Configuring event auditing using Novell iManager
You can configure event auditing for XDASv2 in Novell iManager.
Procedure
- Log in to your Novell iManager console user interface.
- From the navigation bar, click Roles and Tasks.
-
In the left-hand navigation, click eDirectory Auditing > Audit Configuration.
The Audit Configuration panel is displayed.
- In the NPC Server name field, type the name of your NPC Server.
-
Click OK.
The Audit Configuration for the NPC Server is displayed.
-
Configure the following parameters:
-
On the Components panel, select one or both of the following:
DS - Select this check box to audit XDASv2 events for an eDirectory object.
LDAP - Select this check box to audit XDASv2 events for a Lightweight Directory Access Protocol (LDAP) object.
-
On the Components panel, select one or both of the following:
-
On the Log Event's Large Values panel, select one of the
following:
Log Large Values - Select this option to log events that are larger than 768 bytes.
Don't Log Large Values - Select this option to log events less than 768 bytes. If a value exceeds 768 bytes, then the event is truncated.
- On the XDAS Events Configuration, select the check boxes of the events you want XDAS to capture and forward to IBM QRadar.
- Click Apply.
-
On the XDAS tab, click XDASRoles.
The XDAS Roles Configuration panel is displayed.
-
Configure the following role parameters:
- Select a check box for each object class to support event collection.
- From the Available Attribute(s) list, select any attributes and click the arrow to add these to the Selected Attribute(s) list.
- Click OK after you have added the object attributes.
- Click Apply.
-
On the XDAS tab, click XDASAccounts.
The XDAS Accounts Configuration panel is displayed.
-
Configure the following account parameters:
- From the Available Classes list, select any classes and click the arrow to add these to the Selected Attribute(s) list.
- Click OK after you have added the object attributes.
- Click Apply.