iDistribute applications are controlled at three levels: module, program, and event. The key to setting up a quality security system depends on your understanding of these levels and how they relate to each other. Security is based on a hierarchy. Your security system is divided into three levels of users: individual, group, and default. On a fundamental level, security is a catalog of permissions granted to individuals or groups of individuals for specific tasks. 

The audit tracking feature to monitor selected user activity by date, time, and user. With audit tracking, selected user actions are recorded in an audit table, which stores information including date, time, user, and action performed. You can use these audit records to generate reports and locate specific transactions. You can determine which actions you want to audit, how often you want to generate audit reports, and how often to purge audit records. Audit tracking is available for all modules.

The audit facility does not reside within the modules themselves, but within the underlying database engine. The audit facility uses database "triggers" to create its audit records. When you define which actions you want to audit, you are attaching one of these triggers to the database table that contains the selected column. When activity occurs that affects an audited column in the table, the database is updated and the trigger is "fired," which records the activity in the audit table. For example, if you want to audit the addition of a customer record, you would create a trigger attached to the strcustr table that would fire whenever a record is added to the table. The audit record includes all pertinent details of the activity, including the type of action taken, the user who performed the action, the time and date of the action, the column affected, and both the old and new values in the column.