This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Auditing / Logging of policy updates/publishing?

Is there such a thing? Is any publishing of the policy logged anywhere?

We've had a couple of issues in last few weeks where one of our admins has pushed the wrong policy out to groups of people overwriting their proper policy and causing no end of headache's.

Is there any sort of auditing in place showing who changed policy, or what changes were made, or who pushed out what policy, when, and who to?
Parents
  • 0
    Hey Andy,

    Good question. There's nothing with 4.1 that I know of.

    Let me ask anyway and I'll get back to you.


    >>>

    From: andystewartSL<andystewartSL@no-mx.forums.novell.com>
    To:novell.support.zenworks.endpoint-security-management
    Date: 12/10/2010 6:36 am
    Subject: Auditing / Logging of policy updates/publishing?

    Is there such a thing? Is any publishing of the policy logged anywhere?

    We've had a couple of issues in last few weeks where one of our admins
    has pushed the wrong policy out to groups of people overwriting their
    proper policy and causing no end of headache's.

    Is there any sort of auditing in place showing who changed policy, or
    what changes were made, or who pushed out what policy, when, and who to?


    --
    Andy Stewart - Somewhere In Scotland
    zcm 10.2.2, 4 servers in esx vm environment, 2000 users so far...
    (i'd still rather be snowboarding)
    ------------------------------------------------------------------------
    andystewartSL's Profile: http://forums.novell.com/member.php?userid=1054
    View this thread: http://forums.novell.com/showthread.php?t=427867
  • 0 in reply to 
    This is what I got:

    The Management Console will show the last user that edited a particular policy (on the main screen with the list of policies). Details of what changed would have to be done through manual SQL queries.

    If this is not enough (which I suspect), please enter an enhancement request in order for PM to priorize this feature accordingly for future release.


    >>>

    From: Daniel Spinatto<dspinatto@no-mx.forums.novell.com>
    To:novell.support.zenworks.endpoint-security-management
    Date: 12/15/2010 3:31 pm
    Subject: Re: Auditing / Logging of policy updates/publishing?

    Hey Andy,

    Good question. There's nothing with 4.1 that I know of.

    Let me ask anyway and I'll get back to you.


    >>>

    From: andystewartSL<andystewartSL@no-mx.forums.novell.com>
    To:novell.support.zenworks.endpoint-security-management
    Date: 12/10/2010 6:36 am
    Subject: Auditing / Logging of policy updates/publishing?

    Is there such a thing? Is any publishing of the policy logged anywhere?

    We've had a couple of issues in last few weeks where one of our admins
    has pushed the wrong policy out to groups of people overwriting their
    proper policy and causing no end of headache's.

    Is there any sort of auditing in place showing who changed policy, or
    what changes were made, or who pushed out what policy, when, and who to?


    --
    Andy Stewart - Somewhere In Scotland
    zcm 10.2.2, 4 servers in esx vm environment, 2000 users so far...
    (i'd still rather be snowboarding)
    ------------------------------------------------------------------------
    andystewartSL's Profile: http://forums.novell.com/member.php?userid=1054
    View this thread: http://forums.novell.com/showthread.php?t=427867
  • 0 in reply to 
    dspinatto;2057364 wrote:
    This is what I got:

    The Management Console will show the last user that edited a particular policy (on the main screen with the list of policies). Details of what changed would have to be done through manual SQL queries.

    If this is not enough (which I suspect), please enter an enhancement request in order for PM to priorize this feature accordingly for future release.


    Thanks Daniel,

    Don't suppose you're in a position to send me a couple of these "manual SQL queries" to have a look?

    I can supply my mail address if you prefer not to publish on here.

    Andy
  • 0 in reply to 
    Andy, if I had those I would send it, of course.

    The answer is based on the fact that the data is technically on the DB. However, we don't have those scripts available since they were never developed.

    A good place to start with would be to enable DB Trace logging, then modify a policy, save it and check the trace to see what's changed.

    Sorry I can't help you further.


    >>>

    From: andystewartSL<andystewartSL@no-mx.forums.novell.com>
    To:novell.support.zenworks.endpoint-security-management
    Date: 12/16/2010 1:36 pm
    Subject: Re: Auditing / Logging of policy updates/publishing?

    dspinatto;2057364 Wrote:

    > This is what I got:
    >
    > The Management Console will show the last user that edited a particular
    > policy (on the main screen with the list of policies). Details of what
    > changed would have to be done through manual SQL queries.
    >
    > If this is not enough (which I suspect), please enter an enhancement
    > request in order for PM to priorize this feature accordingly for future
    > release.
    >


    Thanks Daniel,

    Don't suppose you're in a position to send me a couple of these "manual
    SQL queries" to have a look?

    I can supply my mail address if you prefer not to publish on here.

    Andy


    --
    Andy Stewart - Somewhere In Scotland
    zcm 10.2.2, 4 servers in esx vm environment, 2000 users so far...
    (i'd still rather be snowboarding)
    ------------------------------------------------------------------------
    andystewartSL's Profile: http://forums.novell.com/member.php?userid=1054
    View this thread: http://forums.novell.com/showthread.php?t=427867
Reply
  • 0 in reply to 
    Andy, if I had those I would send it, of course.

    The answer is based on the fact that the data is technically on the DB. However, we don't have those scripts available since they were never developed.

    A good place to start with would be to enable DB Trace logging, then modify a policy, save it and check the trace to see what's changed.

    Sorry I can't help you further.


    >>>

    From: andystewartSL<andystewartSL@no-mx.forums.novell.com>
    To:novell.support.zenworks.endpoint-security-management
    Date: 12/16/2010 1:36 pm
    Subject: Re: Auditing / Logging of policy updates/publishing?

    dspinatto;2057364 Wrote:

    > This is what I got:
    >
    > The Management Console will show the last user that edited a particular
    > policy (on the main screen with the list of policies). Details of what
    > changed would have to be done through manual SQL queries.
    >
    > If this is not enough (which I suspect), please enter an enhancement
    > request in order for PM to priorize this feature accordingly for future
    > release.
    >


    Thanks Daniel,

    Don't suppose you're in a position to send me a couple of these "manual
    SQL queries" to have a look?

    I can supply my mail address if you prefer not to publish on here.

    Andy


    --
    Andy Stewart - Somewhere In Scotland
    zcm 10.2.2, 4 servers in esx vm environment, 2000 users so far...
    (i'd still rather be snowboarding)
    ------------------------------------------------------------------------
    andystewartSL's Profile: http://forums.novell.com/member.php?userid=1054
    View this thread: http://forums.novell.com/showthread.php?t=427867
Children
No Data