Our vBulletin migration is complete.
Welcome vBulletin users! All content and user information from the Micro Focus Forums (vBulletin) site has been migrated to this site. READ MORE.
bakoseva Absent Member.
Absent Member.
904 views

Log failed login attempts eDir v.8.8 SP8

We use eDirectory v8.8 SP8 and OES 11 SP2 with Windows 7 and 10 clients.
We have just started to use a log management system.
How can I log and redirect the failed and successful eDIR login attempts? I couldn't find them in the log files.
I can search them with a windows application, named NDS Report Generator (dsreport.exe).

How can I search for them with a scheduled job on the server or on the workstation?

How can I audit the eDir login and logout events?

Thanks,

Eva
Labels (1)
0 Likes
1 Reply
Knowledge Partner
Knowledge Partner

Re: Log failed login attempts eDir v.8.8 SP8

First, you may want to post questions about eDirectory in the eDirectory
Linux forum; this one is for NMAS, and while related your question is
actually about eDirectory overall, which includes NMAS, but also includes
other things, and other auditing events.

The eDirectory Administration Guide includes section twenty-three (23)
about Auditing in various ways, and which I believe you may find useful:

https://www.netiq.com/documentation/edirectory-9/edir_admin/data/bg0v2w1.html

Note that the link above is for eDirectory 9.x, which I am providing since
eDirectory 8.x is now End of Life (EoL), but currently the documentation
is basically the same for both versions.

There are multiple ways to get the events you want; one is the method
referred to as the "Novell Audit" method, named because it worked with
Novell Audit, and still works with Sentinel (Audit's replacement). It
works very well, but is proprietary.

There is also the XDAS method, which can be used to send events over the
wire using a syslog-like method, or to write to a file on the local
eDirectory box for consumption.

Upcoming in 9.1 is a Common Event Format (CEF) method. Also texxt-based,
it is assumed (by me) that this will be able to be sent over the wire or
written to a local file (like XDAS) and is available to third-party products.


--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.