Before I get into detail here, I want to first acknowledge that this is not what KACE was designed to do out of the box. I am curious if anyone is using KACE to centrally log events  throughout their environment. I work in an environment that requires PCI compliance and one part of that is centralized logging of authentication, logon, and logoff requests that cannot be edited by administrators, and can also be retained for 12+ months.

I know KACE currently logs when software and hardware changes are detected on a device. I am curious if there is a way to script or ortherwise get these events to show in KACE when the 'Show All History' link is clicked from the inventory. Any advice is appreciated.

0 Comments   [ + ] Show Comments

Comments

Please log in to comment

Answers

2
I am by no means a KACE expert but I would defer to an actual SYSLOG server for doing this sort of thing. SYSLOG data can get very thick - even if this level of capability is able to be achieved with a KACE (I don't know for your specific scenario) this would have a significant negative impact on it. Depending on the implimentation, SYSLOG servers can be cheap, if not free.  Also, there is software already available to meet the level of compliance you are looking to achieve right out of the box.
Answered 07/14/2015 by: davik2001
Senior White Belt

  • I hear what you're saying, I was wondering if anyone is currently doing this or has attempted this. Thank you for the reply.
Please log in to comment
Answer this question or Comment on this question for clarity