In the event that you are experience problems in OVERLAPS then we may request that you send us your log files from the server to speed up the diagnosis process. Depending on your logging level, these may contain potentially sensitive information such as usernames and Organizational Unit information. Stricly no passwords are recorded in the log file.
You have the right to refuse to provide these log files if you are concerned about security, we will simply try to diagnose the problem through conversation instead, or we'll direct you where to look in the logs what to watch out for.
To ease the load on your Domain Controllers, we cache a small amount of information about users added to OVERLAPS in the application database (stored on your server). This includes:
All of which is taken directly from Active Directory. Username information is also stored in the History log (also in the application database) for auditing purposes.