Hi,
One of the clients is looking at using L&G for collecting Windows (2008,2012 etc.) and Unix (Solaris, Linux, AIX etc.) server accounts. They have a few hundred servers.
1. Technically can DAG module (StealthAudit v7.1) be used to collect server account information? L&G collector(s) - multi-app etc. can then collect these servers and accounts as different applications? Does DAG licensing for L&G allow this?
2. If not DAG, has anyone tried achieving this using custom scripts to get information remotely. Then L&G CSV based collector(s) - multi-app etc. can be used to collect this information?
The business case is to review server access via access certification reviews for audit/ compliance.
Any thoughts on this are welcome as it is not a uncommon requirement i believe.
Regards,
Sandeep
Technically both 1 & 2 are possible.
StealthAudit OEM license can be used to collect Windows local accounts but not UNIX accounts. For UNIX you will need to purchase the license directly from Stealthbits.
Alternatively if you have the resources then you can write scripts to collect these accounts and groups from endpoints and dump it into a file or database and be collected like regular applications. But there is no point in reinventing the wheel when there are third part tools that do this like StealthAudit, Varonis ...