Hi Community,
it seems pure-ftpd error are not "available" when using Event Taxonomy search.
When a pure-ftpd error occurs :
1) several errors are popping in /var/log/messsages
2) at least 2 events are available search page : with e.g. : (sev:[0 TO 5]) AND (repip:"a.b.c.d")
- Juniper Switch and Router pure-ftpd Event - Authentication failed for user [XXXX]
- Juniper Switch and Router kernel Event - msg='op=PAM:authentication acct="XXXX" exe="/usr/sbin/pure-ftpd" hostna ...
Searching through Taxonomy does not provide any of these events : ((xdasclass:2) AND ((xdasid:0) or (xdasid:4)))
Other login failure, (e.g. Sentinel login failure) are well visible.
Thanks
Everyone is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid. [A. Einstein]