The access monitor serves as a deterrent to rogue administrator activity by tracing attempts to execute damaging actions. The feature is implemented by means of two elements: an Audit Log and a special Auditor user that you assign the Access Monitor realm. The Intel AMT system writes selected events to the Audit Log that is accessible only to the Auditor. Only the Auditor can define which events the Intel AMT system writes to the Audit Log.
You can assign the Access Monitor realm to one user only, and only that user can then relinquish it. By default, the default admin user account has access to this realm.
![]() |
---|
The Access Monitor feature is available from Intel AMT 4.0 and higher. |