The Workspace File Audit App tracks file-level operations on NetApp Volumes and Domino Datasets inside workspaces. Operations include Read, Write, Create, Delete, and Rename. Event capture applies only to NetApp Volume and Domino Dataset file interactions within workspaces. You can’t restrict logging to specific datasets, volumes, or projects.
Use the app to support compliance reporting, investigate file access patterns, and maintain audit trails required for GxP validation and SOC 2 compliance. The app captures activity not visible in the Domino Audit Trail.
You can configure which event types to track, adjust deduplication intervals, and export logs in multiple formats for regulatory reporting. This granular file-level tracking helps life sciences organizations meet regulatory requirements for data integrity and traceability.
Note: Enabling Workspace File Audit introduces 10-15% compute overhead during active workspace sessions. You may need a higher hardware tier to match performance without file auditing enabled.
Domino monitors file system activity inside active workspaces and records relevant events. Events are processed asynchronously and become available after scheduled processing completes. This design prioritizes reliability and long-term retention over real-time visibility.
- File system monitoring
-
A Falco agent runs alongside each workspace pod and observes file system calls at the kernel level. This captures file access consistently whether users access files through code execution, terminals, notebooks, or IDE tooling.
- Event filtering and deduplication
-
Domino records repeated access to the same file by the same user as a single event within a configurable time window. This reduces storage overhead while preserving meaningful access records.
- Event processing and storage
-
Deduplicated events are processed and written to customer-owned object storage. Raw events are ingested, processed into query-ready formats, and archived for long-term retention up to 30 years.
- Query and access
-
Events are accessible through the Workspace Audit App, APIs, and direct access to object storage.
-
Set up and use Workspace File Audit app has details on how to enable, deploy, and query workspace file audit data.