Protocols (Regular Profile) : Managing Audit, Shadowing and Alerts for Protocols : Audit and Shadowing Rights : Telegram
  
Telegram
Audit and shadowing rights applicable to the Telegram protocol:
Audit: Connection - Enables the auditing of attempts to connect Telegram Desktop to a Telegram server.
The Connection action is written to the log.
Audit: Web Connection - Enables the auditing of attempts to connect to the Telegram Web host.
The Connection action, the IP address with the port number and the name of the host, and the name of the protocol are written to the log. If IP address to host name resolution fails, the host name is not written to the log. To distinguish the Telegram Web connection from other Telegram connections, Web is indicated in the Name field of the record for this connection.
Audit: Incoming Calls - Enables the auditing of user attempts to receive calls.
The Incoming Call action and Telegram user IDs of all call participants are written to the log. The user ID of the local participant precedes the user ID of a remote participant.
Audit: Incoming Messages - Enables the auditing of user attempts to receive instant messages. Can be selected only together with Audit: Outgoing Messages.
The Chat action and Telegram user IDs of all IM participants are written to the log. The user ID of the local participant precedes the user ID of a remote participant.
Audit: Incoming Files - Enables the auditing of user attempts to receive a file.
The Incoming File action and the name of the file are written to the log.
Audit: Outgoing Calls - Enables the auditing of user attempts to make calls.
The Outgoing Call action and Telegram user IDs of all call participants are written to the log. The user ID of the local participant precedes the user ID of a remote participant.
Audit: Outgoing Messages - Enables the auditing of user attempts to send instant messages. Can be selected only together with Audit: Incoming Messages.
The Chat action and Telegram user IDs of all IM participants are written to the log.
Audit: Outgoing Files - Enables the auditing of user attempts to send a file.
The Outgoing File action and the name of the file are written to the log.
Shadowing: Incoming Messages - Enables the shadow copying of received instant messages.
Shadow copies of received instant messages are written to the log as .txt files. A shadow copy of messages is written to the log after 30 minutes of inactivity (that is, 30 minutes after the last active exchange in the chat window) or if the user signs out of Telegram. It contains an exact record of all received messages.
Shadowing: Incoming Files - Enables the shadow copying of received files.
Shadow copies of received files are written to the log.
Shadowing: Outgoing Messages - Enables the shadow copying of sent instant messages.
Shadow copies of sent instant messages are written to the log as .txt files. A shadow copy of messages is written to the log after 30 minutes of inactivity (that is, 30 minutes after the last active exchange in the chat window) or if the user signs out of Telegram. It contains an exact record of all sent messages.
Shadowing: Outgoing Files - Enables the shadow copying of sent files.
Shadow copies of sent files are written to the log.