GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → pschiffe → ipa-log-config

pschiffe / ipa-log-config

Licence: GPL-2.0 License
Tool for log forwarding configuration on IPA servers and clients

Programming Languages

python
139335 projects - #7 most used programming language

Labels

auditrsyslogsssdfreeipaipa-servercentralized-loggingaudisp-syslog-plugin

Projects that are alternatives of or similar to ipa-log-config

residue
Real-time centralized logging server ⚡
Stars: ✭ 26 (-13.33%)
Mutual labels:  rsyslog, centralized-logging
aushape
A library and a tool for converting audit logs to XML and JSON
Stars: ✭ 37 (+23.33%)
Mutual labels:  audit, rsyslog
Linux-Active-Directory-join-script
Active directory Join script for Ubuntu, Debian, CentOS, Linux Mint, Fedora, Kali, Elementary OS and Raspbian with built in failchcheck and debugmode for Ubuntu. "The most advanced and updated AD join script on GITHUB for Linux"
Stars: ✭ 97 (+223.33%)
Mutual labels:  sssd
DomainAccessibilityAudit
Web application to create domain and subdomain accessibility audits, with violation statistics.
Stars: ✭ 41 (+36.67%)
Mutual labels:  audit
nuxt-prune-html
🔌⚡ Nuxt module to prune html before sending it to the browser (it removes elements matching CSS selector(s)), useful for boosting performance showing a different HTML for bots/audits by removing all the scripts with dynamic rendering
Stars: ✭ 69 (+130%)
Mutual labels:  audit
docker-rsyslog
Rsyslog server with multiple input listeners (UDP/TCP/RELP) and outputs (file/kafka/syslog).
Stars: ✭ 18 (-40%)
Mutual labels:  rsyslog
discord-audit-log-bot
A Discord bot that extends Discord's native Audit Log.
Stars: ✭ 109 (+263.33%)
Mutual labels:  audit
BitLocker-Guidance
Configuration guidance for implementing BitLocker. #nsacyber
Stars: ✭ 90 (+200%)
Mutual labels:  audit
apache-baseline
DevSec Apache Baseline - InSpec Profile
Stars: ✭ 37 (+23.33%)
Mutual labels:  audit
wpaudit.site
An easy to use checklist to optimize your WordPress website.
Stars: ✭ 24 (-20%)
Mutual labels:  audit
citadel
Turn an arbitrary command into a Kubernetes Key Management Service GRPC server
Stars: ✭ 15 (-50%)
Mutual labels:  freeipa
rsyslog-docker
rsyslog docker containers
Stars: ✭ 76 (+153.33%)
Mutual labels:  rsyslog
HTML-Lint
A code quality bookmarklet and command-line tool
Stars: ✭ 20 (-33.33%)
Mutual labels:  audit
Detect-CVE-2017-15361-TPM
Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber
Stars: ✭ 34 (+13.33%)
Mutual labels:  audit
SIPTorch
A "SIP Torture" (RFC 4475) testing suite.
Stars: ✭ 54 (+80%)
Mutual labels:  audit
Audit-Test-Automation
The Audit Test Automation Package gives you the ability to get an overview about the compliance status of several systems. You can easily create HTML-reports and have a transparent overview over compliance and non-compliance of explicit setttings and configurations in comparison to industry standards and hardening guides.
Stars: ✭ 37 (+23.33%)
Mutual labels:  audit
eixample
Multi-Tenant .NET 6 Architecture (Angular, Vue, React)
Stars: ✭ 61 (+103.33%)
Mutual labels:  audit
pyenvdiff-lib
Python environment comparison tool
Stars: ✭ 23 (-23.33%)
Mutual labels:  audit
pg-audit-json
Simple, easily customised trigger-based auditing for PostgreSQL (Postgres). See also pgaudit.
Stars: ✭ 34 (+13.33%)
Mutual labels:  audit
docker base images
Vlad's Base Images for Docker
Stars: ✭ 61 (+103.33%)
Mutual labels:  rsyslog
View All Similar Projects ➔

ipa-log-config

A tool for log forwarding configuration on IPA servers and clients. Configures rsyslog to collect and forward selected log files to desired remote server. For more information about this effort and some inspiration what can be done with those logs, visit this page.

Usage

# ./ipa_log_config.py --target <domain name or ip of target server>

To revert changes done by this script, use the --revert option:

# ./ipa_log_config.py --revert

Supported platforms

Currently, only RHEL 7 / CentOS 7 and derivates are supported.

Requirements

The script requires python2-sssdconfig package.

Detailed description

This tool tries to be as not invasive as possible. The rsyslog configuration is done in the separate files, which could be easily removed. Besides that, it configures debug level of SSSD and enables audisp syslog plugin. All logs are written to their original destination AND sent to the remote server, so no logs are lost from the local machine.

Forwarded logs

/var/log/audit/audit.log
/var/log/secure
/var/log/httpd/access_log
/var/log/httpd/error_log
/var/log/kadmind.log
/var/log/krb5kdc.log
/var/log/pki/pki-tomcat/ca/transactions
/var/log/dirsrv/slapd-<REALM>/access
/var/log/dirsrv/slapd-<REALM>/audit
/var/log/dirsrv/slapd-<REALM>/errors
/var/log/sssd/sssd.log
/var/log/sssd/krb5_child.log
/var/log/sssd/ldap_child.log
/var/log/sssd/selinux_child.log
/var/log/sssd/gpo_child.log
/var/log/sssd/sssd_nss.log
/var/log/sssd/sssd_pam.log
/var/log/sssd/sssd_pac.log
/var/log/sssd/sssd_autofs.log
/var/log/sssd/sssd_ssh.log
/var/log/sssd/sssd_sudo.log
/var/log/sssd/sssd_ifp.log
/var/log/sssd/sssd_<DOMAIN>.log

Most of the logs are forwarded using rsyslog imfile module. The only exceptions are audit and secure logs. Audit is sent to rsyslog using audisp syslog plugin and secure log is written directly by rsyslog, so only forwarding is added for this one.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].