0 votes

Hi All,

We are looking at using Adaxes however would like to be able to see the Adaxes logs within McAfee SIEM. Has anyone tried and tested this and could give any insight on the best way to do this?

I understand we can export the logs to CSV and also from SIEM do application monitoring. Does Adaxes have a preferred route to get logs to the SIEM?

Many Thanks!

by (440 points)

1 Answer

+1 vote
by (292k points)
selected by
Best answer

Hello Anton,

Unfortunately, we did not perform such tests and have no experience working with McAfee SIEM. We recommend you to check the following approaches with McAfee support team:

  • By default, Adaxes stores log records in a local SQLite database located on the computer where your Adaxes service is installed. The local database is stored in the AdaxesLog.db3 file located in the LogDB subfolder of the folder where the Adaxes service is installed, which is C:\Program Files\Softerra\Adaxes 3\Service by default. If the SIEM can read data from an SQLite database, you can directly access Adaxes logs stored in the database.
  • If the SIEM can read data from an MS SQL database, you can enable logging to an external database and then read the logs from the database.
  • If the SIEM accepts syslog messages, you can enable syslog output to the SIEM server in Adaxes: https://www.adaxes.com/help/?Logging.EnableSyslogOutput.html.

Related questions

0 votes
1 answer

Hello, I'm trying to create a business rule that will update a user account expiry date when that user logs in for the first time. I'm new to Adaxes, so I don't have a ... updated by a user's action, such as "Last Logon". Is it possible to make this work?

asked Mar 6 by sjjb2024 (60 points)
0 votes
1 answer

I am trying to view AD authentication logs to see a user account's authentication attempts. Can this be done in Adaxes?

asked Dec 30, 2021 by Tfarmer (160 points)
0 votes
1 answer

I'm trying to schedule a report to look in a few specific OUs. Currently "Look in" location only allows for single instance or multiple drop downs. How do I schedule multiple OU locations without creating multiple reports?

asked Jul 2, 2020 by Al (20 points)
0 votes
1 answer

We are evaluating the product and would like to let users of AD to change password in self service page. We would like to set a 90 days change password policy, ... self service page? Is it achievable (with customization and batch program)? Thanks in advance.

asked Apr 27, 2020 by eric (20 points)
0 votes
1 answer

I had a script that would copy the values from adm-CustomAttributeTextMultiValue1 and save them into extensionAttribute15 as a comma seperated list. The script somehow got deleted and I can't seem to find the tutorial I used to create it before.

asked Jul 1, 2022 by jordan (110 points)
3,568 questions
3,259 answers
8,272 comments
547,930 users