AnsweredAssumed Answered

NW rules for Active Directory User account activity

Question asked by RSA Admin

on Sep 19, 2012
Latest reply on Sep 21, 2012 by RSA Admin

Like • Show 0 Likes0
Comment • 1

I want to write a rule and create a dashboard for active directory user activity (log off, logon, lockout, invalid login attempts etc). How can I write a rule to achieve it?

Thank you

RSA Admin

Sep 21, 2012 12:50 AM

Correct Answer

With a Log Decoder in the environment, you can utilize the following Informer rules that are available from CMS through Live Manager.

Logoff Activity Top 25

Logon Failures Details

Logon Failures Top 25

See the reply in context

No one else had this question

Outcomes

1 Reply

RSA Admin Sep 21, 2012 12:50 AM
Unmark Correct
Correct Answer
With a Log Decoder in the environment, you can utilize the following Informer rules that are available from CMS through Live Manager.

Logoff Activity Top 25
Logon Failures Details
Logon Failures Top 25
Like • Show 0 Likes0
Actions

NW rules for Active Directory User account activity

Outcomes

Related Content

Recommended Content