And Finally, make sure the windows server has auditing configured. For
my above example, I enabled auditing for logon events (both success and
failure). This can be found in Programs > Administrative Tools > Local
Security Policy.
In my example, I am trying to collect security logs. Also, please make
sure you hit the apply button in the template association. Save is not
enough. this has caused a problem for me in the past :)
Hi 6.7.8 will have the most bug fixes. The last number (8) is the number
of patches. This will be a stable release, but you are likely to be
missing out on some new features and you will have to upgrade sooner
that some more recent releases. 7.1.0 ha...
Hi I'm thinking that you could achieve it with an analytics search. I
don't actually have a collector in my test setup, but my idea is to
search all logs and then aggregate the search with reporting IP and
collector name or collector id. Then use the...