Central Logging: Difference between revisions

From Computer Science Wiki
Jump to navigation Jump to search
← Older editNewer edit →
VisualWikitext
Miket (talk | contribs)
Staff, Techstaff
599 edits
No edit summary
Miket (talk | contribs)
Staff, Techstaff
599 edits
No edit summary
Line 3: Line 3:
* '''What is Logged?'''
* '''What is Logged?'''
** For Windows: The Windows events logs: Application, System, Security, ForwardedEvents, Microsoft-Windows-Powershell, and WindowsPowerShell
** For Windows: The Windows events logs: Application, System, Security, ForwardedEvents, Microsoft-Windows-Powershell, and WindowsPowerShell
** For Mac:
** For Mac: Mac ASL logs (excluding debug and traces).
 
* '''Where is it Logged?'''
= Where is it Logged =
** The logs are sent to the central logging server managed by the university. Where they are imported into Splunk and are only viewable to the people with access to the cs logging domain.
 
* '''Why is it Logged?'''
= Why is it Logged =
** This is to cover Security Control

Revision as of 08:26, 19 August 2024

Logging

  • What is Logged?
    • For Windows: The Windows events logs: Application, System, Security, ForwardedEvents, Microsoft-Windows-Powershell, and WindowsPowerShell
    • For Mac: Mac ASL logs (excluding debug and traces).
  • Where is it Logged?
    • The logs are sent to the central logging server managed by the university. Where they are imported into Splunk and are only viewable to the people with access to the cs logging domain.
  • Why is it Logged?
    • This is to cover Security Control
Retrieved from "http://wiki.cs.vt.edu/index.php?title=Central_Logging&oldid=4805"