On Wednesday, October 4, 2017 12:02:06 PM EDT Rituraj Buddhisagar wrote:
> HI Steve,
>
> I did the necessary,
> Change in auditd.conf - log_format to ENRICHED.
> write_logs set to "no" on client and "yes" on aggregating server.
> name_format was already set in auditd.conf and not in audispd.conf o
HI Steve,
I did the necessary,
Change in auditd.conf - log_format to ENRICHED.
write_logs set to "no" on client and "yes" on aggregating server.
name_format was already set in auditd.conf and not in audispd.conf on both
the servers.
I still do not see any logs coming in /var/log/audit/audit.log o
On Wednesday, October 4, 2017 10:01:49 AM EDT Rituraj Buddhisagar wrote:
> Hi Steve / List
>
> Now, I have built auditd from source as per the mail thread and then also
> created a startup script.
>
> The auditd is starting successfully.
>
> The client is able to connect to the aggregating serve
Hi Steve / List
Now, I have built auditd from source as per the mail thread and then also
created a startup script.
The auditd is starting successfully.
The client is able to connect to the aggregating server.
*node=guslogs type=DAEMON_ACCEPT msg=audit(1507125123.240:7272):
addr=192.168.103.2
