Did you know – Integrate ADSelfService Plus with your SIEM system in real time
ADSelfService Plus can be integrated with syslog servers and SIEM (security information and event management) solutions that support syslog format such as Splunk and EventLog Analyzer, so that you can forward audit logs in real time and gain valuable insights on your users’ activities.
This article will guide you to integrate ADSelfService Plus with SIEM solutions.
Integrating ADSelfService Plus with Splunk
Steps involved:
- The first step of the integration process is to generate an HTTP event collector token using the Splunk Enterprise:
- Log in to Splunk as an administrator.
- Navigate to Settings → Data Inputs → HTTP Event Collector.
- Click New Token.
- Specify a name for the token and retain the default values for the other fields.
- Click Save and the authentication token will be generated.
Once the HTTP event collector token is generated:
- Log in to ADSelfService Plus as default Admin.
- Navigate to Admin → Product Settings → Integration Settings.
- Click the Splunk Server tile.
- Enter the details including Splunk Server Name, HTTP Event Collector Port Number and Port Protocol, and specify the HTTP Event Collector Token generated for ADSelfService Plus in Splunk.
- Click Save.
Integrating ADSelfService Plus with a Syslog Server
Steps involved:
- Log in to ADSelfService Plus as default Admin.
- Navigate to Admin → Product Settings → Integration Settings.
- Click the Syslog Server tile.
- Enter the details including Syslog Server Name, Port Number and Port Protocol. Also, choose the syslog standard and specify the data format needed for your SIEM parser.
- Click Save.
New to ADSelfService Plus?
Related Articles
How to integrate ServiceDesk Plus with ADSelfService Plus?
Description: By integrating ManageEngine ServiceDesk Plus and ADSelfService Plus, you get to: Automate ticket creation in ServiceDesk Plus for every self-service operation performed by end users using ADSelfService Plus. This empowers help desk ...ADSelfService Plus product startup issues
What do you need to know before troubleshooting You need to have administrator access to ADSelfService Plus. When you experience an error with ADSelfService Plus, check if these prerequisites are satisfied: Install ADSelfService Plus as a service ...Configuring high availability in ADSelfService Plus
ADSelfService Plus utilizes automatic failover to support high availability in case of system and product failures. Essentially, this means that when the ADSelfService Plus service on one machine fails, another instance of ADSelfService Plus running ...Encryption and data storage in ADSelfService Plus database
Encryption in the ADSelfService Plus database ADSelfService Plus' database uses the following encryption methods to store sensitive data: Database Encryption method PostgreSQL AES-256-CBC Microsoft SQL AES-256-CBC The following sensitive information ...How to configure custom SMS provider in ADSelfService Plus?
ADSelfService Plus lets you use any one of the following methods to send an SMS: GSM modem Clickatell (built-in support) Custom SMS gateway Configuring custom SMS gateway You can configure a custom SMS gateway to send notifications and verification ...