NTLM authentication logs
Good afternoon. I want to enable NTLM authentication logging in ADAudit v8.0.0.8003. But I can’t find this parameter where it was before. Tell me, where is this enabled now?
[Webinar] 3 most overlooked Active Directory vulnerabilities and how to detect them
| FREE WEBINAR 3 most overlooked Active Directory vulnerabilities and how to detect them Register now August 14 at 2 PM AEST | 2 PM GST | 3:30 PM IST | 2 PM EDT 11 AM PDT Active Directory is the core of any organization. It connects the entire ecosystem
The new technician does not see events for some users.
Hello! I brought a new technician into the system. In his account settings, I specified access to certain OUs with users, by which he can see logon activity events. But some users are not displayed. Although I indicated the path directly to the OU in
workstation deleting problem
Hi, I have a problem with workstation deleting from adauditplus plus, the computer is not accessable yet, and I would like to delete it, but i got " Synced server(s) can not be deleted " message. We have log360, i tried to find solution, and i found an
ssl issue
I am attempting to update our expired ssl for ad aduit plus and when I generate a .csr file with the instructions I found here (https://www.manageengine.com/products/active-directory-audit/help/admin-settings/steps-to-enable-ssl.html) the csr file is
Ad Audit Plus - Install Without a Domain
Hi everyone a company asked us to install Ad Audit plus just to audit Synology Nas files. The company does not have a domain and the computers are all MACs. We have installed the product demo but it does not allow you to proceed unless you specify a domain.
Looking for a report listing all machines that use the domain administrator account
I need to change our built-in domain admin account password, so I would like to get a list of every server that's logging in with that account. When I run user logon reports for Administrator, I get over 130,000 logs, mostly just domain controller activity.
📅Mark Your Calendar: CyberShield 2024 IAM and Cybersecurity Seminar in Dubai and Abu Dhabi!
Hello! We are thrilled to send you this exclusive invite to be a part of CyberShield 2024: An IAM and Cybersecurity seminar in Dubai on July 23and Abu Dhabi on July 25. Our senior technology evangelists will be sharing their thoughts on how you can better
Secure Your Spot at ManageEngine's SHIELD - CyberDefence in Manchester and London: Where Cricket Meets Cybersecurity
United Kingdom's First Shield Cyberdefence Hello, We're thrilled to invite you to "SHIELD - Cyberdefence," a one-of-a-kind symposium where cricket meets cybersecurity, conducted by ManageEngine! This is an exciting opportunity to learn how cutting-edge
Can't add Synology NAS to due to "Invalid Server Name"
I'm using ADAudit Plus through Log360 and I can't seem to add a Synology NAS to file audit due to constantly receiving an "Invalid Server Name" error. This happens no matter what I type in the box. I've tried the FQDN, just the hostname, no numbers/special
Adaudit Plus connect external database
Hello. We`re trying the demos version of adaudit plus. We want it to connect it to external PostgreSQL database. It is possible? and what is the passwor to connect to the internal postgresql database that comes built in? Thank you so much!
[Webinar series] 📢 New and improved security and management capabilities from ManageEngine
ManageEngine's What's new 📢 webinar series Register now June 17, 18, 19, 20, 21 at 11 AM GST | 3 PM SGT | 11 AM EDT | 4 PM BST Note: Register just once to attend all the sessions in this series. Join our long-awaited expert-led What's New webinar series
Logout after a certain time of inactivity
Is there a way to configure ADAuditPlus so that a user is automatically logged out of AD AuditPlus after a certain time of inactivity in ADAuditPlus?
Use ADAuditplus to find zombie accounts
Hello, Is there a possibility in ADAuditPlus to track accounts who are: -Active -Not used 4 a long time. (e.g. based on last logon attempt) With a report like this, we could be able to find 'zombie accounts'. kind regards
AD AUDIT Plus fails to load
All other feathers of Manage Engine appears to work but when we attempt to load into ADAudti Plus we are greated with this screen.
[Seminar]Secure Your Spot Now: Shield 2024 IAM and Cybersecurity Seminar on June 11 at Kuala Lumpur!
Hello! We are thrilled to send you this exclusive invite to be a part of Shield 2024: An IAM and Cybersecurity seminar in Manila, Philippines on June 11. Our senior technology evangelists will be sharing their thoughts on how you can better manage, monitor,
The user/system has no admin privilege
Hi everyone I have set up ADAudit Plus on a dedicated domain-joined server and created a dedicated service user (not a member of "Domain Admins") to use as Domain Credentials. Permissions for that service user have been set according to step 1, 2 and 4 in the Audit Permissions guide https://www.manageengine.com/products/active-directory-audit/audit-permissions-configuration-ad-audit-plus.html. Steps 3 and 5 are not considered necessary as we don't have a "Failover Cluster" nor "File Server Auditing"
ADAudit: How to alert on a server reboot ?
Need to know when a server is rebooted or shutdown. How do I set this up for a specific server?
[Shield seminar] Secure Your Spot: Shield 2024 IAM and Cybersecurity seminar
Hello! We are elated to invite you to our biggest event of the year, Shield: An IAM and Cybersecurity seminar, an ideal event to explore various nuances of the industry. Register now Venue: • April 16th: Los Angeles • April 18th: San Francisco • April
Risk-Detection : Insufficient privileges to carry out risk detection.
Hi! AD Audit - Reports - Azure AD - Risk Detection What are the permissions required in Azure for this work correctly? Thanks!
User Session Record
Hello We configure User Session Recording. But we can't get video records. We only get frames. Please help us to configure to get video records . Thanks for your help
Postgresql Credentials
Dear Community, Suddenly, our testing ADAudit stop showing events on main Dashboard but it still sending events to our Splunk instance. We think it was because of the upgrade to version 7006. We wanted to reindex database but we can't connect to postgresql
Attention! There's a potential security.
Attention! There's a potential security risk with the ManageEngine ADAudit Plus upgrade file (ManageEngine_ADAudit_Plus_8_0_0_SP-0_2_0.ppm). Virustotal analysis indicates it might contain a Trojan.luckyMouse.r Here is the report https://www.virustotal.com/gui/file/17ce8f681cad09eb9c2ca8ca60215f539d7c3cdd215eaf259f0b2879bd599621?nocache=1
False/Positiv about Bruteforce Username detected
HI ALL After update to 8002 we have receive many false alarm about Bruteforce Username detected Any else have this behavior ?
Remote Desktop Gateway Server audit
How do I setup Remote Desktop Gateway Server audit in the newest version? Thanks!
Error install Service Pack
I am trying to install service pack 7_2_0_SP-6_0_0 we are currently running 7.2.0, Build 7212. Whenever I do the update I get the error message "Please start the product, then stop it, and then apply the service pack" I have done this several times but
ADAudit plus member servers list auto refreshes every few seconds.
Hello, I'm attempting to manage member servers, but the list auto-refreshes so quickly I can't scroll down through the list. By the time I get to the server I'm looking for it shoots me right back up to the top of the list. Is there a setting for this
ADAudit and Netapp ONTAPI (ZAPI) EOL.
NetApp are in the process of phasing out their old ONTAPI (ZAPI). ONTAP 9.13.1 software will be the final version to offer normal support of ONTAPI. ONTAPI access re-enablement will not be supported on ONTAP 9.18.1 As ADAudit uses ZAPI (We do need to
SSL certificate
Hi, We want to replace the SSL certificate on the server. How can we do this? Thanks.
ADAudit migration from PostgreSQL to MSSQL -
Hy. I'm having trouble migrating AD Audit from PostgreSQL to MSSQL - SQL connection gets created, new database gets created, and when data migration starts, it stops at 3%, throwing an error "WorkerPOOL execution terminated forcibly". Any advice is welcome.
Nasuni NAS
I saw another post about Nasuni being on the roadmap for 2022. Just was wondering if that was still in the works. Nasuni is our primary NAS and would love to add it to ADAudit.
Access to single share
Is it possible to create a report that shows access to a single network share? Currently all I can find is the total aggregate access to all network shares.
File Server - FSRM Quota Reports/Alerts
Does the File Server module include fsrm quota threshold reporting and notifications? We use FSRM quotas for our systems, and we intentionally set hard quotas in FSRM. Because FSRM email notification setup only works out of the box with Exchange server
Logon events (possible more?) stops showing in web UI every night
We have a problem with the auditing of logon events stops displaying every night. it doesn't come back until I restart the service (ie. the events is monitored but not shown in the web UI). Anyone else had this problem? We tried applying the latest release
Alerts for non-Auditing Workstations
Hi, We've been asked to put in a solution whereby alerts will be automatically generated to us when a device hasn't provided audit/security logs for a period of time. So far this is ok as we can install the AD Audit+ agent and it will tell us when a device
Unable to apply latest patch
After running updatemanager.bat I get a message stating: Error: Problem occurred during previous patch installation/uninstallation and has not been reverted to actual state. Hence the setup becomes inconsistent. Please contact support to resolve the problem.
Explanation of the "TIMESTAMP OF LAST EVENT"
In the 'Domain Settings' next to each domain controller it reports the TIMESTAMP OF LAST EVENT. Could someone explain what that means exactly? The reason for asking is that I have ten DCs, eight of them show a TIMESTAMP OF LAST EVENT for today but two of them show TIMESTAMP OF LAST EVENT for several days ago. Many thanks
Error: EventData has more than 2GB so need to disable eventcollection
We Recently started seeing this message for 2 of our DCs EventData has more than 2GB so need to disable eventcollection In addition to this message the ADAuditPLus server appears to be consistently bogged down, CPU wise. We have two DCs in the domain
exclude non domain user from User log on Failures report
Hi, on my dc's I see thousands of bad user name errors from my exchange servers. Apparantly caused by a Microsoft patch that is still not fixed. I want to exclude these errors from AD Audit, I tried editing the rules under configuration, advanced configuration,
ADAudit Plus File Server Report
Hello; Is it possible to get a report for file server the files not opened(or accessed) for a specific time. For example the files not opened for 1 year. There is File Read Access option under File Audit=>File Audit Reports=>File Read Access but I need
Next Page