This website uses cookies. By continuing to browse or login to this website, you consent to the use of cookies. Learn more.
OK

Ability to track/ audit GroupWise Administrative Changes - System Wide - with Sentinel or other event management tools

Idea ID 2786115

Ability to track/ audit GroupWise Administrative Changes - System Wide - with Sentinel or other event management tools

Status: Waiting for Votes Submitted by Absent Member. on ‎2015-10-13 11:09
GroupWise has no ability to track/ audit GroupWise Administrative Changes - System Wide - with Sentinel or other event management tools. This is a real urgent requirement.
Labels
7 Comments
ghoman
Cadet 2nd Class Cadet 2nd Class
Cadet 2nd Class
‎2016-08-19 18:04
‎2016-08-19 18:04
Yes. Who did what when from where (IP address of admin browser session)
David Gerisch
Commodore
Commodore
‎2016-08-29 21:33
‎2016-08-29 21:33
I particularly need to be able to see if a message retention flag was un-set on a mailbox (for example).
AndyK3
Absent Member.
Absent Member.
‎2016-11-16 04:12
‎2016-11-16 04:12
Even without directing them to a SIEM solution, we need a way to have the GW-Admin console log who logged in and from where. To be able to track who made the changes that are logged in /var/log/novell/groupwise/gwadmin/gwadmin-console.log ? Usually only failed logins show in that file, and are a bit cryptic a non-admin with correct credentials has the same report as a non-admin without correct password. 2016-11-15 13:11:50 GwAuthenticationProvider [ERROR] ***Failed to Login **** No admin rights bogus IDs that don't exist in the system only show as failed login 2016-11-15 13:12:03 GwAuthenticationProvider [ERROR] ***Failed to Login **** Not allowed At least the user names of failed/blocked logins are shown in gwadmin- service.log, but we still can't tell who did what.
David Gerisch
Commodore
Commodore
‎2016-12-02 18:27
‎2016-12-02 18:27
Reiterating this request: apparently, I have a help desk person un-setting the message retention flag on some mailboxes (which could get us in a boatload of legal trouble), but I cannot tell who is doing this. If I knew who was doing this, I could tell them to stop (or take away their administration rights).
davidkrotil
Admiral
Admiral
‎2018-02-16 06:39
‎2018-02-16 06:39
This is totally needed, everything is now audited, why not GroupWise ( more secure as Exchange )
andredaguerre
Cadet 1st Class
Cadet 1st Class
‎2018-02-16 13:33
‎2018-02-16 13:33
Yes, It's a need.........
tholliday
Absent Member.
Absent Member.
‎2019-04-23 21:48
‎2019-04-23 21:48
Please add this auditing features
Most "Liked" Contributors
View All ≫
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.