Lumension Endpoint Security 4.4 SR1 (4.4.1003)
I'm actually thinking about to write a flexconnector for Lumension Endpoint Security 4.4 SR1 (4.4.1003).
Does anyone have some experience with this product. I (unfortunately) do not 😞
Like I recently saw, there are 3 differen option for going for the logs:
- Syslog Messages
- the clients will send the syslog messages direct to the target (my Syslog Connector) this is to complicated and a lot of network traffic occures
- .csv Audit Log export (manualy)
- has to be done manually - I'm searching a complete autom. way to do it
- Direct Access to DB on MS SQL Server
- mostly the most secure, fastest and best way to do it. I've just the problem of a lot of different little tables with references to each others. this means a real complicated join statement and a lot of engineering.
I would be happy if someone could share his experience with my and we could search a way to do this.