0 votes

Hi All,

We are looking at using Adaxes however would like to be able to see the Adaxes logs within McAfee SIEM. Has anyone tried and tested this and could give any insight on the best way to do this?

I understand we can export the logs to CSV and also from SIEM do application monitoring. Does Adaxes have a preferred route to get logs to the SIEM?

Many Thanks!

by (1.5k points)

1 Answer

+1 vote
by (177k points)
selected by
Best answer

Hello Anton,

Unfortunately, we did not perform such tests and have no experience working with McAfee SIEM. We recommend you to check the following approaches with McAfee support team:

  • By default, Adaxes stores log records in a local SQLite database located on the computer where your Adaxes service is installed. The local database is stored in the AdaxesLog.db3 file located in the LogDB subfolder of the folder where the Adaxes service is installed, which is C:\Program Files\Softerra\Adaxes 3\Service by default. If the SIEM can read data from an SQLite database, you can directly access Adaxes logs stored in the database.
  • If the SIEM can read data from an MS SQL database, you can enable logging to an external database and then read the logs from the database.
  • If the SIEM accepts syslog messages, you can enable syslog output to the SIEM server in Adaxes: https://www.adaxes.com/help/?Logging.EnableSyslogOutput.html.

Related questions

0 votes
1 answer

We are evaluating the product and would like to let users of AD to change password in self service page. We would like to set a 90 days change password policy, ... self service page? Is it achievable (with customization and batch program)? Thanks in advance.

asked Apr 27 by eric (250 points)
0 votes
1 answer

Our Help Desk currently 'mirrors' the group membership of a new user based on another existing user in our AD. I'd like to be able to automate this so that the initiator ... and 'paste' it on the new user being created. Any help on this would be appreciated!

asked Apr 21 by RayBilyk (480 points)
0 votes
1 answer

is it possible to allow a user to enroll for both options, or even only one option out of the two available? I would like to give my users the choice to use either. Some users may not want an authenticator, but other's might do.

asked Nov 6, 2019 by mashworth (290 points)
0 votes
1 answer

Like remove all users from full access other than User1, User 2, & User3?

asked Oct 29, 2019 by hgletifer (5.8k points)
0 votes
1 answer

When we deprovision a user the member of groups are deleted and the power shell scrips only runs as removing all memberships. I can't see what was removed. Is there a scrips I can run prior to removing those memberships that will e-mail what they are?

asked Oct 15, 2019 by meyerm (280 points)
2,183 questions
1,948 answers
5,392 comments
5,257 users