Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Application (Admin SSO Login) logs via syslog?

This thread has been viewed 0 times

  • 1.  Application (Admin SSO Login) logs via syslog?

    EMPLOYEE
    Posted May 02, 2014 10:24 AM

    Is there a better way to get Application (Admin UI) access logs via syslog other than using the system logs?


    The biggest issue with the system logs is that there are not distinct "field" for username. It is just dumped into the description field.

     

    It would be great to have "Application" available inside session logs similar to RADIUS, TACACS, and WEBAUTH where there are distinct fields mapped (Common_Username, Common_Source, etc)

     

    splunk-admin-login.png