Protocols (Regular Profile) : Managing Audit, Shadowing and Alerts for Protocols : Audit and Shadowing Rights : File Sharing
  
File Sharing
Audit and shadowing rights applicable to the File Sharing protocol:
Audit: Connection - Enables the auditing of user attempts to connect to a file sharing site.
The Connection action, the IP address with the port number and the name of the host, the name of the protocol are written to the log. If IP address to host name resolution fails, the host name is not written to the log.
Audit: Incoming Files - Enables the auditing of user attempts to download a file from a file sharing site.
The Incoming File action, the download link, the IP address with the port number and the name of the host, the name of the protocol are written to the log.
Audit: POST Requests - Enables the auditing of user attempts to submit Web form data, such as user comments to specific files.
The POST Request action, the name of the file storage, sharing and synchronization service, the IP address with the port number and the name of the host, the name of the protocol are written to the log.
Audit: Outgoing Files - Enables the auditing of user attempts to upload a file to a file sharing site.
The Outgoing File action, the name of the file, the IP address with the port number and the name of the host, the name of the protocol are written to the log.
Shadowing: Incoming Files - Enables the shadow copying of files downloaded from a file sharing site.
Shadow copies of downloaded files are written to the log.
Shadowing: POST Requests - Enables the shadow copying of data (user comments to specific files) entered into Web forms.
Shadow copies of data entered into Web forms are written to the log.
Shadowing: Outgoing Files - Enables the shadow copying of files uploaded to a file sharing site.
Shadow copies of uploaded files are written to the log.
 
Note: The POST Requests right for the File Sharing protocol, when applied to the iCloud service, enables the auditing and shadow copying of non-file data (Mail, Notes, Calendar, Contacts, Reminders). Audit records of upload attempts and shadow copies of that data are stored as Outgoing Messages.