What type of logs does the Tanium Audit source keep?

The Tanium Audit source is specifically designed to maintain detailed audit logs that document changes in configurations and settings within the Tanium platform. This includes tracking modifications to system configurations, policy changes, and adjustments made by users or administrators. Such comprehensive record-keeping is crucial for ensuring compliance, security, and the ability to troubleshoot and revert unapproved changes. Therefore, the focus of the Tanium Audit source on capturing these critical alterations establishes it as an essential tool for effective governance and oversight of the Tanium environment.

In contrast, server performance logs pertain to metrics and statistics related to system performance, while user activity logs would track actions taken by users on the platform. Network traffic logs would involve capturing data transmitted over a network, which does not align with the purpose of the Tanium Audit source. Thus, the correct identification of the Audit source's function is essential for properly managing and monitoring the Tanium system.