewer when the reviewer role is assigned; otherwise, it is blank. Refer to the sample image below.

To assign privileges to Azure Active Directory groups

  1. In the left navigation pane, select Role Management > Assign Active Directory Groups.

    The list of available Active Directory groups is displayed.

  2. Search for and select the Active Directory group. You can use Advanced Search to filter the list of Active Directory groups or enter the keywords of Active Directory group name.
  3. Under Privileges, select one or more of the following options:

    Monitor All Accounts

    • Select this option to allow the Active Directory group to view archived messages for all archive accounts. When this option is selected, there is no need to complete the steps in the Accounts to Monitor section.

    • Clear this option to allow the selected Active Directory group to view archived messages for specific archive accounts. When this option is not selected, the Accounts to Monitor section is displayed, allowing archive accounts and Active Directory groups to be added, removed, and imported.

    • To add monitored accounts, click Add/Remove Monitored Accounts. Select the archive accounts that you want the reviewer to monitor, and click Save.

    • To import monitored account, click Import, and do the following:

      a. In the Import Monitor Accounts window, download the sample .xls file, save it as a .csv file.

      b. Retain the PrimaryEmailAddress column heading, and enter only the primary email addresses of the archive accounts. Delete all content below the PrimaryEmailAddress column heading.

      c. Click Browse to select the prepared .csv file, click Import, and then click Save on the Role Change page.

    eDiscovery Reviewer

    By default, this option is selected to allow the Active Directory group to access Insight eDiscovery.

    The eDiscovery Reviewer privileges section lists privileges that vary by case level.

    As an administrator, you can assign these privileges to the eDiscovery Reviewers to perform various actions while reviewing the cases.

    Disable Preview Emails

    Select this option to prevent the reviewer from previewing emails from other archive accounts.

    Case Creation

    Select this option to allow the reviewer to create cases in Insight eDiscovery.

  4. On the Role Change page, click Save.

    After you save the changes made to the selected Active Directory group, they are updated in the application and can be verified as follows.

    • Application-level changes

      a. In the left navigation pane, select Reports and Notifications > Logs.

      b. On the Activity Log page, specify the time period, Detail Substring, or a user name as available.

      c. From the Event drop-down list, select Role changed option. Click Search to view the log as shown in the sample image below.

    • Account-level changes

      a. In the left navigation pane, select Role Management > Assign Accounts. A list of archive accounts appears.

      b. Search for the required archive account. Use any of the following methods.

      • Expand the Advanced Search section, specify the input, and click Apply.

      • Expand the Roles section, click on the required role.

      • In the Search field, enter the username or email of the archive account and click the Search icon.

    • Refer to the Effective Role and Role column values for the required archive account to verify the role changes.

    • Click the question mark (?) icon (if appears) in the Effective Role column to view how the effective role is determined based on Active Directory group membership. The details appear as shown in the sample image below.