First published on TECHNET on May 10, 2009
Available by 2nd half of 2009 (late fall) - brought to you by the System Center Cross Platform team .
Available by 2nd half of 2009 (late fall) - brought to you by the System Center Cross Platform team .
Provide Audit Collection Services (ACS) for Unix and Linux systems
- Leverage OpsMgr 2007 R2 Cross Platform infrastructure to enable Unix/Linux auditing
- Collect and aggregate audit events across enterprise systems for a singular view
- Out of the box support for base OS audit events
Reporting – base OS auditing reports
- Access violations - unsuccessful logon attempts
- Account management - Account creation/deletion/password change
- User logons
- Administrator activity - su, sudo
- Forensic – all events for a computer/event ID
Management Pack (to collect events)
- Out of the box MP for each platform
- Datasources - Syslog, su log, audit, etc.
- Audit event collection:
- Logons – success/failure (Ssh, telnet, rsh, tty, ftp)
- Privilege use activity – su, sudo
- Account activity – create/delete/password change
Platforms
- RedHat Enterprise 4, 5
- Novell SLES 9, 10
- Solaris 9, 10
- HPUX 11iv2, 11iv3
- AIX 5.3, 6.1
Provide the infrastructure to extend enterprise auditing - potentially for things like:
- Network devices (e.g. Firewalls, Routers, Load balancers)
- Applications (e.g. Databases, ERP/CRM systems)
- Leveraging standard System Center Cross Platform logfile provider (or build your own customer provider) to read events
Delivery
- Out of band, dependent on OpsMgr 2007 R2
- CY Q2 2010
Updated Mar 11, 2019
Version 4.0